$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/F6UWyNccbmKeCgBsE4NuOqsyNts.roa File: F6UWyNccbmKeCgBsE4NuOqsyNts.roa (raw, json) Hash identifier: WfnrbqBSovkaqhgz3LKx0Ub2CjPl7RhR6cITq8F/io0= Subject key identifier: 17:A5:16:C8:D7:1C:6E:62:9E:0A:00:6C:13:83:6E:3A:AB:32:36:DB Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 77 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/F6UWyNccbmKeCgBsE4NuOqsyNts.roa Signing time: Sat 30 Nov 2024 01:32:10 +0000 ROA not before: Sat 30 Nov 2024 01:32:10 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:10 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=17A516C8D71C6E629E0A006C13836E3AAB3236DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:09:d0:0d:31:d5:3e:ee:a0:87:b5:b7:a7:1b: 8a:32:ab:f2:05:fe:39:1b:46:72:49:59:07:67:0c: 92:73:49:66:e1:b5:ba:79:10:62:71:74:d7:03:58: 36:9c:e5:8e:9a:6e:49:c9:e3:9c:77:59:ca:13:f4: 8a:62:96:0c:84:d0:00:48:51:96:f3:d6:b6:b7:50: 19:0b:fe:3a:e1:da:52:16:ce:73:88:ca:5d:3f:17: f5:50:90:03:b6:55:01:41:6f:30:c0:e0:ee:9e:64: 01:47:84:8c:82:c2:6c:2c:ac:84:2a:35:50:8e:90: 96:5d:7d:66:cd:03:3f:13:34:b2:99:7a:00:4a:bb: 92:cf:5c:e8:8c:be:83:a4:b5:5c:b6:4c:dc:44:a3: 66:27:98:21:97:ba:02:00:3e:22:e9:bd:f9:b2:88: fb:91:ae:ec:91:5f:1a:99:c2:a1:b7:e8:98:48:24: 31:75:f0:7b:dc:49:cd:b6:b4:2a:df:b8:1b:c7:47: b5:e2:a8:60:0f:0b:53:1d:9b:f6:75:bb:57:09:54: a7:28:ed:ac:fb:88:2b:51:8f:7e:24:5c:9c:c1:aa: 99:8e:24:fb:c0:d6:2a:49:dc:0b:02:4a:13:0b:8b: 7d:fb:5c:88:ed:93:87:f9:6b:2e:51:36:15:ad:39: 64:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A5:16:C8:D7:1C:6E:62:9E:0A:00:6C:13:83:6E:3A:AB:32:36:DB X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/F6UWyNccbmKeCgBsE4NuOqsyNts.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.68.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:37:be:55:6e:11:0e:2f:ba:b4:73:56:c3:24:1d:d2:9c:ca: 56:06:ec:6b:10:48:d5:ef:fe:e4:65:bb:2c:9a:c5:32:ba:c9: ba:b5:0a:b0:21:02:75:45:c1:d8:34:9a:1b:d3:f3:d7:d1:b1: 70:fa:74:d6:43:f3:6f:fb:9c:3f:a8:8f:b0:db:4d:fd:28:5a: 05:da:3d:16:05:f7:1c:06:03:f9:8c:a9:39:aa:06:f1:02:03: 4f:0c:1d:78:9a:99:9f:b7:af:6c:df:35:36:59:ae:ff:2b:f6: d0:42:79:b4:f6:e8:06:a1:f1:f0:34:a4:e1:8b:75:f5:c4:de: bb:51:12:1b:5d:e2:2b:b8:55:b2:30:d8:52:fc:75:93:62:19: 5a:ca:81:e6:68:e9:b3:13:8d:53:05:19:4b:31:ab:b6:42:ba: 7c:cd:ff:e6:aa:d7:3b:79:fc:db:57:36:21:1b:fb:4f:25:b9: e9:e4:d7:ce:69:e5:11:58:9f:40:c7:e6:90:ea:c5:21:47:bc: 05:d4:1e:a1:f9:9c:40:90:e9:37:f8:86:33:b5:b8:f7:b3:6f: 5c:28:67:53:db:dc:95:97:3b:85:68:10:90:a0:a0:4a:74:91: 8d:32:49:0a:0c:a8:4d:3c:6e:9b:36:50:07:96:a3:97:7a:0c: 8d:eb:aa:29 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBdzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIxMFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMTdBNTE2QzhENzFDNkU2 MjlFMEEwMDZDMTM4MzZFM0FBQjMyMzZEQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMgJ0A0x1T7uoIe1t6cbijKr8gX+ORtGcklZB2cMknNJZuG1unkQ YnF01wNYNpzljppuScnjnHdZyhP0imKWDITQAEhRlvPWtrdQGQv+OuHaUhbOc4jK XT8X9VCQA7ZVAUFvMMDg7p5kAUeEjILCbCyshCo1UI6Qll19Zs0DPxM0spl6AEq7 ks9c6Iy+g6S1XLZM3ESjZieYIZe6AgA+Ium9+bKI+5Gu7JFfGpnCobfomEgkMXXw e9xJzba0Kt+4G8dHteKoYA8LUx2b9nW7VwlUpyjtrPuIK1GPfiRcnMGqmY4k+8DW KkncCwJKEwuLfftciO2Th/lrLlE2Fa05ZKECAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQXpRbI1xxuYp4KAGwTg246qzI22zAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L0Y2VVd5TmNjYm1LZUNnQnNFNE51T3FzeU50cy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGg+EQwDQYJKoZIhvcNAQELBQADggEBAEs3vlVuEQ4vurRzVsMkHdKcylYG7GsQ SNXv/uRluyyaxTK6ybq1CrAhAnVFwdg0mhvT89fRsXD6dNZD82/7nD+oj7DbTf0o WgXaPRYF9xwGA/mMqTmqBvECA08MHXiamZ+3r2zfNTZZrv8r9tBCebT26Aah8fA0 pOGLdfXE3rtREhtd4iu4VbIw2FL8dZNiGVrKgeZo6bMTjVMFGUsxq7ZCunzN/+aq 1zt5/NtXNiEb+08luenk185p5RFYn0DH5pDqxSFHvAXUHqH5nECQ6Tf4hjO1uPez b1woZ1Pb3JWXO4VoEJCgoEp0kY0ySQoMqE08bps2UAeWo5d6DI3rqik= -----END CERTIFICATE-----Generated at Wed Feb 19 22:30:10 2025 by rpki-client