$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/2lg-VbmJh0zvx5FO93s2avv-56U.roa File: 2lg-VbmJh0zvx5FO93s2avv-56U.roa (raw, json) Hash identifier: FxO2grDkLehSbdZKfWIrMVBPVxzXVZN4IdTL6UrRgRk= Subject key identifier: DA:58:3E:55:B9:89:87:4C:EF:C7:91:4E:F7:7B:36:6A:FB:FE:E7:A5 Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 010D Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/2lg-VbmJh0zvx5FO93s2avv-56U.roa Signing time: Thu 31 Oct 2024 01:29:48 +0000 ROA not before: Thu 31 Oct 2024 01:29:48 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 59099 IP address blocks: 210.231.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: Oct 31 01:29:48 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=DA583E55B989874CEFC7914EF77B366AFBFEE7A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2b:06:8e:b7:d1:81:fe:e0:8f:32:bc:4a:d0: 4b:c3:db:53:25:69:52:ca:d6:42:51:e6:6d:4e:1e: 90:72:0c:22:65:d3:99:49:58:4d:9f:a7:f9:4d:a6: ee:8e:27:f2:f2:03:63:14:80:a4:df:8f:6f:6d:7b: 46:c3:cf:a3:fd:58:f3:9f:5b:dc:b6:5c:e2:5e:3c: d1:12:59:51:79:db:6d:45:f5:40:c3:a3:b5:dd:de: 94:bc:87:59:c9:4d:34:07:94:34:18:64:39:c2:53: 68:d6:8c:84:e6:81:2e:74:44:ff:cf:cc:73:7b:c2: 4f:d1:8d:eb:1d:8b:53:cd:ee:86:08:9d:24:0d:3b: 23:d7:d1:2e:2d:c0:28:25:6e:17:dc:dc:47:e4:6d: ae:66:09:bc:2d:6c:82:e4:03:58:82:79:ff:1a:d2: b9:d9:a3:80:20:cf:69:2b:05:6f:cf:90:a0:eb:70: 9b:f2:27:f8:7e:31:51:2b:28:0e:79:74:57:4d:57: 7f:8c:29:a8:b0:9d:54:23:45:db:fd:5f:22:87:87: bb:3b:ab:85:cd:f8:2a:60:52:ff:c3:33:8c:d0:1a: b2:13:de:3a:9f:b8:9e:f0:37:06:16:79:0e:fb:90: 9f:17:67:d9:0e:f5:3c:a5:6d:e0:dd:6e:90:41:99: ff:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:58:3E:55:B9:89:87:4C:EF:C7:91:4E:F7:7B:36:6A:FB:FE:E7:A5 X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/2lg-VbmJh0zvx5FO93s2avv-56U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.231.216.0/22 Signature Algorithm: sha256WithRSAEncryption 21:b0:53:98:85:94:86:79:3a:52:28:11:b2:2e:5f:c1:43:c4: e0:dd:4a:79:b3:33:a4:d8:35:82:5e:6d:d1:35:f0:db:42:34: a8:f9:22:a3:b4:63:f4:31:96:8a:04:3c:66:ca:b2:4f:91:9e: 49:fc:8e:3d:dc:f1:3f:3d:1a:c2:cc:c7:50:90:ae:1b:72:a9: 87:54:53:01:7f:fd:af:04:83:5e:a9:8e:0f:9f:f6:02:5d:af: eb:da:fd:5f:3c:3d:5f:43:6d:de:60:76:2a:d0:13:c2:f9:f1: 65:ce:eb:2e:b0:dd:05:e4:bc:df:93:26:17:bc:c0:26:b1:83: 47:3a:22:67:bb:21:7b:0a:80:f2:1e:48:b6:94:46:c2:a3:8c: 5f:9e:00:c0:f4:36:70:88:72:52:7f:fd:4d:82:04:4d:18:c7: 51:35:1a:0c:be:22:e5:37:76:08:6c:44:a6:3b:d5:7e:d2:d8: 5c:19:c8:a0:af:c2:dd:6d:e4:5f:a8:25:53:e1:f9:7a:3a:95: 36:1d:28:55:46:1e:6c:36:2f:e4:68:18:f1:e1:77:00:fc:48: 7f:db:b4:e2:40:f2:59:43:76:77:03:03:1c:09:22:1a:d7:12: ae:85:5e:19:ca:46:97:39:b0:86:da:5a:f5:7e:1c:39:90:70: 87:1d:cd:89 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNDEwMzEw MTI5NDhaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKERBNTgzRTU1Qjk4OTg3 NENFRkM3OTE0RUY3N0IzNjZBRkJGRUU3QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyKwaOt9GB/uCPMrxK0EvD21MlaVLK1kJR5m1OHpByDCJl05lJ WE2fp/lNpu6OJ/LyA2MUgKTfj29te0bDz6P9WPOfW9y2XOJePNESWVF5221F9UDD o7Xd3pS8h1nJTTQHlDQYZDnCU2jWjITmgS50RP/PzHN7wk/Rjesdi1PN7oYInSQN OyPX0S4twCglbhfc3Efkba5mCbwtbILkA1iCef8a0rnZo4Agz2krBW/PkKDrcJvy J/h+MVErKA55dFdNV3+MKaiwnVQjRdv9XyKHh7s7q4XN+CpgUv/DM4zQGrIT3jqf uJ7wNwYWeQ77kJ8XZ9kO9TylbeDdbpBBmf97AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2lg+VbmJh0zvx5FO93s2avv+56UwHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0LzJsZy1WYm1KaDB6dng1Rk85M3MyYXZ2LTU2VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALS59gwDQYJKoZIhvcNAQELBQADggEBACGwU5iFlIZ5OlIoEbIuX8FDxODd SnmzM6TYNYJebdE18NtCNKj5IqO0Y/QxlooEPGbKsk+Rnkn8jj3c8T89GsLMx1CQ rhtyqYdUUwF//a8Eg16pjg+f9gJdr+va/V88PV9Dbd5gdirQE8L58WXO6y6w3QXk vN+TJhe8wCaxg0c6Ime7IXsKgPIeSLaURsKjjF+eAMD0NnCIclJ//U2CBE0Yx1E1 Ggy+IuU3dghsRKY71X7S2FwZyKCvwt1t5F+oJVPh+Xo6lTYdKFVGHmw2L+RoGPHh dwD8SH/btOJA8llDdncDAxwJIhrXEq6FXhnKRpc5sIbaWvV+HDmQcIcdzYk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:18:58 2025 by rpki-client