$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/YOSd4lh8EYqxQ5wT3Nhuh57RyyU.roa File: YOSd4lh8EYqxQ5wT3Nhuh57RyyU.roa (raw, json) Hash identifier: WIRDgY6ipbR89kUaC1AC7sVgJLVGiuCua9X/h+1S9hk= Subject key identifier: 60:E4:9D:E2:58:7C:11:8A:B1:43:9C:13:DC:D8:6E:87:9E:D1:CB:25 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 86 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/YOSd4lh8EYqxQ5wT3Nhuh57RyyU.roa Signing time: Tue 31 Dec 2024 01:31:04 +0000 ROA not before: Tue 31 Dec 2024 01:31:04 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:04 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=60E49DE2587C118AB1439C13DCD86E879ED1CB25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6e:b6:66:9b:7c:7d:05:68:3a:c8:ac:f8:bb: 9c:a6:d1:96:33:7c:8e:07:29:6b:0d:b1:a1:60:cd: 1e:fe:4e:c5:fd:bb:49:94:de:03:3f:e0:33:1d:b9: 9a:32:3c:67:ec:da:2e:f5:5a:69:91:50:d1:bb:b0: bf:28:33:02:75:93:9d:c4:b9:5b:da:91:ce:e7:fc: 72:f4:a2:cb:ef:c3:57:39:95:62:22:c1:0d:5b:fd: f3:48:41:06:59:1b:d8:00:ba:ec:9d:e8:67:f2:10: 71:38:94:b3:8a:be:3e:16:f9:5b:ca:ae:bd:6a:41: 99:ef:fa:df:37:8a:62:83:40:e9:c8:75:b1:b3:ad: e8:39:4c:c1:eb:ab:3b:77:ea:88:2b:84:19:95:8d: 27:b4:76:ae:88:34:35:2e:05:88:4d:b6:a3:24:04: e0:b3:4f:1e:fe:b1:6b:95:5e:29:4a:55:91:cc:2c: c8:2d:e0:14:80:8d:80:e8:4f:71:25:32:ad:2b:4c: 5c:46:41:17:99:f1:4c:d9:cc:31:47:87:19:0d:49: 2c:e5:bd:03:cd:4d:66:67:48:c5:82:f8:c9:69:4e: 5a:0e:b1:94:01:87:5a:50:5e:65:89:5d:80:41:6c: 20:fd:b2:51:6d:10:c6:3c:03:69:ce:5f:a7:ec:d8: 2a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E4:9D:E2:58:7C:11:8A:B1:43:9C:13:DC:D8:6E:87:9E:D1:CB:25 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/YOSd4lh8EYqxQ5wT3Nhuh57RyyU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.192.0/21 Signature Algorithm: sha256WithRSAEncryption 99:e0:06:d6:53:9c:74:a6:3f:7a:ad:19:d6:cc:42:70:62:b1: 06:75:a1:4e:84:7d:af:ab:00:1f:6c:e8:0c:1a:21:98:17:77: 9a:b6:4f:c5:09:f1:d8:0c:78:bb:19:e9:96:b0:bd:bd:e0:d4: 34:83:b4:0f:b5:1d:35:65:91:78:bc:62:91:40:06:8e:b7:3b: 6e:8b:7f:c1:71:90:64:97:3a:d0:49:39:d0:2a:51:23:f0:0f: 7d:72:42:4a:f8:9f:6d:fd:85:e9:ac:9b:61:9f:34:08:d0:39: fc:7f:fc:6d:61:e5:c8:e7:5a:53:3c:ca:50:c2:af:35:15:bc: 2b:92:89:71:e5:3f:12:cc:0e:eb:e0:da:70:3e:37:92:14:54: 78:fb:3c:dc:85:85:0e:e4:d7:57:0d:44:e1:0b:b8:83:cc:ea: 0d:3b:cd:8f:08:b2:61:a4:f2:d7:c8:8f:76:90:dc:ad:02:7b: cc:07:7c:0d:8e:b5:a0:01:2a:05:95:9a:4f:0a:92:7d:c4:ca: 99:f6:ef:4a:88:bc:cd:70:bc:60:f0:27:be:a4:5f:2f:66:ac: ef:ae:9f:aa:99:c0:72:0c:63:91:df:1b:56:96:67:cd:95:02: 2b:af:ab:42:71:2c:9b:d6:93:25:c1:44:10:98:ad:1d:1e:44: 91:19:18:db -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMDRaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYwRTQ5REUyNTg3QzEx OEFCMTQzOUMxM0RDRDg2RTg3OUVEMUNCMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjbrZmm3x9BWg6yKz4u5ym0ZYzfI4HKWsNsaFgzR7+TsX9u0mU 3gM/4DMduZoyPGfs2i71WmmRUNG7sL8oMwJ1k53EuVvakc7n/HL0osvvw1c5lWIi wQ1b/fNIQQZZG9gAuuyd6GfyEHE4lLOKvj4W+VvKrr1qQZnv+t83imKDQOnIdbGz reg5TMHrqzt36ogrhBmVjSe0dq6INDUuBYhNtqMkBOCzTx7+sWuVXilKVZHMLMgt 4BSAjYDoT3ElMq0rTFxGQReZ8UzZzDFHhxkNSSzlvQPNTWZnSMWC+MlpTloOsZQB h1pQXmWJXYBBbCD9slFtEMY8A2nOX6fs2Cq5AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUYOSd4lh8EYqxQ5wT3Nhuh57RyyUwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9ZT1NkNGxoOEVZcXhRNXdUM05odWg1N1J5eVUucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDoPjAMA0GCSqGSIb3DQEBCwUAA4IBAQCZ4AbWU5x0pj96rRnWzEJwYrEGdaFO hH2vqwAfbOgMGiGYF3eatk/FCfHYDHi7GemWsL294NQ0g7QPtR01ZZF4vGKRQAaO tztui3/BcZBklzrQSTnQKlEj8A99ckJK+J9t/YXprJthnzQI0Dn8f/xtYeXI51pT PMpQwq81Fbwrkolx5T8SzA7r4NpwPjeSFFR4+zzchYUO5NdXDUThC7iDzOoNO82P CLJhpPLXyI92kNytAnvMB3wNjrWgASoFlZpPCpJ9xMqZ9u9KiLzNcLxg8Ce+pF8v Zqzvrp+qmcByDGOR3xtWlmfNlQIrr6tCcSyb1pMlwUQQmK0dHkSRGRjb -----END CERTIFICATE-----Generated at Wed Feb 19 22:43:01 2025 by rpki-client