$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/XJYBJoxT1JYb9dDl3ajzr6Aacpg.roa File: XJYBJoxT1JYb9dDl3ajzr6Aacpg.roa (raw, json) Hash identifier: +RO2a6JB49SgGGIwWJEwi4pLZKv+REN12FoLO9S49p8= Subject key identifier: 5C:96:01:26:8C:53:D4:96:1B:F5:D0:E5:DD:A8:F3:AF:A0:1A:72:98 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 67 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/XJYBJoxT1JYb9dDl3ajzr6Aacpg.roa Signing time: Sat 30 Nov 2024 01:32:02 +0000 ROA not before: Sat 30 Nov 2024 01:32:02 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 143.125.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:02 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=5C9601268C53D4961BF5D0E5DDA8F3AFA01A7298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c6:d1:c9:f2:80:ca:f4:ba:ae:f5:97:96:fb: 3a:60:5f:8b:ca:c3:43:05:21:83:04:12:c0:1d:b0: fd:30:bd:f5:32:c6:8d:6c:cd:c5:cf:4a:75:26:94: b2:13:60:6c:bc:94:2a:c5:39:6e:c8:1c:1d:af:d9: bd:68:5d:12:f1:22:63:6f:47:77:7a:3f:a6:d9:1e: 2c:2d:73:ba:61:e3:48:01:6e:a3:ec:da:00:69:10: 46:d7:9a:9c:f7:24:80:85:8c:97:eb:e4:e8:f8:8e: 09:95:56:85:46:bd:a0:0b:67:92:6b:2b:91:49:80: f6:d3:75:5c:04:5e:a7:91:b5:d8:ea:4f:56:3f:5e: a6:3c:87:a2:0e:79:df:8e:ee:8e:d9:cb:ec:88:eb: f6:71:65:10:83:41:a0:7d:45:d7:cd:45:5f:a2:48: 30:c8:46:38:e9:3d:ac:86:97:91:7c:a8:14:cb:ce: 61:06:0d:61:de:2f:65:e1:8f:80:bb:c8:cb:61:d9: 77:6e:09:bc:25:aa:9c:96:75:43:b2:1b:8d:ac:35: 52:1a:c4:fc:4a:7c:af:d4:29:d1:be:e3:e3:71:71: b3:2e:32:d2:32:21:03:bd:cc:64:63:d8:6d:6b:7c: 42:50:e2:9d:f1:5f:64:0c:3a:b9:aa:8d:fe:a2:9a: de:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:96:01:26:8C:53:D4:96:1B:F5:D0:E5:DD:A8:F3:AF:A0:1A:72:98 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/XJYBJoxT1JYb9dDl3ajzr6Aacpg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.125.216.0/21 Signature Algorithm: sha256WithRSAEncryption 41:e0:d7:35:dc:67:3e:98:fd:ec:ff:ac:f1:a9:0f:47:67:88: 59:b3:c1:36:68:0e:48:a4:64:eb:45:fa:67:06:fe:66:a0:b6: b0:c4:f5:c4:f2:20:7a:00:f1:d6:ca:e3:54:ab:3b:19:32:df: 6a:83:67:f1:6b:25:33:62:e1:bf:b9:ad:12:38:b6:33:a7:a2: 9c:41:8c:f9:bc:86:cd:3f:17:20:ad:4c:dc:96:dc:d2:b8:e9: e0:28:73:4a:ec:1d:31:f1:fe:ff:4d:a6:9b:5f:53:6f:4b:33: 33:90:55:50:e2:6c:7d:57:8b:4c:4d:58:80:d3:e9:80:58:14: 2f:82:3e:90:77:f2:5a:c6:18:be:7e:88:9d:5e:c9:1a:6a:f9: 30:83:23:4b:84:46:93:cf:1f:52:c4:82:03:9b:a5:46:14:be: 23:85:b2:4c:b5:f0:7f:23:03:6e:00:2f:28:e9:50:0b:78:f4: b8:bc:9b:1b:1f:d9:1c:5e:a1:cf:6e:13:07:4c:92:f3:29:97: 20:a5:b5:b4:6f:48:68:29:1d:93:83:9b:af:d8:1c:46:60:7c: 0f:4d:73:d7:17:5f:26:ce:c0:76:5f:be:ba:fd:3c:74:b7:cb: 2c:fd:f8:3f:d2:55:09:bb:e2:4d:8e:98:1d:74:00:f0:9b:c1: 90:ff:d1:f0 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwMloXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoNUM5NjAxMjY4QzUzRDQ5 NjFCRjVEMEU1RERBOEYzQUZBMDFBNzI5ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALnG0cnygMr0uq71l5b7OmBfi8rDQwUhgwQSwB2w/TC99TLGjWzN xc9KdSaUshNgbLyUKsU5bsgcHa/ZvWhdEvEiY29Hd3o/ptkeLC1zumHjSAFuo+za AGkQRteanPckgIWMl+vk6PiOCZVWhUa9oAtnkmsrkUmA9tN1XARep5G12OpPVj9e pjyHog55347ujtnL7Ijr9nFlEINBoH1F181FX6JIMMhGOOk9rIaXkXyoFMvOYQYN Yd4vZeGPgLvIy2HZd24JvCWqnJZ1Q7Ibjaw1UhrE/Ep8r9Qp0b7j43Fxsy4y0jIh A73MZGPYbWt8QlDinfFfZAw6uaqN/qKa3vUCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBRclgEmjFPUlhv10OXdqPOvoBpymDAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L1hKWUJKb3hUMUpZYjlkRGwzYWp6cjZBYWNwZy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAOPfdgwDQYJKoZIhvcNAQELBQADggEBAEHg1zXcZz6Y/ez/rPGpD0dniFmzwTZo DkikZOtF+mcG/magtrDE9cTyIHoA8dbK41SrOxky32qDZ/FrJTNi4b+5rRI4tjOn opxBjPm8hs0/FyCtTNyW3NK46eAoc0rsHTHx/v9NpptfU29LMzOQVVDibH1Xi0xN WIDT6YBYFC+CPpB38lrGGL5+iJ1eyRpq+TCDI0uERpPPH1LEggObpUYUviOFsky1 8H8jA24ALyjpUAt49Li8mxsf2Rxeoc9uEwdMkvMplyCltbRvSGgpHZODm6/YHEZg fA9Nc9cXXybOwHZfvrr9PHS3yyz9+D/SVQm74k2OmB10APCbwZD/0fA= -----END CERTIFICATE-----Generated at Wed Feb 19 22:33:18 2025 by rpki-client