$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/paXjmRIHjpmDiIzfCPtF1hxtVVM.roa File: paXjmRIHjpmDiIzfCPtF1hxtVVM.roa (raw, json) Hash identifier: QfdSSr6+eC8iiTAyJPbPy973g81RkJaQRO0M5ZPvZLY= Subject key identifier: A5:A5:E3:99:12:07:8E:99:83:88:8C:DF:08:FB:45:D6:1C:6D:55:53 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 71 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/paXjmRIHjpmDiIzfCPtF1hxtVVM.roa Signing time: Sat 30 Nov 2024 01:32:07 +0000 ROA not before: Sat 30 Nov 2024 01:32:07 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:07 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=A5A5E39912078E9983888CDF08FB45D61C6D5553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:16:91:c5:ee:39:ba:13:67:a4:c2:c6:c0:e6: 7c:da:eb:4b:e2:46:be:83:3f:ed:1a:29:96:f5:95: ab:12:31:74:71:cd:80:77:91:18:61:58:8d:62:53: 2c:39:15:93:95:66:f0:79:ce:65:81:11:f7:d6:b9: e2:46:96:4e:3c:da:d7:e8:9d:61:12:8b:28:72:77: 5a:7a:13:24:bf:3a:08:f5:df:95:6f:c5:9d:a6:7c: 11:f2:78:ff:1f:55:12:0b:6d:8c:6c:46:7d:72:e9: a1:d8:f0:63:70:b0:68:7b:27:e8:0d:e7:db:5b:02: 94:52:01:d2:50:43:0a:c5:62:35:aa:e0:d7:58:7d: cf:7a:7d:11:8d:61:3a:b1:c3:75:e2:9f:70:cf:9d: 00:62:5e:fa:76:7d:97:6b:62:b5:e3:d6:e6:d3:06: 8b:04:66:49:70:e2:c0:cd:f9:7a:99:1a:82:be:a0: 29:bc:cc:c9:90:53:7d:89:99:2b:a1:3c:12:dd:6c: 3d:ec:db:c6:13:a9:10:6f:3e:6c:93:9e:30:04:f6: 4d:80:4b:ec:b5:85:bc:66:84:6c:fc:cb:93:2f:4a: 6f:76:8c:21:f8:22:8b:65:2b:e2:2f:0d:7c:76:6f: 84:01:8e:8f:da:34:83:ec:bf:14:7d:44:8c:a3:41: 88:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A5:E3:99:12:07:8E:99:83:88:8C:DF:08:FB:45:D6:1C:6D:55:53 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/paXjmRIHjpmDiIzfCPtF1hxtVVM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.8.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:d7:ae:cc:7b:1c:c9:6b:85:4f:cb:83:19:0d:dc:63:a2:13: 58:af:11:b0:04:c8:14:07:51:71:22:86:56:bb:1a:c3:02:c2: 42:71:2a:47:32:39:92:e3:88:62:8f:7e:f7:8a:30:01:d8:9d: 73:0f:ca:2c:2f:d0:a6:a8:dd:1f:6f:57:49:3c:b2:a8:00:92: 9f:91:44:fd:0a:8f:ff:ab:78:d9:e3:3a:d2:8a:c4:68:93:3d: 38:b2:22:de:18:fa:71:6a:3f:e3:05:66:78:e3:15:cf:0c:60: b9:d4:82:31:29:a9:d8:04:eb:5f:ae:07:f5:8f:ba:8e:a3:c2: 31:c1:9c:6c:da:41:21:47:09:a4:fc:ab:b9:cc:e1:e9:00:fb: 0b:d4:9f:a8:2f:da:55:61:4d:a3:82:84:1f:10:bf:8b:5b:b0: ee:7b:35:87:4c:c8:44:51:4f:3b:63:7e:89:5a:c8:57:f0:cc: 4f:7e:a1:fe:dd:50:ee:06:31:c6:91:d5:bd:9d:d7:78:35:55: 93:bf:a2:0f:72:cd:92:84:ae:40:06:23:ed:a5:ae:38:ca:b4: 70:5e:2a:b1:1d:43:7d:ce:3b:b9:0a:6a:bb:b7:b4:ee:da:5f: 91:ce:53:05:37:81:55:ab:c4:ad:7b:a8:36:20:ef:3e:0f:ef: 5c:94:41:90 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIwN1oXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoQTVBNUUzOTkxMjA3OEU5 OTgzODg4Q0RGMDhGQjQ1RDYxQzZENTU1MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALoWkcXuOboTZ6TCxsDmfNrrS+JGvoM/7RoplvWVqxIxdHHNgHeR GGFYjWJTLDkVk5Vm8HnOZYER99a54kaWTjza1+idYRKLKHJ3WnoTJL86CPXflW/F naZ8EfJ4/x9VEgttjGxGfXLpodjwY3CwaHsn6A3n21sClFIB0lBDCsViNarg11h9 z3p9EY1hOrHDdeKfcM+dAGJe+nZ9l2titePW5tMGiwRmSXDiwM35epkagr6gKbzM yZBTfYmZK6E8Et1sPezbxhOpEG8+bJOeMAT2TYBL7LWFvGaEbPzLky9Kb3aMIfgi i2Ur4i8NfHZvhAGOj9o0g+y/FH1EjKNBiNECAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSlpeOZEgeOmYOIjN8I+0XWHG1VUzAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L3BhWGptUklIanBtRGlJemZDUHRGMWh4dFZWTS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAKg+AgwDQYJKoZIhvcNAQELBQADggEBAGvXrsx7HMlrhU/LgxkN3GOiE1ivEbAE yBQHUXEihla7GsMCwkJxKkcyOZLjiGKPfveKMAHYnXMPyiwv0Kao3R9vV0k8sqgA kp+RRP0Kj/+reNnjOtKKxGiTPTiyIt4Y+nFqP+MFZnjjFc8MYLnUgjEpqdgE61+u B/WPuo6jwjHBnGzaQSFHCaT8q7nM4ekA+wvUn6gv2lVhTaOChB8Qv4tbsO57NYdM yERRTztjfolayFfwzE9+of7dUO4GMcaR1b2d13g1VZO/og9yzZKErkAGI+2lrjjK tHBeKrEdQ33OO7kKaru3tO7aX5HOUwU3gVWrxK17qDYg7z4P71yUQZA= -----END CERTIFICATE-----Generated at Wed Feb 19 22:29:48 2025 by rpki-client