$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/nNd_j5zv8hgTTh-CccGZ8kOwM8k.roa File: nNd_j5zv8hgTTh-CccGZ8kOwM8k.roa (raw, json) Hash identifier: XHrl/CqBMbaF78lDO7rrqlpIABVhTHsQ+/5UumKud5o= Subject key identifier: 9C:D7:7F:8F:9C:EF:F2:18:13:4E:1F:82:71:C1:99:F2:43:B0:33:C9 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 87 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/nNd_j5zv8hgTTh-CccGZ8kOwM8k.roa Signing time: Tue 31 Dec 2024 01:31:05 +0000 ROA not before: Tue 31 Dec 2024 01:31:05 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:05 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=9CD77F8F9CEFF218134E1F8271C199F243B033C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7a:e1:34:c6:5a:c9:60:9b:77:55:2a:d0:00: 04:da:c5:49:89:ba:c8:82:ff:f9:8c:20:12:99:42: 36:f4:fa:40:b5:ff:f8:38:df:e0:92:b5:aa:d2:97: 9e:ed:01:57:be:2a:3c:b9:48:8a:52:ba:f4:35:ca: 5e:e2:eb:52:84:1a:d7:89:f2:61:c3:7f:dd:bb:16: 63:84:ae:5c:d5:f3:1b:1b:85:15:46:40:6a:8b:01: b3:71:62:2c:90:8e:c9:69:89:e8:c5:39:19:c9:4e: 7e:cd:93:51:b2:71:a9:fb:52:3a:58:30:76:5c:30: 20:21:3f:9b:d2:a4:56:8c:12:ba:02:85:6e:64:9d: 5d:26:a3:b6:d5:b0:50:65:fa:53:54:94:ac:a9:6a: 69:15:d4:07:d0:ac:29:b5:45:a8:a1:cb:ed:09:54: 55:78:60:2a:40:c2:0f:bd:31:b4:c3:1a:dc:36:e5: 46:83:72:bb:ce:57:17:fe:ac:c8:14:29:2a:98:ec: 37:10:78:cd:e6:db:2a:cc:b7:3b:f3:5f:fc:62:67: dd:db:cd:e0:5e:92:c0:bc:2f:ce:c6:5b:67:28:ff: e3:02:d4:6a:6a:13:b5:6a:fb:30:f8:82:51:64:a7: 7c:32:46:27:3a:c0:14:1b:b5:9c:40:4f:c0:0e:c2: 35:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:D7:7F:8F:9C:EF:F2:18:13:4E:1F:82:71:C1:99:F2:43:B0:33:C9 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/nNd_j5zv8hgTTh-CccGZ8kOwM8k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.200.0/23 Signature Algorithm: sha256WithRSAEncryption 52:30:59:05:04:68:2b:1c:2f:3e:e7:7b:ea:8e:35:11:cc:56: 74:fd:bc:7f:1d:5c:a2:ba:49:ce:74:23:9f:44:db:0b:39:e4: 66:43:99:fe:90:f5:bf:9e:aa:57:6e:cc:d7:19:e0:d0:c6:6d: 4e:9a:fe:de:9d:c6:9a:14:7d:29:ff:40:74:6f:59:9f:96:20: 69:48:b3:f0:c1:2e:37:b8:2d:af:3b:44:3c:6d:eb:5e:34:0d: 6a:ef:c4:9f:f0:1e:ba:b8:66:39:25:5c:31:83:14:34:29:06: 8e:4a:e0:fb:f2:a7:3b:c5:c1:7b:ce:e9:8d:38:d8:f9:84:60: cf:4f:c7:3d:69:4e:9e:cd:4c:fb:fc:18:e9:56:25:14:a1:e9: f2:c3:68:6d:0a:cd:7d:eb:e7:20:fa:d0:c7:0c:a1:2a:09:75: 8d:3f:af:ee:45:15:15:a1:c5:0d:e5:6d:fd:0a:1b:79:86:20: 38:a4:61:2c:77:f9:9e:16:3b:dc:db:b6:4e:cc:fd:d8:5a:47: cd:a8:95:a3:d7:d7:8a:63:ae:4a:74:b3:0a:1c:2c:ac:82:7e: 91:e4:38:4a:b3:1e:c9:e8:5b:14:5c:44:80:7b:bc:62:92:ac: 87:00:65:37:e0:53:67:de:ee:d0:60:f8:c7:56:85:e5:7d:5e: 23:1f:fc:bf -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMDVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDlDRDc3RjhGOUNFRkYy MTgxMzRFMUY4MjcxQzE5OUYyNDNCMDMzQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9euE0xlrJYJt3VSrQAATaxUmJusiC//mMIBKZQjb0+kC1//g4 3+CStarSl57tAVe+Kjy5SIpSuvQ1yl7i61KEGteJ8mHDf927FmOErlzV8xsbhRVG QGqLAbNxYiyQjslpiejFORnJTn7Nk1Gycan7UjpYMHZcMCAhP5vSpFaMEroChW5k nV0mo7bVsFBl+lNUlKypamkV1AfQrCm1Raihy+0JVFV4YCpAwg+9MbTDGtw25UaD crvOVxf+rMgUKSqY7DcQeM3m2yrMtzvzX/xiZ93bzeBeksC8L87GW2co/+MC1Gpq E7Vq+zD4glFkp3wyRic6wBQbtZxAT8AOwjVdAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUnNd/j5zv8hgTTh+CccGZ8kOwM8kwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9uTmRfajV6djhoZ1RUaC1DY2NHWjhrT3dNOGsucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBoPjIMA0GCSqGSIb3DQEBCwUAA4IBAQBSMFkFBGgrHC8+53vqjjURzFZ0/bx/ HVyiuknOdCOfRNsLOeRmQ5n+kPW/nqpXbszXGeDQxm1Omv7encaaFH0p/0B0b1mf liBpSLPwwS43uC2vO0Q8beteNA1q78Sf8B66uGY5JVwxgxQ0KQaOSuD78qc7xcF7 zumNONj5hGDPT8c9aU6ezUz7/BjpViUUoenyw2htCs196+cg+tDHDKEqCXWNP6/u RRUVocUN5W39Cht5hiA4pGEsd/meFjvc27ZOzP3YWkfNqJWj19eKY65KdLMKHCys gn6R5DhKsx7J6FsUXESAe7xikqyHAGU34FNn3u7QYPjHVoXlfV4jH/y/ -----END CERTIFICATE-----Generated at Wed Feb 19 22:37:10 2025 by rpki-client