$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/221/Gtmwiruttx8yuYdRRIJCIbBwTLU.roa File: Gtmwiruttx8yuYdRRIJCIbBwTLU.roa (raw, json) Hash identifier: Xhl7w4dE6Q6kh05BLtA+9Roa0Y4nDrq8z45MIf6VIkk= Subject key identifier: 1A:D9:B0:8A:BB:AD:B7:1F:32:B9:87:51:44:82:42:21:B0:70:4C:B5 Certificate issuer: /CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Certificate serial: 02 Authority key identifier: 1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/Gtmwiruttx8yuYdRRIJCIbBwTLU.roa Signing time: Thu 07 Nov 2024 06:15:50 +0000 ROA not before: Thu 07 Nov 2024 06:15:50 +0000 ROA not after: Fri 07 Nov 2025 05:59:33 +0000 asID: 7677 IP address blocks: 157.101.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Validity Not Before: Nov 7 06:15:50 2024 GMT Not After : Nov 7 05:59:33 2025 GMT Subject: CN=1AD9B08ABBADB71F32B9875144824221B0704CB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a5:11:38:a2:4f:68:59:38:8d:24:7e:54:91: 08:f0:d9:fd:bf:b4:0d:32:60:f4:a5:d7:89:9f:30: 00:0d:60:98:ba:25:57:6b:dc:01:6a:23:d8:5a:28: 28:10:ca:be:5d:8f:7d:f7:66:a8:96:a1:ea:aa:d4: 7c:33:26:b9:0e:a9:5a:bd:71:b4:b4:0d:0b:8e:06: a9:10:af:4a:67:fb:dc:dc:ea:1b:69:49:32:6b:83: a9:f2:84:2a:4c:05:a2:60:8f:01:de:31:2a:3f:20: f0:e7:d8:92:4e:55:52:ba:b2:e7:04:a1:6f:03:88: 40:bc:d8:fd:86:9f:18:ba:1b:8a:d9:7e:00:d9:79: a3:18:cb:36:92:eb:e5:4b:f9:ca:eb:55:26:b6:e4: b1:28:ae:ae:59:60:ba:c2:99:dd:7d:86:d2:80:8d: 8f:e0:7f:84:9b:73:4a:b4:ed:51:2f:2f:6c:91:1a: b2:6a:9a:4b:2c:24:a9:59:0f:8e:02:ae:87:0f:40: e2:3d:1c:36:20:7a:cb:01:d7:1c:9f:d0:e5:0f:d6: f4:be:92:7c:4a:20:df:fe:b6:eb:a0:fe:68:31:ab: 58:8c:46:a6:a5:f0:0d:94:db:d6:83:df:39:1c:13: d3:0f:66:4e:9c:03:4a:55:b9:4e:05:c4:b8:05:83: ea:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D9:B0:8A:BB:AD:B7:1F:32:B9:87:51:44:82:42:21:B0:70:4C:B5 X509v3 Authority Key Identifier: keyid:1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/Gtmwiruttx8yuYdRRIJCIbBwTLU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.101.244.0/24 Signature Algorithm: sha256WithRSAEncryption 13:c4:ee:ed:90:d6:b7:d0:37:08:e9:6f:ea:03:3d:8a:13:c7: 98:8f:4c:7b:e8:ec:6d:5e:91:2a:25:43:78:2f:20:86:3b:46: 39:d6:fa:50:33:49:cf:29:0c:80:4c:68:a7:12:30:25:56:6a: 63:fb:0a:3a:98:ad:f6:34:b8:7e:cb:05:61:a7:6e:2f:81:73: cf:58:b4:0f:0e:c1:d4:1f:0b:dc:32:51:e9:bc:45:26:22:05: 84:b5:a2:3e:f7:10:3e:ae:46:00:b6:be:5b:5a:d9:ba:4b:d4: ef:42:e5:5a:04:57:15:e9:92:e2:fd:3e:22:08:c1:65:4e:8b: 70:5e:66:00:3f:28:eb:c1:a2:17:a8:3d:34:dd:61:83:69:be: 6c:8a:ea:df:da:db:c3:71:1b:a2:b7:7c:f6:3c:d5:0b:62:00: 2d:fd:f2:e2:fe:59:5c:80:c1:d6:41:12:79:5f:f3:db:80:73: 78:9a:3a:9f:4b:1e:1e:2c:48:bc:28:d6:e2:fb:fe:30:4d:76: 50:dd:25:c5:e5:1d:e6:5d:ca:ba:4f:69:d8:ee:e5:2e:06:ec: 53:d2:82:c3:bb:d5:1a:a7:49:82:1c:f3:56:71:35:e7:1b:c6: fc:3f:e5:ff:69:16:c7:34:77:88:e6:f3:9a:e5:82:d8:ec:fa: 84:6d:07:47 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkNG QjRGQUI5NDVDREQxNDg0NzNFQ0I3NUIxMUUzQUQxNjlFNzFEMB4XDTI0MTEwNzA2 MTU1MFoXDTI1MTEwNzA1NTkzM1owMzExMC8GA1UEAxMoMUFEOUIwOEFCQkFEQjcx RjMyQjk4NzUxNDQ4MjQyMjFCMDcwNENCNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOalETiiT2hZOI0kflSRCPDZ/b+0DTJg9KXXiZ8wAA1gmLolV2vc AWoj2FooKBDKvl2PffdmqJah6qrUfDMmuQ6pWr1xtLQNC44GqRCvSmf73NzqG2lJ MmuDqfKEKkwFomCPAd4xKj8g8OfYkk5VUrqy5wShbwOIQLzY/YafGLobitl+ANl5 oxjLNpLr5Uv5yutVJrbksSiurllgusKZ3X2G0oCNj+B/hJtzSrTtUS8vbJEasmqa SywkqVkPjgKuhw9A4j0cNiB6ywHXHJ/Q5Q/W9L6SfEog3/6266D+aDGrWIxGpqXw DZTb1oPfORwT0w9mTpwDSlW5TgXEuAWD6q0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQa2bCKu623HzK5h1FEgkIhsHBMtTAfBgNVHSMEGDAWgBQbz7T6uUXN0UhHPst1 sR460WnnHTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjIxL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RGcDV4MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RG cDV4MC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMjEvR3Rtd2lydXR0eDh5dVlkUlJJSkNJYkJ3VExVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAJ1l9DANBgkqhkiG9w0BAQsFAAOCAQEAE8Tu7ZDWt9A3COlv6gM9ihPHmI9M e+jsbV6RKiVDeC8ghjtGOdb6UDNJzykMgExopxIwJVZqY/sKOpit9jS4fssFYadu L4Fzz1i0Dw7B1B8L3DJR6bxFJiIFhLWiPvcQPq5GALa+W1rZukvU70LlWgRXFemS 4v0+IgjBZU6LcF5mAD8o68GiF6g9NN1hg2m+bIrq39rbw3Ebord89jzVC2IALf3y 4v5ZXIDB1kESeV/z24BzeJo6n0seHixIvCjW4vv+ME12UN0lxeUd5l3Kuk9p2O7l LgbsU9KCw7vVGqdJghzzVnE15xvG/D/l/2kWxzR3iObzmuWC2Oz6hG0HRw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:25:25 2025 by rpki-client