$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/UTJCbxXPGDf13Y-aafhKQ4qnA0A.roa File: UTJCbxXPGDf13Y-aafhKQ4qnA0A.roa (raw, json) Hash identifier: LtiQVBmt5YZM9Cmx4N/0p9fPjHJCymxtd7arDzwlQ8Y= Subject key identifier: 51:32:42:6F:15:CF:18:37:F5:DD:8F:9A:69:F8:4A:43:8A:A7:03:40 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 83 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/UTJCbxXPGDf13Y-aafhKQ4qnA0A.roa Signing time: Sat 30 Nov 2024 01:32:16 +0000 ROA not before: Sat 30 Nov 2024 01:32:16 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:16 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=5132426F15CF1837F5DD8F9A69F84A438AA70340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:8b:24:8c:8b:51:02:13:30:1a:d7:f1:f8:35: bd:08:88:27:95:c0:74:5a:ba:97:52:ac:bf:32:c5: eb:67:f5:83:60:88:6c:09:63:5d:6c:3a:81:e1:1b: 1c:a5:c9:cd:92:46:1b:7f:b5:dd:6d:ed:aa:e5:e6: 99:2a:bd:2e:f5:4f:e2:36:4e:35:9b:0f:84:9f:30: a9:69:f1:f4:78:fe:fa:84:ea:33:3d:79:5b:0e:12: 4f:94:83:8c:51:8c:fb:e9:4b:6f:c0:44:4b:a5:06: 3b:60:af:35:09:2e:e2:84:0b:84:6d:c2:f9:bd:65: d4:4c:73:cb:68:1f:c8:4a:6f:0f:39:50:2d:d4:a9: 63:93:0b:08:b0:2f:2d:df:ee:8f:92:9d:78:d7:3d: bb:4d:7a:b8:d1:67:4d:3b:e7:c7:3e:87:ed:84:5a: 0a:37:11:40:07:09:4c:bd:9a:3f:0b:e1:af:5b:49: 50:14:be:2c:71:3d:7a:29:06:e9:b6:4f:2c:bb:11: 8b:8a:7a:d5:cb:fd:a5:71:d1:9b:cc:ea:73:43:05: 27:4c:b1:fe:ea:77:f5:2b:09:aa:bc:b7:75:81:fc: 77:4d:20:f1:f9:3e:42:34:8d:06:93:18:0c:25:86: 74:f0:77:46:c6:58:84:45:8f:1d:fa:c2:54:d3:23: c3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:32:42:6F:15:CF:18:37:F5:DD:8F:9A:69:F8:4A:43:8A:A7:03:40 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/UTJCbxXPGDf13Y-aafhKQ4qnA0A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.160.0/20 Signature Algorithm: sha256WithRSAEncryption b8:1d:9e:86:b6:97:f7:25:35:5b:97:be:c1:83:c4:b0:50:fb: ff:b1:0c:3f:60:02:0a:26:bf:fd:b4:e3:ba:cf:aa:bc:b2:de: cf:b9:a6:e5:70:f1:0f:8e:ea:0f:15:5a:ab:7d:d3:64:d7:2f: 3c:20:bb:01:b5:65:84:76:68:11:87:a7:c4:c2:19:4f:34:80: 83:49:a5:d7:79:99:40:cd:72:d4:19:11:be:72:a4:39:45:87: 2b:40:a3:6d:c8:c7:02:5a:77:47:c2:e6:7b:bf:cc:69:f0:a9: 45:cc:99:07:3e:ed:92:e1:32:f5:3d:d4:99:45:34:8e:c6:1e: 3b:e0:5e:f8:3c:86:94:61:4c:f8:20:87:e1:89:74:56:5e:63: 09:46:cb:ad:35:2f:89:eb:b5:12:fb:3c:cf:f8:ab:f4:2d:24: a0:b0:37:32:48:15:f7:d5:89:59:f0:40:7f:df:02:38:2e:a3: be:dc:a9:af:d3:4c:3c:1c:ad:3c:88:3c:db:e5:47:1c:d7:84: 54:bc:96:d7:82:fb:9e:06:12:ef:e7:6a:07:d5:b1:bc:ec:4d: 49:0a:92:28:88:b6:4f:f1:3e:69:4f:eb:32:80:4b:6c:bf:62: b2:99:5f:c0:d2:ff:77:5c:60:e0:91:ba:5a:f7:0e:27:4f:86: f4:34:cd:aa -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDExMzAw MTMyMTZaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDUxMzI0MjZGMTVDRjE4 MzdGNUREOEY5QTY5Rjg0QTQzOEFBNzAzNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjiySMi1ECEzAa1/H4Nb0IiCeVwHRaupdSrL8yxetn9YNgiGwJ Y11sOoHhGxylyc2SRht/td1t7arl5pkqvS71T+I2TjWbD4SfMKlp8fR4/vqE6jM9 eVsOEk+Ug4xRjPvpS2/AREulBjtgrzUJLuKEC4Rtwvm9ZdRMc8toH8hKbw85UC3U qWOTCwiwLy3f7o+SnXjXPbtNerjRZ00758c+h+2EWgo3EUAHCUy9mj8L4a9bSVAU vixxPXopBum2Tyy7EYuKetXL/aVx0ZvM6nNDBSdMsf7qd/UrCaq8t3WB/HdNIPH5 PkI0jQaTGAwlhnTwd0bGWIRFjx36wlTTI8PjAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUUTJCbxXPGDf13Y+aafhKQ4qnA0AwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9VVEpDYnhYUEdEZjEzWS1hYWZoS1E0cW5BMEEucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQEoPigMA0GCSqGSIb3DQEBCwUAA4IBAQC4HZ6Gtpf3JTVbl77Bg8SwUPv/sQw/ YAIKJr/9tOO6z6q8st7PuablcPEPjuoPFVqrfdNk1y88ILsBtWWEdmgRh6fEwhlP NICDSaXXeZlAzXLUGRG+cqQ5RYcrQKNtyMcCWndHwuZ7v8xp8KlFzJkHPu2S4TL1 PdSZRTSOxh474F74PIaUYUz4IIfhiXRWXmMJRsutNS+J67US+zzP+Kv0LSSgsDcy SBX31YlZ8EB/3wI4LqO+3Kmv00w8HK08iDzb5Ucc14RUvJbXgvueBhLv52oH1bG8 7E1JCpIoiLZP8T5pT+sygEtsv2KymV/A0v93XGDgkbpa9w4nT4b0NM2q -----END CERTIFICATE-----Generated at Wed Feb 19 22:40:45 2025 by rpki-client