$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/o4YHzkwM4dpgN43MHjofchcthXA.roa File: o4YHzkwM4dpgN43MHjofchcthXA.roa (raw, json) Hash identifier: b4rBGM4AQ2fDYSp4/blMiOfs2bzNR8a62pbECqyvWYU= Subject key identifier: A3:86:07:CE:4C:0C:E1:DA:60:37:8D:CC:1E:3A:1F:72:17:2D:85:70 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 95 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/o4YHzkwM4dpgN43MHjofchcthXA.roa Signing time: Tue 31 Dec 2024 01:31:13 +0000 ROA not before: Tue 31 Dec 2024 01:31:13 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 192.244.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 31 01:31:13 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=A38607CE4C0CE1DA60378DCC1E3A1F72172D8570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c4:e7:43:6e:35:a5:4c:39:52:e8:65:96:ce: 6d:7f:8e:05:ac:4a:02:13:be:7e:32:b1:56:f4:21: f8:4b:8b:27:b7:c4:ab:83:93:02:fc:02:cd:94:de: 2b:64:2f:7b:e7:03:e3:69:d4:31:7f:da:12:7c:0e: 50:9c:56:dd:f9:f8:d0:8e:03:10:c4:1b:91:9c:49: 10:5a:06:57:fa:36:f5:40:d9:8a:8e:eb:38:49:a5: df:6a:1f:73:af:82:8d:5e:9d:df:ac:6a:85:24:db: c2:a6:54:85:f3:5f:c4:41:91:15:ff:27:f3:98:87: 94:ce:af:a9:ff:f9:78:fc:ef:57:8c:39:dd:eb:e1: 64:a0:ea:54:a3:b7:cb:1e:7f:6f:e9:06:28:2d:5d: 31:c6:59:e2:44:df:8d:83:08:eb:ce:0a:24:89:49: c7:8f:bb:e9:a1:ec:ef:8c:69:bc:33:7f:53:9f:3a: 4f:e6:07:d9:de:e0:20:86:12:4c:e6:98:f6:db:62: fb:9d:71:04:5b:44:57:c9:65:81:2e:dc:7f:eb:b3: f4:12:22:a3:4d:ae:88:9b:e0:a8:c8:5e:87:6e:3b: 64:f4:ed:ad:77:88:93:2d:2f:9d:44:c5:f3:06:cb: b2:67:73:84:fb:ea:ce:0e:de:59:cd:6f:b7:bd:30: 00:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:86:07:CE:4C:0C:E1:DA:60:37:8D:CC:1E:3A:1F:72:17:2D:85:70 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/o4YHzkwM4dpgN43MHjofchcthXA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.244.96.0/20 Signature Algorithm: sha256WithRSAEncryption a8:49:69:c6:d3:b7:0a:e2:3c:57:2f:d8:81:4d:c6:d6:d0:a3: e2:53:65:dc:9c:c2:f6:e4:03:70:1c:39:49:15:6b:0e:81:8c: 58:2c:9f:cc:35:4a:aa:d4:8e:7f:e1:2b:f9:f7:87:65:d4:a6: 3b:5a:37:97:b3:6a:5d:ea:d3:8a:6b:e8:12:12:4d:02:56:d6: 8d:d4:8f:a2:f6:82:bc:81:d1:05:e6:86:ff:f6:e9:16:4a:62: b9:1e:cf:93:e2:c8:be:c9:94:be:e7:10:5f:e2:6d:95:d1:59: 95:13:65:89:8b:71:14:b3:7f:32:07:1a:d1:60:8a:e7:12:8c: c8:51:cb:8c:1a:27:17:db:74:33:e1:42:e0:5e:ef:66:98:d5: e3:5a:df:c7:fb:af:12:51:77:9e:53:29:51:c7:be:63:e4:8b: 95:d4:b5:e9:1b:58:57:a7:f2:a7:5e:9d:29:1c:05:c0:66:53: 77:5a:49:95:83:2a:f0:08:ae:93:23:73:4f:b9:12:52:90:79: 51:44:06:c2:c2:f4:55:09:f1:db:59:61:6f:85:8a:69:d0:4f: 55:3a:07:c0:43:2e:a6:fd:e6:6b:84:0d:4c:aa:ed:8e:56:1c: 01:45:50:f8:a6:16:a6:09:47:e3:ba:32:94:81:2e:82:ac:36: 4f:02:f2:7b -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNDEyMzEw MTMxMTNaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEEzODYwN0NFNEMwQ0Ux REE2MDM3OERDQzFFM0ExRjcyMTcyRDg1NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVxOdDbjWlTDlS6GWWzm1/jgWsSgITvn4ysVb0IfhLiye3xKuD kwL8As2U3itkL3vnA+Np1DF/2hJ8DlCcVt35+NCOAxDEG5GcSRBaBlf6NvVA2YqO 6zhJpd9qH3Ovgo1end+saoUk28KmVIXzX8RBkRX/J/OYh5TOr6n/+Xj871eMOd3r 4WSg6lSjt8sef2/pBigtXTHGWeJE342DCOvOCiSJScePu+mh7O+Mabwzf1OfOk/m B9ne4CCGEkzmmPbbYvudcQRbRFfJZYEu3H/rs/QSIqNNroib4KjIXoduO2T07a13 iJMtL51ExfMGy7Jnc4T76s4O3lnNb7e9MAD1AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUo4YHzkwM4dpgN43MHjofchcthXAwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9vNFlIemt3TTRkcGdONDNNSGpvZmNoY3RoWEEucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQEwPRgMA0GCSqGSIb3DQEBCwUAA4IBAQCoSWnG07cK4jxXL9iBTcbW0KPiU2Xc nML25ANwHDlJFWsOgYxYLJ/MNUqq1I5/4Sv594dl1KY7WjeXs2pd6tOKa+gSEk0C VtaN1I+i9oK8gdEF5ob/9ukWSmK5Hs+T4si+yZS+5xBf4m2V0VmVE2WJi3EUs38y BxrRYIrnEozIUcuMGicX23Qz4ULgXu9mmNXjWt/H+68SUXeeUylRx75j5IuV1LXp G1hXp/KnXp0pHAXAZlN3WkmVgyrwCK6TI3NPuRJSkHlRRAbCwvRVCfHbWWFvhYpp 0E9VOgfAQy6m/eZrhA1Mqu2OVhwBRVD4phamCUfjujKUgS6CrDZPAvJ7 -----END CERTIFICATE-----Generated at Wed Feb 19 22:42:16 2025 by rpki-client