$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/877/6IFd0jowXubJRB3p2jcFfox_07s.roa File: 6IFd0jowXubJRB3p2jcFfox_07s.roa (raw, json) Hash identifier: Fl1km/KN+RaRmrUjm2mrJOSl4VgIP7pJoahS9D0ai0g= Subject key identifier: E8:81:5D:D2:3A:30:5E:E6:C9:44:1D:E9:DA:37:05:7E:8C:7F:D3:BB Certificate issuer: /CN=1933DE3EF96450CA120C77A5EA826434DD149549 Certificate serial: 3D Authority key identifier: 19:33:DE:3E:F9:64:50:CA:12:0C:77:A5:EA:82:64:34:DD:14:95:49 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/6IFd0jowXubJRB3p2jcFfox_07s.roa Signing time: Tue 31 Dec 2024 01:30:51 +0000 ROA not before: Tue 31 Dec 2024 01:30:51 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 55385 IP address blocks: 103.2.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1933DE3EF96450CA120C77A5EA826434DD149549 Validity Not Before: Dec 31 01:30:51 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=E8815DD23A305EE6C9441DE9DA37057E8C7FD3BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f0:3f:ca:70:95:52:ab:9a:2c:69:b2:5e:53: 36:c4:b3:b4:31:88:bb:5e:7c:52:07:84:39:02:99: 9c:2a:f1:0d:31:6a:df:57:14:8a:2a:82:a8:4e:bd: 25:9a:5a:09:75:bf:95:0d:b6:c8:88:75:85:08:1c: 20:c1:b7:36:48:42:0d:e5:5f:b8:05:72:6e:5b:2f: f3:7d:94:51:e0:c8:42:67:5c:ed:c4:40:86:fe:1d: 76:9c:3d:6d:7d:9b:9b:29:65:2e:41:1c:98:33:4b: 86:0e:21:69:17:bb:95:e1:4e:9c:27:83:58:3a:02: 8f:86:a2:d3:12:e7:da:eb:6f:0c:5b:c5:5e:4a:c3: fa:da:6c:42:92:4c:d2:d3:15:c2:6d:91:8c:8d:8c: 87:91:eb:57:81:b1:ca:ce:99:de:53:c7:d2:73:39: 46:7c:93:d2:49:0c:b7:e8:da:8b:da:9c:d9:41:5f: a6:95:98:89:14:89:99:91:63:94:60:c2:77:03:e9: c9:d0:2e:4e:b0:c0:16:4a:1f:1f:43:1c:cf:df:58: 92:48:64:0a:78:a8:0b:f9:2c:97:29:3b:85:d3:5e: 5d:73:36:0d:17:22:2b:d1:1e:84:4b:89:3a:57:24: 0f:5e:8f:67:1a:49:89:72:54:98:6b:a8:59:be:2b: 86:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:81:5D:D2:3A:30:5E:E6:C9:44:1D:E9:DA:37:05:7E:8C:7F:D3:BB X509v3 Authority Key Identifier: keyid:19:33:DE:3E:F9:64:50:CA:12:0C:77:A5:EA:82:64:34:DD:14:95:49 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/6IFd0jowXubJRB3p2jcFfox_07s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.0.0/22 Signature Algorithm: sha256WithRSAEncryption bb:b0:e3:4b:fe:c7:74:cd:8f:45:c7:80:f6:28:d7:7b:72:c9: 67:13:b0:8f:a5:66:90:36:17:4e:19:25:17:3b:41:24:a9:cf: 6e:7b:d7:23:69:9b:bd:f7:eb:59:2c:1d:f0:e9:84:07:e9:b7: df:ab:bb:94:a4:d9:9b:1b:86:1d:3b:54:df:ba:ee:50:5b:ff: 92:27:87:77:3a:92:2e:2d:49:10:0f:d8:6d:43:37:35:42:0b: 5f:66:3a:10:0c:30:c8:56:1a:8c:23:e7:dc:15:fb:66:92:61: 47:a6:ab:b0:0b:aa:29:c9:c2:98:80:b7:39:96:e5:14:96:51: 82:43:da:21:84:e5:67:d7:06:84:0f:8f:a3:69:28:70:b7:92: b4:e9:5b:aa:d5:55:88:7e:51:2c:66:53:43:f6:01:dd:ab:f4: 1e:f1:1f:b6:27:8a:89:89:2d:87:7a:5c:ce:25:81:5d:66:ad: b5:b5:fa:ad:7c:3f:c7:2a:2d:4e:45:48:84:a2:ff:56:6a:6c: 94:10:e5:f9:99:68:bb:fc:a0:c7:a0:d7:29:bb:27:5c:19:bb: cf:fc:8e:78:6d:ce:71:be:e0:d9:ed:02:35:15:71:79:13:58: d2:b8:c7:e0:a9:e4:4c:c5:cc:91:e1:0e:3b:4f:f5:6d:25:12: 29:0d:7f:4d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxOTMz REUzRUY5NjQ1MENBMTIwQzc3QTVFQTgyNjQzNEREMTQ5NTQ5MB4XDTI0MTIzMTAx MzA1MVoXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoRTg4MTVERDIzQTMwNUVF NkM5NDQxREU5REEzNzA1N0U4QzdGRDNCQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO3wP8pwlVKrmixpsl5TNsSztDGIu158UgeEOQKZnCrxDTFq31cU iiqCqE69JZpaCXW/lQ22yIh1hQgcIMG3NkhCDeVfuAVyblsv832UUeDIQmdc7cRA hv4ddpw9bX2bmyllLkEcmDNLhg4haRe7leFOnCeDWDoCj4ai0xLn2utvDFvFXkrD +tpsQpJM0tMVwm2RjI2Mh5HrV4Gxys6Z3lPH0nM5RnyT0kkMt+jai9qc2UFfppWY iRSJmZFjlGDCdwPpydAuTrDAFkofH0Mcz99YkkhkCnioC/kslyk7hdNeXXM2DRci K9EehEuJOlckD16PZxpJiXJUmGuoWb4rhncCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTogV3SOjBe5slEHenaNwV+jH/TuzAfBgNVHSMEGDAWgBQZM94++WRQyhIMd6Xq gmQ03RSVSTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODc3L0dUUGVQdmxrVU1vU0RIZWw2b0prTk4wVWxVay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0dUUGVQdmxrVU1vU0RIZWw2b0prTk4w VWxVay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NzcvNklGZDBqb3dYdWJKUkIzcDJqY0Zmb3hfMDdzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcCADANBgkqhkiG9w0BAQsFAAOCAQEAu7DjS/7HdM2PRceA9ijXe3LJZxOw j6VmkDYXThklFztBJKnPbnvXI2mbvffrWSwd8OmEB+m336u7lKTZmxuGHTtU37ru UFv/kieHdzqSLi1JEA/YbUM3NUILX2Y6EAwwyFYajCPn3BX7ZpJhR6arsAuqKcnC mIC3OZblFJZRgkPaIYTlZ9cGhA+Po2kocLeStOlbqtVViH5RLGZTQ/YB3av0HvEf tieKiYkth3pcziWBXWattbX6rXw/xyotTkVIhKL/VmpslBDl+Zlou/ygx6DXKbsn XBm7z/yOeG3Ocb7g2e0CNRVxeRNY0rjH4KnkTMXMkeEOO0/1bSUSKQ1/TQ== -----END CERTIFICATE-----Generated at Wed Feb 19 22:27:11 2025 by rpki-client