$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/qjkhlpoPlFBVa916aK3eiaVqvss.roa File: qjkhlpoPlFBVa916aK3eiaVqvss.roa (raw, json) Hash identifier: DOwmR/dzbDTtZvk+kD380up1d+429fdalXsW6oXt1jY= Subject key identifier: AA:39:21:96:9A:0F:94:50:55:6B:DD:7A:68:AD:DE:89:A5:6A:BE:CB Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0122 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/qjkhlpoPlFBVa916aK3eiaVqvss.roa Signing time: Mon 30 Sep 2024 01:30:27 +0000 ROA not before: Mon 30 Sep 2024 01:30:27 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 10021 IP address blocks: 203.167.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Sep 30 01:30:27 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=AA3921969A0F9450556BDD7A68ADDE89A56ABECB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:da:30:99:34:1f:2a:f4:e2:96:be:03:e1:aa: d0:89:32:7e:48:fb:d9:54:da:41:03:92:f9:53:a8: 89:b3:3b:3f:13:6a:d2:7b:ed:04:ef:80:56:c8:fb: 7c:d1:78:5a:70:fd:85:4f:48:b4:ee:96:1e:26:c8: 94:8d:dd:46:09:a1:2b:56:fe:64:26:0c:a7:14:68: e9:f4:03:87:35:c8:38:2e:04:d0:63:d7:64:ca:59: 65:a6:55:9a:bd:05:0e:c2:58:8d:5f:8d:81:41:65: 03:b3:11:14:30:0c:d7:cc:41:11:11:a8:37:5b:03: 7e:3f:15:c6:86:6b:6c:c9:ff:bc:25:a0:af:fe:99: 66:d7:54:68:3a:9c:fc:3d:5d:5b:88:f7:2c:b6:51: e1:5d:e8:b1:6d:56:b0:0c:1a:3b:5c:e9:c1:ef:02: c1:0a:c9:73:4d:64:2f:51:89:7a:5d:6d:28:ab:74: a4:6e:8c:ba:91:06:25:e6:fa:60:19:2b:90:a2:ac: d6:e2:93:45:e3:23:e1:a7:24:70:1b:37:e6:bd:1f: f9:9f:cb:3e:da:ee:95:bf:f5:63:3e:83:e3:40:44: 0f:0e:de:b9:48:e4:44:11:6b:8d:48:7c:5f:cf:1f: f2:3d:8d:f8:64:97:96:1f:7c:fd:f2:0c:7a:8c:bf: e9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:39:21:96:9A:0F:94:50:55:6B:DD:7A:68:AD:DE:89:A5:6A:BE:CB X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/qjkhlpoPlFBVa916aK3eiaVqvss.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.167.32.0/19 Signature Algorithm: sha256WithRSAEncryption 3a:2a:98:90:a2:d4:e6:44:ee:c1:d9:16:d8:8f:b1:2d:b8:1b: f2:71:74:7c:87:14:11:b0:3e:58:a7:c8:01:10:8b:de:43:b4: b6:57:db:b2:4a:bb:ad:9f:3d:02:14:79:f6:82:e0:44:b1:9f: 6a:89:9b:47:fd:0e:5f:24:29:90:da:a4:d8:20:94:30:e4:8c: 71:2d:ed:79:57:5f:3a:ba:e7:bd:63:df:9b:2e:38:35:ff:51: 73:d8:1c:d7:6e:f8:b6:ae:48:f4:68:0c:58:24:cd:25:d3:43: 92:e1:c8:30:65:e1:03:bb:95:31:0e:82:63:60:b8:1c:cd:c0: 55:07:c9:1a:10:19:ed:ec:08:9f:93:fb:e0:7d:bc:28:1f:60: 78:ba:b7:fa:31:b6:cf:dc:b8:7f:92:ef:e8:b7:d6:29:7a:16: c0:dc:d5:85:ef:35:5e:db:ba:95:1d:33:40:a8:b8:64:d1:e2: 26:27:f3:46:bd:0c:35:75:a7:f0:96:ad:92:d4:d2:e6:6d:fc: ce:c1:da:f8:44:c4:80:e3:15:9b:16:e6:74:09:b4:90:d7:ab: e0:36:f5:82:db:56:31:99:67:49:9c:05:48:ef:8a:93:8e:ab: 7c:99:11:65:e8:7d:e7:d4:17:29:af:18:c3:1e:d0:85:04:2e: 9f:ca:43:15 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICASIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNDA5MzAw MTMwMjdaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFBMzkyMTk2OUEwRjk0 NTA1NTZCREQ3QTY4QURERTg5QTU2QUJFQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa2jCZNB8q9OKWvgPhqtCJMn5I+9lU2kEDkvlTqImzOz8TatJ7 7QTvgFbI+3zReFpw/YVPSLTulh4myJSN3UYJoStW/mQmDKcUaOn0A4c1yDguBNBj 12TKWWWmVZq9BQ7CWI1fjYFBZQOzERQwDNfMQRERqDdbA34/FcaGa2zJ/7wloK/+ mWbXVGg6nPw9XVuI9yy2UeFd6LFtVrAMGjtc6cHvAsEKyXNNZC9RiXpdbSirdKRu jLqRBiXm+mAZK5CirNbik0XjI+GnJHAbN+a9H/mfyz7a7pW/9WM+g+NARA8O3rlI 5EQRa41IfF/PH/I9jfhkl5YffP3yDHqMv+kpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUqjkhlpoPlFBVa916aK3eiaVqvsswHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L3Fqa2hscG9QbEZCVmE5MTZhSzNlaWFWcXZzcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXLpyAwDQYJKoZIhvcNAQELBQADggEBADoqmJCi1OZE7sHZFtiPsS24G/Jx dHyHFBGwPlinyAEQi95DtLZX27JKu62fPQIUefaC4ESxn2qJm0f9Dl8kKZDapNgg lDDkjHEt7XlXXzq6571j35suODX/UXPYHNdu+LauSPRoDFgkzSXTQ5LhyDBl4QO7 lTEOgmNguBzNwFUHyRoQGe3sCJ+T++B9vCgfYHi6t/oxts/cuH+S7+i31il6FsDc 1YXvNV7bupUdM0CouGTR4iYn80a9DDV1p/CWrZLU0uZt/M7B2vhExIDjFZsW5nQJ tJDXq+A29YLbVjGZZ0mcBUjvipOOq3yZEWXofefUFymvGMMe0IUELp/KQxU= -----END CERTIFICATE-----Generated at Sun Feb 16 22:29:18 2025 by rpki-client