$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/QOirjXO5NBN7ZIzOMAEyNFm5PGc.roa File: QOirjXO5NBN7ZIzOMAEyNFm5PGc.roa (raw, json) Hash identifier: uJ90C5ix2Mb1dJu/4dfQUEkuQAZovMZs781p3mfP1ao= Subject key identifier: 40:E8:AB:8D:73:B9:34:13:7B:64:8C:CE:30:01:32:34:59:B9:3C:67 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0128 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QOirjXO5NBN7ZIzOMAEyNFm5PGc.roa Signing time: Thu 31 Oct 2024 01:30:25 +0000 ROA not before: Thu 31 Oct 2024 01:30:25 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 10021 IP address blocks: 27.110.32.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 31 01:30:25 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=40E8AB8D73B934137B648CCE3001323459B93C67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:96:96:4a:49:46:da:e0:89:c5:62:92:bc:83: cc:70:63:b7:c1:31:e2:fb:de:9b:34:97:7d:24:95: 7f:44:86:92:54:f6:89:3f:79:37:24:f8:ef:56:e0: ad:c3:35:d7:8d:69:e4:6a:39:fb:be:68:10:9e:99: b7:52:96:d6:7b:37:0f:5e:bd:c7:b9:2b:59:04:87: ae:a8:9d:e2:89:7f:5b:4d:62:ec:80:eb:b6:6f:76: 86:ad:4f:d4:63:c5:1b:a2:db:35:15:08:e8:24:5b: 6d:c5:47:22:3c:c8:a3:e9:07:f5:ab:61:7e:d7:c9: 56:39:af:b5:40:fe:82:4a:32:72:b2:95:dd:f3:e7: 54:ee:70:2e:a5:cb:a3:12:16:f4:e9:a9:c1:b7:7e: 49:17:f3:6a:22:e1:ea:07:4c:b6:1e:52:4b:68:58: b3:14:02:4a:6b:d9:e3:17:93:4a:7f:b5:7d:43:ce: 58:4e:d0:2e:77:9e:24:db:98:5a:03:67:02:93:0b: 9c:c8:f8:8d:66:66:24:f7:45:47:5a:19:99:32:92: 6a:3f:ae:f7:fd:ac:e4:ea:7b:ac:b9:e0:0f:e2:56: f4:03:55:e2:7d:dc:e0:0c:b2:98:bd:dc:25:87:d9: 94:5a:96:fc:be:7d:36:82:61:8a:29:24:3d:6f:8a: 47:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E8:AB:8D:73:B9:34:13:7B:64:8C:CE:30:01:32:34:59:B9:3C:67 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QOirjXO5NBN7ZIzOMAEyNFm5PGc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.110.32.0/20 Signature Algorithm: sha256WithRSAEncryption 18:3c:ed:f9:27:e3:9b:8a:2e:1a:53:70:7e:5c:20:d3:dc:e1: 9b:a1:d1:4b:19:d5:03:97:bc:e1:e2:dd:f8:d5:72:fb:de:c9: aa:44:78:dd:6f:b2:8b:2d:a0:35:e8:fc:ad:4b:33:ee:7e:9e: 2c:59:d9:96:05:2e:5a:cb:6d:05:55:f0:47:ac:b3:f2:75:ce: 95:8f:9c:3b:7b:4c:b8:b3:85:94:b1:ca:77:b3:33:4a:e9:78: da:3d:69:1c:07:6e:29:a6:40:0d:88:f7:75:21:ad:37:8d:89: 88:90:a5:0c:1e:3a:e6:f8:56:fe:6d:93:f3:8c:71:df:53:08: f4:0a:28:17:d7:6f:01:b1:c2:1d:65:41:c7:55:99:57:08:36: 4a:07:40:ad:01:b4:69:cd:b9:50:73:9f:d3:3d:74:3a:7d:34: 64:04:25:0d:d0:ab:c0:78:69:d7:ed:3e:c4:43:5e:d5:4a:09: 42:e6:07:16:3e:ab:58:cf:81:91:20:dd:8b:4a:df:bc:ff:da: 41:51:a2:0b:ab:17:dd:35:00:07:15:ef:b5:10:2b:1d:a7:ac: d5:57:ca:cd:d1:40:03:e6:f4:a6:b3:cf:49:83:a0:27:d7:49: cf:7b:6e:ba:e7:8f:a5:5c:f0:ed:4f:30:26:d8:74:e1:48:74: fb:04:b7:42 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICASgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNDEwMzEw MTMwMjVaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQwRThBQjhENzNCOTM0 MTM3QjY0OENDRTMwMDEzMjM0NTlCOTNDNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCilpZKSUba4InFYpK8g8xwY7fBMeL73ps0l30klX9EhpJU9ok/ eTck+O9W4K3DNdeNaeRqOfu+aBCembdSltZ7Nw9evce5K1kEh66oneKJf1tNYuyA 67ZvdoatT9RjxRui2zUVCOgkW23FRyI8yKPpB/WrYX7XyVY5r7VA/oJKMnKyld3z 51TucC6ly6MSFvTpqcG3fkkX82oi4eoHTLYeUktoWLMUAkpr2eMXk0p/tX1DzlhO 0C53niTbmFoDZwKTC5zI+I1mZiT3RUdaGZkykmo/rvf9rOTqe6y54A/iVvQDVeJ9 3OAMspi93CWH2ZRalvy+fTaCYYopJD1vikcTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQOirjXO5NBN7ZIzOMAEyNFm5PGcwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L1FPaXJqWE81TkJON1pJek9NQUV5TkZtNVBHYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQbbiAwDQYJKoZIhvcNAQELBQADggEBABg87fkn45uKLhpTcH5cINPc4Zuh 0UsZ1QOXvOHi3fjVcvveyapEeN1vsostoDXo/K1LM+5+nixZ2ZYFLlrLbQVV8Ees s/J1zpWPnDt7TLizhZSxynezM0rpeNo9aRwHbimmQA2I93UhrTeNiYiQpQweOub4 Vv5tk/OMcd9TCPQKKBfXbwGxwh1lQcdVmVcINkoHQK0BtGnNuVBzn9M9dDp9NGQE JQ3Qq8B4adftPsRDXtVKCULmBxY+q1jPgZEg3YtK37z/2kFRogurF901AAcV77UQ Kx2nrNVXys3RQAPm9Kazz0mDoCfXSc97brrnj6Vc8O1PMCbYdOFIdPsEt0I= -----END CERTIFICATE-----Generated at Sun Feb 16 22:27:17 2025 by rpki-client