$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/49BRGF-VG8cV8dgsAFRSzhibrO4.roa File: 49BRGF-VG8cV8dgsAFRSzhibrO4.roa (raw, json) Hash identifier: NS4rO38EocO3s0Njm74Zwdjvv2scNoswSWs17865GkM= Subject key identifier: E3:D0:51:18:5F:95:1B:C7:15:F1:D8:2C:00:54:52:CE:18:9B:AC:EE Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 8B Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/49BRGF-VG8cV8dgsAFRSzhibrO4.roa Signing time: Tue 31 Dec 2024 01:31:07 +0000 ROA not before: Tue 31 Dec 2024 01:31:07 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:07 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=E3D051185F951BC715F1D82C005452CE189BACEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:96:08:9f:d7:77:82:86:90:5c:e8:e3:6e:65: 3f:ea:09:7e:a3:a9:be:69:2b:18:32:6c:6d:25:76: 8e:3a:9c:03:55:02:a6:28:a9:8d:49:93:1b:cc:21: ab:6d:e1:1e:28:40:45:1a:fa:90:b8:59:27:5c:f4: cf:0c:9a:87:d4:25:20:33:87:f2:37:6d:5e:00:2d: 09:bf:0c:42:ac:d8:d4:45:12:a4:05:27:a1:0d:88: d1:18:b1:e2:9b:f7:8e:c1:5b:f1:70:b7:6b:d8:b1: 26:48:69:7c:7f:e7:a5:3b:9a:2e:17:ed:6d:a2:99: a5:83:86:66:13:fc:9c:54:1b:1b:30:fd:bd:01:f7: 7a:2b:b8:33:06:95:e9:48:92:ac:40:94:9d:22:2a: f0:48:33:33:b7:c1:43:c2:68:9d:ae:8f:0d:ab:47: 47:da:31:fb:4c:c4:ce:9a:a3:ed:41:03:fd:ea:a6: 05:a9:d9:e0:df:52:17:e9:fc:52:95:6f:df:d1:fd: 34:09:a4:2d:86:7a:e9:6e:3f:12:62:52:8d:e1:80: bd:3f:bd:1a:34:2c:35:14:fe:10:91:78:e4:70:fa: 4e:65:93:2a:e2:ac:89:dc:3b:b2:f0:e4:7e:ec:e5: d7:23:06:3f:34:da:a2:a9:b5:10:e2:f6:ce:22:f8: 27:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D0:51:18:5F:95:1B:C7:15:F1:D8:2C:00:54:52:CE:18:9B:AC:EE X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/49BRGF-VG8cV8dgsAFRSzhibrO4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.208.0/20 Signature Algorithm: sha256WithRSAEncryption 0c:52:eb:7c:d0:ea:6e:f7:d1:56:56:ff:2a:15:29:c1:a8:a4: 9b:ab:66:a8:7a:a1:a7:20:65:fc:3c:61:83:37:15:1b:86:4d: 1f:ce:89:af:4a:63:a5:6c:d1:bb:40:1a:aa:54:7e:50:22:e2: 91:72:35:44:98:67:a9:5a:07:5a:b0:62:44:71:08:06:a2:38: 4e:08:52:9e:d0:f0:0b:d3:ef:81:6d:a9:65:02:bd:2d:02:e3: 07:a1:51:0e:b6:35:5c:83:7c:d5:b9:ac:b7:dd:71:b7:c0:04: a4:92:e1:12:b8:37:2a:c4:b1:b2:a8:94:f7:90:41:b7:3d:04: d2:27:6e:e2:e4:dd:19:1c:f7:47:ac:25:2d:70:db:c5:47:95: 81:33:bc:26:5e:7e:0f:ac:51:c3:c7:c1:c1:8e:11:e5:8b:7b: f4:cd:e2:e8:cd:53:c0:5e:66:61:f7:63:49:cb:cd:26:d3:c8: ac:f2:32:0c:09:35:56:1c:1f:a0:6d:9d:06:c5:e1:6a:40:0e: 1f:69:b8:b2:33:b6:b8:68:cc:99:13:72:6f:86:72:fb:f8:78: 58:8c:3a:39:0c:d6:35:d0:5c:3c:6b:50:7b:d9:e5:d0:14:b9: e9:a2:76:a9:9b:da:8d:25:1d:a7:4e:0e:94:2b:5e:91:ce:1b: 2f:0e:32:56 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMDdaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUzRDA1MTE4NUY5NTFC QzcxNUYxRDgyQzAwNTQ1MkNFMTg5QkFDRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSlgif13eChpBc6ONuZT/qCX6jqb5pKxgybG0ldo46nANVAqYo qY1JkxvMIatt4R4oQEUa+pC4WSdc9M8MmofUJSAzh/I3bV4ALQm/DEKs2NRFEqQF J6ENiNEYseKb947BW/Fwt2vYsSZIaXx/56U7mi4X7W2imaWDhmYT/JxUGxsw/b0B 93oruDMGlelIkqxAlJ0iKvBIMzO3wUPCaJ2ujw2rR0faMftMxM6ao+1BA/3qpgWp 2eDfUhfp/FKVb9/R/TQJpC2GeuluPxJiUo3hgL0/vRo0LDUU/hCReORw+k5lkyri rIncO7Lw5H7s5dcjBj802qKptRDi9s4i+CdBAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQU49BRGF+VG8cV8dgsAFRSzhibrO4wHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS80OUJSR0YtVkc4Y1Y4ZGdzQUZSU3poaWJyTzQucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQEoPjQMA0GCSqGSIb3DQEBCwUAA4IBAQAMUut80Opu99FWVv8qFSnBqKSbq2ao eqGnIGX8PGGDNxUbhk0fzomvSmOlbNG7QBqqVH5QIuKRcjVEmGepWgdasGJEcQgG ojhOCFKe0PAL0++BballAr0tAuMHoVEOtjVcg3zVuay33XG3wASkkuESuDcqxLGy qJT3kEG3PQTSJ27i5N0ZHPdHrCUtcNvFR5WBM7wmXn4PrFHDx8HBjhHli3v0zeLo zVPAXmZh92NJy80m08is8jIMCTVWHB+gbZ0GxeFqQA4fabiyM7a4aMyZE3JvhnL7 +HhYjDo5DNY10Fw8a1B72eXQFLnponapm9qNJR2nTg6UK16RzhsvDjJW -----END CERTIFICATE-----Generated at Wed Feb 19 22:30:52 2025 by rpki-client