$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/803/OYLxaG_2IjHRx6H4YV617bkeBQE.roa File: OYLxaG_2IjHRx6H4YV617bkeBQE.roa (raw, json) Hash identifier: Qk7R7GYdSOamumECFx+utoaTZcpaBC+8H4O3CpfH3dE= Subject key identifier: 39:82:F1:68:6F:F6:22:31:D1:C7:A1:F8:61:5E:B5:ED:B9:1E:05:01 Certificate issuer: /CN=E98C96D61ADABE6F87001F7231581BB31FA87C98 Certificate serial: 02 Authority key identifier: E9:8C:96:D6:1A:DA:BE:6F:87:00:1F:72:31:58:1B:B3:1F:A8:7C:98 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6YyW1hravm-HAB9yMVgbsx-ofJg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/OYLxaG_2IjHRx6H4YV617bkeBQE.roa Signing time: Mon 21 Oct 2024 06:55:22 +0000 ROA not before: Mon 21 Oct 2024 06:55:22 +0000 ROA not after: Tue 21 Oct 2025 01:29:24 +0000 asID: 18281 IP address blocks: 157.5.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/6YyW1hravm-HAB9yMVgbsx-ofJg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/6YyW1hravm-HAB9yMVgbsx-ofJg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6YyW1hravm-HAB9yMVgbsx-ofJg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E98C96D61ADABE6F87001F7231581BB31FA87C98 Validity Not Before: Oct 21 06:55:22 2024 GMT Not After : Oct 21 01:29:24 2025 GMT Subject: CN=3982F1686FF62231D1C7A1F8615EB5EDB91E0501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cb:ec:b4:7f:9b:0e:0d:d8:e3:3f:a4:8d:71: e0:57:92:b4:01:01:ae:f1:51:83:87:78:aa:26:e2: e3:a7:4b:27:68:be:43:29:03:a1:33:49:81:f8:c7: f3:e0:3f:7a:ab:dd:f6:c3:8e:33:0f:4a:f1:dd:f6: 36:18:3e:be:1c:61:0e:e6:c1:71:ee:ad:9d:70:74: 5e:82:ff:ff:ea:c5:dd:d7:29:32:d2:43:eb:78:60: 70:a2:34:c7:92:00:92:c6:83:1d:e4:a9:0f:42:2e: 2e:62:17:e2:d7:eb:fb:68:ed:47:43:4c:a4:a4:d5: f5:f4:59:ed:a2:7d:67:12:c2:1a:df:de:6f:d7:9c: e7:8d:a5:72:4d:e5:ba:90:1d:e5:65:d6:88:02:da: d0:1e:db:fd:1e:1d:6a:fd:59:cb:94:60:24:19:c9: e6:bc:c7:fc:8e:3f:26:2f:ca:49:34:e4:be:b8:52: 9c:b4:db:b6:03:0d:87:eb:97:a6:ac:de:90:f9:1f: 0a:c0:5b:d6:ce:f5:27:58:d7:10:95:58:80:70:67: d0:ca:72:32:1c:54:f2:95:d3:1b:39:39:04:08:3c: a7:6e:c2:31:e2:3e:cd:ba:89:6b:61:0c:90:be:21: 30:9c:6b:d2:17:9f:d2:20:b6:ad:c8:a4:fc:72:ac: 76:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:82:F1:68:6F:F6:22:31:D1:C7:A1:F8:61:5E:B5:ED:B9:1E:05:01 X509v3 Authority Key Identifier: keyid:E9:8C:96:D6:1A:DA:BE:6F:87:00:1F:72:31:58:1B:B3:1F:A8:7C:98 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/6YyW1hravm-HAB9yMVgbsx-ofJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6YyW1hravm-HAB9yMVgbsx-ofJg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/803/OYLxaG_2IjHRx6H4YV617bkeBQE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.5.32.0/20 Signature Algorithm: sha256WithRSAEncryption 8e:d0:8e:53:ab:16:c1:dc:c6:7a:a8:29:bd:29:bb:58:07:56: 85:92:f2:7a:76:04:ce:14:12:df:2f:ba:57:6b:79:76:19:15: 9c:e9:59:21:83:ff:77:b3:e4:39:43:9f:6a:3d:c6:e3:a3:46: e5:c6:8b:9c:ad:f5:47:0e:54:37:a8:0a:c4:c9:59:08:72:d7: 6d:3c:8c:2b:4b:d0:cf:db:13:79:2c:e4:59:8a:8d:81:8f:20: 13:62:a9:7c:14:c6:b5:38:b7:a3:84:90:e6:b7:2a:01:bf:33: 0b:f7:0a:b5:cc:0d:54:34:dc:aa:2b:e5:64:05:d9:48:b7:f6: 53:e1:c4:a1:01:b1:e4:c8:93:01:71:51:dc:fa:ac:b8:57:a8: 51:f3:a8:44:b2:45:23:c3:f4:4a:fb:b7:71:d5:82:24:d6:bb: b3:eb:7a:e6:21:b9:c0:c5:1f:e4:f5:1b:9a:3e:ff:3c:84:2a: 48:1d:ac:7c:c4:23:be:2e:38:c3:21:c2:cf:a3:a4:98:d4:13: 60:c8:85:b1:35:e0:dc:b9:3d:b6:09:97:02:9c:f9:dd:da:66: e6:ad:a8:a6:aa:e2:84:a7:ac:12:fc:69:8e:8b:34:27:f4:f9: f0:ea:aa:9c:e4:03:96:2e:7d:79:13:9b:42:ce:20:44:b5:50: 81:95:6c:76 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFOThD OTZENjFBREFCRTZGODcwMDFGNzIzMTU4MUJCMzFGQTg3Qzk4MB4XDTI0MTAyMTA2 NTUyMloXDTI1MTAyMTAxMjkyNFowMzExMC8GA1UEAxMoMzk4MkYxNjg2RkY2MjIz MUQxQzdBMUY4NjE1RUI1RURCOTFFMDUwMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALPL7LR/mw4N2OM/pI1x4FeStAEBrvFRg4d4qibi46dLJ2i+QykD oTNJgfjH8+A/eqvd9sOOMw9K8d32Nhg+vhxhDubBce6tnXB0XoL//+rF3dcpMtJD 63hgcKI0x5IAksaDHeSpD0IuLmIX4tfr+2jtR0NMpKTV9fRZ7aJ9ZxLCGt/eb9ec 542lck3lupAd5WXWiALa0B7b/R4dav1Zy5RgJBnJ5rzH/I4/Ji/KSTTkvrhSnLTb tgMNh+uXpqzekPkfCsBb1s71J1jXEJVYgHBn0MpyMhxU8pXTGzk5BAg8p27CMeI+ zbqJa2EMkL4hMJxr0hef0iC2rcik/HKsdqUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ5gvFob/YiMdHHofhhXrXtuR4FATAfBgNVHSMEGDAWgBTpjJbWGtq+b4cAH3Ix WBuzH6h8mDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODAzLzZZeVcxaHJhdm0tSEFCOXlNVmdic3gtb2ZKZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzZZeVcxaHJhdm0tSEFCOXlNVmdic3gt b2ZKZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MDMvT1lMeGFHXzJJakhSeDZINFlWNjE3YmtlQlFFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJ0FIDANBgkqhkiG9w0BAQsFAAOCAQEAjtCOU6sWwdzGeqgpvSm7WAdWhZLy enYEzhQS3y+6V2t5dhkVnOlZIYP/d7PkOUOfaj3G46NG5caLnK31Rw5UN6gKxMlZ CHLXbTyMK0vQz9sTeSzkWYqNgY8gE2KpfBTGtTi3o4SQ5rcqAb8zC/cKtcwNVDTc qivlZAXZSLf2U+HEoQGx5MiTAXFR3PqsuFeoUfOoRLJFI8P0Svu3cdWCJNa7s+t6 5iG5wMUf5PUbmj7/PIQqSB2sfMQjvi44wyHCz6OkmNQTYMiFsTXg3Lk9tgmXApz5 3dpm5q2opqrihKesEvxpjos0J/T58OqqnOQDli59eRObQs4gRLVQgZVsdg== -----END CERTIFICATE-----Generated at Sun Feb 16 22:26:47 2025 by rpki-client