$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/1Z00a69rlKEbjrut8Ef7vrjH584.roa File: 1Z00a69rlKEbjrut8Ef7vrjH584.roa (raw, json) Hash identifier: AXH69W6kkrA81gN1lisS6tnMD3SWmg3cCSNHMaMjqWA= Subject key identifier: D5:9D:34:6B:AF:6B:94:A1:1B:8E:BB:AD:F0:47:FB:BE:B8:C7:E7:CE Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 6A Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/1Z00a69rlKEbjrut8Ef7vrjH584.roa Signing time: Sat 30 Nov 2024 01:32:04 +0000 ROA not before: Sat 30 Nov 2024 01:32:04 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 157.65.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:04 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=D59D346BAF6B94A11B8EBBADF047FBBEB8C7E7CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c3:cc:dd:44:e0:eb:91:50:be:2f:ef:c7:51: b2:65:10:8a:e1:a3:4c:1f:b6:e4:07:6d:54:93:89: b0:3b:93:8b:c5:59:19:02:b9:fe:11:08:8f:d2:0d: 67:55:51:c6:c7:f2:ae:47:04:90:de:74:13:d8:f1: 0c:a8:9c:c5:73:f7:96:cf:45:7c:51:f8:e0:e9:bc: 75:49:31:ee:74:25:0d:4b:7a:28:99:4f:78:cd:56: a8:30:73:78:6d:a2:10:8c:5b:f3:7c:07:b7:96:94: 30:7b:25:12:ff:45:d5:a0:ed:73:b4:8e:e8:d8:82: 9e:80:52:c9:79:9a:f8:b6:3b:ee:6c:ef:44:40:e9: 86:20:56:3c:9b:4f:cb:6e:8f:b7:ac:f1:a9:81:e6: d8:10:a0:8b:eb:96:b2:b5:c5:ab:1e:bc:f4:6c:38: 6c:96:59:21:04:3a:a4:b0:e8:f0:a5:1b:42:e8:19: b0:69:68:6d:ed:2b:c3:11:c1:29:4d:a6:2a:f4:fc: 8b:c7:75:7f:ef:16:99:ea:9b:fc:75:99:1a:c0:f3: 56:3c:26:5e:8e:50:c8:95:c9:cd:15:26:e5:90:08: 2b:f8:0e:62:52:33:96:0a:b7:c8:25:d5:29:b9:20: 25:6e:40:c2:c2:d4:61:af:5f:1b:ff:a2:8b:cf:28: 98:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9D:34:6B:AF:6B:94:A1:1B:8E:BB:AD:F0:47:FB:BE:B8:C7:E7:CE X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/1Z00a69rlKEbjrut8Ef7vrjH584.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.16.0/20 Signature Algorithm: sha256WithRSAEncryption a1:92:bb:f4:71:35:df:3c:ed:6f:90:9c:79:4f:0e:ff:6f:46: 6f:b8:26:2b:a0:3a:1a:53:0a:77:b0:ec:12:a1:87:32:d7:7e: 00:cf:1b:e8:bc:90:c6:50:67:1c:3a:d4:9c:fd:71:51:a4:20: c2:0a:7c:6d:ad:1c:e1:5f:73:2a:57:28:1e:9f:31:1e:18:f4: b9:3f:50:6a:d5:96:3b:d5:72:40:81:38:63:81:f3:bb:0e:2f: 73:31:98:63:80:a5:29:6e:97:4b:8c:96:ae:17:5e:24:c3:95: f5:68:82:8f:58:6d:f0:e9:87:2f:72:4a:14:d4:70:71:67:b9: 97:44:19:08:57:47:6e:23:32:ab:3f:de:25:95:55:41:5b:92: 5d:b5:75:6f:71:9f:75:d3:49:6e:b0:7f:7d:eb:8c:7d:78:08: 8e:52:67:7f:26:b5:9a:85:f8:25:26:65:dd:1e:5f:ea:4a:0b: 58:6f:62:5f:80:98:bd:3b:ac:5e:47:13:c0:91:88:ea:f3:f7: 60:c6:20:f3:66:43:48:12:12:b9:8a:82:54:b5:8e:54:f4:1e: 58:81:df:95:75:80:36:7d:77:29:7f:50:75:5a:a5:c4:f8:91: ea:eb:e4:b4:4f:e2:66:f0:d8:fb:09:1d:a8:ab:ac:29:d9:4f: d5:47:34:d8 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwNFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoRDU5RDM0NkJBRjZCOTRB MTFCOEVCQkFERjA0N0ZCQkVCOEM3RTdDRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKzDzN1E4OuRUL4v78dRsmUQiuGjTB+25AdtVJOJsDuTi8VZGQK5 /hEIj9INZ1VRxsfyrkcEkN50E9jxDKicxXP3ls9FfFH44Om8dUkx7nQlDUt6KJlP eM1WqDBzeG2iEIxb83wHt5aUMHslEv9F1aDtc7SO6NiCnoBSyXma+LY77mzvREDp hiBWPJtPy26Pt6zxqYHm2BCgi+uWsrXFqx689Gw4bJZZIQQ6pLDo8KUbQugZsGlo be0rwxHBKU2mKvT8i8d1f+8Wmeqb/HWZGsDzVjwmXo5QyJXJzRUm5ZAIK/gOYlIz lgq3yCXVKbkgJW5AwsLUYa9fG/+ii88omLMCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBTVnTRrr2uUoRuOu63wR/u+uMfnzjAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5LzFaMDBhNjlybEtFYmpydXQ4RWY3dnJqSDU4NC5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BASdQRAwDQYJKoZIhvcNAQELBQADggEBAKGSu/RxNd887W+QnHlPDv9vRm+4Jiug OhpTCnew7BKhhzLXfgDPG+i8kMZQZxw61Jz9cVGkIMIKfG2tHOFfcypXKB6fMR4Y 9Lk/UGrVljvVckCBOGOB87sOL3MxmGOApSlul0uMlq4XXiTDlfVogo9YbfDphy9y ShTUcHFnuZdEGQhXR24jMqs/3iWVVUFbkl21dW9xn3XTSW6wf33rjH14CI5SZ38m tZqF+CUmZd0eX+pKC1hvYl+AmL07rF5HE8CRiOrz92DGIPNmQ0gSErmKglS1jlT0 HliB35V1gDZ9dyl/UHVapcT4kerr5LRP4mbw2PsJHairrCnZT9VHNNg= -----END CERTIFICATE-----Generated at Wed Feb 19 22:37:35 2025 by rpki-client