$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2716/-Oy3hbtoylygvfKGAtRnRkIYlOg.roa File: -Oy3hbtoylygvfKGAtRnRkIYlOg.roa (raw, json) Hash identifier: va4Ycs+zSzZOeMg52keuTyLLSIyqICpE2XPQLJvRRs8= Subject key identifier: F8:EC:B7:85:BB:68:CA:5C:A0:BD:F2:86:02:D4:67:46:42:18:94:E8 Certificate issuer: /CN=A6082143BCEF52E712B4A5BD5D6E5C195379D91A Certificate serial: 42 Authority key identifier: A6:08:21:43:BC:EF:52:E7:12:B4:A5:BD:5D:6E:5C:19:53:79:D9:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/pgghQ7zvUucStKW9XW5cGVN52Ro.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2716/-Oy3hbtoylygvfKGAtRnRkIYlOg.roa Signing time: Sat 30 Nov 2024 01:28:52 +0000 ROA not before: Sat 30 Nov 2024 01:28:52 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 18131 IP address blocks: 192.47.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2716/pgghQ7zvUucStKW9XW5cGVN52Ro.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2716/pgghQ7zvUucStKW9XW5cGVN52Ro.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/pgghQ7zvUucStKW9XW5cGVN52Ro.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6082143BCEF52E712B4A5BD5D6E5C195379D91A Validity Not Before: Nov 30 01:28:52 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=F8ECB785BB68CA5CA0BDF28602D46746421894E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f3:7c:e3:95:a8:b8:9a:78:22:6b:87:bd:76: dd:b8:b0:fc:22:ea:bb:0e:92:0a:6a:15:dd:41:d9: 2a:c4:b2:01:50:c5:37:9b:fb:b8:89:06:fe:70:8c: 7d:b0:01:0a:ae:21:1d:ec:f0:9c:3f:ec:69:2e:1a: db:01:f9:c0:d6:48:b8:0b:46:b1:ec:2e:ad:b3:94: cf:c3:c8:b0:36:4f:8d:f6:f3:2e:05:99:0e:44:56: 09:8a:ef:89:20:8c:80:b5:2b:ef:6c:ab:82:b2:8a: 2b:59:74:b9:87:62:2c:30:87:cd:d3:d1:9d:83:4b: 1f:0b:25:31:c4:76:6d:2d:7b:5e:2f:a3:8c:96:ce: 36:88:37:7f:48:51:d9:0c:fe:2a:93:bf:8c:54:3a: 3a:42:31:bb:e7:76:c2:24:47:4f:44:e5:7a:8e:09: d4:be:49:78:3b:82:54:39:bc:9c:53:42:f4:46:30: a8:53:18:75:6c:9a:ee:65:21:8c:65:75:32:d3:a8: ed:85:07:96:40:32:1b:87:0a:71:2e:3e:31:a7:4f: 96:f7:25:79:aa:5a:16:4d:f0:eb:8a:65:47:d5:06: a4:80:7d:64:85:3c:06:a9:0f:9c:80:37:a4:c4:4c: 5a:9b:b7:f5:b7:ad:d2:c4:35:c8:d6:3b:d9:e9:3f: 35:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:EC:B7:85:BB:68:CA:5C:A0:BD:F2:86:02:D4:67:46:42:18:94:E8 X509v3 Authority Key Identifier: keyid:A6:08:21:43:BC:EF:52:E7:12:B4:A5:BD:5D:6E:5C:19:53:79:D9:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2716/pgghQ7zvUucStKW9XW5cGVN52Ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/pgghQ7zvUucStKW9XW5cGVN52Ro.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2716/-Oy3hbtoylygvfKGAtRnRkIYlOg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.47.166.0/24 Signature Algorithm: sha256WithRSAEncryption bf:8c:fd:8e:f3:31:49:31:5d:b7:6c:ae:97:7d:6a:7b:80:33: aa:52:6d:2b:82:7d:5a:8c:97:5d:f8:47:7c:16:24:a1:0b:e4: 7d:0f:e7:9e:e0:8d:b8:67:45:d4:45:73:70:ec:dc:2b:69:5e: 79:72:2e:25:76:b4:d8:f2:6e:c2:11:d4:f7:64:e5:fa:fc:e2: 65:3b:c9:d2:ac:16:a7:54:23:79:81:65:cf:8c:15:a8:9f:40: 26:db:d2:e2:f7:9d:24:0c:cf:18:a4:a7:79:66:e7:47:91:b1: 7a:e4:a2:55:ca:1a:fb:66:08:87:f4:d2:83:f2:db:c7:5d:f2: d1:ab:fa:4b:2d:c0:a5:2b:7f:7c:d3:b6:41:6c:f3:24:01:61: 21:ee:7c:0a:b3:0f:54:40:b6:0d:da:2c:59:7b:72:d9:5f:db: 2f:a3:84:0c:dc:78:fd:4c:26:73:46:b3:1a:b7:d6:d8:54:35: a3:20:32:6c:a7:9e:f2:3b:a1:bb:15:a4:4a:ae:1a:d8:76:87: 8f:5d:86:09:1e:8d:fe:8a:c4:cd:eb:f6:82:9a:59:c4:5c:87: 8e:9a:b7:9a:62:ef:90:5e:db:7a:e2:5d:05:7a:18:d0:45:32: b4:c1:0f:c7:da:f9:a8:f2:bb:f8:2c:3b:2b:3e:1e:85:f0:a9: ee:ca:b4:d8 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBNjA4 MjE0M0JDRUY1MkU3MTJCNEE1QkQ1RDZFNUMxOTUzNzlEOTFBMB4XDTI0MTEzMDAx Mjg1MloXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoRjhFQ0I3ODVCQjY4Q0E1 Q0EwQkRGMjg2MDJENDY3NDY0MjE4OTRFODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMDzfOOVqLiaeCJrh7123biw/CLquw6SCmoV3UHZKsSyAVDFN5v7 uIkG/nCMfbABCq4hHezwnD/saS4a2wH5wNZIuAtGsewurbOUz8PIsDZPjfbzLgWZ DkRWCYrviSCMgLUr72yrgrKKK1l0uYdiLDCHzdPRnYNLHwslMcR2bS17Xi+jjJbO Nog3f0hR2Qz+KpO/jFQ6OkIxu+d2wiRHT0Tleo4J1L5JeDuCVDm8nFNC9EYwqFMY dWya7mUhjGV1MtOo7YUHlkAyG4cKcS4+MadPlvcleapaFk3w64plR9UGpIB9ZIU8 BqkPnIA3pMRMWpu39bet0sQ1yNY72ek/NYkCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBT47LeFu2jKXKC98oYC1GdGQhiU6DAfBgNVHSMEGDAWgBSmCCFDvO9S5xK0pb1d blwZU3nZGjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjcxNi9wZ2doUTd6dlV1Y1N0S1c5WFc1Y0dWTjUyUm8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9wZ2doUTd6dlV1Y1N0S1c5WFc1Y0dW TjUyUm8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjcxNi8tT3kzaGJ0b3lseWd2ZktHQXRSblJrSVlsT2cucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwC+mMA0GCSqGSIb3DQEBCwUAA4IBAQC/jP2O8zFJMV23bK6XfWp7gDOq Um0rgn1ajJdd+Ed8FiShC+R9D+ee4I24Z0XURXNw7NwraV55ci4ldrTY8m7CEdT3 ZOX6/OJlO8nSrBanVCN5gWXPjBWon0Am29Li950kDM8YpKd5ZudHkbF65KJVyhr7 ZgiH9NKD8tvHXfLRq/pLLcClK39807ZBbPMkAWEh7nwKsw9UQLYN2ixZe3LZX9sv o4QM3Hj9TCZzRrMat9bYVDWjIDJsp57yO6G7FaRKrhrYdoePXYYJHo3+isTN6/aC mlnEXIeOmreaYu+QXtt64l0FehjQRTK0wQ/H2vmo8rv4LDsrPh6F8KnuyrTY -----END CERTIFICATE-----Generated at Wed Feb 19 22:34:09 2025 by rpki-client