$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/2VcqF3evl-eaJXsjTDkaCW64PNg.roa File: 2VcqF3evl-eaJXsjTDkaCW64PNg.roa (raw, json) Hash identifier: NrGcwOzmi8snYYgtFV1jP09ajEakt1AcZIs4Xxy29g0= Subject key identifier: D9:57:2A:17:77:AF:97:E7:9A:25:7B:23:4C:39:1A:09:6E:B8:3C:D8 Certificate issuer: /CN=D6E9A21E81CA12EB8455ADEC46610477EA5F4F4C Certificate serial: 1B Authority key identifier: D6:E9:A2:1E:81:CA:12:EB:84:55:AD:EC:46:61:04:77:EA:5F:4F:4C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1umiHoHKEuuEVa3sRmEEd-pfT0w.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/2VcqF3evl-eaJXsjTDkaCW64PNg.roa Signing time: Wed 22 May 2024 08:18:53 +0000 ROA not before: Wed 22 May 2024 08:18:53 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 7672 IP address blocks: 216.8.0.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/1umiHoHKEuuEVa3sRmEEd-pfT0w.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/1umiHoHKEuuEVa3sRmEEd-pfT0w.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1umiHoHKEuuEVa3sRmEEd-pfT0w.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6E9A21E81CA12EB8455ADEC46610477EA5F4F4C Validity Not Before: May 22 08:18:53 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=D9572A1777AF97E79A257B234C391A096EB83CD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:0b:f9:ae:ff:f3:51:97:ac:d8:11:62:da: 04:0d:23:00:4e:99:fa:84:79:0d:df:3d:5b:e4:77: ca:07:c4:5b:b7:f6:00:8f:58:6c:55:83:d6:6e:99: ed:1b:7a:f1:21:62:b0:18:70:40:a2:d7:6f:48:57: e1:65:64:8a:34:16:17:82:9d:e9:f1:03:8e:99:c9: 0d:e5:6a:d4:40:fd:79:94:2d:bb:4d:0a:f5:66:fb: cd:29:2c:59:a2:e5:33:c7:bc:04:df:15:02:61:64: e9:b5:e0:60:06:9e:21:eb:f2:29:86:ba:3a:bc:9b: 66:a4:cc:95:38:d8:73:0c:80:63:91:e2:09:70:0f: 39:c0:0c:c2:fe:4b:12:8b:b4:64:52:2c:63:8e:3a: ca:f4:f3:d3:84:49:dc:63:f2:e3:94:b3:0f:01:ca: 6e:ce:33:92:c7:74:6b:50:b9:b7:1e:bc:73:bd:30: 73:75:7c:a8:33:b5:40:93:e3:cb:f8:f4:dc:f9:f7: 2c:14:a2:0a:a6:13:41:3d:8e:23:29:61:3d:e9:1b: 99:b4:b6:d2:73:67:a1:09:dc:e6:90:e6:9e:32:0e: 9a:9a:d9:79:c4:8f:23:22:f9:98:ef:10:d3:f3:95: aa:c4:ce:b6:6e:d6:33:d5:26:0e:1d:6a:2d:b0:60: 98:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:57:2A:17:77:AF:97:E7:9A:25:7B:23:4C:39:1A:09:6E:B8:3C:D8 X509v3 Authority Key Identifier: keyid:D6:E9:A2:1E:81:CA:12:EB:84:55:AD:EC:46:61:04:77:EA:5F:4F:4C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/1umiHoHKEuuEVa3sRmEEd-pfT0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1umiHoHKEuuEVa3sRmEEd-pfT0w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/2VcqF3evl-eaJXsjTDkaCW64PNg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.8.0.0/19 Signature Algorithm: sha256WithRSAEncryption 8e:45:f3:e8:72:8f:de:61:68:ea:99:5f:7c:e7:0d:ed:c3:6f: 04:a3:61:70:af:3a:5e:39:7a:75:84:56:0c:45:89:e2:86:c4: 52:95:54:c9:aa:bc:f3:b3:6a:57:ec:ba:6b:ea:b7:df:d9:f7: 44:f9:c9:e3:4d:ba:08:f1:8f:a9:59:95:96:b8:f3:6c:b7:d5: 94:8f:0d:83:20:bd:63:60:70:17:b9:05:1a:e7:06:7c:95:6e: 18:21:cc:40:de:a3:e9:dc:c0:cf:37:29:0f:04:26:33:32:09: 84:a1:32:40:b2:31:34:7e:de:78:18:58:8a:2b:d1:8f:8d:26: fd:8e:b2:6e:a5:46:c4:c2:90:70:3c:21:28:bf:f4:e5:55:d0: 36:3b:4b:0f:07:14:93:22:d3:19:b6:8b:10:30:58:a5:91:dc: 81:c6:b5:f7:3a:f2:52:77:06:40:75:d0:f7:72:9f:40:da:a6: 4e:b1:c2:20:ac:5c:7c:2c:fa:24:2f:a6:50:8c:7b:91:3e:c2: 1f:51:28:7c:9d:b3:15:2e:37:c5:ff:d2:b1:ab:fe:b7:2b:61: 6d:9b:34:21:9c:af:b6:db:66:8c:19:06:7f:1b:19:c6:64:9b: 34:8f:46:fd:30:8f:6e:c0:46:37:76:aa:12:be:07:3b:c1:30: 03:ff:c2:44 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENkU5 QTIxRTgxQ0ExMkVCODQ1NUFERUM0NjYxMDQ3N0VBNUY0RjRDMB4XDTI0MDUyMjA4 MTg1M1oXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoRDk1NzJBMTc3N0FGOTdF NzlBMjU3QjIzNEMzOTFBMDk2RUI4M0NEODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALwgC/mu//NRl6zYEWLaBA0jAE6Z+oR5Dd89W+R3ygfEW7f2AI9Y bFWD1m6Z7Rt68SFisBhwQKLXb0hX4WVkijQWF4Kd6fEDjpnJDeVq1ED9eZQtu00K 9Wb7zSksWaLlM8e8BN8VAmFk6bXgYAaeIevyKYa6OrybZqTMlTjYcwyAY5HiCXAP OcAMwv5LEou0ZFIsY446yvTz04RJ3GPy45SzDwHKbs4zksd0a1C5tx68c70wc3V8 qDO1QJPjy/j03Pn3LBSiCqYTQT2OIylhPekbmbS20nNnoQnc5pDmnjIOmprZecSP IyL5mO8Q0/OVqsTOtm7WM9UmDh1qLbBgmBsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTZVyoXd6+X55oleyNMORoJbrg82DAfBgNVHSMEGDAWgBTW6aIegcoS64RVrexG YQR36l9PTDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyLzF1bWlIb0hLRXV1RVZhM3NSbUVFZC1wZlQwdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzF1bWlIb0hLRXV1RVZhM3NSbUVFZC1w ZlQwdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvMlZjcUYzZXZsLWVhSlhzalREa2FDVzY0UE5nLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBdgIADANBgkqhkiG9w0BAQsFAAOCAQEAjkXz6HKP3mFo6plffOcN7cNvBKNh cK86Xjl6dYRWDEWJ4obEUpVUyaq887NqV+y6a+q339n3RPnJ4026CPGPqVmVlrjz bLfVlI8NgyC9Y2BwF7kFGucGfJVuGCHMQN6j6dzAzzcpDwQmMzIJhKEyQLIxNH7e eBhYiivRj40m/Y6ybqVGxMKQcDwhKL/05VXQNjtLDwcUkyLTGbaLEDBYpZHcgca1 9zryUncGQHXQ93KfQNqmTrHCIKxcfCz6JC+mUIx7kT7CH1EofJ2zFS43xf/Ssav+ tythbZs0IZyvtttmjBkGfxsZxmSbNI9G/TCPbsBGN3aqEr4HO8EwA//CRA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:28:39 2025 by rpki-client