$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/V1q3Yh-pHMsEB-xLtxVnx60RWd8.roa File: V1q3Yh-pHMsEB-xLtxVnx60RWd8.roa (raw, json) Hash identifier: 2faih0O/raDLRO8TgzOgtLWo6yIhEuJOMDtn7p12A1g= Subject key identifier: 57:5A:B7:62:1F:A9:1C:CB:04:07:EC:4B:B7:15:67:C7:AD:11:59:DF Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: 8B Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/V1q3Yh-pHMsEB-xLtxVnx60RWd8.roa Signing time: Thu 31 Oct 2024 01:30:44 +0000 ROA not before: Thu 31 Oct 2024 01:30:44 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 159.28.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Oct 31 01:30:44 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=575AB7621FA91CCB0407EC4BB71567C7AD1159DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:de:85:35:49:1f:60:c3:68:c3:c6:20:c9: 92:ab:0e:1f:62:97:b7:81:70:c0:ab:c1:48:36:b1: 00:c5:6a:bb:8e:1b:ad:2a:34:ed:dc:a9:81:d3:46: 03:7f:3a:1d:5b:5b:a3:95:bf:1c:67:61:a5:25:ea: 75:34:81:bd:c3:06:ab:96:cb:35:04:9f:a8:43:ca: 70:9f:00:36:33:6c:a5:04:e1:ef:5e:e2:37:41:b2: 8e:09:26:40:09:00:1b:1d:2d:dd:2e:fd:0a:b7:58: 98:48:49:e1:95:e9:5d:b3:76:6c:55:3d:8b:4e:ff: 68:16:9b:27:65:88:bd:84:28:42:a4:3d:49:c6:d1: c6:72:db:3d:20:6c:0a:66:c7:63:cf:3b:05:1e:40: a1:57:be:f0:04:e7:65:c7:b7:8b:40:ee:ea:c3:31: 63:9e:96:e0:36:cf:b6:3d:78:20:64:6c:6a:4c:08: 4d:39:dd:63:7b:1d:cc:8f:a0:f8:c7:1a:ad:62:ea: db:2c:b7:ac:21:0c:65:7a:ae:65:e5:68:ce:bb:71: 1a:ef:b7:1a:61:c7:34:d8:b5:b6:53:d5:38:81:0a: 46:8a:d6:85:66:db:b0:43:ef:84:35:ab:24:e6:f4: 34:0f:c9:8d:85:6a:b6:92:ba:99:6c:84:fb:08:6f: ac:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:5A:B7:62:1F:A9:1C:CB:04:07:EC:4B:B7:15:67:C7:AD:11:59:DF X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/V1q3Yh-pHMsEB-xLtxVnx60RWd8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 159.28.64.0/18 Signature Algorithm: sha256WithRSAEncryption 23:5f:37:df:21:cf:5d:b3:bc:85:1a:b0:3a:18:7f:09:47:e6: f8:ce:14:02:50:e0:ac:63:62:85:6f:51:65:b8:a8:db:29:75: 21:9c:df:de:b2:ca:82:77:b5:98:53:51:40:99:48:4e:7c:9a: a7:ba:6e:79:bd:96:39:dd:d6:cc:88:e6:81:7a:93:50:c1:11: 1d:f8:1f:24:ee:a5:8b:f4:f7:2b:df:d9:34:86:09:81:77:80: ef:b6:34:d2:15:31:81:a3:94:a3:50:92:15:06:32:fa:68:de: 65:7c:cb:69:6d:d2:75:24:68:42:40:b0:1d:d7:8c:1a:72:81: 3e:5f:ff:4b:93:8d:64:ee:58:e5:a9:57:f6:3c:d9:31:ab:9e: 74:01:62:d7:2f:3c:e7:40:00:80:2c:d6:c8:60:05:ee:9d:2b: 52:96:61:65:17:e3:c3:b8:8b:f8:fb:0c:39:c7:cf:a7:c3:cd: 27:00:18:0f:10:c2:7c:d0:b3:37:e3:93:50:1a:d7:83:dc:34: b6:9e:de:cc:da:1d:d3:72:b2:d4:f3:b4:6f:90:25:b2:06:f1: 8a:b6:59:82:69:ff:5b:57:b9:eb:da:fa:e1:ff:87:30:b4:54: 9f:e1:4d:a0:ab:62:68:4d:89:36:71:57:42:55:d8:e1:76:3d: 86:2e:ca:4e -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNDEwMzEw MTMwNDRaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDU3NUFCNzYyMUZBOTFD Q0IwNDA3RUM0QkI3MTU2N0M3QUQxMTU5REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7Gt6FNUkfYMNow8YgyZKrDh9il7eBcMCrwUg2sQDFaruOG60q NO3cqYHTRgN/Oh1bW6OVvxxnYaUl6nU0gb3DBquWyzUEn6hDynCfADYzbKUE4e9e 4jdBso4JJkAJABsdLd0u/Qq3WJhISeGV6V2zdmxVPYtO/2gWmydliL2EKEKkPUnG 0cZy2z0gbApmx2PPOwUeQKFXvvAE52XHt4tA7urDMWOeluA2z7Y9eCBkbGpMCE05 3WN7HcyPoPjHGq1i6tsst6whDGV6rmXlaM67cRrvtxphxzTYtbZT1TiBCkaK1oVm 27BD74Q1qyTm9DQPyY2FaraSuplshPsIb6wTAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUV1q3Yh+pHMsEB+xLtxVnx60RWd8wHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9WMXEzWWgtcEhNc0VCLXhMdHhWbng2MFJXZDgucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQGnxxAMA0GCSqGSIb3DQEBCwUAA4IBAQAjXzffIc9ds7yFGrA6GH8JR+b4zhQC UOCsY2KFb1FluKjbKXUhnN/essqCd7WYU1FAmUhOfJqnum55vZY53dbMiOaBepNQ wREd+B8k7qWL9Pcr39k0hgmBd4DvtjTSFTGBo5SjUJIVBjL6aN5lfMtpbdJ1JGhC QLAd14wacoE+X/9Lk41k7ljlqVf2PNkxq550AWLXLzznQACALNbIYAXunStSlmFl F+PDuIv4+ww5x8+nw80nABgPEMJ80LM345NQGteD3DS2nt7M2h3TcrLU87RvkCWy BvGKtlmCaf9bV7nr2vrh/4cwtFSf4U2gq2JoTYk2cVdCVdjhdj2GLspO -----END CERTIFICATE-----Generated at Sun Feb 16 22:13:28 2025 by rpki-client