$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/2JR4AZK5bHbHSqjCJwVbgjWtEMc.roa File: 2JR4AZK5bHbHSqjCJwVbgjWtEMc.roa (raw, json) Hash identifier: 6bWYyjkQ8UA5YPlGe5hBI7C0jERd44HIBIzeKc0LdrY= Subject key identifier: D8:94:78:01:92:B9:6C:76:C7:4A:A8:C2:27:05:5B:82:35:AD:10:C7 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0116 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/2JR4AZK5bHbHSqjCJwVbgjWtEMc.roa Signing time: Sat 31 Aug 2024 01:29:25 +0000 ROA not before: Sat 31 Aug 2024 01:29:25 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 10021 IP address blocks: 202.7.108.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Aug 31 01:29:25 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=D894780192B96C76C74AA8C227055B8235AD10C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:71:2f:57:fa:46:82:cd:85:c5:57:9d:8c:54: 0f:de:57:8f:eb:da:12:87:8b:48:4a:d0:e4:20:31: c0:41:56:4e:7a:e0:78:26:62:c4:b8:11:e9:3c:e2: 45:98:d5:fa:b1:77:6c:c7:c4:e5:59:ce:67:81:fb: 46:ca:81:4c:4f:23:1a:19:02:a4:d2:b9:57:da:b5: 05:d9:23:3b:07:56:17:3a:5f:af:fe:88:17:01:6a: 2a:b7:2b:4c:54:fa:bb:02:a4:67:00:92:60:67:12: 45:22:b1:45:30:aa:25:a9:ff:e4:83:11:d4:a4:24: c2:f1:d9:7e:06:59:8d:42:10:54:80:bc:26:d2:5c: 0a:44:df:34:38:9c:1e:f8:8d:54:56:b2:41:90:99: d3:06:55:41:8b:5d:8d:a1:36:dd:56:50:4a:fd:0d: d1:b0:d5:1a:70:5b:88:45:d5:5c:fb:3e:75:f3:c3: 2f:5c:a4:34:33:98:2c:4b:15:c5:f1:57:92:30:17: 5f:ef:88:f4:d7:0d:57:da:85:09:8f:b5:33:a8:4a: a7:26:c4:8c:49:05:e7:46:2f:3e:d6:d7:ff:a1:b7: 07:c7:5a:13:90:d1:2c:3c:08:e3:a0:31:9f:53:fe: 3d:4f:9f:0b:b9:d0:e4:c6:10:bc:d5:f0:5d:1d:fc: 3b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:94:78:01:92:B9:6C:76:C7:4A:A8:C2:27:05:5B:82:35:AD:10:C7 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/2JR4AZK5bHbHSqjCJwVbgjWtEMc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.7.108.0/22 Signature Algorithm: sha256WithRSAEncryption a1:07:5f:19:ee:f2:ed:3d:36:fa:e5:65:d1:4d:7a:45:5d:d8: a6:38:57:7c:38:d1:6c:a2:90:f2:13:e8:22:a9:f6:26:fa:dc: 62:2b:ed:c9:01:6c:d5:45:44:18:fd:b6:06:71:ca:ce:00:8e: 3a:5f:37:62:41:4a:2e:04:b4:96:88:e7:33:a8:51:22:c2:4b: d6:92:59:60:a7:b6:1d:3d:ce:79:51:50:19:01:ef:a6:c3:84: d5:d9:f0:df:c9:de:47:b0:34:74:8d:e0:3e:c7:21:80:95:af: 65:ca:58:ae:2c:f6:a3:54:f5:f8:39:d7:d9:96:79:e6:83:8d: ef:6f:da:ed:11:2b:a1:80:41:37:ce:86:d4:bc:c6:84:fb:24: e2:06:04:a9:73:c9:8e:a1:08:ee:7d:28:55:97:69:3b:d8:bb: 05:29:89:ea:81:18:57:e2:15:44:f8:d9:48:9b:44:7f:9d:5f: b6:7d:7c:e6:84:ed:08:59:0f:85:c0:02:09:35:b9:1c:bc:2d: 40:bf:76:da:b4:cf:5d:56:2a:cc:4c:9a:58:0b:bc:2d:f5:5e: ce:4e:4b:a1:95:96:8a:12:9a:ab:c1:4c:d2:b6:83:1c:df:46: cc:7b:54:68:c5:b0:72:d2:43:8c:c2:b6:63:cf:77:98:3d:4a: 95:75:53:58 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICARYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNDA4MzEw MTI5MjVaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ4OTQ3ODAxOTJCOTZD NzZDNzRBQThDMjI3MDU1QjgyMzVBRDEwQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2cS9X+kaCzYXFV52MVA/eV4/r2hKHi0hK0OQgMcBBVk564Hgm YsS4Eek84kWY1fqxd2zHxOVZzmeB+0bKgUxPIxoZAqTSuVfatQXZIzsHVhc6X6/+ iBcBaiq3K0xU+rsCpGcAkmBnEkUisUUwqiWp/+SDEdSkJMLx2X4GWY1CEFSAvCbS XApE3zQ4nB74jVRWskGQmdMGVUGLXY2hNt1WUEr9DdGw1RpwW4hF1Vz7PnXzwy9c pDQzmCxLFcXxV5IwF1/viPTXDVfahQmPtTOoSqcmxIxJBedGLz7W1/+htwfHWhOQ 0Sw8COOgMZ9T/j1Pnwu50OTGELzV8F0d/DuJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2JR4AZK5bHbHSqjCJwVbgjWtEMcwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5LzJKUjRBWks1YkhiSFNxakNKd1ZiZ2pXdEVNYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKB2wwDQYJKoZIhvcNAQELBQADggEBAKEHXxnu8u09NvrlZdFNekVd2KY4 V3w40WyikPIT6CKp9ib63GIr7ckBbNVFRBj9tgZxys4AjjpfN2JBSi4EtJaI5zOo USLCS9aSWWCnth09znlRUBkB76bDhNXZ8N/J3kewNHSN4D7HIYCVr2XKWK4s9qNU 9fg519mWeeaDje9v2u0RK6GAQTfOhtS8xoT7JOIGBKlzyY6hCO59KFWXaTvYuwUp ieqBGFfiFUT42UibRH+dX7Z9fOaE7QhZD4XAAgk1uRy8LUC/dtq0z11WKsxMmlgL vC31Xs5OS6GVlooSmqvBTNK2gxzfRsx7VGjFsHLSQ4zCtmPPd5g9SpV1U1g= -----END CERTIFICATE-----Generated at Thu Mar 13 01:47:06 2025 by rpki-client