$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/nUKNPfboSMbK8hKiQsTOF1j6d8c.roa File: nUKNPfboSMbK8hKiQsTOF1j6d8c.roa (raw, json) Hash identifier: qVRbjL394u4JkGuSji3OLn3t1i+VilUQuuSeCEoAot0= Subject key identifier: 9D:42:8D:3D:F6:E8:48:C6:CA:F2:12:A2:42:C4:CE:17:58:FA:77:C7 Certificate issuer: /CN=06FA662194FCF1EB983AB44CC913004180770D18 Certificate serial: 64 Authority key identifier: 06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/nUKNPfboSMbK8hKiQsTOF1j6d8c.roa Signing time: Tue 31 Dec 2024 01:31:16 +0000 ROA not before: Tue 31 Dec 2024 01:31:16 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 210.153.0.0/16 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06FA662194FCF1EB983AB44CC913004180770D18 Validity Not Before: Dec 31 01:31:16 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=9D428D3DF6E848C6CAF212A242C4CE1758FA77C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ea:b3:2c:0d:2d:92:9e:96:79:68:17:71:67: 20:c5:fd:a9:fc:bb:79:18:eb:74:1d:22:00:86:43: d8:67:b3:ee:04:ae:be:af:33:19:a9:99:14:65:1d: 15:d6:b6:d1:82:46:9f:fe:bd:f5:e2:e7:47:80:cf: 7d:01:71:3d:02:05:e0:40:71:ed:c2:5a:95:0b:44: 58:02:74:ed:e0:56:da:1d:6b:75:4e:74:97:e2:17: 79:3a:a4:6f:d1:fc:20:3c:8a:49:8c:df:5a:b9:fb: cd:30:1f:22:58:46:9d:50:36:42:8a:51:34:32:c7: 0c:6f:ee:a9:75:64:c1:c0:04:68:cf:5b:75:62:e4: 6d:e4:6c:e9:6a:04:50:df:84:ca:1f:5e:8a:97:23: 70:b8:e7:2b:ff:2a:a4:c1:dd:4c:e1:a7:a8:5b:63: 1d:af:80:1b:2a:4e:39:d5:d7:e8:2c:a6:9a:5e:97: bf:4e:5e:b3:78:e8:31:a5:9e:29:e1:7b:d7:57:91: d7:73:04:0c:71:0f:c8:ed:08:ed:3d:7b:90:31:e4: 47:ce:ec:92:ef:70:ef:a3:b3:3a:fb:cd:b9:ef:09: 6c:b1:3a:0c:4e:32:23:c6:10:c5:7c:32:e9:ff:aa: af:1d:26:b5:07:9b:bf:ae:be:dd:0d:74:14:75:96: dd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:42:8D:3D:F6:E8:48:C6:CA:F2:12:A2:42:C4:CE:17:58:FA:77:C7 X509v3 Authority Key Identifier: keyid:06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/nUKNPfboSMbK8hKiQsTOF1j6d8c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.153.0.0/16 Signature Algorithm: sha256WithRSAEncryption 02:9a:b7:f6:9b:94:c1:26:7c:72:0b:c5:83:19:ec:69:6e:4a: b7:d5:a1:08:19:15:8a:fd:6f:ab:0c:85:b4:73:4e:bb:51:ee: eb:0d:58:05:02:91:04:75:fd:99:80:e1:01:6e:31:e5:4d:6a: 91:b8:6e:e2:16:29:61:32:13:fa:90:59:f3:16:69:58:91:b1: 8c:03:42:1d:66:d1:6c:72:0a:a2:69:7e:bb:c2:c0:3e:bd:9e: 23:59:c4:da:69:0a:c0:e1:43:e8:78:8f:69:02:4a:80:aa:21: a1:51:89:47:07:63:97:a0:c5:a7:05:02:40:0a:31:9e:23:f9: 21:fa:6c:08:77:0f:cc:1a:c7:f4:06:71:3c:13:63:16:72:d2: 61:22:bc:7a:6c:38:95:35:25:f0:df:d4:c4:32:fa:1b:f3:8a: 0f:8c:a5:d5:76:31:a9:b1:0a:d9:2c:8d:07:34:d1:f5:4d:da: 4d:35:cf:e5:94:56:bb:48:9e:58:6e:44:6a:8e:42:f5:a1:d5: ca:d7:09:de:a4:3f:65:fc:12:81:89:62:dd:14:a3:57:02:76: ae:14:26:38:56:19:78:73:a0:9e:06:7f:16:3b:8c:4c:50:fc: 7b:37:c2:47:8b:38:57:ef:67:6f:47:67:60:8a:24:0b:76:62: 1d:f0:01:4a -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIBZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNkZB NjYyMTk0RkNGMUVCOTgzQUI0NENDOTEzMDA0MTgwNzcwRDE4MB4XDTI0MTIzMTAx MzExNloXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoOUQ0MjhEM0RGNkU4NDhD NkNBRjIxMkEyNDJDNENFMTc1OEZBNzdDNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJbqsywNLZKelnloF3FnIMX9qfy7eRjrdB0iAIZD2Gez7gSuvq8z GamZFGUdFda20YJGn/699eLnR4DPfQFxPQIF4EBx7cJalQtEWAJ07eBW2h1rdU50 l+IXeTqkb9H8IDyKSYzfWrn7zTAfIlhGnVA2QopRNDLHDG/uqXVkwcAEaM9bdWLk beRs6WoEUN+Eyh9eipcjcLjnK/8qpMHdTOGnqFtjHa+AGypOOdXX6Cymml6Xv05e s3joMaWeKeF711eR13MEDHEPyO0I7T17kDHkR87sku9w76OzOvvNue8JbLE6DE4y I8YQxXwy6f+qrx0mtQebv66+3Q10FHWW3VUCAwEAAaOCAiEwggIdMB0GA1UdDgQW BBSdQo099uhIxsryEqJCxM4XWPp3xzAfBgNVHSMEGDAWgBQG+mYhlPzx65g6tEzJ EwBBgHcNGDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvQnZwbUlaVDg4ZXVZT3JSTXlSTUFRWUIzRFJnLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQnZwbUlaVDg4ZXVZT3JSTXlSTUFRWUIz RFJnLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L25VS05QZmJvU01iSzhoS2lRc1RPRjFqNmQ4Yy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwDSmTANBgkqhkiG9w0BAQsFAAOCAQEAApq39puUwSZ8cgvFgxnsaW5Kt9WhCBkV iv1vqwyFtHNOu1Hu6w1YBQKRBHX9mYDhAW4x5U1qkbhu4hYpYTIT+pBZ8xZpWJGx jANCHWbRbHIKoml+u8LAPr2eI1nE2mkKwOFD6HiPaQJKgKohoVGJRwdjl6DFpwUC QAoxniP5IfpsCHcPzBrH9AZxPBNjFnLSYSK8emw4lTUl8N/UxDL6G/OKD4yl1XYx qbEK2SyNBzTR9U3aTTXP5ZRWu0ieWG5Eao5C9aHVytcJ3qQ/ZfwSgYli3RSjVwJ2 rhQmOFYZeHOgngZ/FjuMTFD8ezfCR4s4V+9nb0dnYIokC3ZiHfABSg== -----END CERTIFICATE-----Generated at Wed Feb 19 22:40:50 2025 by rpki-client