$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/221/LmXSx5B-Q7B7pF5ZFULHBPvG0no.roa File: LmXSx5B-Q7B7pF5ZFULHBPvG0no.roa (raw, json) Hash identifier: H2Gyf+joDsI0rnFpY/9pcQN4fy2yEcySqfAWytMRhxs= Subject key identifier: 2E:65:D2:C7:90:7E:43:B0:7B:A4:5E:59:15:42:C7:04:FB:C6:D2:7A Certificate issuer: /CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Certificate serial: 05 Authority key identifier: 1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/LmXSx5B-Q7B7pF5ZFULHBPvG0no.roa Signing time: Wed 27 Nov 2024 04:48:24 +0000 ROA not before: Wed 27 Nov 2024 04:48:24 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 7677 IP address blocks: 157.101.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BCFB4FAB945CDD148473ECB75B11E3AD169E71D Validity Not Before: Nov 27 04:48:24 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=2E65D2C7907E43B07BA45E591542C704FBC6D27A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fa:67:e1:28:c5:e2:41:58:46:c0:34:4b:72: 28:04:ee:f0:c1:9c:48:7f:aa:7b:3f:58:a3:01:4d: 53:ee:a3:a6:de:5d:a8:88:cc:2b:70:1d:33:0d:49: 67:9a:4b:5d:82:d8:c3:e9:ca:d5:18:c7:1c:dc:ec: 6b:f2:be:ae:db:d8:5b:00:4d:37:92:14:cd:9d:95: 09:85:62:b7:df:a6:51:b1:80:00:a3:d7:67:5a:2e: e5:66:1a:da:fd:cf:2a:35:76:5d:94:1d:08:7e:e8: aa:92:59:a1:bf:c5:37:9a:33:2c:94:ca:4a:7c:4d: a0:b2:7d:d8:33:29:ce:cf:f9:0f:5f:4c:02:66:1f: a6:7d:85:b2:73:b4:80:5f:ed:59:a1:a4:d1:74:a2: ae:29:ad:7f:c0:a2:70:d2:5e:21:00:a7:da:ab:e4: 7d:42:e3:9b:29:73:1e:96:84:e9:ed:32:89:8f:5d: 96:8f:7c:53:04:6a:03:e9:b0:83:93:13:33:c2:30: 9b:d9:ec:86:f8:86:35:3d:a1:89:2c:27:f2:48:18: ee:62:d4:de:5a:60:8d:80:30:6e:bd:f3:9c:51:07: 33:ee:29:b4:e6:54:d3:53:bc:9f:b8:e6:82:ba:d5: 57:4d:4c:ed:cf:d5:5e:45:49:fa:7d:10:18:37:d7: f8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:65:D2:C7:90:7E:43:B0:7B:A4:5E:59:15:42:C7:04:FB:C6:D2:7A X509v3 Authority Key Identifier: keyid:1B:CF:B4:FA:B9:45:CD:D1:48:47:3E:CB:75:B1:1E:3A:D1:69:E7:1D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/G8-0-rlFzdFIRz7LdbEeOtFp5x0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G8-0-rlFzdFIRz7LdbEeOtFp5x0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/221/LmXSx5B-Q7B7pF5ZFULHBPvG0no.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.101.252.0/24 Signature Algorithm: sha256WithRSAEncryption a8:1d:ea:59:76:6c:4d:17:f4:a6:7c:36:41:5e:38:0a:09:0e: 7a:8f:1f:c6:07:0a:bf:b3:1b:62:cd:10:12:82:08:e3:63:b9: 53:3b:c5:a0:e7:05:88:30:10:f7:07:e9:69:79:05:c3:4d:ef: 6a:4e:fe:5f:29:fc:80:9c:13:c6:0e:90:39:f9:f5:da:15:a7: 1f:6c:7b:f9:67:0b:86:11:a5:3a:b0:57:c2:84:20:e6:dd:44: 2d:81:8e:45:49:52:73:ba:22:27:9f:29:bf:d5:6c:3e:5e:a3: 7a:62:1d:7c:b8:6a:0a:6e:73:94:ff:42:3e:67:b7:ac:98:9c: 06:fe:4b:2a:43:e3:0c:19:bd:ae:d5:11:de:eb:6c:3e:18:f7: cb:6f:de:7f:52:f4:9b:56:76:1c:9b:20:51:f1:f2:59:a0:dd: 14:52:e6:6f:43:1d:ca:8a:ae:83:2b:5c:14:6b:b9:25:5b:09: 14:74:96:f6:21:c8:b0:10:71:6d:78:39:b1:a7:b3:0a:af:a2: 75:69:16:f7:05:36:08:f1:3c:b0:aa:5e:5d:ee:b7:ea:e0:24: 78:6b:ef:20:a4:69:68:d5:c2:03:6c:47:4c:b7:6b:d9:2b:88: 3a:6e:58:39:38:8f:7b:cf:79:f3:24:d2:81:59:0d:ea:2d:d5: e7:37:4e:f9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkNG QjRGQUI5NDVDREQxNDg0NzNFQ0I3NUIxMUUzQUQxNjlFNzFEMB4XDTI0MTEyNzA0 NDgyNFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMkU2NUQyQzc5MDdFNDNC MDdCQTQ1RTU5MTU0MkM3MDRGQkM2RDI3QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK/6Z+EoxeJBWEbANEtyKATu8MGcSH+qez9YowFNU+6jpt5dqIjM K3AdMw1JZ5pLXYLYw+nK1RjHHNzsa/K+rtvYWwBNN5IUzZ2VCYVit9+mUbGAAKPX Z1ou5WYa2v3PKjV2XZQdCH7oqpJZob/FN5ozLJTKSnxNoLJ92DMpzs/5D19MAmYf pn2FsnO0gF/tWaGk0XSirimtf8CicNJeIQCn2qvkfULjmylzHpaE6e0yiY9dlo98 UwRqA+mwg5MTM8Iwm9nshviGNT2hiSwn8kgY7mLU3lpgjYAwbr3znFEHM+4ptOZU 01O8n7jmgrrVV01M7c/VXkVJ+n0QGDfX+LUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQuZdLHkH5DsHukXlkVQscE+8bSejAfBgNVHSMEGDAWgBQbz7T6uUXN0UhHPst1 sR460WnnHTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjIxL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RGcDV4MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0c4LTAtcmxGemRGSVJ6N0xkYkVlT3RG cDV4MC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMjEvTG1YU3g1Qi1RN0I3cEY1WkZVTEhCUHZHMG5vLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAJ1l/DANBgkqhkiG9w0BAQsFAAOCAQEAqB3qWXZsTRf0pnw2QV44CgkOeo8f xgcKv7MbYs0QEoII42O5UzvFoOcFiDAQ9wfpaXkFw03vak7+Xyn8gJwTxg6QOfn1 2hWnH2x7+WcLhhGlOrBXwoQg5t1ELYGORUlSc7oiJ58pv9VsPl6jemIdfLhqCm5z lP9CPme3rJicBv5LKkPjDBm9rtUR3utsPhj3y2/ef1L0m1Z2HJsgUfHyWaDdFFLm b0MdyoqugytcFGu5JVsJFHSW9iHIsBBxbXg5saezCq+idWkW9wU2CPE8sKpeXe63 6uAkeGvvIKRpaNXCA2xHTLdr2SuIOm5YOTiPe8958yTSgVkN6i3V5zdO+Q== -----END CERTIFICATE-----Generated at Wed Feb 19 22:40:52 2025 by rpki-client