$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/SCRQ7fRu0SB2ZzWCH_MeveDe7RE.roa File: SCRQ7fRu0SB2ZzWCH_MeveDe7RE.roa (raw, json) Hash identifier: hMyNFKM3yRGdzSLwAQPGok2xnJavDGSI3Zrq7P9DMnE= Subject key identifier: 48:24:50:ED:F4:6E:D1:20:76:67:35:82:1F:F3:1E:BD:E0:DE:ED:11 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 6C Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/SCRQ7fRu0SB2ZzWCH_MeveDe7RE.roa Signing time: Sat 30 Nov 2024 01:32:05 +0000 ROA not before: Sat 30 Nov 2024 01:32:05 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 157.65.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:05 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=482450EDF46ED120766735821FF31EBDE0DEED11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ed:3a:4a:19:52:08:26:5c:19:00:5f:db:51: 4d:b5:ec:bf:e3:43:34:be:7b:20:35:e7:f3:f2:b9: f6:80:a7:39:65:f0:90:16:26:ef:f1:eb:27:aa:c6: bf:59:28:a1:7a:9c:a1:8a:a1:72:bd:94:a1:3d:f0: d8:f3:5b:a3:f6:70:1c:5e:33:6c:50:d1:ea:b8:2c: f5:e5:59:f2:75:e5:0e:7f:fe:af:00:b3:2e:15:99: ee:ca:cf:0a:7e:c7:23:68:89:58:e9:ba:f8:ac:61: 3c:92:05:8a:4f:7f:3a:e3:21:9a:8d:3b:91:9d:66: af:63:0f:8b:c0:b7:3a:70:c2:38:82:84:86:60:d9: e7:75:e4:08:ba:1c:62:79:b4:67:f9:6a:a9:3e:82: 3c:fd:c1:a9:5c:c9:03:0e:64:d9:8f:fe:02:20:01: ec:ad:b3:d0:b9:e9:ee:e1:9a:e6:ff:66:6a:df:a9: 7c:87:d6:71:38:a4:5f:0f:fd:9e:05:4e:7d:fc:c2: 50:f8:34:ea:f2:fe:e4:2d:d0:33:81:72:07:7a:b6: aa:fb:04:25:a0:0f:2b:b9:4c:47:1e:54:ef:22:ba: 1a:6e:8b:03:ec:56:62:26:85:f5:89:13:c2:d5:00: d7:4b:a0:58:db:0a:6f:f9:cd:a0:7f:d3:32:c8:57: c9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:24:50:ED:F4:6E:D1:20:76:67:35:82:1F:F3:1E:BD:E0:DE:ED:11 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/SCRQ7fRu0SB2ZzWCH_MeveDe7RE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.64.0/18 Signature Algorithm: sha256WithRSAEncryption 5f:28:8a:3b:16:df:af:5b:5a:a7:54:49:9b:da:96:80:f8:55: 8e:9b:af:c5:11:ef:fa:e9:8e:d9:48:39:7b:19:75:e5:f5:d5: e0:de:f2:bc:62:3a:ed:bf:41:8a:1e:0c:3e:03:34:5d:ee:20: 7f:71:7f:14:cb:c6:e4:5f:64:74:72:b0:49:5c:85:ea:d9:15: c7:b1:a5:88:f5:e8:a7:1d:de:dd:31:8c:56:46:de:c9:66:f5: b1:36:e2:75:df:90:7f:23:05:2c:83:8d:2d:e1:7c:13:3d:e0: 73:8c:99:16:60:44:3c:fd:4f:85:a4:32:7b:06:73:77:7e:01: 26:c3:a9:4a:cb:4b:e8:8a:0a:0d:5f:01:b5:35:3b:79:07:0b: 9c:9a:d1:d1:92:60:0e:cc:f5:c0:d0:9a:50:3c:02:1a:ed:6b: c4:5c:dd:29:e0:dd:08:09:cb:9b:c6:c6:b6:12:33:f8:23:35: 6a:79:e8:71:5f:d4:91:64:0a:91:56:c3:f7:80:7f:79:62:24: 87:3b:23:5b:e7:a9:58:84:9a:ec:84:77:f2:39:04:e0:e3:79: fb:73:76:97:24:76:6e:32:21:60:ed:cd:51:d6:85:3f:3f:7f: c8:27:37:a7:1f:e6:3f:02:9b:ae:9d:4c:c2:3d:87:0d:35:67: 4f:65:84:5b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBbDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwNVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoNDgyNDUwRURGNDZFRDEy MDc2NjczNTgyMUZGMzFFQkRFMERFRUQxMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALTtOkoZUggmXBkAX9tRTbXsv+NDNL57IDXn8/K59oCnOWXwkBYm 7/HrJ6rGv1kooXqcoYqhcr2UoT3w2PNbo/ZwHF4zbFDR6rgs9eVZ8nXlDn/+rwCz LhWZ7srPCn7HI2iJWOm6+KxhPJIFik9/OuMhmo07kZ1mr2MPi8C3OnDCOIKEhmDZ 53XkCLocYnm0Z/lqqT6CPP3BqVzJAw5k2Y/+AiAB7K2z0Lnp7uGa5v9mat+pfIfW cTikXw/9ngVOffzCUPg06vL+5C3QM4FyB3q2qvsEJaAPK7lMRx5U7yK6Gm6LA+xW YiaF9YkTwtUA10ugWNsKb/nNoH/TMshXybsCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBRIJFDt9G7RIHZnNYIf8x694N7tETAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L1NDUlE3ZlJ1MFNCMlp6V0NIX01ldmVEZTdSRS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAadQUAwDQYJKoZIhvcNAQELBQADggEBAF8oijsW369bWqdUSZvaloD4VY6br8UR 7/rpjtlIOXsZdeX11eDe8rxiOu2/QYoeDD4DNF3uIH9xfxTLxuRfZHRysElcherZ FcexpYj16Kcd3t0xjFZG3slm9bE24nXfkH8jBSyDjS3hfBM94HOMmRZgRDz9T4Wk MnsGc3d+ASbDqUrLS+iKCg1fAbU1O3kHC5ya0dGSYA7M9cDQmlA8Ahrta8Rc3Sng 3QgJy5vGxrYSM/gjNWp56HFf1JFkCpFWw/eAf3liJIc7I1vnqViEmuyEd/I5BODj eftzdpckdm4yIWDtzVHWhT8/f8gnN6cf5j8Cm66dTMI9hw01Z09lhFs= -----END CERTIFICATE-----Generated at Wed Feb 19 22:29:57 2025 by rpki-client