$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/818/ZGjHZDtJuvjh5szVhCbK9y0-ZYY.roa File: ZGjHZDtJuvjh5szVhCbK9y0-ZYY.roa (raw, json) Hash identifier: F8/bcEr4RLXUaxvpArSP+ubOTPh6SMOf5Dpa8rM0JgI= Subject key identifier: 64:68:C7:64:3B:49:BA:F8:E1:E6:CC:D5:84:26:CA:F7:2D:3E:65:86 Certificate issuer: /CN=C74DF50D0555514618B72AC45B42A850DACF0D64 Certificate serial: 02 Authority key identifier: C7:4D:F5:0D:05:55:51:46:18:B7:2A:C4:5B:42:A8:50:DA:CF:0D:64 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/x031DQVVUUYYtyrEW0KoUNrPDWQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/ZGjHZDtJuvjh5szVhCbK9y0-ZYY.roa Signing time: Sat 20 Apr 2024 00:13:32 +0000 ROA not before: Sat 20 Apr 2024 00:13:32 +0000 ROA not after: Sat 19 Apr 2025 01:21:05 +0000 asID: 131931 IP address blocks: 157.120.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/x031DQVVUUYYtyrEW0KoUNrPDWQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/x031DQVVUUYYtyrEW0KoUNrPDWQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/x031DQVVUUYYtyrEW0KoUNrPDWQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C74DF50D0555514618B72AC45B42A850DACF0D64 Validity Not Before: Apr 20 00:13:32 2024 GMT Not After : Apr 19 01:21:05 2025 GMT Subject: CN=6468C7643B49BAF8E1E6CCD58426CAF72D3E6586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:28:4b:43:e0:0f:77:2c:ce:47:ac:51:a8:7b: 63:49:8e:84:cc:d2:88:b4:7b:53:62:68:0c:2f:17: f0:ab:5f:8f:71:0b:7e:04:5a:66:e6:c2:c6:d9:71: bc:e1:48:0a:8d:44:24:23:2d:d3:63:c1:71:56:28: 0f:8b:0a:ee:65:5e:10:f9:0c:99:6f:40:ae:fd:69: 39:26:4b:95:75:e1:1a:c5:d2:dc:67:5f:6b:0d:53: cd:94:89:68:39:d6:7b:95:0a:32:e3:e4:f6:f0:d6: c8:ce:6b:03:a5:07:90:a1:18:cb:b9:e3:55:6e:47: b0:95:0b:76:a6:db:70:01:00:eb:62:4d:e1:a3:78: 0e:88:12:a6:c9:fa:c4:17:fe:79:81:3f:51:38:d1: ba:59:ca:df:c3:fb:87:88:ae:7b:10:c7:63:3f:55: 17:a2:0b:b8:84:5d:92:ae:7f:e1:65:43:64:2d:3f: 9d:dc:69:ac:45:93:93:0f:29:fe:6d:7c:53:1a:f4: 28:19:92:ff:84:81:53:42:bc:93:9f:43:eb:6d:ff: a5:1c:87:41:35:f3:bd:86:4d:06:eb:0e:9c:08:d5: 15:bf:f2:2a:2e:5f:c1:62:c0:b3:b4:c5:78:10:22: 97:38:03:6c:55:c5:91:46:30:3c:80:78:ff:b7:e7: eb:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:68:C7:64:3B:49:BA:F8:E1:E6:CC:D5:84:26:CA:F7:2D:3E:65:86 X509v3 Authority Key Identifier: keyid:C7:4D:F5:0D:05:55:51:46:18:B7:2A:C4:5B:42:A8:50:DA:CF:0D:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/x031DQVVUUYYtyrEW0KoUNrPDWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/x031DQVVUUYYtyrEW0KoUNrPDWQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/ZGjHZDtJuvjh5szVhCbK9y0-ZYY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.120.192.0/21 Signature Algorithm: sha256WithRSAEncryption 59:46:f0:e9:1f:6d:03:28:f2:dd:bd:34:f2:1b:24:c9:b7:76: a4:42:c7:91:89:76:30:a2:04:3c:58:1f:e0:ed:10:3f:3f:7c: 65:0e:7f:f8:c2:ba:c7:75:58:47:04:26:fc:e6:f9:11:bb:c3: 09:fb:11:56:fa:66:5c:71:73:e8:6a:f8:08:b6:44:d2:d5:59: 7a:74:81:4a:a2:9e:3e:6d:71:c0:cf:50:a3:bc:70:f5:f9:bb: 54:37:a8:b6:44:92:dd:7d:77:ab:b6:fc:b0:95:ad:8b:f4:4d: f4:8f:80:00:80:37:97:79:7b:8c:fb:50:bf:4d:56:aa:1c:b3: fe:d9:b7:c1:a2:c2:a7:94:8f:23:db:f8:3f:25:82:44:84:82: 01:15:23:e2:6b:ce:69:6c:e3:83:69:16:84:21:db:51:c8:da: 0e:ec:ab:eb:ec:08:c6:0b:56:68:ce:23:91:44:b4:54:ca:e0: b1:67:21:48:bc:b5:4b:ff:b0:43:a0:9f:2d:01:ac:b9:be:f5: 02:aa:87:a5:da:cc:44:e4:3f:8c:07:6b:dc:4e:7e:bf:47:b6: dc:c8:c7:b0:d6:0f:e9:24:e7:f0:c7:c4:b5:b0:22:fb:b6:4e: a9:e6:54:6f:20:c7:46:b1:28:72:9c:2e:7c:67:ab:c6:82:5e: c4:d7:54:d7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNzRE RjUwRDA1NTU1MTQ2MThCNzJBQzQ1QjQyQTg1MERBQ0YwRDY0MB4XDTI0MDQyMDAw MTMzMloXDTI1MDQxOTAxMjEwNVowMzExMC8GA1UEAxMoNjQ2OEM3NjQzQjQ5QkFG OEUxRTZDQ0Q1ODQyNkNBRjcyRDNFNjU4NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPMoS0PgD3cszkesUah7Y0mOhMzSiLR7U2JoDC8X8Ktfj3ELfgRa ZubCxtlxvOFICo1EJCMt02PBcVYoD4sK7mVeEPkMmW9Arv1pOSZLlXXhGsXS3Gdf aw1TzZSJaDnWe5UKMuPk9vDWyM5rA6UHkKEYy7njVW5HsJULdqbbcAEA62JN4aN4 DogSpsn6xBf+eYE/UTjRulnK38P7h4iuexDHYz9VF6ILuIRdkq5/4WVDZC0/ndxp rEWTkw8p/m18Uxr0KBmS/4SBU0K8k59D623/pRyHQTXzvYZNBusOnAjVFb/yKi5f wWLAs7TFeBAilzgDbFXFkUYwPIB4/7fn648CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRkaMdkO0m6+OHmzNWEJsr3LT5lhjAfBgNVHSMEGDAWgBTHTfUNBVVRRhi3KsRb QqhQ2s8NZDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODE4L3gwMzFEUVZWVVVZWXR5ckVXMEtvVU5yUERXUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3gwMzFEUVZWVVVZWXR5ckVXMEtvVU5y UERXUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MTgvWkdqSFpEdEp1dmpoNXN6VmhDYks5eTAtWllZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA514wDANBgkqhkiG9w0BAQsFAAOCAQEAWUbw6R9tAyjy3b008hskybd2pELH kYl2MKIEPFgf4O0QPz98ZQ5/+MK6x3VYRwQm/Ob5EbvDCfsRVvpmXHFz6Gr4CLZE 0tVZenSBSqKePm1xwM9Qo7xw9fm7VDeotkSS3X13q7b8sJWti/RN9I+AAIA3l3l7 jPtQv01Wqhyz/tm3waLCp5SPI9v4PyWCRISCARUj4mvOaWzjg2kWhCHbUcjaDuyr 6+wIxgtWaM4jkUS0VMrgsWchSLy1S/+wQ6CfLQGsub71AqqHpdrMROQ/jAdr3E5+ v0e23MjHsNYP6STn8MfEtbAi+7ZOqeZUbyDHRrEocpwufGerxoJexNdU1w== -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:57 2025 by rpki-client