$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/NxpG42PUaizIpHmiNsJPDm3OH74.roa File: NxpG42PUaizIpHmiNsJPDm3OH74.roa (raw, json) Hash identifier: 9H8QZKtP/y/yfNZPGgbK33g9qYMEs1mkwhDOWuZQL5w= Subject key identifier: 37:1A:46:E3:63:D4:6A:2C:C8:A4:79:A2:36:C2:4F:0E:6D:CE:1F:BE Certificate issuer: /CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Certificate serial: 4B Authority key identifier: 40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/NxpG42PUaizIpHmiNsJPDm3OH74.roa Signing time: Thu 31 Oct 2024 01:29:59 +0000 ROA not before: Thu 31 Oct 2024 01:29:59 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 131925 IP address blocks: 160.237.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Validity Not Before: Oct 31 01:29:59 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=371A46E363D46A2CC8A479A236C24F0E6DCE1FBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d7:9c:27:70:1d:10:84:1d:39:77:f5:0e:01: d1:96:51:19:06:8c:f2:b2:6b:3e:19:97:e6:7f:cc: 3c:43:25:47:99:b6:0e:d3:19:67:ef:6c:e4:b8:b6: f0:11:d0:52:c4:92:3c:79:3f:20:10:cd:0a:05:fa: 8a:d8:9a:db:b2:2e:dc:34:77:18:db:ae:a9:67:fe: eb:40:45:5c:cf:55:03:86:3d:1f:23:e5:b8:1e:e2: e1:aa:3d:5f:42:8b:47:e8:fe:48:10:74:75:69:21: 98:75:b3:64:26:c2:fb:b2:19:34:dc:ac:5a:3a:43: 08:a3:20:e0:65:43:2a:34:4c:4d:fa:d8:ff:18:0d: b8:56:71:ee:26:12:86:b8:92:62:e6:9e:09:3a:8b: c1:7c:39:12:a0:ba:0d:5b:c7:83:cc:7a:fb:1c:78: 25:f3:fb:0d:a6:01:fb:e5:93:12:2a:c6:be:13:59: 5b:c1:2f:13:4c:59:7d:d7:e2:fb:4d:55:e8:a1:06: cf:ed:8d:55:3f:33:f7:e7:b0:d2:ca:02:1f:05:15: 9f:d2:7b:2d:d8:ed:ab:2f:4a:66:e1:52:c2:43:be: 86:79:d5:23:b4:c1:fb:3d:f4:29:60:62:43:2d:65: 5e:d8:db:7b:df:ca:0d:6f:9b:4a:84:03:4e:b0:d3: ed:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:1A:46:E3:63:D4:6A:2C:C8:A4:79:A2:36:C2:4F:0E:6D:CE:1F:BE X509v3 Authority Key Identifier: keyid:40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/NxpG42PUaizIpHmiNsJPDm3OH74.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.237.96.0/19 Signature Algorithm: sha256WithRSAEncryption b6:48:32:5f:b8:08:30:22:4c:42:3b:5b:42:70:92:58:8a:6d: 01:80:aa:2a:a8:92:b3:92:3c:ca:1a:ef:7a:a0:b2:fc:4a:d0: cd:06:78:c7:0c:5c:a8:4d:9d:67:2f:ad:56:a4:73:0e:0e:89: 8c:3e:bd:d2:14:e6:f5:35:e4:c9:f5:02:44:bb:2f:fb:b6:8d: 49:fd:47:15:32:ef:26:94:ec:4f:02:bb:b7:de:0c:61:56:cc: 92:e6:ce:e0:59:1f:eb:7c:3d:a3:19:bd:51:54:32:df:1d:c6: 5a:31:aa:b8:fa:f2:fa:62:a9:91:15:56:9e:3d:5b:11:86:12: 78:79:0b:67:46:6d:6b:91:27:0f:dc:9d:44:b6:df:82:fd:b3: de:e6:48:b6:e9:33:ac:c1:9b:8a:a0:d8:10:cf:d9:d4:89:cd: 26:e6:22:d3:01:d1:64:24:b5:8d:ef:19:cc:26:50:b2:5b:a3: 99:82:ad:6e:e9:1b:08:0c:8b:ef:1b:23:9b:97:48:5a:90:0f: b0:44:77:b5:77:b3:2f:c2:cb:91:86:0c:db:83:07:7b:3b:8b: 5a:4c:1d:96:ef:c4:a7:4e:a5:33:b1:7d:c0:c0:6a:50:f8:9a: 48:87:6a:5d:d5:e5:d4:c9:ba:61:b0:28:4b:90:6b:0d:39:05: 3c:14:75:82 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MEQy MjBCOUU0QTYzNThFMDNDRDQ3ODY0NTE3RDlEMzAwQjA2RkYwMB4XDTI0MTAzMTAx Mjk1OVoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoMzcxQTQ2RTM2M0Q0NkEy Q0M4QTQ3OUEyMzZDMjRGMEU2RENFMUZCRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMXXnCdwHRCEHTl39Q4B0ZZRGQaM8rJrPhmX5n/MPEMlR5m2DtMZ Z+9s5Li28BHQUsSSPHk/IBDNCgX6itia27Iu3DR3GNuuqWf+60BFXM9VA4Y9HyPl uB7i4ao9X0KLR+j+SBB0dWkhmHWzZCbC+7IZNNysWjpDCKMg4GVDKjRMTfrY/xgN uFZx7iYShriSYuaeCTqLwXw5EqC6DVvHg8x6+xx4JfP7DaYB++WTEirGvhNZW8Ev E0xZfdfi+01V6KEGz+2NVT8z9+ew0soCHwUVn9J7Ldjtqy9KZuFSwkO+hnnVI7TB +z30KWBiQy1lXtjbe9/KDW+bSoQDTrDT7dECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ3GkbjY9RqLMikeaI2wk8Obc4fvjAfBgNVHSMEGDAWgBRA0iC55KY1jgPNR4ZF F9nTALBv8DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdDd2JfQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdD d2JfQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvTnhwRzQyUFVhaXpJcEhtaU5zSlBEbTNPSDc0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBaDtYDANBgkqhkiG9w0BAQsFAAOCAQEAtkgyX7gIMCJMQjtbQnCSWIptAYCq KqiSs5I8yhrveqCy/ErQzQZ4xwxcqE2dZy+tVqRzDg6JjD690hTm9TXkyfUCRLsv +7aNSf1HFTLvJpTsTwK7t94MYVbMkubO4Fkf63w9oxm9UVQy3x3GWjGquPry+mKp kRVWnj1bEYYSeHkLZ0Zta5EnD9ydRLbfgv2z3uZItukzrMGbiqDYEM/Z1InNJuYi 0wHRZCS1je8ZzCZQslujmYKtbukbCAyL7xsjm5dIWpAPsER3tXezL8LLkYYM24MH ezuLWkwdlu/Ep06lM7F9wMBqUPiaSIdqXdXl1Mm6YbAoS5BrDTkFPBR1gg== -----END CERTIFICATE-----Generated at Sun Feb 16 22:23:35 2025 by rpki-client