$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/247/qkKHhTquHz758oqdrJrG8W6LcBE.roa File: qkKHhTquHz758oqdrJrG8W6LcBE.roa (raw, json) Hash identifier: XkB0eXheMQfuN/BSN81msimG8J943H9zT7UX9ighwYI= Subject key identifier: AA:42:87:85:3A:AE:1F:3E:F9:F2:8A:9D:AC:9A:C6:F1:6E:8B:70:11 Certificate issuer: /CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Certificate serial: F3 Authority key identifier: 9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/qkKHhTquHz758oqdrJrG8W6LcBE.roa Signing time: Tue 17 Sep 2024 04:28:16 +0000 ROA not before: Tue 17 Sep 2024 04:28:16 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 9370 IP address blocks: 210.229.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Validity Not Before: Sep 17 04:28:16 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=AA4287853AAE1F3EF9F28A9DAC9AC6F16E8B7011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dc:80:b9:c0:00:f7:89:f0:98:8b:53:cd:d2: 60:55:f0:77:b1:cb:18:f9:7c:dd:ef:cd:94:6f:7c: fc:6a:d3:b7:e2:47:cd:83:76:f3:c8:15:33:0c:7e: e5:db:df:6e:18:c1:b9:de:47:1b:c7:11:fb:a6:99: b1:77:e0:3e:f4:be:14:18:d8:49:c7:51:1a:1d:33: e1:38:fe:29:b7:c1:d1:46:d0:36:9c:ac:54:1c:a4: 6e:47:bf:da:d4:ea:c1:59:4e:fa:b9:0d:33:3c:33: 0f:65:25:5c:d9:cf:09:8c:92:8b:b0:aa:2a:b2:7f: 2d:b8:65:77:5f:65:f1:18:2c:ce:05:49:f1:b6:59: df:8c:31:d7:7c:7f:06:fd:9e:ce:b5:b9:1d:13:76: 93:2d:09:71:c2:fe:ea:af:10:f7:c3:5b:85:13:de: 80:d0:5b:84:ed:88:ef:22:74:de:f3:77:78:7d:40: f7:d0:e2:f3:f4:b4:ab:14:be:02:51:60:82:6d:e5: bb:a5:5e:e2:f4:7f:2b:31:bd:33:99:f8:1e:00:2a: e2:25:db:1d:87:41:e1:f2:d1:78:a8:d7:2d:11:9c: 44:12:f0:73:01:a9:99:ca:55:4c:28:20:69:82:b8: d6:de:b5:1c:e4:a9:d6:e0:5f:75:e5:45:80:ff:13: bb:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:42:87:85:3A:AE:1F:3E:F9:F2:8A:9D:AC:9A:C6:F1:6E:8B:70:11 X509v3 Authority Key Identifier: keyid:9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/qkKHhTquHz758oqdrJrG8W6LcBE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.229.64.0/21 Signature Algorithm: sha256WithRSAEncryption a6:58:ce:71:fe:66:18:17:c1:18:7e:f5:81:39:cb:d5:2a:06: 36:db:fc:d8:a4:e0:be:ff:ae:d2:9d:8d:10:bd:fe:2b:53:da: 22:46:fa:93:1e:57:4a:97:00:4d:92:fe:a6:c1:60:47:fd:bc: e8:2e:c5:75:c3:b5:4f:bc:fa:4c:9d:5f:27:79:f4:03:e7:d8: 01:09:f5:a0:39:33:59:30:50:91:3e:94:9b:0f:29:36:0a:cd: d4:fa:da:ae:23:8c:ec:e7:df:af:d8:c2:0f:1e:00:0d:09:d4: 83:82:dc:a1:fa:71:4e:99:4e:86:ba:e0:16:8d:06:80:be:27: 01:2e:50:ba:67:ae:99:2a:ef:21:0d:92:84:95:6e:f2:f7:c3: fd:f3:1d:4c:c2:51:a2:9c:bf:44:ac:bf:e5:b1:3e:1e:a3:1d: 56:6b:be:95:f1:10:4a:79:46:61:b4:74:88:9d:72:f0:6e:e7: d8:4c:9f:43:3d:d4:5b:73:c8:08:93:31:21:a5:90:81:25:89: 54:b8:f4:bd:c1:22:37:7b:70:4b:83:9e:62:e7:2f:34:e7:56: 5e:c6:b8:9f:2b:0a:6d:2c:4f:57:25:d9:0f:89:86:7d:c6:45: 83:93:e1:fe:4b:e4:9f:ae:c3:d0:9c:09:2d:0b:3c:5f:2e:e3: a7:73:08:41 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEy MUJERkYyRENBRkNDMTM4RjVCRkQ2QzAzMzBEMDIxOUUwRjUzMjAeFw0yNDA5MTcw NDI4MTZaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFBNDI4Nzg1M0FBRTFG M0VGOUYyOEE5REFDOUFDNkYxNkU4QjcwMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC33IC5wAD3ifCYi1PN0mBV8Hexyxj5fN3vzZRvfPxq07fiR82D dvPIFTMMfuXb324YwbneRxvHEfummbF34D70vhQY2EnHURodM+E4/im3wdFG0Dac rFQcpG5Hv9rU6sFZTvq5DTM8Mw9lJVzZzwmMkouwqiqyfy24ZXdfZfEYLM4FSfG2 Wd+MMdd8fwb9ns61uR0TdpMtCXHC/uqvEPfDW4UT3oDQW4TtiO8idN7zd3h9QPfQ 4vP0tKsUvgJRYIJt5bulXuL0fysxvTOZ+B4AKuIl2x2HQeHy0Xio1y0RnEQS8HMB qZnKVUwoIGmCuNbetRzkqdbgX3XlRYD/E7t/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUqkKHhTquHz758oqdrJrG8W6LcBEwHwYDVR0jBBgwFoAUmiG9/y3K/ME49b/W wDMNAhng9TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI0Ny9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFobmc5VEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFo bmc5VEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQ3L3FrS0hoVHF1SHo3NThvcWRySnJHOFc2TGNCRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPS5UAwDQYJKoZIhvcNAQELBQADggEBAKZYznH+ZhgXwRh+9YE5y9UqBjbb /Nik4L7/rtKdjRC9/itT2iJG+pMeV0qXAE2S/qbBYEf9vOguxXXDtU+8+kydXyd5 9APn2AEJ9aA5M1kwUJE+lJsPKTYKzdT62q4jjOzn36/Ywg8eAA0J1IOC3KH6cU6Z Toa64BaNBoC+JwEuULpnrpkq7yENkoSVbvL3w/3zHUzCUaKcv0Ssv+WxPh6jHVZr vpXxEEp5RmG0dIidcvBu59hMn0M91FtzyAiTMSGlkIEliVS49L3BIjd7cEuDnmLn LzTnVl7GuJ8rCm0sT1cl2Q+Jhn3GRYOT4f5L5J+uw9CcCS0LPF8u46dzCEE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:06:41 2025 by rpki-client