$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/484/FT8t-1KfxEFL6xHmz8Ek6OPtCCE.roa File: FT8t-1KfxEFL6xHmz8Ek6OPtCCE.roa (raw, json) Hash identifier: QlTwaJ1kYmYPGkK1V+SJZPIf3q4n1eg6QOW0VV4gMS8= Subject key identifier: 15:3F:2D:FB:52:9F:C4:41:4B:EB:11:E6:CF:C1:24:E8:E3:ED:08:21 Certificate issuer: /CN=C0986C0F2DB2D4FE707672C227937BEAA9F5D78A Certificate serial: 11 Authority key identifier: C0:98:6C:0F:2D:B2:D4:FE:70:76:72:C2:27:93:7B:EA:A9:F5:D7:8A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wJhsDy2y1P5wdnLCJ5N76qn114o.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/FT8t-1KfxEFL6xHmz8Ek6OPtCCE.roa Signing time: Mon 21 Oct 2024 02:11:04 +0000 ROA not before: Mon 21 Oct 2024 02:11:04 +0000 ROA not after: Tue 21 Oct 2025 01:23:02 +0000 asID: 9354 IP address blocks: 202.157.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/wJhsDy2y1P5wdnLCJ5N76qn114o.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/wJhsDy2y1P5wdnLCJ5N76qn114o.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wJhsDy2y1P5wdnLCJ5N76qn114o.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0986C0F2DB2D4FE707672C227937BEAA9F5D78A Validity Not Before: Oct 21 02:11:04 2024 GMT Not After : Oct 21 01:23:02 2025 GMT Subject: CN=153F2DFB529FC4414BEB11E6CFC124E8E3ED0821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2a:ad:2a:43:29:22:22:7e:8b:8a:f6:7f:43: 5a:67:cf:8f:3b:be:2f:a8:d0:f4:12:2b:5a:47:2a: cd:bf:3c:5b:0b:0c:33:aa:f5:86:6c:8d:cb:cf:d7: dc:2d:9e:71:9b:8f:9b:77:bd:00:aa:9f:91:08:a6: c0:aa:13:a9:e3:db:4c:ba:f3:fe:d0:ae:1c:23:d3: 98:4c:45:02:43:77:f3:0f:fc:3e:9d:86:c6:94:f3: 9e:87:01:0e:20:38:37:30:f8:a5:4f:41:54:02:70: 14:0e:65:e9:f8:23:d8:92:58:a5:0d:21:fd:93:87: f9:06:8a:0e:a9:1d:0e:f1:cc:dd:1f:64:35:ff:ce: 59:49:26:49:c6:79:16:d7:ba:74:4c:f7:d1:ab:8d: e1:6b:97:f4:3c:e6:79:af:d4:d4:09:a9:68:c7:e0: 5b:e6:66:ed:2e:3c:03:f3:99:1f:17:c1:93:44:78: d2:4a:ff:14:9e:70:84:31:e5:9e:41:b0:84:ed:15: 36:7c:da:d9:57:a5:01:26:b9:04:fe:cd:06:ac:29: cd:18:69:12:9d:69:5b:37:f2:33:60:ef:fb:2f:f9: ab:77:c9:dc:df:05:99:0a:e3:02:7b:d2:81:de:5e: a9:d7:94:d5:0a:e3:a9:d6:1f:4b:ae:d8:4a:c5:4a: 58:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3F:2D:FB:52:9F:C4:41:4B:EB:11:E6:CF:C1:24:E8:E3:ED:08:21 X509v3 Authority Key Identifier: keyid:C0:98:6C:0F:2D:B2:D4:FE:70:76:72:C2:27:93:7B:EA:A9:F5:D7:8A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/wJhsDy2y1P5wdnLCJ5N76qn114o.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wJhsDy2y1P5wdnLCJ5N76qn114o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/FT8t-1KfxEFL6xHmz8Ek6OPtCCE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.157.252.0/22 Signature Algorithm: sha256WithRSAEncryption e1:e0:b5:b1:59:71:7f:d8:21:dc:3b:b5:17:af:c1:f5:07:46: a7:c8:50:12:59:00:4c:e5:3b:54:6b:9f:1f:09:53:ae:1f:13: 79:e4:32:9e:63:00:ae:60:c4:76:b2:ff:23:a7:6b:3b:1f:73: 07:e3:f6:5f:32:05:74:fb:d0:91:a9:c8:13:c8:1e:a5:55:77: 0e:9c:b1:8e:16:c9:25:48:75:ef:4f:33:75:44:4f:2d:62:3e: 4d:26:ca:bb:f7:66:a0:4b:51:e4:ed:07:31:fc:cf:75:3a:41: 8c:83:11:59:00:3c:4d:7c:54:cd:21:45:43:49:4d:8f:f6:46: 02:a8:bf:bb:07:38:7c:b0:6e:ac:f8:54:5b:e8:a9:88:a0:49: 67:9a:f7:71:93:5d:05:16:21:f1:b6:9a:d2:05:4a:e7:5c:a6: 3a:b7:8c:7f:27:ff:27:6e:03:dc:fb:83:07:0c:2b:a8:df:31: ad:34:50:c2:0b:35:fa:7f:cb:01:4a:45:84:df:e6:9e:22:63: 07:92:ef:6d:6a:3a:0d:64:cd:10:f7:e5:eb:0c:17:3a:e6:82: 02:6a:bf:b7:0f:d7:77:81:7b:ae:48:da:4a:c4:db:93:76:53: 5f:19:c8:3a:33:f6:59:79:7d:59:9f:37:6e:35:e1:86:ea:c2: c4:5b:f2:c0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDMDk4 NkMwRjJEQjJENEZFNzA3NjcyQzIyNzkzN0JFQUE5RjVENzhBMB4XDTI0MTAyMTAy MTEwNFoXDTI1MTAyMTAxMjMwMlowMzExMC8GA1UEAxMoMTUzRjJERkI1MjlGQzQ0 MTRCRUIxMUU2Q0ZDMTI0RThFM0VEMDgyMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALgqrSpDKSIifouK9n9DWmfPjzu+L6jQ9BIrWkcqzb88WwsMM6r1 hmyNy8/X3C2ecZuPm3e9AKqfkQimwKoTqePbTLrz/tCuHCPTmExFAkN38w/8Pp2G xpTznocBDiA4NzD4pU9BVAJwFA5l6fgj2JJYpQ0h/ZOH+QaKDqkdDvHM3R9kNf/O WUkmScZ5Fte6dEz30auN4WuX9Dzmea/U1AmpaMfgW+Zm7S48A/OZHxfBk0R40kr/ FJ5whDHlnkGwhO0VNnza2VelASa5BP7NBqwpzRhpEp1pWzfyM2Dv+y/5q3fJ3N8F mQrjAnvSgd5eqdeU1QrjqdYfS67YSsVKWJsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQVPy37Up/EQUvrEebPwSTo4+0IITAfBgNVHSMEGDAWgBTAmGwPLbLU/nB2csIn k3vqqfXXijAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDg0L3dKaHNEeTJ5MVA1d2RuTENKNU43NnFuMTE0by5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3dKaHNEeTJ5MVA1d2RuTENKNU43NnFu MTE0by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80ODQvRlQ4dC0xS2Z4RUZMNnhIbXo4RWs2T1B0Q0NFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsqd/DANBgkqhkiG9w0BAQsFAAOCAQEA4eC1sVlxf9gh3Du1F6/B9QdGp8hQ ElkATOU7VGufHwlTrh8TeeQynmMArmDEdrL/I6drOx9zB+P2XzIFdPvQkanIE8ge pVV3DpyxjhbJJUh1708zdURPLWI+TSbKu/dmoEtR5O0HMfzPdTpBjIMRWQA8TXxU zSFFQ0lNj/ZGAqi/uwc4fLBurPhUW+ipiKBJZ5r3cZNdBRYh8baa0gVK51ymOreM fyf/J24D3PuDBwwrqN8xrTRQwgs1+n/LAUpFhN/mniJjB5LvbWo6DWTNEPfl6wwX OuaCAmq/tw/Xd4F7rkjaSsTbk3ZTXxnIOjP2WXl9WZ83bjXhhurCxFvywA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:31:34 2025 by rpki-client