$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/2-1WevgOfQ-0oQ6JrQjf7L0DwHc.roa File: 2-1WevgOfQ-0oQ6JrQjf7L0DwHc.roa (raw, json) Hash identifier: txfUELlIbmQtJDv+IRkIn+HD6myGKTF/J4E4Il3DV5A= Subject key identifier: DB:ED:56:7A:F8:0E:7D:0F:B4:A1:0E:89:AD:08:DF:EC:BD:03:C0:77 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 93 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/2-1WevgOfQ-0oQ6JrQjf7L0DwHc.roa Signing time: Tue 31 Dec 2024 01:31:12 +0000 ROA not before: Tue 31 Dec 2024 01:31:12 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 161.34.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:12 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=DBED567AF80E7D0FB4A10E89AD08DFECBD03C077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9a:8c:d0:f2:ab:6e:4c:39:53:9d:a4:df:43: fa:80:46:f1:fe:21:19:18:83:bb:f8:8d:0f:29:9f: ae:3c:a3:b8:56:b1:6d:79:d0:6b:88:3a:05:64:f7: 03:54:35:77:1a:29:5c:22:c2:e6:c9:ea:f6:49:af: 74:cb:b1:d4:f7:1e:a0:83:c3:e0:61:8b:ee:d4:61: ff:b0:c1:b9:85:3c:58:a9:9b:da:5f:2f:01:86:fb: d4:a8:e0:5f:6e:42:35:97:41:dc:67:50:11:98:c6: 01:90:30:3b:d9:bc:6a:1f:39:7c:2f:d7:75:ce:8b: b5:dc:2b:21:a3:b0:c5:6e:b4:4e:ac:8c:55:80:b1: 78:56:34:a2:09:b0:61:65:81:3f:9e:77:20:fd:58: 18:91:2d:cd:73:1e:3b:92:42:d0:83:09:eb:bc:8c: e9:8d:06:93:01:9d:47:8d:77:58:71:fd:b5:c4:1b: a5:50:3c:66:ec:ba:43:37:6e:9c:f1:8d:b2:4e:5b: 28:68:1e:8d:5c:e1:5f:ee:47:f4:62:72:34:bc:7c: 9f:3c:61:4b:8f:4e:3e:03:0f:2f:5d:e3:02:25:89: 5e:8f:b8:67:e2:99:91:e5:f5:86:4d:60:e7:57:dd: 41:dc:ad:d7:ca:b9:f0:38:51:47:76:a7:30:d6:2c: 2d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:ED:56:7A:F8:0E:7D:0F:B4:A1:0E:89:AD:08:DF:EC:BD:03:C0:77 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/2-1WevgOfQ-0oQ6JrQjf7L0DwHc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.34.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:aa:77:88:76:42:5f:12:a4:79:7b:1d:91:14:f0:5e:56:2a: 52:52:ab:7e:8d:38:a5:72:ae:35:7d:f9:f4:2d:c8:39:b2:36: 01:1b:90:c7:bb:33:c8:2d:88:75:14:3e:e2:6e:b4:8e:6b:b5: d5:49:af:43:10:22:3e:ef:10:fa:4b:ab:8d:ff:71:69:eb:55: 30:94:d2:40:42:51:92:df:3b:48:a6:bb:e1:86:f5:77:f9:23: d7:1c:06:2b:9d:16:a7:6c:90:fc:e2:26:7b:c0:e0:2f:09:b9: a1:49:98:2a:03:09:6e:2d:54:e8:34:0f:dd:c2:21:f4:63:06: 44:b0:34:ea:a7:8e:a0:47:7f:8f:44:40:86:25:ef:40:d5:c0: 01:26:9a:b0:b2:2b:e0:0b:b4:ce:3c:59:9a:67:63:96:64:d2: 93:db:e7:af:99:7e:0e:e1:1f:52:50:68:8b:78:ef:85:d3:fb: ba:6f:93:49:7a:cd:f2:c0:4f:73:06:e9:14:7e:92:c9:38:9d: a6:fd:a5:e1:e0:09:dc:1e:a0:4f:ec:5d:18:ce:9a:e5:3a:00: 4a:b4:a4:8f:f4:6b:56:f1:bd:b0:50:14:2d:de:65:de:f8:ae: a6:b5:b1:37:bd:37:9c:3e:40:e7:68:84:56:06:99:3e:01:fd: 04:6a:c5:bd -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMTJaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERCRUQ1NjdBRjgwRTdE MEZCNEExMEU4OUFEMDhERkVDQkQwM0MwNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpmozQ8qtuTDlTnaTfQ/qARvH+IRkYg7v4jQ8pn648o7hWsW15 0GuIOgVk9wNUNXcaKVwiwubJ6vZJr3TLsdT3HqCDw+Bhi+7UYf+wwbmFPFipm9pf LwGG+9So4F9uQjWXQdxnUBGYxgGQMDvZvGofOXwv13XOi7XcKyGjsMVutE6sjFWA sXhWNKIJsGFlgT+edyD9WBiRLc1zHjuSQtCDCeu8jOmNBpMBnUeNd1hx/bXEG6VQ PGbsukM3bpzxjbJOWyhoHo1c4V/uR/RicjS8fJ88YUuPTj4DDy9d4wIliV6PuGfi mZHl9YZNYOdX3UHcrdfKufA4UUd2pzDWLC0fAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQU2+1WevgOfQ+0oQ6JrQjf7L0DwHcwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS8yLTFXZXZnT2ZRLTBvUTZKclFqZjdMMER3SGMucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAoSIwDQYJKoZIhvcNAQELBQADggEBAE6qd4h2Ql8SpHl7HZEU8F5WKlJSq36N OKVyrjV9+fQtyDmyNgEbkMe7M8gtiHUUPuJutI5rtdVJr0MQIj7vEPpLq43/cWnr VTCU0kBCUZLfO0imu+GG9Xf5I9ccBiudFqdskPziJnvA4C8JuaFJmCoDCW4tVOg0 D93CIfRjBkSwNOqnjqBHf49EQIYl70DVwAEmmrCyK+ALtM48WZpnY5Zk0pPb56+Z fg7hH1JQaIt474XT+7pvk0l6zfLAT3MG6RR+ksk4nab9peHgCdweoE/sXRjOmuU6 AEq0pI/0a1bxvbBQFC3eZd74rqa1sTe9N5w+QOdohFYGmT4B/QRqxb0= -----END CERTIFICATE-----Generated at Wed Feb 19 22:31:53 2025 by rpki-client