$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/UujoE8nkWz6lpb375zV0O9lEo6s.roa File: UujoE8nkWz6lpb375zV0O9lEo6s.roa (raw, json) Hash identifier: b+vJgY6eT+VkkAw8fH2Nz2yE5d2Lr/3LOZCmSHFN/9o= Subject key identifier: 52:E8:E8:13:C9:E4:5B:3E:A5:A5:BD:FB:E7:35:74:3B:D9:44:A3:AB Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 42 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/UujoE8nkWz6lpb375zV0O9lEo6s.roa Signing time: Thu 25 Jan 2024 01:10:36 +0000 ROA not before: Thu 25 Jan 2024 01:10:36 +0000 ROA not after: Tue 14 Jan 2025 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jan 25 01:10:36 2024 GMT Not After : Jan 14 01:30:02 2025 GMT Subject: CN=52E8E813C9E45B3EA5A5BDFBE735743BD944A3AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:8d:85:44:6c:1b:cf:f6:ce:51:06:4a:35:39: cc:e7:1a:95:7b:0a:cc:f9:22:03:df:9f:6f:c7:32: ee:3b:25:b1:b4:25:2c:e7:a0:04:ce:3a:5e:de:53: 52:3e:23:8a:5c:9e:4c:ed:7d:55:99:92:06:30:86: d5:a8:b0:1a:3b:37:ea:f2:5b:a9:f5:59:2e:77:ba: 9a:7b:6b:51:c8:34:02:4c:9a:b9:72:f5:54:4f:a1: cb:80:44:2f:3f:ca:7a:e3:be:75:e4:1b:e4:c2:ea: 8e:8e:18:e1:22:1f:1d:62:0f:17:6b:58:0c:41:5c: 20:ab:70:34:f2:7c:f8:89:a4:65:6b:f5:1b:12:4f: 42:97:07:3b:b4:42:73:fd:c8:54:12:f0:48:60:5b: 02:38:4d:b5:19:58:28:0f:2a:e3:22:b5:9d:80:05: aa:2a:c1:93:15:31:69:6e:7b:bf:45:ad:c0:58:7f: 04:27:a3:ac:50:12:b2:4b:56:3f:ec:fa:38:01:71: d8:5f:61:a0:63:62:ca:ed:7e:c8:14:7d:b3:9f:ca: 8f:2a:29:9c:18:4f:be:a7:24:ee:7f:95:dd:8c:05: de:ae:dd:cf:51:6a:81:ba:31:bf:2b:e9:28:e2:ab: db:a3:32:6c:ed:12:5f:ab:be:09:a2:86:9a:dc:09: f2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E8:E8:13:C9:E4:5B:3E:A5:A5:BD:FB:E7:35:74:3B:D9:44:A3:AB X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/UujoE8nkWz6lpb375zV0O9lEo6s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.244.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:83:9b:54:02:a3:6e:b5:1d:9e:f7:4c:72:14:64:d5:84:c2: 9a:7a:d0:42:b5:36:2f:e4:a3:0c:e1:48:f3:c1:b2:a0:b7:0e: 2f:cd:2e:74:ce:72:82:b4:0e:e1:89:b5:e5:a5:20:51:ca:82: 6f:1b:d1:f3:bb:c8:e8:57:3a:7d:f2:54:34:e6:27:0c:89:7d: a9:e2:d5:6b:cf:f9:2e:da:79:08:ec:cf:f4:af:af:e8:96:b5: f6:b3:2c:04:43:b9:08:6d:d9:f2:3d:df:39:7a:8a:c3:36:6d: 10:bf:3e:60:5e:4d:1f:70:ea:c7:02:bd:a8:d0:a6:34:53:9f: 24:55:20:23:f2:37:cd:30:fa:33:ff:12:9c:b9:15:85:6a:af: cb:5c:bf:e5:f9:e8:5c:65:b5:e1:2c:0c:9e:de:0e:d9:b5:6f: df:11:68:74:f3:46:96:fe:f3:14:da:77:76:98:a9:e1:ad:d3: 6c:eb:af:cc:14:b7:de:19:f0:33:94:e2:46:c8:63:0a:8d:7d: 04:54:a1:87:e3:cb:fb:b4:ef:13:9f:9a:52:19:70:64:67:21: ab:3f:c9:85:5f:cd:a4:3d:de:d8:e5:da:1f:f4:04:81:7a:de: ea:9c:7b:86:bb:17:82:14:f0:60:2a:85:d4:60:87:ea:e4:08: 2c:d5:a3:2d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MDEyNTAx MTAzNloXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoNTJFOEU4MTNDOUU0NUIz RUE1QTVCREZCRTczNTc0M0JEOTQ0QTNBQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPONhURsG8/2zlEGSjU5zOcalXsKzPkiA9+fb8cy7jslsbQlLOeg BM46Xt5TUj4jilyeTO19VZmSBjCG1aiwGjs36vJbqfVZLne6mntrUcg0AkyauXL1 VE+hy4BELz/KeuO+deQb5MLqjo4Y4SIfHWIPF2tYDEFcIKtwNPJ8+ImkZWv1GxJP QpcHO7RCc/3IVBLwSGBbAjhNtRlYKA8q4yK1nYAFqirBkxUxaW57v0WtwFh/BCej rFASsktWP+z6OAFx2F9hoGNiyu1+yBR9s5/KjyopnBhPvqck7n+V3YwF3q7dz1Fq gboxvyvpKOKr26MybO0SX6u+CaKGmtwJ8mcCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBRS6OgTyeRbPqWlvfvnNXQ72USjqzAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L1V1am9FOG5rV3o2bHBiMzc1elYwTzlsRW82cy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAKg+PQwDQYJKoZIhvcNAQELBQADggEBACuDm1QCo261HZ73THIUZNWEwpp60EK1 Ni/kowzhSPPBsqC3Di/NLnTOcoK0DuGJteWlIFHKgm8b0fO7yOhXOn3yVDTmJwyJ fani1WvP+S7aeQjsz/Svr+iWtfazLARDuQht2fI93zl6isM2bRC/PmBeTR9w6scC vajQpjRTnyRVICPyN80w+jP/Epy5FYVqr8tcv+X56FxlteEsDJ7eDtm1b98RaHTz Rpb+8xTad3aYqeGt02zrr8wUt94Z8DOU4kbIYwqNfQRUoYfjy/u07xOfmlIZcGRn Ias/yYVfzaQ93tjl2h/0BIF63uqce4a7F4IU8GAqhdRgh+rkCCzVoy0= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:32 2024 by rpki-client on console-ams.rpki-client.org