$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/jj4gBl2h6up8pAO2H1TDdKcc4DY.roa File: jj4gBl2h6up8pAO2H1TDdKcc4DY.roa (raw, json) Hash identifier: 8kK0/RqCSNXepQ7bGNYLk1MnPOyB9xQoLGmrs0ACDKs= Subject key identifier: 8E:3E:20:06:5D:A1:EA:EA:7C:A4:03:B6:1F:54:C3:74:A7:1C:E0:36 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 90 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/jj4gBl2h6up8pAO2H1TDdKcc4DY.roa Signing time: Tue 31 Dec 2024 01:31:10 +0000 ROA not before: Tue 31 Dec 2024 01:31:10 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:10 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=8E3E20065DA1EAEA7CA403B61F54C374A71CE036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:08:5e:54:e3:a1:8f:38:fd:68:83:02:07:42: e3:76:b8:5c:5b:26:f3:e5:90:c7:1b:f6:e2:e1:b2: b4:34:46:af:f7:b3:63:60:5c:75:c7:8c:bb:9d:91: e3:f7:5e:5e:36:1f:ac:b1:69:a5:99:89:6c:73:ae: f9:49:59:17:37:ba:4f:59:6a:c3:78:d2:30:2e:80: 89:ce:3c:56:67:6e:8f:46:2b:74:75:52:63:d7:5a: 5c:61:15:f8:11:95:d9:c3:93:79:f4:c7:46:2e:83: 34:a9:f1:c2:80:29:58:ee:70:73:6b:ea:c1:74:3a: 52:0c:33:0c:7c:c6:5c:b2:44:12:4c:d9:55:52:4c: 09:62:b5:2e:cf:26:f2:02:19:48:89:4f:dd:19:04: 4b:31:5e:2c:f4:66:74:ff:7e:a1:83:13:bf:7b:8e: 2a:0e:aa:8b:f4:d3:32:a1:e8:54:ed:56:f6:29:61: 32:93:89:4c:b8:ba:14:73:3d:47:98:a0:f4:73:25: 41:c3:f2:93:e2:72:73:32:51:e6:db:fd:b8:9b:12: 54:b3:cb:58:1f:2d:fe:60:b8:4e:af:1a:57:ce:9e: f6:2e:c8:56:ca:d3:cb:78:7a:2b:e6:29:48:59:1f: d1:17:d3:64:00:9d:11:e9:f5:b1:48:9b:e4:e7:f1: 9f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:3E:20:06:5D:A1:EA:EA:7C:A4:03:B6:1F:54:C3:74:A7:1C:E0:36 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/jj4gBl2h6up8pAO2H1TDdKcc4DY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.248.0/22 Signature Algorithm: sha256WithRSAEncryption a5:c3:fb:8f:de:bd:f6:da:a6:c3:26:9a:0d:f7:4e:a7:4b:59: 8f:a8:3d:3f:22:9f:06:c2:17:ab:ce:24:9b:36:14:bc:a0:4c: ad:56:e1:94:45:cd:a5:b5:e2:19:49:fa:10:ed:cc:8c:85:a1: f7:57:b7:38:8a:75:0e:62:85:cd:5d:33:ef:e2:1c:87:c4:19: 16:3a:57:49:51:02:c3:43:8f:42:e0:f9:06:d3:fe:89:2b:ee: 2b:97:31:ee:92:e1:46:43:ff:24:c6:d9:ec:f0:60:a5:d8:c6: 8d:5a:44:1b:61:ef:85:a0:23:1f:90:16:61:34:a6:75:31:fb: ac:72:08:c7:55:11:d2:ff:94:15:db:5f:e5:b9:75:50:ad:b1: dd:cc:77:30:71:74:50:1c:aa:e1:42:a6:18:ea:85:b8:be:e0: 31:9c:84:ec:5c:d3:e9:4b:fb:65:4d:6d:e4:b5:8c:a1:29:ee: 11:c3:21:37:c9:e6:71:5f:25:f7:2c:fd:66:6a:e5:30:6a:9d: d9:63:4e:28:31:e6:72:8f:2f:d6:b7:14:ca:b2:13:9a:a9:95: 5a:48:f7:20:09:09:86:75:22:6d:1c:7e:24:71:c5:05:78:97: 6c:79:0e:c6:e2:cb:63:82:e0:16:ee:02:22:ec:7f:08:de:7c: d4:63:c4:ab -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMTBaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDhFM0UyMDA2NURBMUVB RUE3Q0E0MDNCNjFGNTRDMzc0QTcxQ0UwMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxCF5U46GPOP1ogwIHQuN2uFxbJvPlkMcb9uLhsrQ0Rq/3s2Ng XHXHjLudkeP3Xl42H6yxaaWZiWxzrvlJWRc3uk9ZasN40jAugInOPFZnbo9GK3R1 UmPXWlxhFfgRldnDk3n0x0YugzSp8cKAKVjucHNr6sF0OlIMMwx8xlyyRBJM2VVS TAlitS7PJvICGUiJT90ZBEsxXiz0ZnT/fqGDE797jioOqov00zKh6FTtVvYpYTKT iUy4uhRzPUeYoPRzJUHD8pPicnMyUebb/bibElSzy1gfLf5guE6vGlfOnvYuyFbK 08t4eivmKUhZH9EX02QAnRHp9bFIm+Tn8Z9vAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUjj4gBl2h6up8pAO2H1TDdKcc4DYwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9qajRnQmwyaDZ1cDhwQU8ySDFURGRLY2M0RFkucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCoPj4MA0GCSqGSIb3DQEBCwUAA4IBAQClw/uP3r322qbDJpoN906nS1mPqD0/ Ip8GwherziSbNhS8oEytVuGURc2lteIZSfoQ7cyMhaH3V7c4inUOYoXNXTPv4hyH xBkWOldJUQLDQ49C4PkG0/6JK+4rlzHukuFGQ/8kxtns8GCl2MaNWkQbYe+FoCMf kBZhNKZ1MfuscgjHVRHS/5QV21/luXVQrbHdzHcwcXRQHKrhQqYY6oW4vuAxnITs XNPpS/tlTW3ktYyhKe4RwyE3yeZxXyX3LP1mauUwap3ZY04oMeZyjy/WtxTKshOa qZVaSPcgCQmGdSJtHH4kccUFeJdseQ7G4stjguAW7gIi7H8I3nzUY8Sr -----END CERTIFICATE-----Generated at Wed Feb 19 22:36:26 2025 by rpki-client