$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/lfflK95vJSZWNkKk6ksCErQndTI.roa File: lfflK95vJSZWNkKk6ksCErQndTI.roa (raw, json) Hash identifier: fuJ05xS/ndVbkkBT29h+xniMMI5KnSjvg9HXC7byXBw= Subject key identifier: 95:F7:E5:2B:DE:6F:25:26:56:36:42:A4:EA:4B:02:12:B4:27:75:32 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 73 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/lfflK95vJSZWNkKk6ksCErQndTI.roa Signing time: Sat 30 Nov 2024 01:32:08 +0000 ROA not before: Sat 30 Nov 2024 01:32:08 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:08 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=95F7E52BDE6F2526563642A4EA4B0212B4277532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:55:87:db:2c:af:d2:21:e9:7c:c0:65:71:26: b0:ad:ba:01:af:51:13:c4:13:4c:80:49:cb:ac:c3: d0:3b:79:03:4b:dc:1d:2f:e4:5c:92:e9:7d:a4:16: 9d:52:4e:9d:9b:fe:f6:e9:8d:f9:13:cc:67:22:8a: ca:dc:62:29:12:72:72:4b:a1:ed:1f:a5:6d:86:ce: e2:32:68:52:8f:d5:f9:c2:a1:20:03:e2:b1:a6:08: 77:c7:c4:b5:19:c4:f2:49:89:a7:54:46:9a:b8:02: 58:8b:24:84:0f:be:51:b8:2d:58:5b:a4:b4:8d:3e: a4:a7:3d:08:be:56:07:64:54:67:61:60:69:c9:7e: b5:58:5e:b1:ea:f2:fb:46:d0:62:3a:27:23:72:74: 48:52:a9:2b:7e:c6:a0:4c:35:07:c2:88:72:ff:f1: f4:8d:f7:79:5f:97:4a:96:6e:54:5b:04:18:a2:53: bd:b4:91:dc:76:08:66:cc:89:da:3d:c9:fe:0c:54: f0:08:5d:91:c2:c0:4d:7e:b5:23:3c:f5:93:5d:1e: c0:c7:3b:d1:39:fe:b2:b4:79:df:d8:02:0f:31:47: 8c:0c:9c:c0:bf:e1:f3:1c:33:74:52:ff:92:30:fd: e1:c6:dc:3a:43:fb:ec:6e:7a:ea:fd:1d:46:43:3b: ad:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F7:E5:2B:DE:6F:25:26:56:36:42:A4:EA:4B:02:12:B4:27:75:32 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/lfflK95vJSZWNkKk6ksCErQndTI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.14.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:49:a4:a7:56:fa:82:c5:23:27:5f:e8:69:31:cf:8d:84:f0: 14:5d:94:14:bb:99:2f:87:af:4b:14:98:e2:5d:b9:c1:34:41: ba:14:94:57:f0:c7:bf:2f:21:33:d9:4d:69:e2:ea:0a:4b:d2: 5b:59:f5:81:d7:3d:e0:b1:98:6d:42:c6:3b:38:e6:98:28:d5: 6c:e7:0d:28:66:30:75:af:69:4f:1d:2f:91:22:f7:61:7e:d0: eb:be:b7:fb:07:65:d8:7a:dc:1b:4c:a6:5c:8b:18:0c:03:c5: e9:05:4e:96:14:44:98:48:aa:36:49:52:12:11:bf:d2:4e:4b: 65:75:53:3b:a6:04:92:41:eb:c0:5f:ab:c5:aa:de:ab:54:e2: 9c:a7:3a:b8:cb:69:0e:4e:89:4d:e0:30:78:3a:31:45:16:2c: eb:00:5b:0b:71:a1:38:2d:22:0f:cf:3e:9e:42:89:8c:02:c8: a8:0c:0d:9c:26:98:77:b5:a2:1f:7b:88:80:b9:40:5d:a5:b2: 2a:b1:f8:99:e5:03:3e:8d:a7:ba:e3:61:04:9b:25:76:e7:db: 01:4e:0c:e4:ff:9a:70:82:38:bb:91:25:68:fe:50:cf:f7:4c: e7:94:03:c0:ca:3f:cd:6e:3e:60:91:e3:d3:95:f0:87:ee:aa: 3b:38:78:28 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBczANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwOFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoOTVGN0U1MkJERTZGMjUy NjU2MzY0MkE0RUE0QjAyMTJCNDI3NzUzMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM1Vh9ssr9Ih6XzAZXEmsK26Aa9RE8QTTIBJy6zD0Dt5A0vcHS/k XJLpfaQWnVJOnZv+9umN+RPMZyKKytxiKRJyckuh7R+lbYbO4jJoUo/V+cKhIAPi saYId8fEtRnE8kmJp1RGmrgCWIskhA++UbgtWFuktI0+pKc9CL5WB2RUZ2Fgacl+ tVhesery+0bQYjonI3J0SFKpK37GoEw1B8KIcv/x9I33eV+XSpZuVFsEGKJTvbSR 3HYIZsyJ2j3J/gxU8AhdkcLATX61Izz1k10ewMc70Tn+srR539gCDzFHjAycwL/h 8xwzdFL/kjD94cbcOkP77G566v0dRkM7rdMCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSV9+Ur3m8lJlY2QqTqSwIStCd1MjAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L2xmZmxLOTV2SlNaV05rS2s2a3NDRXJRbmRUSS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGg+A4wDQYJKoZIhvcNAQELBQADggEBAE1JpKdW+oLFIydf6Gkxz42E8BRdlBS7 mS+Hr0sUmOJducE0QboUlFfwx78vITPZTWni6gpL0ltZ9YHXPeCxmG1Cxjs45pgo 1WznDShmMHWvaU8dL5Ei92F+0Ou+t/sHZdh63BtMplyLGAwDxekFTpYURJhIqjZJ UhIRv9JOS2V1UzumBJJB68Bfq8Wq3qtU4pynOrjLaQ5OiU3gMHg6MUUWLOsAWwtx oTgtIg/PPp5CiYwCyKgMDZwmmHe1oh97iIC5QF2lsiqx+JnlAz6Np7rjYQSbJXbn 2wFODOT/mnCCOLuRJWj+UM/3TOeUA8DKP81uPmCR49OV8Ifuqjs4eCg= -----END CERTIFICATE-----Generated at Wed Feb 19 22:29:23 2025 by rpki-client