$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/KMCrUMwkqS10nU-BqJInjErIt4Y.roa File: KMCrUMwkqS10nU-BqJInjErIt4Y.roa (raw, json) Hash identifier: yj2gAF1S8fX4dXq54DkDJf+B93acM4Q7CksT0Gf3UZ4= Subject key identifier: 28:C0:AB:50:CC:24:A9:2D:74:9D:4F:81:A8:92:27:8C:4A:C8:B7:86 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 66 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/KMCrUMwkqS10nU-BqJInjErIt4Y.roa Signing time: Sat 30 Nov 2024 01:32:01 +0000 ROA not before: Sat 30 Nov 2024 01:32:01 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 143.125.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:01 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=28C0AB50CC24A92D749D4F81A892278C4AC8B786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d9:8b:ef:7a:e0:63:cb:43:6c:bf:a7:33:07: 35:8e:19:db:18:dc:32:43:03:85:1a:78:fa:da:ef: 10:1b:b7:c3:37:64:ef:6a:35:52:d7:97:3f:06:8c: 71:81:d6:e1:4a:25:a6:2c:63:79:f9:b3:0f:1d:48: 96:c8:95:80:69:3d:d2:68:47:9e:58:4b:8d:7e:5b: ce:fc:b7:13:73:e0:73:41:24:43:7f:d2:d2:22:c8: be:ec:a9:27:38:5f:19:77:58:7a:80:1c:73:a7:b8: 07:da:ed:5c:11:96:f1:85:a1:06:4c:bc:e7:41:fd: f9:83:6f:da:11:63:5f:7e:9d:f0:42:53:66:ae:61: cc:94:58:a3:f1:4c:89:25:50:ce:9e:4e:55:d2:dd: 58:ce:6a:c9:50:da:e6:85:20:ea:41:72:13:4f:82: f4:34:24:f3:85:ee:1e:c6:cf:94:b0:cb:c6:4d:5e: 68:59:9c:81:3d:ac:dd:09:9f:5b:e5:d6:b3:45:8b: f9:71:f6:2c:9d:cc:7b:6a:ce:94:32:85:04:dd:1d: 6f:85:87:38:f3:f0:f1:86:10:a4:25:e7:a8:fa:dc: 39:bb:46:dc:e2:25:ff:c1:01:39:07:e0:a3:53:46: a9:0f:ae:01:ac:c9:58:f8:fd:07:37:2b:ea:0f:5c: 4b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C0:AB:50:CC:24:A9:2D:74:9D:4F:81:A8:92:27:8C:4A:C8:B7:86 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/KMCrUMwkqS10nU-BqJInjErIt4Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.125.212.0/22 Signature Algorithm: sha256WithRSAEncryption 53:c0:f8:50:a3:1b:bb:50:d3:af:96:ee:89:70:af:d7:c7:5b: f9:74:21:bc:e1:aa:0c:8e:ee:d2:d3:aa:f6:91:bb:17:14:46: 86:e9:07:9f:ed:88:cd:7c:aa:ff:f3:ba:48:1c:1d:51:eb:7e: 8b:ff:78:ae:da:94:b3:b1:f3:42:72:43:df:ac:3d:db:de:bd: 72:f8:4c:7b:b9:e7:40:da:74:af:f4:86:d9:1f:51:17:7e:34: 71:96:a2:e5:fc:8c:d0:19:d9:d6:43:dd:6e:a8:f9:27:75:53: 5a:e8:3c:7c:1e:ff:00:af:a7:68:29:0e:ad:88:f2:e5:13:8c: 38:cc:6d:c4:8f:0f:27:6e:26:d0:a6:00:95:12:f9:9d:84:fd: 10:0b:ce:46:e1:7a:8f:23:73:3b:73:d1:b7:f5:91:20:dc:f3: bb:31:a3:78:f6:34:90:cb:ad:98:0c:93:04:c3:46:b3:7e:b1: 51:a2:59:3c:48:0b:16:b8:4b:17:c4:d7:d0:d9:f0:6e:fe:35: 6d:e1:e3:3a:80:b5:b0:9c:3c:aa:b6:eb:be:b2:d6:ad:b5:89: a4:a3:b6:34:83:62:f5:2e:a1:e7:91:d8:a0:26:5a:5e:67:0b: 51:ec:b9:ec:c3:fd:55:1f:e6:02:2d:e8:9e:d6:b2:a2:32:be: 97:f7:48:d7 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwMVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMjhDMEFCNTBDQzI0QTky RDc0OUQ0RjgxQTg5MjI3OEM0QUM4Qjc4NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMTZi+964GPLQ2y/pzMHNY4Z2xjcMkMDhRp4+trvEBu3wzdk72o1 UteXPwaMcYHW4UolpixjefmzDx1IlsiVgGk90mhHnlhLjX5bzvy3E3Pgc0EkQ3/S 0iLIvuypJzhfGXdYeoAcc6e4B9rtXBGW8YWhBky850H9+YNv2hFjX36d8EJTZq5h zJRYo/FMiSVQzp5OVdLdWM5qyVDa5oUg6kFyE0+C9DQk84XuHsbPlLDLxk1eaFmc gT2s3QmfW+XWs0WL+XH2LJ3Me2rOlDKFBN0db4WHOPPw8YYQpCXnqPrcObtG3OIl /8EBOQfgo1NGqQ+uAazJWPj9Bzcr6g9cS+ECAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQowKtQzCSpLXSdT4GokieMSsi3hjAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L0tNQ3JVTXdrcVMxMG5VLUJxSkluakVySXQ0WS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAKPfdQwDQYJKoZIhvcNAQELBQADggEBAFPA+FCjG7tQ06+W7olwr9fHW/l0Ibzh qgyO7tLTqvaRuxcURobpB5/tiM18qv/zukgcHVHrfov/eK7alLOx80JyQ9+sPdve vXL4THu550DadK/0htkfURd+NHGWouX8jNAZ2dZD3W6o+Sd1U1roPHwe/wCvp2gp Dq2I8uUTjDjMbcSPDyduJtCmAJUS+Z2E/RALzkbheo8jcztz0bf1kSDc87sxo3j2 NJDLrZgMkwTDRrN+sVGiWTxICxa4SxfE19DZ8G7+NW3h4zqAtbCcPKq2676y1q21 iaSjtjSDYvUuoeeR2KAmWl5nC1HsuezD/VUf5gIt6J7WsqIyvpf3SNc= -----END CERTIFICATE-----Generated at Wed Feb 19 22:38:20 2025 by rpki-client