$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/21Ohp1zimKJqOYTc5Qg-zWY51Aw.roa File: 21Ohp1zimKJqOYTc5Qg-zWY51Aw.roa (raw, json) Hash identifier: LVCkn7V3jNLTcasyNf4wIW0q+bD6sduH2zxXlPZhqH8= Subject key identifier: DB:53:A1:A7:5C:E2:98:A2:6A:39:84:DC:E5:08:3E:CD:66:39:D4:0C Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 6F Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/21Ohp1zimKJqOYTc5Qg-zWY51Aw.roa Signing time: Sat 30 Nov 2024 01:32:06 +0000 ROA not before: Sat 30 Nov 2024 01:32:06 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 157.65.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:06 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=DB53A1A75CE298A26A3984DCE5083ECD6639D40C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:cf:7d:4e:0b:58:85:20:96:87:7a:1e:61:12: ca:f2:72:65:17:94:1e:ea:09:ec:6b:87:dc:ff:ca: 69:52:f0:0b:08:75:eb:66:ef:1f:d7:5c:39:a4:38: 0b:2a:40:43:6e:06:bf:ed:33:91:b8:3e:6f:e9:5a: bf:b8:fc:76:a8:a6:3e:a7:ea:c6:28:d4:a9:ae:f4: f7:b9:ce:a7:00:5d:8f:ec:c2:08:14:9b:85:06:20: 86:d1:b9:ee:8a:49:78:16:e3:0e:c5:c6:f2:df:e1: 37:52:f2:bd:ac:a4:78:98:04:39:67:7b:a5:6e:79: 45:2f:38:35:8c:b7:4c:6a:f1:56:8c:1f:aa:bf:62: 2a:14:6d:92:23:25:bf:3d:ed:99:8c:24:60:5a:0a: d9:7d:b3:a5:30:55:2c:d7:21:ca:d0:ed:1c:db:bb: 6d:8d:66:cd:a5:e5:3f:cb:d4:61:52:9d:8d:c2:ee: e7:70:f7:94:e4:db:a2:8c:fa:8a:7a:29:5e:42:c3: d5:20:d6:b9:39:2b:f9:58:2b:b6:f8:ca:9f:80:0e: 87:ed:5d:59:bf:ba:be:c0:5b:3f:7a:18:c3:b7:28: df:be:f3:b5:4b:24:22:e9:2a:1f:c4:6e:4f:1d:9d: f0:2d:dd:19:e8:4a:a3:1f:37:da:af:0e:f9:e9:42: 4b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:53:A1:A7:5C:E2:98:A2:6A:39:84:DC:E5:08:3E:CD:66:39:D4:0C X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/21Ohp1zimKJqOYTc5Qg-zWY51Aw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.224.0/19 Signature Algorithm: sha256WithRSAEncryption b0:42:db:20:36:83:1e:cc:02:f8:fc:5e:a3:2d:0d:f1:cc:d1: 5a:5c:93:d1:b6:6e:02:cd:ff:5f:02:7e:6c:ef:71:2a:68:42: 08:d9:3b:14:9f:37:a0:79:74:81:05:c1:60:67:88:d5:2a:4e: 30:15:49:7f:01:af:12:d5:b6:e2:c1:ce:47:a5:83:8c:30:24: e6:8e:3d:eb:7a:e0:df:75:08:97:99:17:84:12:72:f2:e6:6c: 8e:99:12:a2:6c:14:f0:a5:f3:3b:bb:d2:25:8e:09:8d:a7:c0: 01:88:0e:cc:ae:ec:e3:e0:ac:a6:e2:f7:78:6f:5b:80:86:b0: c3:35:58:5c:28:8b:e4:c2:2f:33:4f:18:09:57:63:96:5a:e8: 46:f8:77:6c:f2:7c:68:45:0d:a2:be:ee:d3:c0:47:81:f5:9b: 8e:bb:d2:86:97:a5:90:c8:d2:03:a0:21:a0:76:6c:5b:39:03: 57:1b:0b:a9:0b:dc:b1:76:f9:4f:ae:ab:29:56:54:b6:b2:ce: 1b:96:6c:64:c6:c1:f6:42:f0:25:29:22:09:08:76:95:b1:36: c1:c4:19:05:d5:e5:44:bb:51:9f:27:08:2d:ba:e9:06:8c:86: f6:9e:d2:c9:da:17:f2:5a:44:a4:d0:78:2d:10:d9:22:69:31: 66:73:27:0d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBbzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwNloXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoREI1M0ExQTc1Q0UyOThB MjZBMzk4NERDRTUwODNFQ0Q2NjM5RDQwQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOjPfU4LWIUglod6HmESyvJyZReUHuoJ7GuH3P/KaVLwCwh162bv H9dcOaQ4CypAQ24Gv+0zkbg+b+lav7j8dqimPqfqxijUqa7097nOpwBdj+zCCBSb hQYghtG57opJeBbjDsXG8t/hN1LyvaykeJgEOWd7pW55RS84NYy3TGrxVowfqr9i KhRtkiMlvz3tmYwkYFoK2X2zpTBVLNchytDtHNu7bY1mzaXlP8vUYVKdjcLu53D3 lOTbooz6inopXkLD1SDWuTkr+VgrtvjKn4AOh+1dWb+6vsBbP3oYw7co377ztUsk IukqH8RuTx2d8C3dGehKox832q8O+elCS3kCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBTbU6GnXOKYomo5hNzlCD7NZjnUDDAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5LzIxT2hwMXppbUtKcU9ZVGM1UWcteldZNTFBdy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAWdQeAwDQYJKoZIhvcNAQELBQADggEBALBC2yA2gx7MAvj8XqMtDfHM0Vpck9G2 bgLN/18CfmzvcSpoQgjZOxSfN6B5dIEFwWBniNUqTjAVSX8BrxLVtuLBzkelg4ww JOaOPet64N91CJeZF4QScvLmbI6ZEqJsFPCl8zu70iWOCY2nwAGIDsyu7OPgrKbi 93hvW4CGsMM1WFwoi+TCLzNPGAlXY5Za6Eb4d2zyfGhFDaK+7tPAR4H1m4670oaX pZDI0gOgIaB2bFs5A1cbC6kL3LF2+U+uqylWVLayzhuWbGTGwfZC8CUpIgkIdpWx NsHEGQXV5US7UZ8nCC266QaMhvae0snaF/JaRKTQeC0Q2SJpMWZzJw0= -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:47 2025 by rpki-client