$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/7KsjZoTkanKN2_C7yf_eUSRLDL8.roa File: 7KsjZoTkanKN2_C7yf_eUSRLDL8.roa (raw, json) Hash identifier: CdV4s5T+CLCtSf//Fw10k5XRfdXrem8wZw8Acj1J9O0= Subject key identifier: EC:AB:23:66:84:E4:6A:72:8D:DB:F0:BB:C9:FF:DE:51:24:4B:0C:BF Certificate issuer: /CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Certificate serial: 4A Authority key identifier: 40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/7KsjZoTkanKN2_C7yf_eUSRLDL8.roa Signing time: Thu 31 Oct 2024 01:29:58 +0000 ROA not before: Thu 31 Oct 2024 01:29:58 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 59125 IP address blocks: 160.237.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Validity Not Before: Oct 31 01:29:58 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=ECAB236684E46A728DDBF0BBC9FFDE51244B0CBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9a:ca:bc:14:60:22:e9:10:9f:90:81:2b:8d: 82:24:90:6c:13:86:e7:87:f8:04:f7:f3:8a:ae:71: e3:48:ca:ab:a1:9e:a9:be:a0:19:b8:10:2b:00:37: 72:77:3f:c8:8a:59:fd:a3:93:89:4d:cb:4d:d9:a0: bf:66:24:ec:64:52:cc:b3:36:fa:8f:d0:04:ac:cd: 81:bc:47:e5:99:09:63:be:0f:70:f1:d0:16:2c:44: 85:5e:8f:32:c5:38:d4:5e:e0:7d:7a:0a:e9:48:5e: 44:94:a3:1f:01:68:c6:cb:17:3a:93:1e:08:e5:d2: a7:07:25:df:ac:11:b0:91:17:99:59:ce:01:19:86: 7e:03:8c:da:cb:0b:cb:1f:34:61:da:5b:19:dc:55: ef:67:42:ab:3f:6c:ce:7c:c6:81:09:5e:bd:18:c3: 63:39:90:cc:6c:83:98:32:96:ee:6f:0d:8f:37:e1: 66:03:27:c1:61:e1:fd:2d:44:d6:aa:7a:44:7c:bd: cb:6c:da:70:2b:24:85:27:23:2c:d8:5b:02:20:a0: f0:59:10:ef:2b:b1:94:53:16:57:e5:04:21:5e:50: 27:e5:db:33:13:3d:8c:e5:58:72:b5:13:34:b7:b9: 0c:c7:a1:c8:0b:85:83:fd:07:19:07:14:6e:9f:05: f3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AB:23:66:84:E4:6A:72:8D:DB:F0:BB:C9:FF:DE:51:24:4B:0C:BF X509v3 Authority Key Identifier: keyid:40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/7KsjZoTkanKN2_C7yf_eUSRLDL8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.237.128.0/19 Signature Algorithm: sha256WithRSAEncryption 2f:ef:cc:ef:cc:bb:fe:d1:62:37:7c:ee:c4:bc:cf:95:16:fc: 57:81:81:a9:1e:87:8b:1c:bc:0d:55:ae:b8:a5:d1:eb:24:24: 29:a3:58:8a:9e:dd:ab:a3:a7:b6:2b:fa:f8:4c:83:ec:3b:7c: f0:0c:a4:16:01:d4:f4:07:da:c2:ee:0d:4a:2e:8a:30:c0:44: 2c:5c:72:ef:f8:97:d3:2e:60:88:72:ad:27:70:06:22:65:07: ef:3c:50:c9:c6:d1:5a:99:06:27:97:dd:ab:e1:d7:95:18:f2: 90:11:7a:5b:e3:2f:a7:6f:1a:10:a6:38:eb:5c:b3:f0:d8:96: 2d:f0:58:fe:a2:b2:c2:f1:d0:ef:f0:3b:53:c8:fb:52:3a:1a: 74:9f:d9:fc:e7:e2:d8:4e:df:c8:58:03:74:0f:d9:f0:2e:40: 19:6d:ac:cd:65:3f:59:07:30:06:1a:ff:11:43:db:1a:c4:d0: 92:41:7e:f3:97:29:30:31:0b:d3:61:d4:b3:bc:8b:d4:ac:5e: 5b:f8:cb:88:fc:1b:e8:e1:05:24:96:2a:b5:84:02:29:d0:9a: 86:c1:9e:98:fc:e8:d6:b5:96:16:62:af:32:d2:ce:e9:e5:6e: df:e0:27:71:58:9d:34:a7:6e:03:f5:b3:2f:ec:69:21:a9:c5: 62:34:41:3f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MEQy MjBCOUU0QTYzNThFMDNDRDQ3ODY0NTE3RDlEMzAwQjA2RkYwMB4XDTI0MTAzMTAx Mjk1OFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoRUNBQjIzNjY4NEU0NkE3 MjhEREJGMEJCQzlGRkRFNTEyNDRCMENCRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMuayrwUYCLpEJ+QgSuNgiSQbBOG54f4BPfziq5x40jKq6Geqb6g GbgQKwA3cnc/yIpZ/aOTiU3LTdmgv2Yk7GRSzLM2+o/QBKzNgbxH5ZkJY74PcPHQ FixEhV6PMsU41F7gfXoK6UheRJSjHwFoxssXOpMeCOXSpwcl36wRsJEXmVnOARmG fgOM2ssLyx80YdpbGdxV72dCqz9sznzGgQlevRjDYzmQzGyDmDKW7m8NjzfhZgMn wWHh/S1E1qp6RHy9y2zacCskhScjLNhbAiCg8FkQ7yuxlFMWV+UEIV5QJ+XbMxM9 jOVYcrUTNLe5DMehyAuFg/0HGQcUbp8F810CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTsqyNmhORqco3b8LvJ/95RJEsMvzAfBgNVHSMEGDAWgBRA0iC55KY1jgPNR4ZF F9nTALBv8DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdDd2JfQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdD d2JfQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvN0tzalpvVGthbktOMl9DN3lmX2VVU1JMREw4LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBaDtgDANBgkqhkiG9w0BAQsFAAOCAQEAL+/M78y7/tFiN3zuxLzPlRb8V4GB qR6Hixy8DVWuuKXR6yQkKaNYip7dq6Ontiv6+EyD7Dt88AykFgHU9Afawu4NSi6K MMBELFxy7/iX0y5giHKtJ3AGImUH7zxQycbRWpkGJ5fdq+HXlRjykBF6W+Mvp28a EKY461yz8NiWLfBY/qKywvHQ7/A7U8j7UjoadJ/Z/Ofi2E7fyFgDdA/Z8C5AGW2s zWU/WQcwBhr/EUPbGsTQkkF+85cpMDEL02HUs7yL1KxeW/jLiPwb6OEFJJYqtYQC KdCahsGemPzo1rWWFmKvMtLO6eVu3+AncVidNKduA/WzL+xpIanFYjRBPw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:16:02 2025 by rpki-client