$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/WNDp9xFElgKq7HYsAbyixhmI51Q.roa File: WNDp9xFElgKq7HYsAbyixhmI51Q.roa (raw, json) Hash identifier: h8ond5mBVhfWNwsWOLZz5Yitu3fmmw0pLkIMdO84acY= Subject key identifier: 58:D0:E9:F7:11:44:96:02:AA:EC:76:2C:01:BC:A2:C6:19:88:E7:54 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 70 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/WNDp9xFElgKq7HYsAbyixhmI51Q.roa Signing time: Sat 30 Nov 2024 01:32:07 +0000 ROA not before: Sat 30 Nov 2024 01:32:07 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:07 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=58D0E9F711449602AAEC762C01BCA2C61988E754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2c:5a:31:ba:8c:2f:07:3b:aa:5f:d5:61:44: 22:1b:2d:dc:98:db:b7:60:bc:a2:35:93:53:2a:18: d4:3a:55:a6:1e:89:43:94:88:05:a1:68:b6:ee:b7: 71:61:f9:e0:0e:08:69:a2:b4:16:26:16:eb:32:90: c3:49:ee:c3:43:fd:0e:8d:3c:2c:7d:0b:2b:b2:25: 72:ae:01:e9:ab:33:7d:01:8e:c8:2c:63:55:00:04: a5:48:08:74:12:e3:48:dc:2e:ca:ff:92:05:60:aa: 6a:3f:86:82:7e:a7:c4:31:c7:87:7e:75:23:65:78: a3:fb:21:4f:b4:7f:8c:b7:2b:21:98:d9:5d:35:7c: a1:94:b7:b9:38:f3:23:14:60:0e:7e:17:9e:78:a7: 80:be:0d:1d:7e:6c:67:b5:a2:90:82:f5:3a:8e:df: fb:70:7f:77:8f:3b:48:1f:50:7c:4a:9f:6e:e1:94: 76:f8:29:0b:66:80:b1:d2:e8:19:ab:1b:6d:49:1b: 20:d1:3d:73:09:7b:fc:08:d9:80:b2:ac:10:52:6b: d9:0f:24:7a:e0:c6:12:62:e2:d8:7a:52:73:ca:d8: 17:c2:69:40:38:eb:85:0d:83:7b:d4:60:d4:4b:b1: 34:b9:65:3b:13:aa:41:f6:01:4c:c0:af:51:a7:63: 71:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:D0:E9:F7:11:44:96:02:AA:EC:76:2C:01:BC:A2:C6:19:88:E7:54 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/WNDp9xFElgKq7HYsAbyixhmI51Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.0.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:48:f1:12:15:22:10:50:f5:8b:47:17:4d:93:85:e6:69:84: aa:b5:0d:9b:64:e6:9e:64:d3:a1:ed:63:47:16:38:5e:1f:5d: 1c:61:2f:e5:ea:73:de:88:42:a1:0b:23:ae:69:de:19:3c:d0: b1:76:a6:8c:bd:b7:47:60:17:39:6e:46:f3:e6:3a:7d:bd:cc: 86:9b:14:ba:33:f9:51:0f:f2:d0:10:00:7e:2e:26:92:5e:70: 00:75:91:5d:d5:27:bd:1c:8d:df:a0:2b:66:4d:c8:95:1e:d9: 9d:77:63:34:bb:23:7d:f4:af:98:d3:b2:60:3d:9a:7b:da:84: 92:1b:20:95:aa:d8:fc:83:f1:06:19:85:5e:14:c6:9d:e7:70: 9e:8b:cb:17:61:2c:e8:61:db:25:0b:88:47:10:30:81:6f:a2: 9e:7c:fe:01:46:6b:d2:b9:7c:06:0c:86:27:1c:1c:4a:26:39: 8f:f1:69:48:4c:49:6d:9f:7f:e3:48:f9:8c:9f:0e:4e:4c:7d: c4:a2:7d:98:ff:9a:d6:3c:1f:7f:f9:ae:17:82:62:18:ce:a6: fb:b5:f9:fc:92:c0:0f:a4:15:02:49:90:b4:61:53:2f:33:16: 0c:fb:bd:15:37:33:19:95:5e:71:d4:10:33:18:0b:14:ec:56: 43:e1:a3:6a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwN1oXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoNThEMEU5RjcxMTQ0OTYw MkFBRUM3NjJDMDFCQ0EyQzYxOTg4RTc1NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANYsWjG6jC8HO6pf1WFEIhst3Jjbt2C8ojWTUyoY1DpVph6JQ5SI BaFotu63cWH54A4IaaK0FiYW6zKQw0nuw0P9Do08LH0LK7Ilcq4B6aszfQGOyCxj VQAEpUgIdBLjSNwuyv+SBWCqaj+Ggn6nxDHHh351I2V4o/shT7R/jLcrIZjZXTV8 oZS3uTjzIxRgDn4XnningL4NHX5sZ7WikIL1Oo7f+3B/d487SB9QfEqfbuGUdvgp C2aAsdLoGasbbUkbINE9cwl7/AjZgLKsEFJr2Q8keuDGEmLi2HpSc8rYF8JpQDjr hQ2De9Rg1EuxNLllOxOqQfYBTMCvUadjcYkCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBRY0On3EUSWAqrsdiwBvKLGGYjnVDAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L1dORHA5eEZFbGdLcTdIWXNBYnlpeGhtSTUxUS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAOg+AAwDQYJKoZIhvcNAQELBQADggEBAB9I8RIVIhBQ9YtHF02TheZphKq1DZtk 5p5k06HtY0cWOF4fXRxhL+Xqc96IQqELI65p3hk80LF2poy9t0dgFzluRvPmOn29 zIabFLoz+VEP8tAQAH4uJpJecAB1kV3VJ70cjd+gK2ZNyJUe2Z13YzS7I330r5jT smA9mnvahJIbIJWq2PyD8QYZhV4Uxp3ncJ6LyxdhLOhh2yULiEcQMIFvop58/gFG a9K5fAYMhiccHEomOY/xaUhMSW2ff+NI+YyfDk5MfcSifZj/mtY8H3/5rheCYhjO pvu1+fySwA+kFQJJkLRhUy8zFgz7vRU3MxmVXnHUEDMYCxTsVkPho2o= -----END CERTIFICATE-----Generated at Wed Feb 19 22:30:25 2025 by rpki-client