$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/XxRrXEHeynRLqXyk8vrl3sKytDo.roa File: XxRrXEHeynRLqXyk8vrl3sKytDo.roa (raw, json) Hash identifier: qH/wSmf9sHTajHD2ymBcOYIpXEFa8CJ3sOIcWwOTdsg= Subject key identifier: 5F:14:6B:5C:41:DE:CA:74:4B:A9:7C:A4:F2:FA:E5:DE:C2:B2:B4:3A Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 28 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/XxRrXEHeynRLqXyk8vrl3sKytDo.roa Signing time: Wed 10 Jan 2024 01:11:10 +0000 ROA not before: Wed 10 Jan 2024 01:11:10 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jan 10 01:11:10 2024 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=5F146B5C41DECA744BA97CA4F2FAE5DEC2B2B43A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:dc:e7:ce:88:b7:12:1c:2f:4a:93:16:3c:e4: f3:93:f6:32:4d:3d:86:b9:01:f1:90:ed:b0:46:bd: f5:7f:4b:23:6d:71:a5:0c:37:79:9f:74:fb:5f:41: 7b:fd:57:cd:6b:3b:9e:ba:89:ef:cf:69:25:72:ca: 44:7b:ea:3f:e7:48:38:aa:06:8b:11:d6:aa:67:2d: 04:53:d4:20:78:06:f6:6c:81:a0:b8:8e:87:e2:fb: a1:df:11:f9:89:90:0e:aa:f4:8e:da:41:4f:a1:66: b0:9f:d0:9a:58:62:fd:3a:b3:d2:f7:45:ef:ce:c8: c1:1b:1a:95:af:f9:3a:e9:16:cc:6f:64:b5:4e:20: 7a:a7:0c:46:e9:dd:f4:a9:56:0e:8e:9d:bf:20:49: 35:10:38:f7:3c:91:4b:ab:b9:1a:68:78:ff:9d:43: 34:49:c2:89:e1:76:d1:78:d9:08:7d:ee:57:a6:1f: a2:04:ae:3d:fc:4d:d9:64:10:5c:2f:fb:7f:66:b6: 2e:fa:db:ea:ae:3a:ba:2b:2b:ed:6c:52:cd:f9:ad: 9c:05:db:15:a1:bb:96:54:e8:b8:43:ca:09:e6:f2: c6:fd:a3:77:3c:02:ad:25:02:c4:a1:20:03:31:1c: 0b:9d:08:e8:01:46:80:dc:59:86:48:50:ed:05:4e: b3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:14:6B:5C:41:DE:CA:74:4B:A9:7C:A4:F2:FA:E5:DE:C2:B2:B4:3A X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/XxRrXEHeynRLqXyk8vrl3sKytDo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.32.0/19 Signature Algorithm: sha256WithRSAEncryption ad:7d:37:e7:21:e0:d9:08:63:0f:47:ac:ea:53:c6:0f:32:4c: aa:d6:3b:08:ef:db:0a:d5:61:9b:b4:9a:12:d8:22:c8:5e:dc: 0f:e2:85:7a:c1:d1:5e:ea:ef:68:72:54:cd:66:30:0e:4a:58: 9d:d5:e5:79:08:00:20:43:56:55:30:27:cc:7d:8f:6f:4c:64: 1a:4f:dd:8a:6e:3a:15:15:2b:2a:01:bb:b8:73:6f:c4:51:4d: 60:92:5f:3c:55:db:e6:ca:40:d7:33:36:07:c7:66:e0:d4:f9: d8:22:1e:1e:9c:f8:8a:2e:78:af:94:f3:8c:f3:39:f9:d9:1f: 15:d4:8d:ac:61:f3:cf:0e:cb:d5:d6:6c:40:8c:8e:71:6a:17: 42:4a:87:67:63:60:be:a5:71:4f:6f:b2:f1:78:1c:ee:8e:56: a7:90:1a:98:46:89:6b:ca:62:2c:a7:be:56:e5:d9:af:16:ff: ad:55:d4:e2:38:de:c9:59:9a:98:41:8c:90:91:23:b5:aa:72: 5d:9f:d2:87:51:e2:1b:ac:81:f1:c4:69:3a:39:22:f3:4e:1a: de:1e:a2:8d:6e:aa:e5:7e:38:52:1e:ab:22:b0:d1:4f:93:ac: 3f:e5:25:fc:3f:a9:7e:e9:3f:8a:94:2b:d9:cc:32:69:8a:68: 2f:da:ca:4f -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MDExMDAx MTExMFoXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoNUYxNDZCNUM0MURFQ0E3 NDRCQTk3Q0E0RjJGQUU1REVDMkIyQjQzQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANzc586ItxIcL0qTFjzk85P2Mk09hrkB8ZDtsEa99X9LI21xpQw3 eZ90+19Be/1XzWs7nrqJ789pJXLKRHvqP+dIOKoGixHWqmctBFPUIHgG9myBoLiO h+L7od8R+YmQDqr0jtpBT6FmsJ/Qmlhi/Tqz0vdF787IwRsala/5OukWzG9ktU4g eqcMRund9KlWDo6dvyBJNRA49zyRS6u5Gmh4/51DNEnCieF20XjZCH3uV6YfogSu PfxN2WQQXC/7f2a2Lvrb6q46uisr7WxSzfmtnAXbFaG7llTouEPKCebyxv2jdzwC rSUCxKEgAzEcC50I6AFGgNxZhkhQ7QVOsykCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBRfFGtcQd7KdEupfKTy+uXewrK0OjAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L1h4UnJYRUhleW5STHFYeWs4dnJsM3NLeXREby5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAWg+CAwDQYJKoZIhvcNAQELBQADggEBAK19N+ch4NkIYw9HrOpTxg8yTKrWOwjv 2wrVYZu0mhLYIshe3A/ihXrB0V7q72hyVM1mMA5KWJ3V5XkIACBDVlUwJ8x9j29M ZBpP3YpuOhUVKyoBu7hzb8RRTWCSXzxV2+bKQNczNgfHZuDU+dgiHh6c+IoueK+U 84zzOfnZHxXUjaxh888Oy9XWbECMjnFqF0JKh2djYL6lcU9vsvF4HO6OVqeQGphG iWvKYiynvlbl2a8W/61V1OI43slZmphBjJCRI7Wqcl2f0odR4husgfHEaTo5IvNO Gt4eoo1uquV+OFIeqyKw0U+TrD/lJfw/qX7pP4qUK9nMMmmKaC/ayk8= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:57 2024 by rpki-client on console-fra.rpki-client.org