$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/qj47A3O2BlPFDfx39PpFsEoBC1k.roa File: qj47A3O2BlPFDfx39PpFsEoBC1k.roa (raw, json) Hash identifier: bemuXS7EM1yUlfodtBIydKOQsNQfjUzRYGjhTRdek+0= Subject key identifier: AA:3E:3B:03:73:B6:06:53:C5:0D:FC:77:F4:FA:45:B0:4A:01:0B:59 Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 4A Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/qj47A3O2BlPFDfx39PpFsEoBC1k.roa Signing time: Sat 31 Aug 2024 01:31:44 +0000 ROA not before: Sat 31 Aug 2024 01:31:44 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9374 IP address blocks: 117.18.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Aug 31 01:31:44 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=AA3E3B0373B60653C50DFC77F4FA45B04A010B59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:bb:6a:0e:b7:17:53:98:79:09:78:5b:d7: 4b:82:9f:c1:51:b5:28:3d:76:e4:48:6b:40:93:37: 3c:6c:f7:f0:45:bc:51:44:cd:62:24:d1:e7:97:fb: 8e:d7:06:f2:0b:1f:46:b7:a5:6d:99:42:fe:6b:2b: 23:98:18:c5:31:a2:0a:04:88:7d:64:e7:54:fc:5c: 0b:e9:8a:22:5b:eb:41:a7:f5:01:56:30:bb:95:fc: 00:ab:a2:3f:89:16:66:c6:08:2c:83:2d:01:56:d7: 70:ea:32:34:cd:47:fd:f8:54:d8:38:ac:d5:0f:2e: ea:d9:23:0b:f9:2b:c4:1b:45:91:22:06:84:45:a5: c8:d8:f4:60:9a:d5:23:dc:04:7f:d5:c9:fe:7c:31: 0c:0c:e7:b2:b8:53:54:75:dc:d8:45:d0:63:0c:fd: 50:65:1a:86:32:95:f1:70:3c:ae:f0:1e:a7:69:05: ad:64:8d:bc:55:e7:06:4f:59:50:04:5d:ed:6d:47: ab:94:c5:43:b5:36:84:ca:30:48:e5:fd:dd:dd:70: 16:9c:0d:72:f0:4c:6b:d4:f0:51:6b:36:aa:2c:8b: 28:fd:d5:41:48:ed:d6:63:84:d3:8c:9a:5a:2b:31: 29:7b:97:09:c3:75:8f:a9:f6:dd:96:9a:3e:7e:eb: bd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3E:3B:03:73:B6:06:53:C5:0D:FC:77:F4:FA:45:B0:4A:01:0B:59 X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/qj47A3O2BlPFDfx39PpFsEoBC1k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.18.88.0/21 Signature Algorithm: sha256WithRSAEncryption 32:f6:9e:e4:21:f2:b6:60:e0:6a:4e:d8:8c:80:c6:2b:1f:b4: b0:c3:6c:da:d9:cf:29:7d:51:6f:00:0a:34:9f:73:7f:e5:4c: 8a:f1:94:e0:32:8b:97:4d:13:7d:5b:5d:5b:0c:b9:0e:3a:19: 35:bc:b6:23:e3:08:26:40:69:15:a8:73:b3:cb:c2:54:14:ea: 47:ae:d2:fe:4a:aa:60:cc:91:72:8e:45:84:70:a5:5f:06:97: b9:f8:71:1f:73:98:65:ca:bb:9f:44:bb:0d:6c:26:13:90:0f: 65:d2:1f:5a:a5:f8:26:1d:e1:5f:51:85:4e:54:93:c8:50:5f: b7:34:bc:95:b5:87:be:4b:a7:2e:9e:96:7f:39:cb:30:9b:0d: 75:03:24:cf:db:0c:83:01:94:c8:77:27:e4:c3:02:7a:12:7c: 32:1d:af:cb:0b:83:94:7f:4d:00:a9:50:27:1d:d8:c3:45:f1: 08:d6:f2:f7:22:6c:7f:6d:72:2f:de:60:a6:ec:a9:7f:e6:cd: 2b:a1:d0:43:20:27:ad:6d:0f:0e:96:da:37:f3:42:8b:4a:99: 0c:1c:77:cd:cb:a1:03:51:1f:88:95:ce:97:1b:c4:71:cb:67: ee:d0:17:3e:97:3e:ac:67:40:d8:ae:d1:60:9d:7a:e0:c1:e6: 38:e6:72:ab -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NURF NTJFNjRCRTQzRTMyOEFBNjlGM0FCMkQzNDdGODgzM0VDNjM3MB4XDTI0MDgzMTAx MzE0NFoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQUEzRTNCMDM3M0I2MDY1 M0M1MERGQzc3RjRGQTQ1QjA0QTAxMEI1OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALRDu2oOtxdTmHkJeFvXS4KfwVG1KD125EhrQJM3PGz38EW8UUTN YiTR55f7jtcG8gsfRrelbZlC/msrI5gYxTGiCgSIfWTnVPxcC+mKIlvrQaf1AVYw u5X8AKuiP4kWZsYILIMtAVbXcOoyNM1H/fhU2Dis1Q8u6tkjC/krxBtFkSIGhEWl yNj0YJrVI9wEf9XJ/nwxDAznsrhTVHXc2EXQYwz9UGUahjKV8XA8rvAep2kFrWSN vFXnBk9ZUARd7W1Hq5TFQ7U2hMowSOX93d1wFpwNcvBMa9TwUWs2qiyLKP3VQUjt 1mOE04yaWisxKXuXCcN1j6n23ZaaPn7rvV8CAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSqPjsDc7YGU8UN/Hf0+kWwSgELWTAfBgNVHSMEGDAWgBRl3lLmS+Q+Moqmnzqy 00f4gz7GNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjgvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0teGpjLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0t eGpjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzY4L3FqNDdBM08yQmxQRkRmeDM5UHBGc0VvQkMxay5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAN1ElgwDQYJKoZIhvcNAQELBQADggEBADL2nuQh8rZg4GpO2IyAxisftLDDbNrZ zyl9UW8ACjSfc3/lTIrxlOAyi5dNE31bXVsMuQ46GTW8tiPjCCZAaRWoc7PLwlQU 6keu0v5KqmDMkXKORYRwpV8Gl7n4cR9zmGXKu59Euw1sJhOQD2XSH1ql+CYd4V9R hU5Uk8hQX7c0vJW1h75Lpy6eln85yzCbDXUDJM/bDIMBlMh3J+TDAnoSfDIdr8sL g5R/TQCpUCcd2MNF8QjW8vcibH9tci/eYKbsqX/mzSuh0EMgJ61tDw6W2jfzQotK mQwcd83LoQNRH4iVzpcbxHHLZ+7QFz6XPqxnQNiu0WCdeuDB5jjmcqs= -----END CERTIFICATE-----Generated at Sun Feb 16 22:13:29 2025 by rpki-client