$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/395/evKb9jLxufOyo3xhlUajb6VIMWo.roa File: evKb9jLxufOyo3xhlUajb6VIMWo.roa (raw, json) Hash identifier: TwQir6dTA4QSOlCEP8Cu7+tfUgmTqZUNFTqAEL9xZ98= Subject key identifier: 7A:F2:9B:F6:32:F1:B9:F3:B2:A3:7C:61:95:46:A3:6F:A5:48:31:6A Certificate issuer: /CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Certificate serial: 45 Authority key identifier: B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/evKb9jLxufOyo3xhlUajb6VIMWo.roa Signing time: Tue 31 Dec 2024 01:31:58 +0000 ROA not before: Tue 31 Dec 2024 01:31:58 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 9619 IP address blocks: 211.125.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Validity Not Before: Dec 31 01:31:58 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=7AF29BF632F1B9F3B2A37C619546A36FA548316A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:44:c1:c0:9a:42:36:46:3e:2d:cb:13:50:d7: 33:a0:e8:ec:9d:17:b0:e1:99:4d:52:ab:15:c8:a4: a4:08:0a:f1:29:f0:17:95:3b:b0:6a:16:2d:98:88: 87:1e:ff:b7:db:e4:cd:01:04:9a:16:3f:cb:ec:f3: 47:90:7d:9b:b5:13:21:6c:9c:71:06:a8:3b:ea:cd: d2:e2:d1:9e:e8:d9:cc:ac:55:f7:67:2f:97:9a:79: 24:9d:d1:ae:c8:fe:b2:e2:51:76:0d:f9:7b:55:91: 5a:d7:1b:7d:65:7f:6b:09:eb:a5:d2:45:fe:cc:47: 70:25:37:ae:34:c4:75:88:8a:a6:4f:f7:38:8f:da: d7:36:e5:b7:40:c9:01:3f:1a:19:95:e4:45:0e:e5: a1:4f:63:b3:83:e7:9f:86:20:db:90:22:2d:ec:9c: d6:e7:36:d5:88:8f:ce:3f:af:c9:3f:59:30:50:f5: 2f:ed:73:5b:6a:14:a6:a5:c8:b9:f8:2b:9b:21:03: cd:6f:80:ca:b1:78:ad:c3:af:a2:ec:c4:c5:c2:b0: 68:0c:59:97:89:cf:bf:c6:24:af:46:82:e8:e0:35: ef:68:b1:21:99:ea:8c:e5:79:a9:24:dc:85:01:e1: 26:ce:6a:76:01:f3:7d:05:71:68:88:ac:09:59:1d: 32:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F2:9B:F6:32:F1:B9:F3:B2:A3:7C:61:95:46:A3:6F:A5:48:31:6A X509v3 Authority Key Identifier: keyid:B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/evKb9jLxufOyo3xhlUajb6VIMWo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.125.137.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:51:c1:1f:90:e1:b6:b9:f9:c7:27:dd:0f:e1:a9:dc:35:87: 9a:78:16:28:7c:89:90:d0:04:a3:09:8c:15:65:89:35:96:93: 69:e0:9b:b7:86:6c:d9:2e:90:c0:78:8a:03:bd:9a:97:43:ee: 72:7a:8c:49:63:70:15:46:fc:a4:00:96:33:c1:5d:83:41:0c: 6a:5b:9a:3f:94:d9:b3:75:fd:ae:b4:6e:2c:f8:45:54:16:cf: 4f:7c:13:61:48:50:b9:af:ce:72:7a:f1:04:08:7a:8d:58:09: bb:d2:86:f0:c9:f6:bf:93:66:98:ed:68:ca:5b:42:08:b1:90: 92:96:af:34:f3:e8:d3:a5:9e:05:ad:a4:5d:dc:a5:20:46:85: d6:31:96:14:c0:64:c5:99:bd:8e:ff:37:12:01:62:b9:b9:5a: 20:f7:8f:62:25:aa:c6:1c:b1:7f:7c:2c:48:4e:c0:46:d8:41: a2:5d:c8:33:ae:ab:40:04:a0:4e:b3:c6:de:a0:f5:19:7f:c9: 26:e6:db:7f:29:95:72:45:ed:47:50:53:73:e5:0f:47:39:c5: 7d:95:d3:42:00:b5:9d:a5:5a:1d:76:76:5d:a3:d0:d1:4e:19: 70:a3:4d:20:0f:6a:1e:ef:70:41:70:86:3c:00:8b:74:8d:eb: aa:e8:69:d9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzMz QUVEQTVCODFBNkIyRjU0RkY3MTQ2NjhGOEQ2M0U4N0I4NUExMB4XDTI0MTIzMTAx MzE1OFoXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoN0FGMjlCRjYzMkYxQjlG M0IyQTM3QzYxOTU0NkEzNkZBNTQ4MzE2QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALVEwcCaQjZGPi3LE1DXM6Do7J0XsOGZTVKrFcikpAgK8SnwF5U7 sGoWLZiIhx7/t9vkzQEEmhY/y+zzR5B9m7UTIWyccQaoO+rN0uLRnujZzKxV92cv l5p5JJ3Rrsj+suJRdg35e1WRWtcbfWV/awnrpdJF/sxHcCU3rjTEdYiKpk/3OI/a 1zblt0DJAT8aGZXkRQ7loU9js4Pnn4Yg25AiLeyc1uc21YiPzj+vyT9ZMFD1L+1z W2oUpqXIufgrmyEDzW+AyrF4rcOvouzExcKwaAxZl4nPv8Ykr0aC6OA172ixIZnq jOV5qSTchQHhJs5qdgHzfQVxaIisCVkdMsUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBR68pv2MvG587KjfGGVRqNvpUgxajAfBgNVHSMEGDAWgBSzM67aW4GmsvVP9xRm j41j6HuFoTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzk1L3N6T3UybHVCcHJMMVRfY1Vaby1OWS1oN2hhRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3N6T3UybHVCcHJMMVRfY1Vaby1OWS1o N2hhRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zOTUvZXZLYjlqTHh1Zk95bzN4aGxVYWpiNlZJTVdvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANN9iTANBgkqhkiG9w0BAQsFAAOCAQEAK1HBH5Dhtrn5xyfdD+Gp3DWHmngW KHyJkNAEowmMFWWJNZaTaeCbt4Zs2S6QwHiKA72al0PucnqMSWNwFUb8pACWM8Fd g0EMaluaP5TZs3X9rrRuLPhFVBbPT3wTYUhQua/OcnrxBAh6jVgJu9KG8Mn2v5Nm mO1oyltCCLGQkpavNPPo06WeBa2kXdylIEaF1jGWFMBkxZm9jv83EgFiublaIPeP YiWqxhyxf3wsSE7ARthBol3IM66rQASgTrPG3qD1GX/JJubbfymVckXtR1BTc+UP RznFfZXTQgC1naVaHXZ2XaPQ0U4ZcKNNIA9qHu9wQXCGPACLdI3rquhp2Q== -----END CERTIFICATE-----Generated at Wed Feb 19 22:33:48 2025 by rpki-client