$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/Zcp49ptBEakFNKufLtymyLY7OkM.roa File: Zcp49ptBEakFNKufLtymyLY7OkM.roa (raw, json) Hash identifier: lmvQuo7vZdcmDSlmJkFXvzxd+gKEs5OTQQeTZmczVA8= Subject key identifier: 65:CA:78:F6:9B:41:11:A9:05:34:AB:9F:2E:DC:A6:C8:B6:3B:3A:43 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 88 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Zcp49ptBEakFNKufLtymyLY7OkM.roa Signing time: Tue 31 Dec 2024 01:31:05 +0000 ROA not before: Tue 31 Dec 2024 01:31:05 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:05 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=65CA78F69B4111A90534AB9F2EDCA6C8B63B3A43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b1:62:e4:a1:ce:d9:b9:41:a8:ff:c7:23:e4: 7b:00:35:c0:18:7a:9c:f0:a0:7f:06:48:2f:80:5b: 75:e5:c4:e0:67:1f:d7:f1:e9:29:5c:9b:8c:a7:98: 75:ee:4f:c0:55:8f:81:fa:72:eb:f7:c1:48:82:7a: 82:cd:3b:ca:f1:9a:9a:3f:49:8e:23:02:2d:a4:08: c5:93:6e:34:86:ca:e4:ba:66:58:7d:93:a3:2f:2f: 9b:2f:4b:a9:73:40:f5:37:2e:6f:18:55:5f:04:2b: 5f:01:17:ef:2c:f7:50:b1:c1:a7:f6:dc:31:20:81: b8:7f:03:b2:52:a3:23:0c:31:29:a1:ef:c1:14:ed: 08:e0:81:1e:4c:0c:0b:fa:23:be:83:d3:8e:34:a2: f3:45:26:90:f5:dd:5d:70:ae:ed:ce:de:4b:42:e9: ae:4e:e8:53:9b:ff:7c:4d:96:d7:78:bd:4f:d2:aa: ee:eb:63:c4:9b:3f:c0:5f:37:bb:65:a6:fc:c1:ef: 37:4f:dd:e8:5d:e1:7f:d8:e4:cf:3d:f6:6d:57:ac: 7c:bc:a1:23:1a:55:3d:f6:05:ea:f0:2a:f5:1c:f1: 78:cb:28:2c:3b:87:3e:ca:66:3e:9b:17:60:92:f5: 60:cd:ed:70:ad:4d:f9:18:29:ca:d6:54:f1:3c:13: 1f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:CA:78:F6:9B:41:11:A9:05:34:AB:9F:2E:DC:A6:C8:B6:3B:3A:43 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Zcp49ptBEakFNKufLtymyLY7OkM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.203.0/24 Signature Algorithm: sha256WithRSAEncryption 10:5e:ff:cd:95:44:a8:21:2d:bb:7e:ee:8c:c9:73:86:d7:0e: 5b:c4:21:21:d2:5a:e6:8f:2d:d4:7d:2a:e7:df:64:02:4c:b4: cc:6c:21:3c:21:a6:33:23:3f:17:cf:03:f9:94:5e:f1:9f:eb: cb:8d:ac:fd:27:1a:94:4b:80:ce:3b:67:52:1c:8f:ac:f8:71: 06:95:6d:67:ad:f5:6f:79:09:c0:5c:14:36:f7:0f:2a:41:a1: 72:1f:ad:a0:41:70:70:ab:4c:68:2b:50:1b:89:6e:c2:af:2f: 5d:fd:7b:82:79:28:8d:e5:b9:d4:d7:81:49:f0:9b:34:9d:93: ce:9c:e7:4a:c5:6c:76:9f:be:e2:ca:c7:3f:ee:75:a7:8c:74: 25:fa:1b:53:59:b8:aa:a9:1e:9d:16:c6:3f:cf:fd:4f:d1:77: bf:a3:d2:2a:a9:9f:89:f7:ea:7d:f8:50:b5:66:07:31:09:80: 68:e6:79:56:6c:4d:cb:31:f4:67:cf:2a:ac:d2:29:6f:f9:86: 90:25:70:14:6f:c1:7d:d7:dd:23:3e:52:12:c3:07:b5:d2:72: 0e:12:67:62:39:89:1e:dc:be:8b:c2:53:60:42:45:08:a4:92: e5:5f:1d:3a:4b:ba:b5:b9:46:87:8f:8d:c6:df:2d:9f:15:47: 0e:37:1f:31 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMDVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDY1Q0E3OEY2OUI0MTEx QTkwNTM0QUI5RjJFRENBNkM4QjYzQjNBNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTsWLkoc7ZuUGo/8cj5HsANcAYepzwoH8GSC+AW3XlxOBnH9fx 6Slcm4ynmHXuT8BVj4H6cuv3wUiCeoLNO8rxmpo/SY4jAi2kCMWTbjSGyuS6Zlh9 k6MvL5svS6lzQPU3Lm8YVV8EK18BF+8s91Cxwaf23DEggbh/A7JSoyMMMSmh78EU 7QjggR5MDAv6I76D0440ovNFJpD13V1wru3O3ktC6a5O6FOb/3xNltd4vU/Squ7r Y8SbP8BfN7tlpvzB7zdP3ehd4X/Y5M899m1XrHy8oSMaVT32BerwKvUc8XjLKCw7 hz7KZj6bF2CS9WDN7XCtTfkYKcrWVPE8Ex8TAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUZcp49ptBEakFNKufLtymyLY7OkMwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9aY3A0OXB0QkVha0ZOS3VmTHR5bXlMWTdPa00ucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAoPjLMA0GCSqGSIb3DQEBCwUAA4IBAQAQXv/NlUSoIS27fu6MyXOG1w5bxCEh 0lrmjy3UfSrn32QCTLTMbCE8IaYzIz8XzwP5lF7xn+vLjaz9JxqUS4DOO2dSHI+s +HEGlW1nrfVveQnAXBQ29w8qQaFyH62gQXBwq0xoK1AbiW7Cry9d/XuCeSiN5bnU 14FJ8Js0nZPOnOdKxWx2n77iysc/7nWnjHQl+htTWbiqqR6dFsY/z/1P0Xe/o9Iq qZ+J9+p9+FC1ZgcxCYBo5nlWbE3LMfRnzyqs0ilv+YaQJXAUb8F9190jPlISwwe1 0nIOEmdiOYke3L6LwlNgQkUIpJLlXx06S7q1uUaHj43G3y2fFUcONx8x -----END CERTIFICATE-----Generated at Wed Feb 19 22:36:06 2025 by rpki-client