$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/LO4E3tVx9N7tBv5i2UUh7ZgBnYM.roa File: LO4E3tVx9N7tBv5i2UUh7ZgBnYM.roa (raw, json) Hash identifier: zJSnj1FVdCmP/WMXqCOFr7o6Tfoc4/h/Mt7csT2xdnk= Subject key identifier: 2C:EE:04:DE:D5:71:F4:DE:ED:06:FE:62:D9:45:21:ED:98:01:9D:83 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 6D Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/LO4E3tVx9N7tBv5i2UUh7ZgBnYM.roa Signing time: Sat 30 Nov 2024 01:32:06 +0000 ROA not before: Sat 30 Nov 2024 01:32:06 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 157.65.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:06 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=2CEE04DED571F4DEED06FE62D94521ED98019D83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e6:d9:fe:50:97:48:bb:f9:6a:71:03:8b:84: 52:88:a6:45:a5:86:0d:fb:7d:20:4b:d9:4c:ec:bb: 65:1e:a5:95:92:a7:66:ca:c5:44:cf:6e:80:61:a9: 37:88:41:1a:63:58:f9:4a:6d:16:f2:05:ac:d4:69: 6b:75:70:17:23:6c:2b:03:1b:4d:a4:51:f6:3f:46: 3b:e8:1a:2d:5f:b8:09:e3:b2:85:5c:d7:a0:f3:88: e5:11:ae:24:e9:47:64:4c:e8:b6:a4:01:f1:a8:d0: df:ba:4e:9b:cb:5b:e5:70:c2:80:64:e2:56:74:0b: b3:8b:9e:a9:c9:2f:01:13:a9:19:20:b8:29:fe:9e: 69:52:83:a8:ab:0b:f5:a4:9d:2a:d1:d1:b4:93:8c: ba:e3:d1:84:2f:ab:ad:b9:58:c4:8d:84:fa:8a:57: 98:dd:b4:43:03:3e:4e:91:e1:e0:35:f9:ab:e7:4f: f3:40:7c:de:af:d8:70:33:97:a9:7b:da:fb:8e:49: 6c:fb:25:ff:39:32:71:e4:4a:5f:b5:d4:09:1b:32: 2e:e6:26:95:85:42:96:58:05:44:0d:09:0b:89:38: 5c:01:67:34:9f:0c:eb:a9:0a:78:b3:8d:78:96:b7: 70:5c:ec:01:f3:16:e8:c2:e8:7e:04:66:a9:80:55: b3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:EE:04:DE:D5:71:F4:DE:ED:06:FE:62:D9:45:21:ED:98:01:9D:83 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/LO4E3tVx9N7tBv5i2UUh7ZgBnYM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.128.0/19 Signature Algorithm: sha256WithRSAEncryption 76:d1:ff:64:f1:81:bf:ad:a3:81:69:f4:03:03:2a:d0:09:b3: e5:b1:c7:65:c7:4d:e2:6f:10:38:02:6c:a6:fe:97:02:53:73: bf:63:14:36:2b:c9:46:01:9d:36:31:55:d2:84:75:d0:13:a5: ea:e1:cb:9b:d5:21:bf:a2:56:8e:b0:1e:90:ea:d4:d2:71:d7: dd:49:b6:a0:b5:20:bb:ca:49:5b:54:ea:7b:e8:27:e3:3e:58: fb:49:c6:1c:55:b0:b7:ee:6e:dd:65:8e:a8:c7:58:a5:68:f2: 69:d5:95:08:5e:e2:fb:06:ee:df:d8:93:3e:b4:21:02:74:e8: 42:51:61:88:d3:25:6e:30:1e:db:7e:66:3d:70:7a:11:a8:f0: 3b:af:81:ba:8c:b4:11:ec:99:bd:31:ea:1f:9f:b1:29:f2:38: c4:ff:1b:81:35:0b:68:a9:d9:d1:57:2d:13:07:9c:db:19:f3: ac:70:70:f6:06:5b:05:50:8e:38:c0:0f:84:14:85:e4:16:69: dc:d8:c8:df:a3:5a:2d:48:4d:84:a4:2a:cf:53:64:7e:64:52: 25:2a:c3:5c:24:a3:16:67:77:e9:f3:87:ed:aa:d6:7c:fb:32: 30:cd:d9:07:19:c3:26:f4:30:2d:e2:56:ff:77:5d:15:3d:ff: 58:2b:06:7e -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBbTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwNloXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMkNFRTA0REVENTcxRjRE RUVEMDZGRTYyRDk0NTIxRUQ5ODAxOUQ4MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL/m2f5Ql0i7+WpxA4uEUoimRaWGDft9IEvZTOy7ZR6llZKnZsrF RM9ugGGpN4hBGmNY+UptFvIFrNRpa3VwFyNsKwMbTaRR9j9GO+gaLV+4CeOyhVzX oPOI5RGuJOlHZEzotqQB8ajQ37pOm8tb5XDCgGTiVnQLs4ueqckvAROpGSC4Kf6e aVKDqKsL9aSdKtHRtJOMuuPRhC+rrblYxI2E+opXmN20QwM+TpHh4DX5q+dP80B8 3q/YcDOXqXva+45JbPsl/zkyceRKX7XUCRsyLuYmlYVCllgFRA0JC4k4XAFnNJ8M 66kKeLONeJa3cFzsAfMW6MLofgRmqYBVs7sCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQs7gTe1XH03u0G/mLZRSHtmAGdgzAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L0xPNEUzdFZ4OU43dEJ2NWkyVVVoN1pnQm5ZTS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAWdQYAwDQYJKoZIhvcNAQELBQADggEBAHbR/2Txgb+to4Fp9AMDKtAJs+Wxx2XH TeJvEDgCbKb+lwJTc79jFDYryUYBnTYxVdKEddATperhy5vVIb+iVo6wHpDq1NJx 191JtqC1ILvKSVtU6nvoJ+M+WPtJxhxVsLfubt1ljqjHWKVo8mnVlQhe4vsG7t/Y kz60IQJ06EJRYYjTJW4wHtt+Zj1wehGo8DuvgbqMtBHsmb0x6h+fsSnyOMT/G4E1 C2ip2dFXLRMHnNsZ86xwcPYGWwVQjjjAD4QUheQWadzYyN+jWi1ITYSkKs9TZH5k UiUqw1wkoxZnd+nzh+2q1nz7MjDN2QcZwyb0MC3iVv93XRU9/1grBn4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:53 2025 by rpki-client