$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/YEmNaBKeDcZ8NaEJlcb3IyUCtsY.roa File: YEmNaBKeDcZ8NaEJlcb3IyUCtsY.roa (raw, json) Hash identifier: 7IE4rBGcyZBEmeYpXVFz6EQLhRs9IHdnkBJf0C6ATjU= Subject key identifier: 60:49:8D:68:12:9E:0D:C6:7C:35:A1:09:95:C6:F7:23:25:02:B6:C6 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 8C Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/YEmNaBKeDcZ8NaEJlcb3IyUCtsY.roa Signing time: Tue 31 Dec 2024 01:31:08 +0000 ROA not before: Tue 31 Dec 2024 01:31:08 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:08 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=60498D68129E0DC67C35A10995C6F7232502B6C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f6:5b:dd:bc:61:06:76:00:e2:cb:7e:7f:b9: c4:97:2a:9e:b8:23:f5:17:09:51:ef:6f:70:d2:84: ca:07:ed:25:c8:ae:a8:e4:c5:82:d2:e3:45:70:49: dc:7d:16:ac:a5:a2:af:9a:46:33:be:97:bd:51:52: 34:5a:98:16:a9:50:66:c7:bb:50:2c:ad:08:50:cb: cd:86:53:1d:db:ff:d4:9e:50:c3:3a:f7:d8:25:e3: 64:7f:d5:31:ce:e2:d2:3a:45:cc:80:67:36:88:b8: 5b:d4:7f:89:0a:70:d9:d0:90:78:46:72:89:5c:7b: 62:72:0f:7d:c7:b8:b8:95:4c:11:74:71:da:ae:4f: 49:d4:cf:e9:45:c1:ab:be:88:4c:53:ce:cd:b9:35: ac:a6:b2:81:d1:fc:16:18:90:3a:4f:27:6f:45:d2: 2f:37:73:b3:e5:3e:6e:bc:a8:eb:fc:e6:09:1e:e4: c7:1f:ad:1b:12:af:5c:71:39:7a:25:de:71:64:2b: e7:85:c9:9f:d2:65:a9:c4:ab:78:5f:85:cc:5b:f1: a7:b1:04:da:8d:4c:26:f1:77:b2:59:6d:d3:b8:73: a7:28:96:b8:65:0b:8a:ef:98:9d:75:39:b7:e7:fa: 92:0b:16:61:79:10:e1:1b:fb:ae:7b:44:66:56:b9: 97:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:49:8D:68:12:9E:0D:C6:7C:35:A1:09:95:C6:F7:23:25:02:B6:C6 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/YEmNaBKeDcZ8NaEJlcb3IyUCtsY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.232.0/22 Signature Algorithm: sha256WithRSAEncryption a6:c2:90:76:ce:07:29:2d:73:af:37:bd:b7:45:b3:83:0e:de: b1:62:f8:dd:a7:0b:3e:9a:4b:8d:12:5c:71:52:cb:59:7d:a2: 20:59:ca:8e:b6:d6:b0:07:c9:90:c2:33:86:a6:63:83:0e:56: c4:f2:05:9e:3a:5c:4a:8e:a5:30:75:c9:fb:f9:df:6a:38:37: 83:3c:9d:f7:6d:f6:60:a4:28:9a:cd:18:af:96:19:77:7f:f5: db:9e:28:6d:89:87:9a:69:b6:45:e1:27:9a:80:93:26:5f:19: b4:d8:dd:96:d2:f7:7f:89:5d:40:af:17:c4:b1:b9:77:fb:4b: 00:eb:25:34:d3:b5:6d:e0:81:0e:7d:e6:75:15:73:13:06:24: 9e:b3:f8:97:02:ff:5a:99:47:e3:61:36:5f:33:58:99:f4:4c: 2e:f8:14:5d:3a:cc:fb:25:01:51:fb:44:9e:a6:eb:ee:60:df: 33:22:4d:d0:09:5f:34:ae:b7:6a:7b:46:f8:62:1e:94:4c:07: 0f:07:a9:0e:2a:88:f6:d1:37:a4:7e:5b:c2:16:ea:cf:b2:32: 82:a8:04:19:13:95:49:7a:52:b1:ee:1a:64:55:a0:bc:91:e7: 83:17:e6:5f:ae:9b:49:f8:46:65:ad:2e:ac:34:02:36:43:e4: 61:52:1c:89 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMDhaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYwNDk4RDY4MTI5RTBE QzY3QzM1QTEwOTk1QzZGNzIzMjUwMkI2QzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCf9lvdvGEGdgDiy35/ucSXKp64I/UXCVHvb3DShMoH7SXIrqjk xYLS40VwSdx9Fqyloq+aRjO+l71RUjRamBapUGbHu1AsrQhQy82GUx3b/9SeUMM6 99gl42R/1THO4tI6RcyAZzaIuFvUf4kKcNnQkHhGcolce2JyD33HuLiVTBF0cdqu T0nUz+lFwau+iExTzs25NaymsoHR/BYYkDpPJ29F0i83c7PlPm68qOv85gke5Mcf rRsSr1xxOXol3nFkK+eFyZ/SZanEq3hfhcxb8aexBNqNTCbxd7JZbdO4c6colrhl C4rvmJ11Obfn+pILFmF5EOEb+657RGZWuZeFAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUYEmNaBKeDcZ8NaEJlcb3IyUCtsYwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9ZRW1OYUJLZURjWjhOYUVKbGNiM0l5VUN0c1kucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCoPjoMA0GCSqGSIb3DQEBCwUAA4IBAQCmwpB2zgcpLXOvN723RbODDt6xYvjd pws+mkuNElxxUstZfaIgWcqOttawB8mQwjOGpmODDlbE8gWeOlxKjqUwdcn7+d9q ODeDPJ33bfZgpCiazRivlhl3f/XbnihtiYeaabZF4SeagJMmXxm02N2W0vd/iV1A rxfEsbl3+0sA6yU007Vt4IEOfeZ1FXMTBiSes/iXAv9amUfjYTZfM1iZ9Ewu+BRd Osz7JQFR+0SepuvuYN8zIk3QCV80rrdqe0b4Yh6UTAcPB6kOKoj20TekflvCFurP sjKCqAQZE5VJelKx7hpkVaC8keeDF+ZfrptJ+EZlrS6sNAI2Q+RhUhyJ -----END CERTIFICATE-----Generated at Wed Feb 19 22:46:08 2025 by rpki-client