$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/221/85pxQ80G63y58WE7XtHbaZdSKZg.roa File: 85pxQ80G63y58WE7XtHbaZdSKZg.roa (raw, json) Hash identifier: HIJ+j52meC4rdHwr6bBWyMZWQSk7IUXvTpRh+IgItpQ= Subject key identifier: F3:9A:71:43:CD:06:EB:7C:B9:F1:61:3B:5E:D1:DB:69:97:52:29:98 Certificate issuer: /CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Certificate serial: 06 Authority key identifier: 1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/85pxQ80G63y58WE7XtHbaZdSKZg.roa Signing time: Wed 27 Nov 2024 04:52:28 +0000 ROA not before: Wed 27 Nov 2024 04:52:28 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 7677 IP address blocks: 157.101.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Validity Not Before: Nov 27 04:52:28 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=F39A7143CD06EB7CB9F1613B5ED1DB6997522998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ae:a7:9d:7e:26:18:a7:f1:98:65:e2:46:20: ab:74:43:80:95:15:a7:d6:3e:a3:bf:a1:ea:c8:13: 89:89:ff:21:e2:1e:95:01:ea:27:b3:9c:d2:b5:55: eb:11:78:99:b0:a7:c0:4f:87:67:57:02:7a:b8:23: c9:16:0e:23:b4:aa:9f:c8:bd:73:dc:03:ca:3b:6b: 85:f7:ec:45:0d:d5:a1:95:a3:c3:2e:96:52:e2:8d: 35:c0:83:8d:84:cd:03:19:fd:50:8a:93:b6:37:81: 2c:5a:1b:43:d8:a0:b3:7c:1f:49:66:58:da:61:f5: 59:cd:d4:1d:0e:a9:22:09:e8:80:23:f7:56:56:cc: 2e:36:20:bd:26:07:a2:52:93:7d:02:0c:9d:5a:b1: 07:25:4e:0f:6b:26:5e:4f:fc:f2:d4:1e:00:2f:04: bd:15:bc:ed:d7:c1:f8:55:32:57:2c:be:46:19:63: 37:91:60:e7:d7:3f:2d:d5:42:15:f3:4c:49:85:ae: 2a:f5:f9:82:5a:e9:74:5b:55:16:f5:f2:69:47:ae: 5d:6b:d6:e6:7f:51:50:6c:66:01:73:03:1a:ed:25: ca:07:fb:b7:03:96:a1:02:a9:32:a3:7d:4d:74:c5: f1:c9:d1:e6:36:92:b8:9a:d6:4b:8a:93:15:ac:69: df:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:9A:71:43:CD:06:EB:7C:B9:F1:61:3B:5E:D1:DB:69:97:52:29:98 X509v3 Authority Key Identifier: keyid:1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/85pxQ80G63y58WE7XtHbaZdSKZg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.101.253.0/24 Signature Algorithm: sha256WithRSAEncryption 63:83:d7:46:9b:a6:aa:a4:d5:58:ae:17:04:da:25:05:92:e5: 5c:7d:98:e6:34:aa:db:8c:9e:9d:1c:a8:b9:0e:7e:82:78:d1: b8:bb:47:d2:86:ad:48:c5:70:c3:44:2a:43:55:0a:6c:85:23: db:71:ee:09:73:ed:d5:13:be:45:75:86:e3:bb:de:9a:90:f4: a4:3b:88:6c:7c:49:b9:fe:77:4f:bd:df:49:b1:19:a9:dc:dc: 66:85:10:df:01:20:67:b9:6d:93:23:20:9e:b4:5b:b1:09:a2: 95:1a:58:50:ac:52:2a:77:d6:23:35:0f:b1:03:1b:31:5d:8e: be:aa:e7:47:fa:9e:c2:71:73:7d:a9:99:95:6a:bb:af:03:24: 06:3d:fa:92:17:9c:ae:08:1c:33:1a:23:97:72:40:44:3e:dc: 01:df:60:85:39:7f:84:83:66:a6:28:65:2d:64:44:29:ce:1c: 98:34:e8:37:27:7c:b7:e0:15:28:ea:fc:f0:88:aa:c3:bc:11: df:20:9a:ff:c7:61:d6:a7:5a:9e:94:18:52:29:70:f4:87:b6: 27:3b:67:b0:ea:0a:3e:53:ae:80:2a:c5:ed:df:82:dd:73:16: d3:42:3f:a6:1e:8d:07:0a:a4:ee:fd:e5:ae:dd:5b:8a:45:fc: 6d:e3:6f:a8 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkNG QjRGQUI5NDVDREQxNDg0NzNFQ0I3NUIxMUUzQUQxNjlFNzFEMB4XDTI0MTEyNzA0 NTIyOFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoRjM5QTcxNDNDRDA2RUI3 Q0I5RjE2MTNCNUVEMURCNjk5NzUyMjk5ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANeup51+Jhin8Zhl4kYgq3RDgJUVp9Y+o7+h6sgTiYn/IeIelQHq J7Oc0rVV6xF4mbCnwE+HZ1cCergjyRYOI7Sqn8i9c9wDyjtrhffsRQ3VoZWjwy6W UuKNNcCDjYTNAxn9UIqTtjeBLFobQ9igs3wfSWZY2mH1Wc3UHQ6pIgnogCP3VlbM LjYgvSYHolKTfQIMnVqxByVOD2smXk/88tQeAC8EvRW87dfB+FUyVyy+RhljN5Fg 59c/LdVCFfNMSYWuKvX5glrpdFtVFvXyaUeuXWvW5n9RUGxmAXMDGu0lygf7twOW oQKpMqN9TXTF8cnR5jaSuJrWS4qTFaxp31cCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTzmnFDzQbrfLnxYTte0dtpl1IpmDAfBgNVHSMEGDAWgBQbz7T6uUXN0UhHPst1 sR460WnnHTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjIxL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RGcDV4MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RG cDV4MC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMjEvODVweFE4MEc2M3k1OFdFN1h0SGJhWmRTS1pnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAJ1l/TANBgkqhkiG9w0BAQsFAAOCAQEAY4PXRpumqqTVWK4XBNolBZLlXH2Y 5jSq24yenRyouQ5+gnjRuLtH0oatSMVww0QqQ1UKbIUj23HuCXPt1RO+RXWG47ve mpD0pDuIbHxJuf53T73fSbEZqdzcZoUQ3wEgZ7ltkyMgnrRbsQmilRpYUKxSKnfW IzUPsQMbMV2OvqrnR/qewnFzfamZlWq7rwMkBj36khecrggcMxojl3JARD7cAd9g hTl/hINmpihlLWREKc4cmDToNyd8t+AVKOr88Iiqw7wR3yCa/8dh1qdanpQYUilw 9Ie2JztnsOoKPlOugCrF7d+C3XMW00I/ph6NBwqk7v3lrt1bikX8beNvqA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:45:31 2025 by rpki-client