$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/Sa4yOgLVQebCtsuSrsXBT7SlB6k.roa File: Sa4yOgLVQebCtsuSrsXBT7SlB6k.roa (raw, json) Hash identifier: A23uzJfg8pjHEHtSJSojcHx0a8hT8pvWUuCTNvtOgZk= Subject key identifier: 49:AE:32:3A:02:D5:41:E6:C2:B6:CB:92:AE:C5:C1:4F:B4:A5:07:A9 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 74 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Sa4yOgLVQebCtsuSrsXBT7SlB6k.roa Signing time: Sat 30 Nov 2024 01:32:09 +0000 ROA not before: Sat 30 Nov 2024 01:32:09 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:09 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=49AE323A02D541E6C2B6CB92AEC5C14FB4A507A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b5:fa:13:73:cc:91:49:2b:ed:1e:16:93:d4: a7:44:87:49:b5:11:03:03:69:fa:7a:0b:49:d7:97: 96:d2:73:07:d7:35:70:90:e9:e8:c3:a0:58:f2:4b: a7:c8:08:53:00:8f:97:50:c6:0d:ee:bf:d6:69:a2: 43:4b:a7:c5:31:a2:ff:5a:99:46:d3:35:db:bf:7b: 53:4f:77:2d:5b:07:99:28:98:e5:5c:82:8e:3e:cc: 54:00:71:ee:e6:28:f0:b4:06:3b:00:9d:05:79:58: e7:b4:3f:93:b7:7f:f3:64:fb:68:36:fc:25:1c:7b: 00:a4:f4:77:9f:b3:a6:45:dc:b3:d6:fe:c1:ee:b1: 18:2b:4c:3e:7c:be:ed:58:d8:aa:5a:1f:76:dc:8e: db:13:48:04:fe:7c:92:67:d9:09:26:7a:99:30:8c: 1d:ab:bf:8b:06:0f:0f:98:85:a8:42:86:c4:3e:22: 2c:f3:00:3d:1d:35:7f:39:7a:80:8d:39:48:e6:97: 9d:ed:61:38:62:ea:18:62:df:8d:55:7d:c2:29:fb: dd:80:b8:a2:68:1f:e0:4d:a4:d3:48:44:14:55:b7: a2:f3:2e:b1:01:a2:ef:ea:27:ce:e1:ae:3d:3e:fc: 68:41:a4:64:b6:43:87:97:62:0a:c7:b1:4e:ba:6f: 1f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AE:32:3A:02:D5:41:E6:C2:B6:CB:92:AE:C5:C1:4F:B4:A5:07:A9 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Sa4yOgLVQebCtsuSrsXBT7SlB6k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.16.0/20 Signature Algorithm: sha256WithRSAEncryption 77:f0:38:c6:0d:40:56:a0:29:6f:e9:b9:79:42:8b:eb:c7:b3: 42:26:0f:e4:23:80:fc:7f:d1:0b:4d:29:81:9a:83:ca:e5:6a: f2:ad:90:35:87:27:0e:60:20:b8:40:5b:3c:5a:26:12:34:41: 37:dc:5f:ef:25:62:e3:31:82:07:e3:23:c5:11:36:2a:c0:2e: 6f:b3:e9:3c:82:93:93:8c:2b:f4:79:2f:f6:1d:f5:f0:81:0b: 46:20:4c:4a:a5:73:75:c6:85:94:91:70:e7:94:6e:b3:2b:4b: 6b:b8:5d:6d:f8:93:d9:80:32:19:ce:36:1f:b4:3d:e1:c2:cf: 13:a7:d5:41:b7:83:bc:35:6d:87:8e:00:1e:b2:18:be:26:30: 7b:ea:74:fb:06:b0:4f:7f:4c:84:24:c3:25:0f:83:8a:42:e8: 6c:48:9e:b7:2b:e1:3b:25:05:cd:7e:12:1a:43:e5:8d:c9:e3: 53:41:37:7c:15:c6:71:7a:af:2d:04:e9:9a:7b:4c:da:d1:8f: cd:d6:98:a8:71:41:45:5b:a7:a8:74:ac:0b:90:99:da:62:f5: 8a:cb:e0:a9:5d:2b:5e:57:cb:6b:de:64:ef:51:ed:26:05:63: 9d:77:7b:99:36:c8:a6:4c:66:f6:33:f9:7e:83:42:f3:c9:b9: e2:af:27:a6 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBdDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwOVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoNDlBRTMyM0EwMkQ1NDFF NkMyQjZDQjkyQUVDNUMxNEZCNEE1MDdBOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL21+hNzzJFJK+0eFpPUp0SHSbURAwNp+noLSdeXltJzB9c1cJDp 6MOgWPJLp8gIUwCPl1DGDe6/1mmiQ0unxTGi/1qZRtM12797U093LVsHmSiY5VyC jj7MVABx7uYo8LQGOwCdBXlY57Q/k7d/82T7aDb8JRx7AKT0d5+zpkXcs9b+we6x GCtMPny+7VjYqlofdtyO2xNIBP58kmfZCSZ6mTCMHau/iwYPD5iFqEKGxD4iLPMA PR01fzl6gI05SOaXne1hOGLqGGLfjVV9win73YC4omgf4E2k00hEFFW3ovMusQGi 7+onzuGuPT78aEGkZLZDh5diCsexTrpvH2sCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBRJrjI6AtVB5sK2y5KuxcFPtKUHqTAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L1NhNHlPZ0xWUWViQ3RzdVNyc1hCVDdTbEI2ay5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BASg+BAwDQYJKoZIhvcNAQELBQADggEBAHfwOMYNQFagKW/puXlCi+vHs0ImD+Qj gPx/0QtNKYGag8rlavKtkDWHJw5gILhAWzxaJhI0QTfcX+8lYuMxggfjI8URNirA Lm+z6TyCk5OMK/R5L/Yd9fCBC0YgTEqlc3XGhZSRcOeUbrMrS2u4XW34k9mAMhnO Nh+0PeHCzxOn1UG3g7w1bYeOAB6yGL4mMHvqdPsGsE9/TIQkwyUPg4pC6GxInrcr 4TslBc1+EhpD5Y3J41NBN3wVxnF6ry0E6Zp7TNrRj83WmKhxQUVbp6h0rAuQmdpi 9YrL4KldK15Xy2veZO9R7SYFY513e5k2yKZMZvYz+X6DQvPJueKvJ6Y= -----END CERTIFICATE-----Generated at Wed Feb 19 22:45:00 2025 by rpki-client