$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/nQbSbdzXpOrjCLYzhMGV7WR_sHI.roa File: nQbSbdzXpOrjCLYzhMGV7WR_sHI.roa (raw, json) Hash identifier: kvDRiFJhakWkRHFf+nf0iRCXboKzrhzg3BCj2fdjfHM= Subject key identifier: 9D:06:D2:6D:DC:D7:A4:EA:E3:08:B6:33:84:C1:95:ED:64:7F:B0:72 Certificate issuer: /CN=637B364ED0458526D668CEF8CEE65A09DDC2E4DC Certificate serial: 34 Authority key identifier: 63:7B:36:4E:D0:45:85:26:D6:68:CE:F8:CE:E6:5A:09:DD:C2:E4:DC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Y3s2TtBFhSbWaM74zuZaCd3C5Nw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/nQbSbdzXpOrjCLYzhMGV7WR_sHI.roa Signing time: Thu 31 Oct 2024 01:33:26 +0000 ROA not before: Thu 31 Oct 2024 01:33:26 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 9351 IP address blocks: 157.70.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/Y3s2TtBFhSbWaM74zuZaCd3C5Nw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/Y3s2TtBFhSbWaM74zuZaCd3C5Nw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Y3s2TtBFhSbWaM74zuZaCd3C5Nw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=637B364ED0458526D668CEF8CEE65A09DDC2E4DC Validity Not Before: Oct 31 01:33:26 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=9D06D26DDCD7A4EAE308B63384C195ED647FB072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:19:a2:2d:36:bf:b1:17:eb:9d:42:a8:4a:bf: a4:1a:bd:45:93:bb:dd:fc:9c:d9:20:3f:2b:38:82: d9:3f:cb:e0:e5:2a:7c:54:69:4b:e3:d1:c0:82:be: cf:d6:91:26:d7:e5:55:25:29:94:d7:d5:61:53:ac: 15:e8:08:00:c5:62:07:53:f0:cb:a4:c4:ed:60:e4: e9:b7:fe:b2:1c:35:34:f6:67:94:df:18:38:7d:25: a9:c7:cf:4a:74:8f:93:da:c1:b3:a6:da:d8:46:02: 77:5d:6d:13:74:36:f4:e5:49:92:f0:ab:3f:e1:1c: ba:51:bc:ef:25:4a:b7:c5:2a:96:34:a1:56:79:2e: 0d:7e:dc:a1:8d:0e:90:c3:37:43:8b:76:4a:27:7a: 18:c6:3e:b6:42:a8:15:49:37:67:fd:b9:05:55:8c: cd:99:4b:e1:e9:3a:58:3a:f8:c7:6c:65:5e:41:d7: 1f:72:79:0f:1c:22:93:3f:0c:1d:b1:23:29:c7:c1: 6d:4c:81:56:c5:aa:bd:08:11:88:8e:58:09:34:18: e3:4d:fd:96:eb:14:0c:db:20:29:7a:f7:20:6a:af: d9:74:48:57:80:73:38:13:db:6e:58:b3:60:bb:ee: 19:46:5e:02:96:6f:19:05:06:da:2b:04:05:5e:a7: 84:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:06:D2:6D:DC:D7:A4:EA:E3:08:B6:33:84:C1:95:ED:64:7F:B0:72 X509v3 Authority Key Identifier: keyid:63:7B:36:4E:D0:45:85:26:D6:68:CE:F8:CE:E6:5A:09:DD:C2:E4:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/Y3s2TtBFhSbWaM74zuZaCd3C5Nw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Y3s2TtBFhSbWaM74zuZaCd3C5Nw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/nQbSbdzXpOrjCLYzhMGV7WR_sHI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.70.192.0/20 Signature Algorithm: sha256WithRSAEncryption 1c:39:ef:70:2f:65:1f:6d:cb:0c:26:56:b9:3f:a3:2c:97:7d: 23:29:71:cd:75:b9:35:92:a7:21:30:2a:52:8a:ca:e1:d3:a8: 5a:d7:aa:74:cf:f0:72:cf:f3:42:28:00:24:4a:95:24:db:03: f2:8c:75:46:2b:3e:d9:3b:85:55:5c:b6:fa:b1:cf:ee:1a:45: 7b:54:80:a1:ce:fd:20:1c:f4:4b:3f:8e:ac:b3:6e:3d:5c:3b: 3a:5e:b6:b7:f1:28:af:89:ca:6d:84:1b:23:c5:4c:e0:ad:29: 67:d1:94:83:ae:02:8f:19:21:0f:14:5a:ae:24:bb:de:14:3d: 03:7e:d7:a1:fd:42:94:38:b4:2a:8c:8b:53:11:ff:f8:c0:1b: 4c:eb:98:b8:8e:b3:94:3f:8d:ee:71:94:45:df:08:0d:e9:c4: b5:f6:2f:dd:b3:ff:45:5d:cf:2c:06:b4:02:67:32:a1:f5:70: 3c:ae:21:b5:20:28:5c:9a:0d:a7:b8:a4:52:10:37:c2:30:f4: 9b:91:97:43:f0:6b:c4:c6:7f:02:9d:86:b3:1c:86:85:4b:a6: 96:7e:63:77:1f:17:35:ee:0f:96:da:29:50:bc:a8:b9:6a:bb: 9a:82:86:f6:dd:51:92:2b:b3:6c:78:ed:61:cf:7a:cc:74:a0: 14:12:42:7c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2MzdC MzY0RUQwNDU4NTI2RDY2OENFRjhDRUU2NUEwOUREQzJFNERDMB4XDTI0MTAzMTAx MzMyNloXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoOUQwNkQyNkREQ0Q3QTRF QUUzMDhCNjMzODRDMTk1RUQ2NDdGQjA3MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOcZoi02v7EX651CqEq/pBq9RZO73fyc2SA/KziC2T/L4OUqfFRp S+PRwIK+z9aRJtflVSUplNfVYVOsFegIAMViB1Pwy6TE7WDk6bf+shw1NPZnlN8Y OH0lqcfPSnSPk9rBs6ba2EYCd11tE3Q29OVJkvCrP+EculG87yVKt8UqljShVnku DX7coY0OkMM3Q4t2Sid6GMY+tkKoFUk3Z/25BVWMzZlL4ek6WDr4x2xlXkHXH3J5 Dxwikz8MHbEjKcfBbUyBVsWqvQgRiI5YCTQY4039lusUDNsgKXr3IGqv2XRIV4Bz OBPbblizYLvuGUZeApZvGQUG2isEBV6nhPUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSdBtJt3Nek6uMItjOEwZXtZH+wcjAfBgNVHSMEGDAWgBRjezZO0EWFJtZozvjO 5loJ3cLk3DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjM0L1kzczJUdEJGaFNiV2FNNzR6dVphQ2QzQzVOdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1kzczJUdEJGaFNiV2FNNzR6dVphQ2Qz QzVOdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzQvblFiU2JkelhwT3JqQ0xZemhNR1Y3V1Jfc0hJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJ1GwDANBgkqhkiG9w0BAQsFAAOCAQEAHDnvcC9lH23LDCZWuT+jLJd9Iylx zXW5NZKnITAqUorK4dOoWteqdM/wcs/zQigAJEqVJNsD8ox1Ris+2TuFVVy2+rHP 7hpFe1SAoc79IBz0Sz+OrLNuPVw7Ol62t/Eor4nKbYQbI8VM4K0pZ9GUg64Cjxkh DxRariS73hQ9A37Xof1ClDi0KoyLUxH/+MAbTOuYuI6zlD+N7nGURd8IDenEtfYv 3bP/RV3PLAa0AmcyofVwPK4htSAoXJoNp7ikUhA3wjD0m5GXQ/BrxMZ/Ap2GsxyG hUumln5jdx8XNe4PltopULyouWq7moKG9t1RkiuzbHjtYc96zHSgFBJCfA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:18:38 2025 by rpki-client