$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/4ei8JYzWuSNWPB1Vu89UaDCIhbQ.roa File: 4ei8JYzWuSNWPB1Vu89UaDCIhbQ.roa (raw, json) Hash identifier: sRknA3vULeY5Iu2muOMM/NADMQRh3YLZTYXBXYWI9JE= Subject key identifier: E1:E8:BC:25:8C:D6:B9:23:56:3C:1D:55:BB:CF:54:68:30:88:85:B4 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 7C Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/4ei8JYzWuSNWPB1Vu89UaDCIhbQ.roa Signing time: Sat 30 Nov 2024 01:32:12 +0000 ROA not before: Sat 30 Nov 2024 01:32:12 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:12 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=E1E8BC258CD6B923563C1D55BBCF5468308885B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4c:9b:fc:71:66:55:a9:fa:18:b1:0e:94:02: 8c:66:3a:9f:45:48:03:2b:e9:50:87:e9:5d:cb:e2: d4:0f:19:42:c6:f4:4f:31:3b:59:f6:62:23:85:d2: d5:14:19:f7:f8:c8:69:42:c7:bb:4f:a0:55:77:c8: fe:c2:fa:f9:ee:75:7d:19:47:40:f7:62:34:d3:c4: 45:bd:df:82:53:1b:53:e5:13:1e:ba:59:41:5b:87: d7:70:9b:e2:a1:7a:49:23:f6:55:83:3d:13:ce:50: a1:08:fb:7a:59:76:40:84:ed:9b:07:4d:5c:66:00: 33:8a:7b:70:3a:5a:c4:08:b0:dc:31:27:25:8b:b3: ac:d2:f0:c5:f7:89:dd:59:40:53:e2:b5:28:c3:a1: e3:e9:af:1a:90:1b:21:64:2a:25:30:7d:25:ad:f9: dc:d8:78:62:19:f9:8c:3a:52:0f:a6:51:ca:2a:fb: 24:55:39:c4:21:dc:11:14:78:97:2d:8c:9f:8c:f2: 1f:cb:7e:53:23:35:69:be:b7:46:7f:86:f1:16:66: 09:1b:8e:b8:0d:a6:7f:7f:51:a1:df:6e:04:d1:91: 8a:78:e1:b1:cc:e8:3f:79:27:7d:19:0b:94:de:ad: c0:54:ff:7b:6c:2c:8e:e3:1c:1b:b5:65:3b:4d:8f: 5d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E8:BC:25:8C:D6:B9:23:56:3C:1D:55:BB:CF:54:68:30:88:85:B4 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/4ei8JYzWuSNWPB1Vu89UaDCIhbQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.84.0/24 Signature Algorithm: sha256WithRSAEncryption 29:07:ec:dc:89:ec:eb:9f:f5:4a:c2:f3:38:32:e2:45:0d:0b: a0:fe:10:94:4b:19:79:02:87:a7:af:0a:0a:48:5a:18:3b:7d: 14:c0:06:d8:bc:16:8a:dc:e2:ba:02:38:3f:b6:57:f2:6b:b4: 09:61:f0:c0:cd:35:56:ed:35:48:25:f9:1b:38:7f:1a:a7:a4: b1:9d:70:ef:79:c0:d5:f0:f6:25:72:9b:dd:27:a0:3a:14:da: 8b:b6:12:fa:8a:64:87:91:c9:31:55:b2:88:6c:e0:e9:b3:61: 7d:76:fe:70:47:41:68:39:7e:a6:31:4d:1c:11:24:0b:0e:f3: 0a:26:62:ef:8f:35:24:9f:d5:b8:c1:0e:d7:21:71:96:eb:c9: a2:15:e5:36:a0:d2:fd:ac:df:48:d4:e0:dd:66:c1:38:35:e7: d6:47:71:1e:06:0e:64:12:a0:fa:33:27:e8:ac:08:97:31:dc: 0a:8b:d5:8c:53:c9:cd:a9:17:f8:3c:b4:ed:15:ee:4b:3d:17: 41:b9:f5:42:96:21:7f:c7:db:d1:06:67:a7:f1:b3:f4:f1:db: 01:2b:cc:55:06:7b:33:d0:1a:11:fb:17:7e:47:b2:e5:7a:d4: 69:84:45:af:7a:d3:a0:e5:6f:95:42:76:00:ed:e9:b3:de:ed: 75:5c:fa:8d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIxMloXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoRTFFOEJDMjU4Q0Q2Qjky MzU2M0MxRDU1QkJDRjU0NjgzMDg4ODVCNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMlMm/xxZlWp+hixDpQCjGY6n0VIAyvpUIfpXcvi1A8ZQsb0TzE7 WfZiI4XS1RQZ9/jIaULHu0+gVXfI/sL6+e51fRlHQPdiNNPERb3fglMbU+UTHrpZ QVuH13Cb4qF6SSP2VYM9E85QoQj7ell2QITtmwdNXGYAM4p7cDpaxAiw3DEnJYuz rNLwxfeJ3VlAU+K1KMOh4+mvGpAbIWQqJTB9Ja353Nh4Yhn5jDpSD6ZRyir7JFU5 xCHcERR4ly2Mn4zyH8t+UyM1ab63Rn+G8RZmCRuOuA2mf39Rod9uBNGRinjhsczo P3knfRkLlN6twFT/e2wsjuMcG7VlO02PXXcCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBTh6LwljNa5I1Y8HVW7z1RoMIiFtDAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5LzRlaThKWXpXdVNOV1BCMVZ1ODlVYURDSWhiUS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACg+FQwDQYJKoZIhvcNAQELBQADggEBACkH7NyJ7Ouf9UrC8zgy4kUNC6D+EJRL GXkCh6evCgpIWhg7fRTABti8Forc4roCOD+2V/JrtAlh8MDNNVbtNUgl+Rs4fxqn pLGdcO95wNXw9iVym90noDoU2ou2EvqKZIeRyTFVsohs4OmzYX12/nBHQWg5fqYx TRwRJAsO8womYu+PNSSf1bjBDtchcZbryaIV5Tag0v2s30jU4N1mwTg159ZHcR4G DmQSoPozJ+isCJcx3AqL1YxTyc2pF/g8tO0V7ks9F0G59UKWIX/H29EGZ6fxs/Tx 2wErzFUGezPQGhH7F35HsuV61GmERa9606Dlb5VCdgDt6bPe7XVc+o0= -----END CERTIFICATE-----Generated at Wed Feb 19 22:46:17 2025 by rpki-client