$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/897/oqL2Y1k6dRhOwn06zabp-c2bdBE.roa File: oqL2Y1k6dRhOwn06zabp-c2bdBE.roa (raw, json) Hash identifier: 2yXfRwGm0KU84ifCH/JOZoNaiE4fdqqOdPH9ZB2XGl4= Subject key identifier: A2:A2:F6:63:59:3A:75:18:4E:C2:7D:3A:CD:A6:E9:F9:CD:9B:74:11 Certificate issuer: /CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Certificate serial: 76 Authority key identifier: AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/oqL2Y1k6dRhOwn06zabp-c2bdBE.roa Signing time: Wed 31 Jul 2024 01:28:13 +0000 ROA not before: Wed 31 Jul 2024 01:28:13 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 9621 IP address blocks: 211.120.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Validity Not Before: Jul 31 01:28:13 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=A2A2F663593A75184EC27D3ACDA6E9F9CD9B7411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4b:97:e8:55:9c:45:2e:f3:09:49:12:5d:a5: ef:75:5b:cb:9e:99:32:ac:ea:c6:7f:89:a6:bc:95: 7f:41:3a:96:05:91:f4:e9:03:52:2a:ef:58:39:e4: 7b:1c:b8:d1:e9:a7:84:ac:55:b6:65:a1:ec:92:e6: 7b:99:31:1c:ea:66:a7:f3:89:87:bd:c2:09:c3:7b: 6d:10:b6:09:d4:ab:9b:d8:14:e7:7c:78:42:87:e6: bb:1a:45:a1:2b:49:86:44:1a:7a:66:da:bb:62:ef: a7:eb:fb:35:6d:49:2d:f5:d6:68:dd:74:88:8c:c5: 5c:7c:c9:fc:87:08:bf:e3:23:98:12:3e:77:22:a0: 46:ed:dd:18:26:07:fd:94:70:34:0c:96:9f:bc:bb: 45:d5:3b:15:f6:fe:3d:65:39:d7:51:2d:45:c5:30: 95:60:21:ae:5e:ea:6e:0e:4b:41:95:39:30:1c:01: 01:0c:1f:e3:dd:18:58:9c:27:67:64:88:21:df:e7: 84:21:7b:b7:23:4f:9a:35:38:67:b9:46:42:a2:8c: a0:5c:0f:97:52:ba:af:51:79:11:af:60:a5:12:c7: b5:7f:08:66:73:99:c5:2d:c1:d4:06:3a:02:85:e7: 16:88:59:07:36:7a:73:2a:7e:ee:fa:36:f9:35:93: 8e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:A2:F6:63:59:3A:75:18:4E:C2:7D:3A:CD:A6:E9:F9:CD:9B:74:11 X509v3 Authority Key Identifier: keyid:AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/oqL2Y1k6dRhOwn06zabp-c2bdBE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.120.224.0/20 Signature Algorithm: sha256WithRSAEncryption 93:49:c4:f1:64:9c:8c:e3:1a:71:cf:e2:1e:ee:d7:b1:02:89: 6b:a0:ad:2a:e7:eb:b3:5c:e4:5b:44:bb:53:ab:49:33:39:98: 41:91:a0:69:36:ca:51:5a:a0:9d:89:81:62:cc:50:7f:d3:93: 1b:3a:2e:f9:3c:db:96:0f:dc:59:8f:9b:f6:f9:42:28:1c:1b: b9:61:21:e4:a5:90:c5:fd:d1:93:ac:50:c9:de:b7:16:4c:19: 15:7e:26:dd:b1:bd:69:20:99:63:c8:72:65:44:69:92:d3:ba: 26:51:6a:0a:74:77:82:7a:d2:a5:a3:0f:52:ff:05:96:7c:19: f0:c6:df:67:cf:ad:dd:8a:e3:34:81:37:44:56:af:d9:93:de: 06:6a:8f:d7:cf:fd:0e:f7:4a:b2:1c:4a:bf:3e:15:3e:ce:ff: 13:a9:ca:9d:15:e9:90:2d:18:91:8c:c0:ca:21:3d:d6:45:0a: 9e:45:96:85:90:28:ba:5d:44:cc:18:29:16:c2:bc:7a:18:95: 04:2a:8e:1a:e5:e8:54:38:96:ec:77:ae:ee:6c:94:5e:e2:d9: 8b:49:b8:62:2c:a0:39:96:6d:bc:41:35:23:a9:ec:94:3c:27: 1a:ed:16:8d:c1:b8:78:27:29:35:a4:a5:35:26:93:41:3e:a6: 94:61:68:b4 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBdjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBQTA4 MDk3QzYwNjA3MTAyODBDREFBQTRFN0UwNkMxRjEzQ0QxNkYyMB4XDTI0MDczMTAx MjgxM1oXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQTJBMkY2NjM1OTNBNzUx ODRFQzI3RDNBQ0RBNkU5RjlDRDlCNzQxMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK5Ll+hVnEUu8wlJEl2l73Vby56ZMqzqxn+JpryVf0E6lgWR9OkD UirvWDnkexy40emnhKxVtmWh7JLme5kxHOpmp/OJh73CCcN7bRC2CdSrm9gU53x4 QofmuxpFoStJhkQaembau2Lvp+v7NW1JLfXWaN10iIzFXHzJ/IcIv+MjmBI+dyKg Ru3dGCYH/ZRwNAyWn7y7RdU7Ffb+PWU511EtRcUwlWAhrl7qbg5LQZU5MBwBAQwf 490YWJwnZ2SIId/nhCF7tyNPmjU4Z7lGQqKMoFwPl1K6r1F5Ea9gpRLHtX8IZnOZ xS3B1AY6AoXnFohZBzZ6cyp+7vo2+TWTjksCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSiovZjWTp1GE7CfTrNpun5zZt0ETAfBgNVHSMEGDAWgBSqCAl8YGBxAoDNqqTn 4GwfE80W8jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODk3L3FnZ0pmR0JnY1FLQXphcWs1LUJzSHhQTkZ2SS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3FnZ0pmR0JnY1FLQXphcWs1LUJzSHhQ TkZ2SS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84OTcvb3FMMlkxazZkUmhPd24wNnphYnAtYzJiZEJFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNN44DANBgkqhkiG9w0BAQsFAAOCAQEAk0nE8WScjOMacc/iHu7XsQKJa6Ct Kufrs1zkW0S7U6tJMzmYQZGgaTbKUVqgnYmBYsxQf9OTGzou+Tzblg/cWY+b9vlC KBwbuWEh5KWQxf3Rk6xQyd63FkwZFX4m3bG9aSCZY8hyZURpktO6JlFqCnR3gnrS paMPUv8FlnwZ8MbfZ8+t3YrjNIE3RFav2ZPeBmqP18/9DvdKshxKvz4VPs7/E6nK nRXpkC0YkYzAyiE91kUKnkWWhZAoul1EzBgpFsK8ehiVBCqOGuXoVDiW7Heu7myU XuLZi0m4YiygOZZtvEE1I6nslDwnGu0WjcG4eCcpNaSlNSaTQT6mlGFotA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:04:16 2025 by rpki-client