$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/Rj6nC6I05EWJvg6lSyVOvuPCmk0.roa File: Rj6nC6I05EWJvg6lSyVOvuPCmk0.roa (raw, json) Hash identifier: 7rX33Ny3bfuNahgvCOSNtQdeH+80uNGc7rNE1AONwvc= Subject key identifier: 46:3E:A7:0B:A2:34:E4:45:89:BE:0E:A5:4B:25:4E:BE:E3:C2:9A:4D Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 8E Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Rj6nC6I05EWJvg6lSyVOvuPCmk0.roa Signing time: Tue 31 Dec 2024 01:31:09 +0000 ROA not before: Tue 31 Dec 2024 01:31:09 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:09 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=463EA70BA234E44589BE0EA54B254EBEE3C29A4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a5:ad:66:de:90:90:65:64:d8:1e:f3:96:31: ad:a8:03:24:ff:20:2a:0e:8f:17:14:96:df:75:b8: 2b:06:c8:ac:91:dc:4c:5a:95:8d:9d:7f:db:6b:ea: b7:89:3c:ca:02:01:03:79:a1:0a:ba:c1:97:a0:21: dd:d3:7e:44:00:d3:3d:63:7a:ba:56:99:73:c4:7b: 48:2f:f6:a5:fd:a1:06:0b:d6:c1:4e:1d:15:61:11: 54:91:3d:6a:13:33:6e:75:11:67:4b:f7:0f:83:92: ce:d9:d9:79:4c:41:ac:c5:d7:8e:9f:80:ce:9b:4a: 0b:cc:9b:9c:d7:4c:3e:d3:1f:c1:30:2d:e3:9b:91: c5:30:1a:9d:78:2b:30:65:60:28:44:5c:b7:24:d9: f8:f3:20:64:a5:a0:43:8a:eb:6d:10:02:a4:e0:d1: 99:4e:6e:b2:cd:fd:ec:aa:5f:f8:d8:40:2d:66:32: 2e:8b:ad:3c:2e:f7:08:86:d0:48:12:d6:8d:73:f6: 3f:3d:36:dc:ec:93:2d:ad:ee:6b:c3:3a:8f:19:34: 53:63:0c:90:60:e3:4a:d6:13:1b:56:89:ed:8d:ad: 82:7c:90:92:50:9c:c3:90:0c:2f:31:81:15:5e:4d: e7:12:5f:20:23:df:06:d9:26:9b:b6:82:93:2f:b4: 9c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:3E:A7:0B:A2:34:E4:45:89:BE:0E:A5:4B:25:4E:BE:E3:C2:9A:4D X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Rj6nC6I05EWJvg6lSyVOvuPCmk0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.242.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:75:03:62:dd:8d:da:60:c9:c1:84:d1:8a:f4:9a:5e:f4:4e: 59:f1:fd:f4:ed:2a:91:c3:c9:c4:02:d7:d6:3e:42:0f:ff:dd: 0a:38:3a:b8:bb:e7:67:70:7f:2e:d0:f7:c9:4d:67:35:61:b9: dd:05:03:92:5e:42:59:5a:2f:83:a0:dc:71:7a:01:0f:48:2d: c7:d4:51:13:95:30:ae:52:b9:9b:3b:24:34:39:6b:e2:cc:d2: 94:e0:b8:93:6b:9c:8a:fb:01:24:7e:7b:96:49:bc:93:ba:8f: 33:bb:33:5d:3f:d0:90:59:16:ff:12:aa:b3:1c:85:f9:7a:9d: a4:05:58:be:65:e4:ad:01:06:ac:e3:a8:e4:1c:7b:d0:62:6b: e3:f4:46:b5:2d:73:01:3b:8c:de:11:95:20:a2:35:09:c3:cd: 78:82:a4:fe:c0:c6:52:9a:ad:36:02:a2:40:ef:fe:f1:f5:6b: c0:cd:61:69:00:d3:01:45:c6:d3:32:49:7f:c7:4f:aa:01:50: ec:58:af:36:5c:80:eb:16:9b:44:c6:80:42:32:4c:16:4a:a8: b4:a2:7e:1d:83:68:64:a6:d6:ae:50:8a:9f:78:78:07:e7:34: 9c:c7:d7:90:5a:26:5f:ec:52:6c:ab:21:ff:a3:df:2b:9d:41: 53:46:65:45 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMDlaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQ2M0VBNzBCQTIzNEU0 NDU4OUJFMEVBNTRCMjU0RUJFRTNDMjlBNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0pa1m3pCQZWTYHvOWMa2oAyT/ICoOjxcUlt91uCsGyKyR3Exa lY2df9tr6reJPMoCAQN5oQq6wZegId3TfkQA0z1jerpWmXPEe0gv9qX9oQYL1sFO HRVhEVSRPWoTM251EWdL9w+Dks7Z2XlMQazF146fgM6bSgvMm5zXTD7TH8EwLeOb kcUwGp14KzBlYChEXLck2fjzIGSloEOK620QAqTg0ZlObrLN/eyqX/jYQC1mMi6L rTwu9wiG0EgS1o1z9j89Ntzsky2t7mvDOo8ZNFNjDJBg40rWExtWie2NrYJ8kJJQ nMOQDC8xgRVeTecSXyAj3wbZJpu2gpMvtJyTAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQURj6nC6I05EWJvg6lSyVOvuPCmk0wHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9SajZuQzZJMDVFV0p2ZzZsU3lWT3Z1UENtazAucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBoPjyMA0GCSqGSIb3DQEBCwUAA4IBAQA8dQNi3Y3aYMnBhNGK9Jpe9E5Z8f30 7SqRw8nEAtfWPkIP/90KODq4u+dncH8u0PfJTWc1YbndBQOSXkJZWi+DoNxxegEP SC3H1FETlTCuUrmbOyQ0OWvizNKU4LiTa5yK+wEkfnuWSbyTuo8zuzNdP9CQWRb/ EqqzHIX5ep2kBVi+ZeStAQas46jkHHvQYmvj9Ea1LXMBO4zeEZUgojUJw814gqT+ wMZSmq02AqJA7/7x9WvAzWFpANMBRcbTMkl/x0+qAVDsWK82XIDrFptExoBCMkwW Sqi0on4dg2hkptauUIqfeHgH5zScx9eQWiZf7FJsqyH/o98rnUFTRmVF -----END CERTIFICATE-----Generated at Wed Feb 19 22:35:38 2025 by rpki-client