$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/8vpXxd8UMC7fR51Svi2khA5bVo4.roa File: 8vpXxd8UMC7fR51Svi2khA5bVo4.roa (raw, json) Hash identifier: tq0hc7UGZVOcygz2jDSx1u0hEEy/OWhXl0BKeHSbLek= Subject key identifier: F2:FA:57:C5:DF:14:30:2E:DF:47:9D:52:BE:2D:A4:84:0E:5B:56:8E Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 7A Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/8vpXxd8UMC7fR51Svi2khA5bVo4.roa Signing time: Sat 30 Nov 2024 01:32:11 +0000 ROA not before: Sat 30 Nov 2024 01:32:11 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:11 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=F2FA57C5DF14302EDF479D52BE2DA4840E5B568E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4b:69:db:6c:53:1d:c3:0f:d6:f1:7a:6e:17: 1d:b6:1c:4d:cd:7e:b0:0b:0a:1b:32:8d:5b:3b:88: 77:58:c2:43:82:b7:a8:40:d7:2a:a0:5b:a7:67:38: 1f:e3:d4:fc:41:95:ec:7f:a0:8e:e5:f5:7d:9a:41: c9:47:07:89:1a:0b:0d:fb:16:2c:8b:17:40:22:59: 22:6e:c0:7c:7d:38:47:d2:9d:6a:fb:06:3f:df:a0: 47:db:9d:69:24:a5:03:07:7a:da:bd:40:1b:3c:94: de:48:a9:0e:2f:28:1c:00:10:33:83:2f:06:3e:11: 06:8a:52:50:9b:af:94:3e:a4:37:d4:da:9f:5d:e9: 48:85:1b:e6:6d:5d:2b:3e:c9:8b:8c:7b:ce:73:9b: ac:5a:8f:50:dd:96:b3:1b:ec:71:64:fa:7a:82:1b: 49:93:e3:fb:63:f4:71:49:13:f3:37:52:3d:fa:2d: f5:5e:da:bf:89:30:c9:88:36:21:0a:3c:12:d7:9c: 77:4b:a7:5d:59:ba:b8:fa:3f:89:db:12:aa:63:e5: c4:db:1c:ca:04:db:c2:85:c5:18:22:d5:0c:c5:be: 55:42:14:aa:28:ee:97:d8:1e:e3:88:dc:d8:e4:33: 74:03:89:f4:0f:7e:f6:93:d6:cd:6d:b8:ee:d9:18: 5d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FA:57:C5:DF:14:30:2E:DF:47:9D:52:BE:2D:A4:84:0E:5B:56:8E X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/8vpXxd8UMC7fR51Svi2khA5bVo4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.80.0/23 Signature Algorithm: sha256WithRSAEncryption 56:ff:64:e7:bd:5e:c3:ae:2a:0d:82:d5:33:21:56:bf:86:99: 6a:b9:a1:61:4b:7b:e4:e8:76:ff:67:d2:53:25:4b:72:1a:0c: cf:2b:d9:3e:4d:ef:fc:b7:12:d7:ab:c9:32:ca:c8:24:c9:26: 15:e1:ad:5d:43:11:09:35:8b:76:da:2e:ea:0e:ea:a2:17:00: 29:94:bc:87:3b:0e:ed:12:84:9f:00:da:e1:5b:75:d3:ea:4a: 8a:f6:06:a9:11:e7:a3:db:a4:3a:a2:a3:cf:80:41:3d:17:fc: e1:58:b6:4c:66:99:3d:84:b8:24:2b:3a:58:08:44:4d:38:39: 76:19:f1:ce:2e:ab:ff:a3:c3:d8:53:05:65:15:8c:77:45:09: 61:17:0e:b2:31:1d:1b:7c:fc:95:68:b0:45:44:f3:d4:dc:2d: 23:6c:43:d0:2b:78:08:65:54:6a:0b:72:03:1d:0a:ba:81:73: e3:ef:f6:f5:1e:e5:c0:76:84:96:04:95:14:01:f5:24:1c:19: 69:94:34:35:0c:f1:f0:5f:e4:77:74:3e:69:da:66:9a:85:cb: d4:05:88:39:a2:3e:af:a4:c7:fe:fc:b4:29:20:34:e7:13:df: 6b:8f:5d:eb:1c:b7:71:b4:6f:6c:6b:66:23:12:2d:69:c2:54: a6:7f:f8:16 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIxMVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoRjJGQTU3QzVERjE0MzAy RURGNDc5RDUyQkUyREE0ODQwRTVCNTY4RTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAONLadtsUx3DD9bxem4XHbYcTc1+sAsKGzKNWzuId1jCQ4K3qEDX KqBbp2c4H+PU/EGV7H+gjuX1fZpByUcHiRoLDfsWLIsXQCJZIm7AfH04R9KdavsG P9+gR9udaSSlAwd62r1AGzyU3kipDi8oHAAQM4MvBj4RBopSUJuvlD6kN9Tan13p SIUb5m1dKz7Ji4x7znObrFqPUN2WsxvscWT6eoIbSZPj+2P0cUkT8zdSPfot9V7a v4kwyYg2IQo8Etecd0unXVm6uPo/idsSqmPlxNscygTbwoXFGCLVDMW+VUIUqiju l9ge44jc2OQzdAOJ9A9+9pPWzW247tkYXXECAwEAAaOCAiIwggIeMB0GA1UdDgQW BBTy+lfF3xQwLt9HnVK+LaSEDltWjjAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5Lzh2cFh4ZDhVTUM3ZlI1MVN2aTJraEE1YlZvNC5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGg+FAwDQYJKoZIhvcNAQELBQADggEBAFb/ZOe9XsOuKg2C1TMhVr+GmWq5oWFL e+Todv9n0lMlS3IaDM8r2T5N7/y3EteryTLKyCTJJhXhrV1DEQk1i3baLuoO6qIX ACmUvIc7Du0ShJ8A2uFbddPqSor2BqkR56PbpDqio8+AQT0X/OFYtkxmmT2EuCQr OlgIRE04OXYZ8c4uq/+jw9hTBWUVjHdFCWEXDrIxHRt8/JVosEVE89TcLSNsQ9Ar eAhlVGoLcgMdCrqBc+Pv9vUe5cB2hJYElRQB9SQcGWmUNDUM8fBf5Hd0PmnaZpqF y9QFiDmiPq+kx/78tCkgNOcT32uPXesct3G0b2xrZiMSLWnCVKZ/+BY= -----END CERTIFICATE-----Generated at Wed Feb 19 22:37:06 2025 by rpki-client