$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/IYdLBu5UpmaXfTZoqLizODbbxrM.roa File: IYdLBu5UpmaXfTZoqLizODbbxrM.roa (raw, json) Hash identifier: dwcevgUNbYE+s/rPeALZ4E6klrqC1wrtTq85tXj4zxI= Subject key identifier: 21:87:4B:06:EE:54:A6:66:97:7D:36:68:A8:B8:B3:38:36:DB:C6:B3 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 40 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/IYdLBu5UpmaXfTZoqLizODbbxrM.roa Signing time: Thu 25 Jan 2024 01:06:33 +0000 ROA not before: Thu 25 Jan 2024 01:06:33 +0000 ROA not after: Tue 14 Jan 2025 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jan 25 01:06:33 2024 GMT Not After : Jan 14 01:30:02 2025 GMT Subject: CN=21874B06EE54A666977D3668A8B8B33836DBC6B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:29:cc:0f:d2:e5:62:87:83:6a:ad:b2:f6:39: d9:93:b2:60:fd:02:94:69:9e:64:8a:e5:90:68:be: 5e:7b:e9:dc:9a:d7:75:b7:6f:f7:14:e1:51:0c:bd: 6f:50:16:52:48:15:09:01:02:cc:69:d1:14:08:2c: 18:43:ce:fa:23:fc:3f:9e:e1:19:39:10:c2:2a:de: 0d:b5:5e:ff:b0:13:9e:8c:0a:4d:bb:fb:48:64:d6: d4:c6:4b:8c:43:54:3f:0b:03:c2:54:99:a8:02:8d: d9:91:6d:f7:0f:d3:13:d1:3f:4c:c0:84:6b:4a:73: 4a:0c:e1:fc:02:f3:c2:f1:77:df:1c:7b:3f:7a:54: 81:41:dc:2d:64:5b:1d:ed:7d:63:c6:a0:a7:86:d5: 21:a4:3e:3f:50:b7:0a:95:e9:ae:9c:65:2d:8a:98: ed:0c:32:a5:97:59:46:48:5e:76:18:88:3f:4c:6b: 63:d1:45:1d:c7:a9:45:13:22:17:e3:55:a3:eb:35: db:16:79:f5:af:c0:26:97:37:c7:7e:9f:c7:1b:68: b6:56:96:03:cd:bc:5d:5c:86:c6:c0:23:56:c5:4a: e9:02:c6:6e:92:f8:03:97:c7:2b:a7:00:fe:2b:17: a2:ad:d7:6f:8b:99:c0:d9:2c:69:02:f5:01:83:66: 63:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:87:4B:06:EE:54:A6:66:97:7D:36:68:A8:B8:B3:38:36:DB:C6:B3 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/IYdLBu5UpmaXfTZoqLizODbbxrM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.241.0/24 Signature Algorithm: sha256WithRSAEncryption 27:6e:7d:6b:b3:5d:51:f6:17:e7:10:85:2d:4c:10:ab:8f:62: e4:92:fe:b7:8b:07:e6:a6:b4:0d:91:65:7a:f5:51:83:a2:f9: 30:b7:a9:b6:87:84:85:4a:84:44:ce:59:1f:0c:df:68:03:d9: af:a6:d6:54:b7:2a:a6:72:f1:4c:3b:30:8f:8b:09:2d:b8:f3: db:5a:d5:af:0a:af:22:20:d1:2f:10:3b:1e:5c:71:67:c8:6d: 7b:4a:af:e5:ce:d2:b9:7d:a9:83:82:c0:2d:51:f8:55:17:3b: 57:29:f9:98:de:f5:a8:44:fe:20:9a:22:84:26:9f:79:a5:3e: 23:00:ed:3a:1a:3a:1d:dd:88:a4:6e:25:8a:ed:f6:0b:25:75: 94:bb:dc:c1:cd:12:61:2b:b2:ad:ca:61:20:aa:5e:1d:38:30: 60:79:60:f8:48:96:a9:d9:4a:e9:46:86:95:40:72:45:8b:b5: 49:50:6f:05:13:6d:ee:ec:ae:d5:9d:e4:38:0a:a9:3a:60:e6: 54:ff:0d:1e:39:81:d9:74:e1:74:d0:7a:17:c6:4c:95:b6:49: 74:f3:33:a0:3d:15:6f:c1:9b:d1:6a:2e:21:66:64:0e:21:b7: 78:dc:42:0a:75:7f:78:c3:5e:90:9c:63:b8:81:05:e4:58:e0: 3c:13:95:c5 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MDEyNTAx MDYzM1oXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoMjE4NzRCMDZFRTU0QTY2 Njk3N0QzNjY4QThCOEIzMzgzNkRCQzZCMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALUpzA/S5WKHg2qtsvY52ZOyYP0ClGmeZIrlkGi+Xnvp3JrXdbdv 9xThUQy9b1AWUkgVCQECzGnRFAgsGEPO+iP8P57hGTkQwireDbVe/7ATnowKTbv7 SGTW1MZLjENUPwsDwlSZqAKN2ZFt9w/TE9E/TMCEa0pzSgzh/ALzwvF33xx7P3pU gUHcLWRbHe19Y8agp4bVIaQ+P1C3CpXprpxlLYqY7QwypZdZRkhedhiIP0xrY9FF HcepRRMiF+NVo+s12xZ59a/AJpc3x36fxxtotlaWA828XVyGxsAjVsVK6QLGbpL4 A5fHK6cA/isXoq3Xb4uZwNksaQL1AYNmY6MCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQhh0sG7lSmZpd9NmiouLM4NtvGszAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L0lZZExCdTVVcG1hWGZUWm9xTGl6T0RiYnhyTS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACg+PEwDQYJKoZIhvcNAQELBQADggEBACdufWuzXVH2F+cQhS1MEKuPYuSS/reL B+amtA2RZXr1UYOi+TC3qbaHhIVKhETOWR8M32gD2a+m1lS3KqZy8Uw7MI+LCS24 89ta1a8KryIg0S8QOx5ccWfIbXtKr+XO0rl9qYOCwC1R+FUXO1cp+Zje9ahE/iCa IoQmn3mlPiMA7ToaOh3diKRuJYrt9gsldZS73MHNEmErsq3KYSCqXh04MGB5YPhI lqnZSulGhpVAckWLtUlQbwUTbe7srtWd5DgKqTpg5lT/DR45gdl04XTQehfGTJW2 SXTzM6A9FW/Bm9FqLiFmZA4ht3jcQgp1f3jDXpCcY7iBBeRY4DwTlcU= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:06 2024 by rpki-client on console-fra.rpki-client.org