$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/IQMJd1fpoaVIIfDT0lnFvN_Kjog.roa File: IQMJd1fpoaVIIfDT0lnFvN_Kjog.roa (raw, json) Hash identifier: s7cE3MgF9YPD8CzLAILbYFHpIPU5Keri0fNefHppELE= Subject key identifier: 21:03:09:77:57:E9:A1:A5:48:21:F0:D3:D2:59:C5:BC:DF:CA:8E:88 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 5F Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/IQMJd1fpoaVIIfDT0lnFvN_Kjog.roa Signing time: Thu 31 Oct 2024 01:28:38 +0000 ROA not before: Thu 31 Oct 2024 01:28:38 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2514 IP address blocks: 23.232.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Oct 31 01:28:38 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=2103097757E9A1A54821F0D3D259C5BCDFCA8E88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:28:67:29:6d:a1:8d:c3:44:10:c7:bb:41:62: 29:55:0a:45:37:cd:49:60:d9:32:2d:0a:77:27:2e: b9:4a:5a:e6:66:55:16:e4:6f:73:a1:4d:f0:22:da: f9:71:66:63:f3:5a:d6:18:db:bb:2b:c0:37:7a:d4: 7d:93:3c:88:d9:de:84:de:a5:a6:36:8d:b9:2c:5e: 45:5f:96:af:f7:6f:6b:5b:64:f8:50:81:09:2a:e7: a5:db:48:26:69:e5:14:ba:60:aa:2c:0e:f7:f0:3f: 27:bb:c5:b5:b2:05:61:b1:9a:13:6e:3b:1a:bf:8a: 1f:40:c8:0f:65:51:28:d0:a7:e8:0e:95:85:e3:2c: 1a:1c:79:58:57:56:97:7a:d3:68:32:42:35:f4:de: f5:81:6b:54:75:d7:a1:10:65:13:51:6b:a4:cc:21: 66:27:2f:7f:57:3b:27:7d:4b:d8:fb:46:38:fe:ea: 25:9a:6a:cd:e4:db:86:c5:c8:82:3b:f7:60:65:9c: 32:15:eb:68:7e:c7:6c:b0:ad:14:16:d8:35:d9:10: 3e:67:6b:b5:6b:c1:5b:a2:1f:ec:cd:19:5f:86:1f: 54:04:b3:e3:3d:f5:8e:11:79:af:df:e3:78:48:56: 49:93:ef:5e:a5:41:bf:aa:b3:7a:93:fc:5c:47:1b: cd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:03:09:77:57:E9:A1:A5:48:21:F0:D3:D2:59:C5:BC:DF:CA:8E:88 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/IQMJd1fpoaVIIfDT0lnFvN_Kjog.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 23.232.128.0/17 Signature Algorithm: sha256WithRSAEncryption a8:2c:af:e3:8e:bd:c0:6c:cf:05:0a:c5:25:3e:db:cb:26:a6: 9b:46:67:64:e2:18:e8:5a:69:ee:e5:ed:ca:ce:a2:cc:fb:d5: 73:c4:54:e8:a0:02:43:c0:75:e4:57:b6:c0:63:12:3e:8d:57: fc:d8:99:4e:a4:19:b3:50:50:ec:01:3e:88:14:1d:1e:bc:ce: 88:72:77:8d:09:88:65:d5:28:44:44:5b:b5:ac:10:1c:6b:d8: 14:98:a9:b6:89:c1:1d:02:d1:21:81:6c:58:ae:45:af:01:c0: 4d:db:fc:07:13:33:e3:38:94:f9:51:b2:7e:67:8b:48:3d:f8: 6b:10:dc:85:ff:bd:68:b6:67:74:9e:1c:2b:eb:04:81:8f:4c: dd:b8:98:66:02:65:91:06:05:18:1f:38:5b:63:31:44:13:8f: 30:c5:d3:07:4a:ba:8e:42:5e:77:c0:da:b0:89:3f:35:5f:21: 8d:22:2a:8f:4f:bf:3c:a1:bc:fd:e4:53:77:c7:5a:48:93:b4: e1:87:80:34:2f:7b:90:63:d9:5d:f2:94:8b:93:6f:27:45:fe: f3:0e:a8:a9:6c:3e:3c:ca:5f:41:00:ba:02:5a:0d:39:7f:84: 71:4a:d1:c6:55:c0:24:b7:0f:49:64:c8:ff:26:ed:3d:92:8e: 6f:be:15:01 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTAzMTAx MjgzOFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoMjEwMzA5Nzc1N0U5QTFB NTQ4MjFGMEQzRDI1OUM1QkNERkNBOEU4ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANAoZyltoY3DRBDHu0FiKVUKRTfNSWDZMi0KdycuuUpa5mZVFuRv c6FN8CLa+XFmY/Na1hjbuyvAN3rUfZM8iNnehN6lpjaNuSxeRV+Wr/dva1tk+FCB CSrnpdtIJmnlFLpgqiwO9/A/J7vFtbIFYbGaE247Gr+KH0DID2VRKNCn6A6VheMs Ghx5WFdWl3rTaDJCNfTe9YFrVHXXoRBlE1FrpMwhZicvf1c7J31L2PtGOP7qJZpq zeTbhsXIgjv3YGWcMhXraH7HbLCtFBbYNdkQPmdrtWvBW6If7M0ZX4YfVASz4z31 jhF5r9/jeEhWSZPvXqVBv6qzepP8XEcbza8CAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQhAwl3V+mhpUgh8NPSWcW838qOiDAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L0lRTUpkMWZwb2FWSUlmRFQwbG5Gdk5fS2pvZy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAcX6IAwDQYJKoZIhvcNAQELBQADggEBAKgsr+OOvcBszwUKxSU+28smpptGZ2Ti GOhaae7l7crOosz71XPEVOigAkPAdeRXtsBjEj6NV/zYmU6kGbNQUOwBPogUHR68 zohyd40JiGXVKEREW7WsEBxr2BSYqbaJwR0C0SGBbFiuRa8BwE3b/AcTM+M4lPlR sn5ni0g9+GsQ3IX/vWi2Z3SeHCvrBIGPTN24mGYCZZEGBRgfOFtjMUQTjzDF0wdK uo5CXnfA2rCJPzVfIY0iKo9PvzyhvP3kU3fHWkiTtOGHgDQve5Bj2V3ylIuTbydF /vMOqKlsPjzKX0EAugJaDTl/hHFK0cZVwCS3D0lkyP8m7T2Sjm++FQE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:25:58 2025 by rpki-client