$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/4Db4_WcTGFPPdmgO9xSt545C2os.roa File: 4Db4_WcTGFPPdmgO9xSt545C2os.roa (raw, json) Hash identifier: WQZSIdv19JKiam8heK98AJmpXof71z2JmOi5aXSc68k= Subject key identifier: E0:36:F8:FD:67:13:18:53:CF:76:68:0E:F7:14:AD:E7:8E:42:DA:8B Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 84 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/4Db4_WcTGFPPdmgO9xSt545C2os.roa Signing time: Sat 30 Nov 2024 01:34:21 +0000 ROA not before: Sat 30 Nov 2024 01:34:21 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:34:21 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=E036F8FD67131853CF76680EF714ADE78E42DA8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:23:54:01:fc:fa:bc:84:3e:01:cf:96:a9:95: 47:11:b9:e7:4a:18:55:a0:c6:b2:b9:9f:7f:2b:2d: 1c:80:69:12:c4:3d:73:44:c6:ae:84:81:9d:c0:42: d7:20:e6:a0:24:26:0f:c9:de:af:9c:1d:15:da:b7: d1:1b:bb:b6:09:75:d1:e9:08:74:45:c3:a5:3a:ad: 66:51:31:13:7d:a7:61:1f:14:72:61:7d:fc:a4:76: 22:b4:0a:31:ad:8a:ed:c1:80:3e:c8:5b:61:e5:c4: 11:90:37:25:e5:55:ff:9f:78:af:88:de:05:47:d1: d2:40:0f:73:cf:57:39:cb:e7:9a:33:63:71:e3:5a: ec:9c:82:a2:1e:db:12:51:ef:4e:02:d3:27:f5:10: d7:94:fb:85:7e:9f:01:cf:e9:67:b7:31:15:f5:aa: 48:80:0f:0b:37:e3:66:f2:9c:1f:cc:4e:f2:16:6f: 9c:5a:c5:b4:ba:01:71:3c:1b:7f:85:d7:62:71:73: 27:53:d3:51:64:72:a2:ee:af:ef:8d:1f:3d:fd:67: 5e:fc:cf:db:f3:d3:c6:e6:bb:67:17:43:c5:2f:a9: 41:48:c1:23:31:d5:c0:c2:3d:c8:07:d7:ee:4f:f2: 73:34:7e:64:b4:8c:ec:fb:10:43:34:7d:90:f8:03: 51:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:36:F8:FD:67:13:18:53:CF:76:68:0E:F7:14:AD:E7:8E:42:DA:8B X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/4Db4_WcTGFPPdmgO9xSt545C2os.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.184.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:b2:02:f6:17:4a:bd:5b:66:f4:d5:5e:cb:57:be:64:00:66: 3b:03:a1:86:63:16:07:7b:19:c3:57:d5:a0:c9:2d:77:64:d9: 9b:8e:5f:ab:b0:e5:c2:aa:79:9a:f0:e6:0a:c3:64:4c:97:1b: db:54:6f:58:60:f4:d0:ca:fb:fd:a1:72:c7:c2:80:41:fb:a6: 66:72:63:ed:90:09:ef:ca:5f:29:ec:8b:d8:30:d6:c5:f7:e0: 63:30:3c:7f:a9:2d:48:ca:84:ee:c7:e1:83:47:7c:f7:8d:d6: a7:dd:8f:74:8b:ce:d1:b7:a4:80:4a:36:6a:eb:c5:9f:0b:6e: 9d:8e:04:76:16:28:d8:31:7c:87:92:03:6f:79:6e:a4:fe:13: 4a:3b:57:5e:a3:67:12:3b:a3:39:ec:e9:4e:a9:3a:f8:b6:ae: 82:e1:8d:59:25:4b:09:3d:31:7c:a7:c5:cd:23:1d:00:a4:43: 06:15:30:a1:81:6b:ac:88:62:84:23:54:2e:40:b1:23:a1:f4: a1:23:2c:48:5c:6c:46:93:18:44:fc:85:91:8b:33:eb:1b:1d: 2b:4d:4e:9b:e1:e6:67:c0:e8:cd:b1:91:fe:30:7d:73:82:bf: 8f:5f:df:96:7b:9a:3e:43:ee:d0:43:bd:ab:85:7c:a5:93:3b: d6:a0:63:e9 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDExMzAw MTM0MjFaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUwMzZGOEZENjcxMzE4 NTNDRjc2NjgwRUY3MTRBREU3OEU0MkRBOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnI1QB/Pq8hD4Bz5aplUcRuedKGFWgxrK5n38rLRyAaRLEPXNE xq6EgZ3AQtcg5qAkJg/J3q+cHRXat9Ebu7YJddHpCHRFw6U6rWZRMRN9p2EfFHJh ffykdiK0CjGtiu3BgD7IW2HlxBGQNyXlVf+feK+I3gVH0dJAD3PPVznL55ozY3Hj WuycgqIe2xJR704C0yf1ENeU+4V+nwHP6We3MRX1qkiADws342bynB/MTvIWb5xa xbS6AXE8G3+F12JxcydT01FkcqLur++NHz39Z178z9vz08bmu2cXQ8UvqUFIwSMx 1cDCPcgH1+5P8nM0fmS0jOz7EEM0fZD4A1HfAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQU4Db4/WcTGFPPdmgO9xSt545C2oswHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS80RGI0X1djVEdGUFBkbWdPOXhTdDU0NUMyb3Mucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDoPi4MA0GCSqGSIb3DQEBCwUAA4IBAQB7sgL2F0q9W2b01V7LV75kAGY7A6GG YxYHexnDV9WgyS13ZNmbjl+rsOXCqnma8OYKw2RMlxvbVG9YYPTQyvv9oXLHwoBB +6ZmcmPtkAnvyl8p7IvYMNbF9+BjMDx/qS1IyoTux+GDR3z3jdan3Y90i87Rt6SA SjZq68WfC26djgR2FijYMXyHkgNveW6k/hNKO1deo2cSO6M57OlOqTr4tq6C4Y1Z JUsJPTF8p8XNIx0ApEMGFTChgWusiGKEI1QuQLEjofShIyxIXGxGkxhE/IWRizPr Gx0rTU6b4eZnwOjNsZH+MH1zgr+PX9+We5o+Q+7QQ72rhXylkzvWoGPp -----END CERTIFICATE-----Generated at Wed Feb 19 22:42:23 2025 by rpki-client