$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/qgcVIqKDcAL4rr7g0yVIX8xgLNo.roa File: qgcVIqKDcAL4rr7g0yVIX8xgLNo.roa (raw, json) Hash identifier: +XfhyBlvRDkchabMZdcZWAResIOA1u7iLfbUHvtsLCc= Subject key identifier: AA:07:15:22:A2:83:70:02:F8:AE:BE:E0:D3:25:48:5F:CC:60:2C:DA Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 79 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/qgcVIqKDcAL4rr7g0yVIX8xgLNo.roa Signing time: Sat 30 Nov 2024 01:32:10 +0000 ROA not before: Sat 30 Nov 2024 01:32:10 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Nov 30 01:32:10 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=AA071522A2837002F8AEBEE0D325485FCC602CDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:15:4a:a7:84:06:0f:aa:79:10:39:1c:bd:a7: 12:86:bf:5f:b4:f2:d9:2f:bb:7e:53:1e:6f:bc:f7: 69:03:dd:0b:86:7c:0a:af:75:e3:08:d9:1f:be:63: 03:73:62:e5:16:4f:0e:1b:96:06:74:11:7f:ea:31: ef:40:b7:e0:1f:3c:53:e4:27:a0:5a:11:21:1b:a2: 4d:cd:39:66:d9:1e:5a:32:ec:16:47:92:99:0e:77: f0:5b:bf:27:ab:40:82:d2:5a:42:00:78:f6:c8:79: 3a:b1:62:2c:75:50:36:b8:49:f1:d2:f2:ff:48:b5: 56:27:2e:ca:88:80:8b:a7:79:37:29:c3:9b:28:7b: 51:64:17:74:73:a4:aa:62:72:b4:f7:7a:8a:1b:22: c7:bf:e6:6c:ad:3d:27:e4:bd:6d:1c:e8:3e:c6:8c: 32:46:01:93:e0:aa:ac:4f:ba:b4:16:76:bc:00:bd: d0:47:e5:f6:0a:14:ba:b8:df:ad:40:09:ed:5a:47: 35:c2:10:83:5c:b6:fb:13:fc:a3:e8:b3:fd:22:0e: b3:be:c5:c5:77:16:ac:96:c3:16:9c:81:6d:02:01: cd:99:a4:0f:49:0d:b2:6a:1d:b9:82:76:9a:94:85: 4a:a6:b2:4a:3c:5e:6c:f4:d3:13:7d:ef:38:c2:6d: 47:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:07:15:22:A2:83:70:02:F8:AE:BE:E0:D3:25:48:5F:CC:60:2C:DA X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/qgcVIqKDcAL4rr7g0yVIX8xgLNo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.76.0/22 Signature Algorithm: sha256WithRSAEncryption 85:dc:64:b6:ae:06:d3:b8:82:1a:d2:fe:0b:85:b9:68:b3:a1: 2f:15:c6:d2:e8:b8:4e:6a:5d:e6:4c:2f:d5:67:e3:53:eb:93: 39:e3:49:ce:c5:74:9f:f6:ab:ce:c0:81:6d:a9:08:fb:ef:73: 05:ac:6a:0f:37:50:21:79:10:be:29:5c:39:5f:42:3a:a1:f4: b7:b9:63:4e:d2:36:76:71:53:d0:a5:b0:bb:ad:54:e2:e6:2c: a9:0c:c9:6d:10:4f:3f:3b:a1:8f:c1:41:e0:93:82:69:e7:ba: 78:35:4e:ca:22:e3:73:2b:d7:0a:62:bf:81:f8:94:8c:9b:64: 7b:46:38:93:b5:42:40:42:b2:7a:52:ec:c1:a2:4e:1c:96:3c: 4b:a0:31:25:b7:9d:a2:6f:20:25:3c:24:c5:82:6c:d7:ca:59: 6b:86:69:fe:67:bf:0b:16:ab:53:9f:25:20:55:5e:e5:9e:89: 63:83:69:92:a8:d5:a8:b6:ae:53:c7:c5:3e:db:33:d0:97:85: 2d:47:bc:50:26:66:e1:2d:b4:1b:55:11:47:0c:ec:15:ef:85: 8b:68:73:81:a6:44:28:72:80:e3:79:3c:49:d2:93:32:0a:b2: 72:70:27:bd:dc:5b:a9:8a:85:d5:bd:23:b7:64:51:3f:7e:68: 76:e9:7c:3d -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBeTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTEzMDAx MzIxMFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoQUEwNzE1MjJBMjgzNzAw MkY4QUVCRUUwRDMyNTQ4NUZDQzYwMkNEQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALQVSqeEBg+qeRA5HL2nEoa/X7Ty2S+7flMeb7z3aQPdC4Z8Cq91 4wjZH75jA3Ni5RZPDhuWBnQRf+ox70C34B88U+QnoFoRIRuiTc05ZtkeWjLsFkeS mQ538Fu/J6tAgtJaQgB49sh5OrFiLHVQNrhJ8dLy/0i1VicuyoiAi6d5NynDmyh7 UWQXdHOkqmJytPd6ihsix7/mbK09J+S9bRzoPsaMMkYBk+CqrE+6tBZ2vAC90Efl 9goUurjfrUAJ7VpHNcIQg1y2+xP8o+iz/SIOs77FxXcWrJbDFpyBbQIBzZmkD0kN smoduYJ2mpSFSqaySjxebPTTE33vOMJtRysCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSqBxUiooNwAviuvuDTJUhfzGAs2jAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L3FnY1ZJcUtEY0FMNHJyN2cweVZJWDh4Z0xOby5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAKg+EwwDQYJKoZIhvcNAQELBQADggEBAIXcZLauBtO4ghrS/guFuWizoS8VxtLo uE5qXeZML9Vn41PrkznjSc7FdJ/2q87AgW2pCPvvcwWsag83UCF5EL4pXDlfQjqh 9Le5Y07SNnZxU9ClsLutVOLmLKkMyW0QTz87oY/BQeCTgmnnung1Tsoi43Mr1wpi v4H4lIybZHtGOJO1QkBCsnpS7MGiThyWPEugMSW3naJvICU8JMWCbNfKWWuGaf5n vwsWq1OfJSBVXuWeiWODaZKo1ai2rlPHxT7bM9CXhS1HvFAmZuEttBtVEUcM7BXv hYtoc4GmRChygON5PEnSkzIKsnJwJ73cW6mKhdW9I7dkUT9+aHbpfD0= -----END CERTIFICATE-----Generated at Wed Feb 19 22:30:42 2025 by rpki-client