$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/675/eht1fgrBlfwAuR7ybvlKgm_8hwI.roa File: eht1fgrBlfwAuR7ybvlKgm_8hwI.roa (raw, json) Hash identifier: 5EdNEmqt2eBaXTOzgta27sHqBFevb10chbIAOxxRTRU= Subject key identifier: 7A:1B:75:7E:0A:C1:95:FC:00:B9:1E:F2:6E:F9:4A:82:6F:FC:87:02 Certificate issuer: /CN=041FC867F39C53644D0C5C50994B55111BD76CA3 Certificate serial: 02 Authority key identifier: 04:1F:C8:67:F3:9C:53:64:4D:0C:5C:50:99:4B:55:11:1B:D7:6C:A3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BB_IZ_OcU2RNDFxQmUtVERvXbKM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/eht1fgrBlfwAuR7ybvlKgm_8hwI.roa Signing time: Thu 19 Dec 2024 13:06:35 +0000 ROA not before: Thu 19 Dec 2024 13:06:35 +0000 ROA not after: Fri 19 Dec 2025 12:41:20 +0000 asID: 17953 IP address blocks: 218.223.0.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/BB_IZ_OcU2RNDFxQmUtVERvXbKM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/BB_IZ_OcU2RNDFxQmUtVERvXbKM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BB_IZ_OcU2RNDFxQmUtVERvXbKM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 12:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=041FC867F39C53644D0C5C50994B55111BD76CA3 Validity Not Before: Dec 19 13:06:35 2024 GMT Not After : Dec 19 12:41:20 2025 GMT Subject: CN=7A1B757E0AC195FC00B91EF26EF94A826FFC8702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c4:7a:3e:af:38:62:4e:e7:ce:c9:38:24:3e: dc:f4:6c:4e:31:72:18:d8:8c:d2:81:29:6b:03:19: 62:f0:db:8e:57:8c:ba:d1:3b:f7:35:a4:77:00:19: c9:fd:9c:16:e8:92:e3:9f:04:be:ba:5f:83:aa:b6: 43:40:c6:5c:ba:10:89:cb:fe:44:ba:c9:f8:bd:22: 19:6e:39:d3:d7:13:e1:a3:b4:25:a7:c3:75:3e:82: 4a:69:f7:0b:06:c2:3c:5c:0e:66:a8:c6:ad:96:7e: cc:a1:b8:3a:a4:a7:17:3c:e7:ce:77:35:19:8f:0c: 34:be:b0:65:56:33:8f:dc:96:e5:54:e7:d5:1f:e9: c5:34:74:00:a5:cf:4c:0a:69:84:6a:6e:2d:b2:bf: ef:f1:13:46:54:1e:09:ea:a5:78:af:21:66:a2:82: 4b:74:ba:fd:84:23:ed:87:f3:78:8d:3c:87:c9:1d: 9a:5f:50:5f:0a:58:be:83:14:f7:b8:1a:b5:f1:f9: 9d:a3:da:75:d8:f3:5b:38:ce:27:1d:b7:8a:af:15: 5a:ae:3b:20:30:98:23:6f:cc:52:a8:91:73:7b:41: 5a:f5:0e:d6:a8:55:07:4e:a9:87:d7:29:4b:2d:db: 0c:a2:55:84:88:7f:6c:f2:63:5a:b8:2c:1c:2e:91: f4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1B:75:7E:0A:C1:95:FC:00:B9:1E:F2:6E:F9:4A:82:6F:FC:87:02 X509v3 Authority Key Identifier: keyid:04:1F:C8:67:F3:9C:53:64:4D:0C:5C:50:99:4B:55:11:1B:D7:6C:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/BB_IZ_OcU2RNDFxQmUtVERvXbKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BB_IZ_OcU2RNDFxQmUtVERvXbKM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/eht1fgrBlfwAuR7ybvlKgm_8hwI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.223.0.0/20 Signature Algorithm: sha256WithRSAEncryption 19:60:49:17:b6:66:4e:2c:dc:47:d0:ed:1f:94:c6:0a:66:31: e3:3b:e8:7a:f4:36:60:b4:ec:1d:f5:0c:85:71:69:24:45:18: 74:26:2f:8a:a0:9f:9f:a3:18:b8:2e:cb:dd:45:1b:80:a7:05: 0a:83:2a:be:95:a8:d8:e4:3f:75:a4:26:03:4f:f7:d2:93:ba: 10:10:6a:97:aa:7b:48:6c:c2:f4:69:b4:33:87:6e:49:a3:9e: bd:0b:a8:e6:c4:e3:92:f6:bc:4f:c9:4c:77:62:95:5f:33:12: fc:4a:a6:e8:52:de:b0:cb:c7:19:fa:76:2b:b2:28:c8:7c:9b: 70:62:63:4e:22:f7:f6:58:18:af:03:ea:4f:bb:60:dc:60:af: 69:4f:6a:db:65:89:4a:68:a5:5e:84:7a:87:33:ea:9f:bc:c8: 1c:18:30:e8:70:43:17:bd:30:e7:e5:07:d2:2a:6e:56:22:c6: f9:fc:97:12:4f:2a:60:95:34:1f:8b:55:8b:6c:70:9a:4e:90: b9:53:fe:06:ce:e8:54:9f:5e:0b:e8:b3:39:e2:de:ac:24:05: f6:37:67:b2:fc:20:6e:bf:77:ca:8e:1c:83:f8:19:eb:ae:f1: 96:a5:0f:67:92:88:b0:d5:e6:bd:fc:40:69:a1:94:d4:7f:ec: 86:ab:f2:b2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNDFG Qzg2N0YzOUM1MzY0NEQwQzVDNTA5OTRCNTUxMTFCRDc2Q0EzMB4XDTI0MTIxOTEz MDYzNVoXDTI1MTIxOTEyNDEyMFowMzExMC8GA1UEAxMoN0ExQjc1N0UwQUMxOTVG QzAwQjkxRUYyNkVGOTRBODI2RkZDODcwMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJnEej6vOGJO587JOCQ+3PRsTjFyGNiM0oEpawMZYvDbjleMutE7 9zWkdwAZyf2cFuiS458Evrpfg6q2Q0DGXLoQicv+RLrJ+L0iGW4509cT4aO0JafD dT6CSmn3CwbCPFwOZqjGrZZ+zKG4OqSnFzznznc1GY8MNL6wZVYzj9yW5VTn1R/p xTR0AKXPTApphGpuLbK/7/ETRlQeCeqleK8hZqKCS3S6/YQj7YfzeI08h8kdml9Q XwpYvoMU97gatfH5naPaddjzWzjOJx23iq8VWq47IDCYI2/MUqiRc3tBWvUO1qhV B06ph9cpSy3bDKJVhIh/bPJjWrgsHC6R9F8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBR6G3V+CsGV/AC5HvJu+UqCb/yHAjAfBgNVHSMEGDAWgBQEH8hn85xTZE0MXFCZ S1URG9dsozAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc1L0JCX0laX09jVTJSTkRGeFFtVXRWRVJ2WGJLTS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JCX0laX09jVTJSTkRGeFFtVXRWRVJ2 WGJLTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NzUvZWh0MWZnckJsZndBdVI3eWJ2bEtnbV84aHdJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNrfADANBgkqhkiG9w0BAQsFAAOCAQEAGWBJF7ZmTizcR9DtH5TGCmYx4zvo evQ2YLTsHfUMhXFpJEUYdCYviqCfn6MYuC7L3UUbgKcFCoMqvpWo2OQ/daQmA0/3 0pO6EBBql6p7SGzC9Gm0M4duSaOevQuo5sTjkva8T8lMd2KVXzMS/Eqm6FLesMvH Gfp2K7IoyHybcGJjTiL39lgYrwPqT7tg3GCvaU9q22WJSmilXoR6hzPqn7zIHBgw 6HBDF70w5+UH0ipuViLG+fyXEk8qYJU0H4tVi2xwmk6QuVP+Bs7oVJ9eC+izOeLe rCQF9jdnsvwgbr93yo4cg/gZ667xlqUPZ5KIsNXmvfxAaaGU1H/shqvysg== -----END CERTIFICATE-----Generated at Wed Feb 5 14:40:52 2025 by rpki-client