$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/221/2-fF9gUHk1C9rE-3EUKnXiz8PbM.roa File: 2-fF9gUHk1C9rE-3EUKnXiz8PbM.roa (raw, json) Hash identifier: pg7silTGEQ+i5VYmzZcGdU99Aiuo40N1Z19oN17Oss0= Subject key identifier: DB:E7:C5:F6:05:07:93:50:BD:AC:4F:B7:11:42:A7:5E:2C:FC:3D:B3 Certificate issuer: /CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Certificate serial: 08 Authority key identifier: 1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/2-fF9gUHk1C9rE-3EUKnXiz8PbM.roa Signing time: Wed 27 Nov 2024 05:00:28 +0000 ROA not before: Wed 27 Nov 2024 05:00:28 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 7677 IP address blocks: 157.101.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Validity Not Before: Nov 27 05:00:28 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=DBE7C5F605079350BDAC4FB71142A75E2CFC3DB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:83:8a:47:e1:2b:98:e1:f7:96:75:d5:55:96: 05:eb:58:9a:6e:51:e5:6e:ce:2b:ea:22:be:25:d4: a0:75:cd:ef:3e:62:74:4a:75:4d:a0:49:99:cb:7f: 7c:79:22:45:36:02:5d:bc:94:77:47:98:c7:c1:db: a0:a1:8a:2d:55:15:a0:ea:86:d7:f9:ac:92:d9:34: e2:e8:36:d5:89:66:eb:b8:1a:9f:33:15:df:2f:84: d4:9b:24:66:db:33:c8:58:f8:86:1f:f3:5b:59:70: eb:5c:69:07:c9:77:c2:f0:84:68:68:ac:2d:da:30: e9:33:4d:55:a7:98:52:b0:21:78:a9:ae:dd:68:f6: 1c:6a:24:bc:20:e2:f3:22:9d:76:c8:43:2a:86:81: 8a:24:43:cf:26:2d:26:0f:d7:39:68:8f:4f:bd:d9: 4b:62:da:dc:cf:4a:f4:2e:73:57:52:b4:cf:6a:4e: 67:c9:fe:96:e5:49:99:00:4f:0d:bb:29:6d:16:33: 8c:40:c5:e6:57:b7:5d:a8:62:e9:79:ca:92:5b:84: 4a:ad:02:84:a2:22:fb:2a:56:e3:c5:de:0e:49:7b: 6e:9e:32:f7:08:b2:02:0c:c6:73:65:c1:0b:ab:ac: 7d:b1:6d:db:0f:ec:bd:30:4b:49:d8:53:06:b2:50: 6e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E7:C5:F6:05:07:93:50:BD:AC:4F:B7:11:42:A7:5E:2C:FC:3D:B3 X509v3 Authority Key Identifier: keyid:1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/2-fF9gUHk1C9rE-3EUKnXiz8PbM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.101.255.0/24 Signature Algorithm: sha256WithRSAEncryption 42:f5:f1:3f:3f:db:35:9d:be:82:e5:f1:24:3d:d0:78:37:95: c5:59:83:9c:11:89:22:7b:f4:34:d0:58:40:5a:c6:66:48:2d: 77:80:1e:57:66:6c:75:7b:f0:58:86:af:9b:ed:43:c2:1f:25: c0:02:c6:2e:6f:55:a0:e8:40:9d:76:76:88:a6:05:86:5b:31: 4a:9f:c9:f3:7f:dc:98:29:53:75:61:8f:d3:59:6c:77:c1:a7: ae:f5:2d:de:06:13:b3:9d:86:4c:d2:a1:f1:f2:55:4c:7c:b5: 59:0b:51:29:e6:d3:52:f3:41:70:82:3d:c0:c5:4d:a3:1f:6e: 99:c1:04:3c:5c:63:83:bb:ae:91:d0:9c:98:b1:90:f7:2a:07: 52:59:cd:9b:2f:60:11:06:d5:fd:cd:d9:d0:25:31:37:2b:1d: 53:04:f6:66:3a:b9:bf:13:83:4e:16:31:04:e3:9e:79:2a:f4: e5:90:ac:fd:8c:24:2c:c0:63:f7:4d:7e:75:9c:5d:49:c4:82: 64:3d:25:42:a1:c0:59:98:46:ab:d4:05:89:33:08:d5:14:06: 26:2f:41:a1:d3:66:71:2f:33:dd:cc:c9:84:7d:b6:90:70:1e: 0d:21:e8:dd:72:c6:85:16:31:87:fc:68:18:e5:c7:07:7c:6a: f3:b6:2d:a9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkNG QjRGQUI5NDVDREQxNDg0NzNFQ0I3NUIxMUUzQUQxNjlFNzFEMB4XDTI0MTEyNzA1 MDAyOFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoREJFN0M1RjYwNTA3OTM1 MEJEQUM0RkI3MTE0MkE3NUUyQ0ZDM0RCMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN+DikfhK5jh95Z11VWWBetYmm5R5W7OK+oiviXUoHXN7z5idEp1 TaBJmct/fHkiRTYCXbyUd0eYx8HboKGKLVUVoOqG1/msktk04ug21Ylm67ganzMV 3y+E1JskZtszyFj4hh/zW1lw61xpB8l3wvCEaGisLdow6TNNVaeYUrAheKmu3Wj2 HGokvCDi8yKddshDKoaBiiRDzyYtJg/XOWiPT73ZS2La3M9K9C5zV1K0z2pOZ8n+ luVJmQBPDbspbRYzjEDF5le3Xahi6XnKkluESq0ChKIi+ypW48XeDkl7bp4y9wiy AgzGc2XBC6usfbFt2w/svTBLSdhTBrJQbpUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTb58X2BQeTUL2sT7cRQqdeLPw9szAfBgNVHSMEGDAWgBQbz7T6uUXN0UhHPst1 sR460WnnHTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjIxL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RGcDV4MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RG cDV4MC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMjEvMi1mRjlnVUhrMUM5ckUtM0VVS25YaXo4UGJNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAJ1l/zANBgkqhkiG9w0BAQsFAAOCAQEAQvXxPz/bNZ2+guXxJD3QeDeVxVmD nBGJInv0NNBYQFrGZkgtd4AeV2ZsdXvwWIavm+1Dwh8lwALGLm9VoOhAnXZ2iKYF hlsxSp/J83/cmClTdWGP01lsd8GnrvUt3gYTs52GTNKh8fJVTHy1WQtRKebTUvNB cII9wMVNox9umcEEPFxjg7uukdCcmLGQ9yoHUlnNmy9gEQbV/c3Z0CUxNysdUwT2 Zjq5vxODThYxBOOeeSr05ZCs/YwkLMBj901+dZxdScSCZD0lQqHAWZhGq9QFiTMI 1RQGJi9BodNmcS8z3czJhH22kHAeDSHo3XLGhRYxh/xoGOXHB3xq87YtqQ== -----END CERTIFICATE-----Generated at Wed Feb 19 22:46:26 2025 by rpki-client