$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/7kX2DOK906scX-BUVw-9-g0unew.roa File: 7kX2DOK906scX-BUVw-9-g0unew.roa (raw, json) Hash identifier: 7uUMqGXOvtbQ6g+wFqp48HJLVIzdkyAcWER4AnwJTr8= Subject key identifier: EE:45:F6:0C:E2:BD:D3:AB:1C:5F:E0:54:57:0F:BD:FA:0D:2E:9D:EC Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 92 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/7kX2DOK906scX-BUVw-9-g0unew.roa Signing time: Tue 31 Dec 2024 01:31:11 +0000 ROA not before: Tue 31 Dec 2024 01:31:11 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:11 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=EE45F60CE2BDD3AB1C5FE054570FBDFA0D2E9DEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:50:18:86:a9:5e:28:07:96:0e:30:58:e7:62: e5:a5:a1:de:9b:29:0f:60:8a:8f:13:32:f1:f9:40: f6:7c:b3:26:0c:68:a2:45:3f:39:d3:26:d4:66:1a: 68:7c:6f:43:01:16:6c:87:96:bb:94:b0:25:f5:3b: 18:e2:aa:75:8d:04:5e:8f:e5:eb:98:3b:b0:bc:8c: c1:15:65:00:a3:2f:d2:8e:dc:53:90:4a:c7:98:57: cd:67:01:2d:85:1c:5f:f0:8a:4d:58:69:63:98:09: d7:48:be:30:44:57:b3:09:2a:a5:c9:40:cd:ac:83: a0:80:c5:7d:65:84:4c:3b:07:76:47:89:b0:e1:4b: 37:38:46:3d:50:f3:8b:dd:85:3f:28:a2:dc:ca:c1: 8e:70:0a:6e:5d:38:d9:a7:d3:6d:eb:7d:1d:20:1c: e2:b6:bb:fd:cb:44:40:8e:e7:07:c5:d9:89:79:57: 29:60:24:17:c0:23:cc:48:d2:bb:04:e0:ba:6d:c6: 2e:b4:fe:95:2b:fc:ec:c7:f2:8c:c7:3d:88:80:86: ac:45:93:5c:b8:d7:a9:08:39:63:16:9f:c8:7f:2a: 57:bf:ad:37:fa:c9:70:80:09:ec:d7:4e:93:4b:fe: 7f:e2:bf:18:79:c0:e0:74:aa:39:c9:82:8f:e8:be: 0f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:45:F6:0C:E2:BD:D3:AB:1C:5F:E0:54:57:0F:BD:FA:0D:2E:9D:EC X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/7kX2DOK906scX-BUVw-9-g0unew.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.255.0/24 Signature Algorithm: sha256WithRSAEncryption 78:75:05:c5:9a:1f:2b:7e:06:b7:3d:a5:38:af:d2:09:74:bd: 2a:ab:83:a1:54:c6:e9:17:6a:02:5a:59:db:ec:04:0a:76:f4: 3a:cf:3f:d1:22:dd:5c:b9:53:be:af:3a:35:91:c7:2b:2c:a9: 82:1e:38:1c:33:9e:cf:df:b6:0e:b1:21:ad:c2:9c:09:db:0c: 2d:cc:e9:75:1c:da:c2:7f:80:3f:9f:e2:7c:a0:08:37:d7:92: a6:97:3b:35:4c:b9:bf:92:f3:5a:5f:4e:ea:0c:40:a4:63:13: 3f:2c:d2:6b:f0:99:48:22:5e:17:22:5e:f1:37:9f:9e:00:f7: e2:21:dd:7b:9a:c2:24:27:c3:af:05:4a:cb:65:60:89:bd:88: c6:75:e5:3b:48:47:d0:0b:c2:cd:9f:d7:4c:b3:d3:6d:96:46: 85:02:df:1d:b9:d0:7a:46:7d:05:c1:30:c7:df:2f:e7:59:2f: c9:b8:d9:c9:34:9d:b3:b5:bd:c4:a1:1b:6b:d2:76:d0:57:f6: 43:6d:83:0b:8b:ac:22:cf:68:6e:60:38:4f:59:93:b3:99:e2: 4b:97:75:6a:a3:c8:90:b4:b8:67:1a:df:17:11:fc:aa:17:37: f8:f0:00:6e:90:10:21:38:c3:8e:ad:8a:fc:78:f5:14:93:98: b2:d7:57:22 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMTFaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEVFNDVGNjBDRTJCREQz QUIxQzVGRTA1NDU3MEZCREZBMEQyRTlERUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNUBiGqV4oB5YOMFjnYuWlod6bKQ9gio8TMvH5QPZ8syYMaKJF PznTJtRmGmh8b0MBFmyHlruUsCX1OxjiqnWNBF6P5euYO7C8jMEVZQCjL9KO3FOQ SseYV81nAS2FHF/wik1YaWOYCddIvjBEV7MJKqXJQM2sg6CAxX1lhEw7B3ZHibDh Szc4Rj1Q84vdhT8ootzKwY5wCm5dONmn023rfR0gHOK2u/3LRECO5wfF2Yl5Vylg JBfAI8xI0rsE4Lptxi60/pUr/OzH8ozHPYiAhqxFk1y416kIOWMWn8h/Kle/rTf6 yXCACezXTpNL/n/ivxh5wOB0qjnJgo/ovg/7AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQU7kX2DOK906scX+BUVw+9+g0unewwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS83a1gyRE9LOTA2c2NYLUJVVnctOS1nMHVuZXcucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAoPj/MA0GCSqGSIb3DQEBCwUAA4IBAQB4dQXFmh8rfga3PaU4r9IJdL0qq4Oh VMbpF2oCWlnb7AQKdvQ6zz/RIt1cuVO+rzo1kccrLKmCHjgcM57P37YOsSGtwpwJ 2wwtzOl1HNrCf4A/n+J8oAg315Kmlzs1TLm/kvNaX07qDECkYxM/LNJr8JlIIl4X Il7xN5+eAPfiId17msIkJ8OvBUrLZWCJvYjGdeU7SEfQC8LNn9dMs9NtlkaFAt8d udB6Rn0FwTDH3y/nWS/JuNnJNJ2ztb3EoRtr0nbQV/ZDbYMLi6wiz2huYDhPWZOz meJLl3Vqo8iQtLhnGt8XEfyqFzf48ABukBAhOMOOrYr8ePUUk5iy11ci -----END CERTIFICATE-----Generated at Wed Feb 19 22:33:20 2025 by rpki-client