$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2370/HWgzIZVXEAs7FF0RbqBf_SQnRVg.roa File: HWgzIZVXEAs7FF0RbqBf_SQnRVg.roa (raw, json) Hash identifier: Exrgbrgo8QPKtlDqTADP3vwyj4OqXqgX80ECG/w/A94= Subject key identifier: 1D:68:33:21:95:57:10:0B:3B:14:5D:11:6E:A0:5F:FD:24:27:45:58 Certificate issuer: /CN=00711F2DD7667CFB08804BE8FA284A49E613EDC4 Certificate serial: 3F Authority key identifier: 00:71:1F:2D:D7:66:7C:FB:08:80:4B:E8:FA:28:4A:49:E6:13:ED:C4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/AHEfLddmfPsIgEvo-ihKSeYT7cQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/HWgzIZVXEAs7FF0RbqBf_SQnRVg.roa Signing time: Sat 30 Nov 2024 01:31:15 +0000 ROA not before: Sat 30 Nov 2024 01:31:15 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 55396 IP address blocks: 192.50.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/AHEfLddmfPsIgEvo-ihKSeYT7cQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/AHEfLddmfPsIgEvo-ihKSeYT7cQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/AHEfLddmfPsIgEvo-ihKSeYT7cQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00711F2DD7667CFB08804BE8FA284A49E613EDC4 Validity Not Before: Nov 30 01:31:15 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=1D6833219557100B3B145D116EA05FFD24274558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:af:53:ea:01:7e:2e:e2:2e:47:3b:d3:fb:96: 17:c8:d5:31:3f:01:c4:32:37:c9:34:74:0e:59:a4: 6e:11:7c:d7:2d:4c:9f:9d:93:b9:c2:23:95:e1:b6: eb:48:fc:80:fb:16:a9:25:03:1d:12:0c:22:ad:65: c3:22:fe:aa:fa:7e:1c:e5:ea:f8:c3:a0:8b:cf:3a: 1a:cc:ef:ae:81:2e:88:15:ab:13:98:ed:28:c8:5b: 7d:e3:d2:93:c1:39:1f:e5:86:3c:ba:2f:50:24:b6: 32:db:b1:3d:2e:ed:32:21:6c:5e:12:a4:64:90:5d: 35:73:76:e3:0f:5d:f1:48:6c:70:b8:41:a4:51:2c: 4e:b3:78:b1:96:2f:4e:f0:6a:dd:f5:2a:14:bb:fd: 3a:03:81:dc:d3:34:f9:62:df:f1:85:1d:bc:6f:41: f6:3f:cf:51:25:de:6c:65:60:cc:0d:d7:23:6f:35: 09:db:fa:9a:ad:a9:08:f6:65:49:1d:27:42:17:16: 1e:fd:ef:6f:27:8b:4b:80:b2:d6:9c:86:0e:17:76: fb:64:66:08:f9:bf:49:89:8b:f8:f3:d6:79:29:0e: 3b:4c:c7:2f:40:9a:ba:ec:fc:cf:06:6f:3b:50:80: 42:23:e1:aa:ff:e8:c6:0d:17:ed:93:ec:02:e9:9a: 3e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:68:33:21:95:57:10:0B:3B:14:5D:11:6E:A0:5F:FD:24:27:45:58 X509v3 Authority Key Identifier: keyid:00:71:1F:2D:D7:66:7C:FB:08:80:4B:E8:FA:28:4A:49:E6:13:ED:C4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/AHEfLddmfPsIgEvo-ihKSeYT7cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/AHEfLddmfPsIgEvo-ihKSeYT7cQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/HWgzIZVXEAs7FF0RbqBf_SQnRVg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.50.152.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:e6:09:92:7d:6f:d5:f3:4c:f8:52:83:c3:80:cb:39:19:0e: b6:7b:7e:fe:75:d6:cf:43:a6:87:5e:21:e6:ab:7a:80:57:e9: b2:e8:42:24:5d:ed:bb:1c:74:de:ae:27:da:ff:4b:88:56:b9: dc:04:c7:78:33:95:37:d4:03:93:a2:40:17:18:8e:66:7e:8f: 47:47:60:23:53:de:ce:9c:d8:23:fb:15:d3:04:a2:dc:f7:5e: b5:55:18:be:84:59:92:a0:25:2f:8e:dc:32:86:d7:95:ea:d7: c3:e5:3e:7c:d7:4b:db:01:c2:d6:4e:1c:bf:1e:67:45:fa:17: 5c:95:aa:39:0e:83:01:eb:e5:67:02:68:ca:24:d3:29:a7:e8: 9e:d4:d0:cf:33:2a:af:62:1d:31:ba:63:9b:4f:c2:d8:23:36: 86:41:b8:84:55:ec:da:f1:8e:46:de:4f:39:71:56:c6:8d:70: 80:e2:5f:06:ec:2a:16:7a:77:dc:53:da:a9:31:dc:1c:ad:cb: e5:0d:7f:79:cb:2b:f8:43:66:76:ab:ad:cb:13:89:8a:f7:df: 08:f1:83:3a:73:c0:a8:24:79:e1:2e:c2:7b:82:9f:ef:49:6b: 38:6d:c0:21:ac:7f:6f:cd:98:b4:8d:4b:d1:20:17:14:23:12: 54:30:c8:91 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwMDcx MUYyREQ3NjY3Q0ZCMDg4MDRCRThGQTI4NEE0OUU2MTNFREM0MB4XDTI0MTEzMDAx MzExNVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMUQ2ODMzMjE5NTU3MTAw QjNCMTQ1RDExNkVBMDVGRkQyNDI3NDU1ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM6vU+oBfi7iLkc70/uWF8jVMT8BxDI3yTR0DlmkbhF81y1Mn52T ucIjleG260j8gPsWqSUDHRIMIq1lwyL+qvp+HOXq+MOgi886GszvroEuiBWrE5jt KMhbfePSk8E5H+WGPLovUCS2MtuxPS7tMiFsXhKkZJBdNXN24w9d8UhscLhBpFEs TrN4sZYvTvBq3fUqFLv9OgOB3NM0+WLf8YUdvG9B9j/PUSXebGVgzA3XI281Cdv6 mq2pCPZlSR0nQhcWHv3vbyeLS4Cy1pyGDhd2+2RmCPm/SYmL+PPWeSkOO0zHL0Ca uuz8zwZvO1CAQiPhqv/oxg0X7ZPsAumaPscCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQdaDMhlVcQCzsUXRFuoF/9JCdFWDAfBgNVHSMEGDAWgBQAcR8t12Z8+wiAS+j6 KEpJ5hPtxDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjM3MC9BSEVmTGRkbWZQc0lnRXZvLWloS1NlWVQ3Y1EuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9BSEVmTGRkbWZQc0lnRXZvLWloS1Nl WVQ3Y1EuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjM3MC9IV2d6SVpWWEVBczdGRjBSYnFCZl9TUW5SVmcucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwDKYMA0GCSqGSIb3DQEBCwUAA4IBAQBK5gmSfW/V80z4UoPDgMs5GQ62 e37+ddbPQ6aHXiHmq3qAV+my6EIkXe27HHTerifa/0uIVrncBMd4M5U31AOTokAX GI5mfo9HR2AjU97OnNgj+xXTBKLc9161VRi+hFmSoCUvjtwyhteV6tfD5T5810vb AcLWThy/HmdF+hdclao5DoMB6+VnAmjKJNMpp+ie1NDPMyqvYh0xumObT8LYIzaG QbiEVeza8Y5G3k85cVbGjXCA4l8G7CoWenfcU9qpMdwcrcvlDX95yyv4Q2Z2q63L E4mK998I8YM6c8CoJHnhLsJ7gp/vSWs4bcAhrH9vzZi0jUvRIBcUIxJUMMiR -----END CERTIFICATE-----Generated at Wed Feb 19 22:43:09 2025 by rpki-client