$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/4ffZxWBJ6VW6UYAS2Og1UP5FU_w.roa File: 4ffZxWBJ6VW6UYAS2Og1UP5FU_w.roa (raw, json) Hash identifier: vmG95Mw4RvEUai0CvmHqu31ROeX6XdYxKSuSVwTM6I8= Subject key identifier: E1:F7:D9:C5:60:49:E9:55:BA:51:80:12:D8:E8:35:50:FE:45:53:FC Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 3E Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/4ffZxWBJ6VW6UYAS2Og1UP5FU_w.roa Signing time: Thu 25 Jan 2024 01:06:32 +0000 ROA not before: Thu 25 Jan 2024 01:06:32 +0000 ROA not after: Tue 14 Jan 2025 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jan 25 01:06:32 2024 GMT Not After : Jan 14 01:30:02 2025 GMT Subject: CN=E1F7D9C56049E955BA518012D8E83550FE4553FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2e:5d:f2:39:d4:54:6b:91:78:f7:a9:8d:25: f4:18:30:3a:d7:29:44:70:64:36:d6:67:d0:cd:84: 27:ba:1a:a7:33:68:c3:5f:f4:ad:cb:59:b5:32:65: 78:f2:07:bd:a0:b0:1b:89:ec:d9:95:46:d1:0a:13: f3:07:05:a8:2d:de:ae:a2:e5:5a:38:4e:92:49:76: e6:ff:6d:44:ba:19:33:0f:57:5a:e0:f8:4a:4c:30: bd:af:ec:bb:0e:2f:1b:ae:cf:0b:9d:ef:fd:6c:5b: 23:92:30:b5:53:09:77:ca:48:95:d7:d4:95:04:79: 1c:25:18:ba:be:1d:64:3d:d2:8a:1d:d2:62:0d:f5: 9a:e2:ef:4c:51:91:bc:95:f8:ee:6a:d8:c8:a7:02: 57:6c:fc:29:1e:3f:71:50:a3:b5:e8:30:be:00:81: a4:e1:27:3f:67:87:a7:a7:6f:f7:cf:2b:7e:05:52: 30:61:c2:02:59:f5:05:7b:2e:21:89:85:d2:ae:1a: 02:20:ca:ff:99:7d:4a:75:ae:b1:4e:96:fb:d0:b2: 72:af:e0:37:ad:8a:e3:36:d3:e7:00:ab:ee:9f:57: de:35:98:d6:8a:6f:7a:a8:9b:c9:05:0e:41:5a:14: c9:e3:7f:bb:cb:90:71:9a:50:88:4f:a1:42:27:3b: 26:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F7:D9:C5:60:49:E9:55:BA:51:80:12:D8:E8:35:50:FE:45:53:FC X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/4ffZxWBJ6VW6UYAS2Og1UP5FU_w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.208.0/20 Signature Algorithm: sha256WithRSAEncryption 20:47:3d:44:02:d5:9a:a3:f7:b5:fe:7e:d4:be:7e:01:dc:da: 3e:64:67:a3:bb:c0:02:91:42:fd:fb:15:9d:4d:af:d7:bc:88: 38:14:95:ee:69:8d:1e:13:e4:a0:bd:89:1a:6c:23:21:7e:0a: bf:a6:7d:2f:d9:bc:2a:3e:ff:b1:2d:ce:b4:3e:fa:a7:d2:93: 24:8c:6f:97:54:1d:a9:c2:a4:23:af:6b:33:43:fd:b1:cf:b4: ab:05:bf:c0:93:f4:e7:f8:56:be:b7:a2:9b:7e:d3:6c:15:ee: 80:5c:b9:8e:9b:e4:a2:0c:19:2d:8a:51:0e:bf:c1:f7:8d:7d: 2c:2d:3c:6c:d9:2a:5b:0d:e8:b1:12:43:16:c2:fb:55:25:89: 56:df:0b:1f:18:c2:f8:5c:2b:3d:a2:6b:76:8a:32:5b:bb:63: e3:ab:ea:4f:21:da:04:d9:ef:d4:26:bb:97:d2:bc:a9:a4:59: 26:c2:32:20:fb:5c:75:aa:e2:c7:9c:48:10:c2:0f:c3:61:0d: fd:fe:9a:45:fb:23:f0:41:75:72:a1:11:90:35:db:79:3f:dd: ee:09:33:3a:66:12:75:aa:d2:8a:4f:e0:42:2b:e7:56:02:a7: 67:19:ca:be:02:83:28:36:0e:ce:ed:74:0d:a1:6c:76:ce:6b: 1d:5e:9c:0a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MDEyNTAx MDYzMloXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoRTFGN0Q5QzU2MDQ5RTk1 NUJBNTE4MDEyRDhFODM1NTBGRTQ1NTNGQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKEuXfI51FRrkXj3qY0l9BgwOtcpRHBkNtZn0M2EJ7oapzNow1/0 rctZtTJlePIHvaCwG4ns2ZVG0QoT8wcFqC3erqLlWjhOkkl25v9tRLoZMw9XWuD4 Skwwva/suw4vG67PC53v/WxbI5IwtVMJd8pIldfUlQR5HCUYur4dZD3Sih3SYg31 muLvTFGRvJX47mrYyKcCV2z8KR4/cVCjtegwvgCBpOEnP2eHp6dv988rfgVSMGHC Aln1BXsuIYmF0q4aAiDK/5l9SnWusU6W+9Cycq/gN62K4zbT5wCr7p9X3jWY1opv eqibyQUOQVoUyeN/u8uQcZpQiE+hQic7Jt8CAwEAAaOCAiIwggIeMB0GA1UdDgQW BBTh99nFYEnpVbpRgBLY6DVQ/kVT/DAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5LzRmZlp4V0JKNlZXNlVZQVMyT2cxVVA1RlVfdy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BASg+NAwDQYJKoZIhvcNAQELBQADggEBACBHPUQC1Zqj97X+ftS+fgHc2j5kZ6O7 wAKRQv37FZ1Nr9e8iDgUle5pjR4T5KC9iRpsIyF+Cr+mfS/ZvCo+/7EtzrQ++qfS kySMb5dUHanCpCOvazND/bHPtKsFv8CT9Of4Vr63opt+02wV7oBcuY6b5KIMGS2K UQ6/wfeNfSwtPGzZKlsN6LESQxbC+1UliVbfCx8YwvhcKz2ia3aKMlu7Y+Or6k8h 2gTZ79Qmu5fSvKmkWSbCMiD7XHWq4secSBDCD8NhDf3+mkX7I/BBdXKhEZA123k/ 3e4JMzpmEnWq0opP4EIr51YCp2cZyr4Cgyg2Ds7tdA2hbHbOax1enAo= -----END CERTIFICATE-----Generated at Fri Sep 27 06:21:53 2024 by rpki-client on console-ams.rpki-client.org