$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/395/ZZqtrFpdjeBQk65wVHoMJK51i2s.roa File: ZZqtrFpdjeBQk65wVHoMJK51i2s.roa (raw, json) Hash identifier: 8vunOSvYDrkau2Dqkn8Ww/BRk9RDW+SwEKqgzYhx/SY= Subject key identifier: 65:9A:AD:AC:5A:5D:8D:E0:50:93:AE:70:54:7A:0C:24:AE:75:8B:6B Certificate issuer: /CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Certificate serial: 3D Authority key identifier: B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/ZZqtrFpdjeBQk65wVHoMJK51i2s.roa Signing time: Tue 31 Dec 2024 01:31:54 +0000 ROA not before: Tue 31 Dec 2024 01:31:54 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 9619 IP address blocks: 211.125.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Validity Not Before: Dec 31 01:31:54 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=659AADAC5A5D8DE05093AE70547A0C24AE758B6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ae:5e:c6:ff:70:8b:42:51:1a:23:5a:15:ba: a5:ec:07:9d:8e:f8:1f:a5:4a:62:b9:58:15:15:42: df:5f:a9:fa:c2:16:8f:ef:0a:15:c3:73:db:60:36: f9:5a:99:69:0c:74:62:28:2a:90:e9:f8:d2:14:2f: a9:a5:51:1e:29:16:b8:a4:12:e0:cc:6c:9b:cb:9f: 8b:cc:8f:75:4d:47:44:f5:fd:b4:97:0d:13:c5:c0: 18:33:6a:2f:47:06:8c:1b:6d:52:37:7d:95:f1:73: e3:e1:8c:c9:f5:a9:12:a1:19:3a:9c:eb:52:2c:15: 5f:04:9e:93:d2:2d:53:b0:a7:15:c6:58:06:fe:ef: 8f:e7:0c:be:36:74:54:c4:9d:0e:fb:f1:3a:2a:ce: f7:47:cd:cb:b6:1f:b3:b9:fd:19:c2:53:2c:db:c1: b6:3d:9c:51:fd:d9:6a:48:85:44:e8:71:ab:0d:d7: 1e:a0:dd:ed:83:d4:52:3b:8e:61:88:29:15:b3:b1: 0d:57:16:08:ab:70:f5:b1:11:21:e2:8c:22:9c:57: 79:cb:44:80:d4:f6:0a:33:4c:8c:d3:da:70:12:a4: 94:69:8b:e0:ab:88:f2:53:e3:e2:8a:29:8f:c5:e8: 8f:f9:19:6b:c8:ec:98:3b:8d:10:f7:40:89:db:56: 40:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9A:AD:AC:5A:5D:8D:E0:50:93:AE:70:54:7A:0C:24:AE:75:8B:6B X509v3 Authority Key Identifier: keyid:B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/ZZqtrFpdjeBQk65wVHoMJK51i2s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.125.128.0/24 Signature Algorithm: sha256WithRSAEncryption 71:04:40:68:d2:ff:3c:b0:6e:a4:d8:e4:5a:02:db:f0:a0:5a: 5a:d7:d3:3d:b2:7e:a4:40:5a:a5:33:da:c2:4f:c9:6d:c9:28: 65:21:0f:08:8c:9f:da:f0:2a:aa:cf:71:f2:a0:70:49:72:cc: 01:dd:34:f9:7b:d1:b4:95:35:67:39:f3:b4:7f:cb:b2:89:e9: 7e:4a:0f:4e:80:89:61:76:1b:3c:92:62:24:e2:6f:ed:a7:88: 09:f1:e8:22:41:b4:f3:6e:ed:59:94:35:73:2f:6b:54:26:f6: a8:b6:5a:5b:7f:f2:69:67:96:5a:76:2d:38:92:d1:e5:72:67: 6d:ce:2e:ac:bc:8a:79:51:42:df:86:04:26:51:07:51:59:0a: ec:22:8b:bf:7d:50:2e:a4:8f:3e:4a:9d:ed:e8:09:8c:41:f2: 8a:40:3f:be:5b:c5:af:66:d7:4e:18:f7:bd:49:1c:17:87:65: da:28:97:78:7f:71:74:ab:e6:0c:4c:87:b4:24:32:3d:f9:6d: ba:13:d2:ba:42:47:5f:05:37:50:e8:d7:0d:3e:56:cf:07:04: ee:9c:2e:77:7e:14:80:9d:47:4c:07:26:d9:ff:4d:73:61:b2: b6:1d:78:47:f6:d3:1c:aa:38:ff:2e:f9:c2:cf:82:4b:37:e7: 32:cb:b8:34 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzMz QUVEQTVCODFBNkIyRjU0RkY3MTQ2NjhGOEQ2M0U4N0I4NUExMB4XDTI0MTIzMTAx MzE1NFoXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoNjU5QUFEQUM1QTVEOERF MDUwOTNBRTcwNTQ3QTBDMjRBRTc1OEI2QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALyuXsb/cItCURojWhW6pewHnY74H6VKYrlYFRVC31+p+sIWj+8K FcNz22A2+VqZaQx0YigqkOn40hQvqaVRHikWuKQS4Mxsm8ufi8yPdU1HRPX9tJcN E8XAGDNqL0cGjBttUjd9lfFz4+GMyfWpEqEZOpzrUiwVXwSek9ItU7CnFcZYBv7v j+cMvjZ0VMSdDvvxOirO90fNy7Yfs7n9GcJTLNvBtj2cUf3ZakiFROhxqw3XHqDd 7YPUUjuOYYgpFbOxDVcWCKtw9bERIeKMIpxXectEgNT2CjNMjNPacBKklGmL4KuI 8lPj4oopj8Xoj/kZa8jsmDuNEPdAidtWQIMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRlmq2sWl2N4FCTrnBUegwkrnWLazAfBgNVHSMEGDAWgBSzM67aW4GmsvVP9xRm j41j6HuFoTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzk1L3N6T3UybHVCcHJMMVRfY1Vaby1OWS1oN2hhRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3N6T3UybHVCcHJMMVRfY1Vaby1OWS1o N2hhRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zOTUvWlpxdHJGcGRqZUJRazY1d1ZIb01KSzUxaTJzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANN9gDANBgkqhkiG9w0BAQsFAAOCAQEAcQRAaNL/PLBupNjkWgLb8KBaWtfT PbJ+pEBapTPawk/JbckoZSEPCIyf2vAqqs9x8qBwSXLMAd00+XvRtJU1ZznztH/L sonpfkoPToCJYXYbPJJiJOJv7aeICfHoIkG0827tWZQ1cy9rVCb2qLZaW3/yaWeW WnYtOJLR5XJnbc4urLyKeVFC34YEJlEHUVkK7CKLv31QLqSPPkqd7egJjEHyikA/ vlvFr2bXThj3vUkcF4dl2iiXeH9xdKvmDEyHtCQyPfltuhPSukJHXwU3UOjXDT5W zwcE7pwud34UgJ1HTAcm2f9Nc2Gyth14R/bTHKo4/y75ws+CSzfnMsu4NA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:30:11 2025 by rpki-client