$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/977/idthMC7oJHqCcnFfStmEQabW6zY.roa File: idthMC7oJHqCcnFfStmEQabW6zY.roa (raw, json) Hash identifier: C1oCQwdRvZyvbUS0ebU5IIA6IC78BfKcTdjkOqalup8= Subject key identifier: 89:DB:61:30:2E:E8:24:7A:82:72:71:5F:4A:D9:84:41:A6:D6:EB:36 Certificate issuer: /CN=BD69002D0E8B7ED2C3D1D5D07AE6922C7497F02D Certificate serial: 14 Authority key identifier: BD:69:00:2D:0E:8B:7E:D2:C3:D1:D5:D0:7A:E6:92:2C:74:97:F0:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/vWkALQ6LftLD0dXQeuaSLHSX8C0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/idthMC7oJHqCcnFfStmEQabW6zY.roa Signing time: Wed 07 Aug 2024 06:09:26 +0000 ROA not before: Wed 07 Aug 2024 06:09:26 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 23784 IP address blocks: 119.252.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/vWkALQ6LftLD0dXQeuaSLHSX8C0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/vWkALQ6LftLD0dXQeuaSLHSX8C0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/vWkALQ6LftLD0dXQeuaSLHSX8C0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD69002D0E8B7ED2C3D1D5D07AE6922C7497F02D Validity Not Before: Aug 7 06:09:26 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=89DB61302EE8247A8272715F4AD98441A6D6EB36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2e:4f:eb:79:a5:fd:d2:7f:0a:fd:79:84:18: c5:ee:43:50:0d:81:33:5f:ae:35:5a:2f:7b:09:7d: 86:c4:9f:9b:69:be:e5:92:9a:25:f1:01:76:d9:57: d1:97:00:3d:8d:ba:95:85:e1:25:34:31:dd:fb:7b: b8:e3:06:a9:a0:01:9b:6a:ca:97:c4:92:50:95:29: ba:9a:e4:5f:63:47:3e:cd:3d:63:4e:4c:f6:9b:69: 95:4a:e5:c6:b3:e4:a7:7c:84:4b:27:c3:c0:54:1e: fe:09:07:64:ca:ef:81:09:6c:10:55:49:f3:77:c8: 56:8c:98:b4:01:b3:3e:32:30:32:5e:c5:49:d6:00: 40:2e:6f:8e:63:2d:0e:6f:de:8a:79:06:11:c2:9d: 41:ba:0a:cf:f3:b9:4d:c2:6c:d3:d6:1d:e0:2f:87: 55:dd:d4:45:24:29:8b:ec:95:d3:72:ad:eb:e0:a8: 60:df:b9:7c:15:05:6f:5b:ba:fe:88:57:8c:9e:d6: c3:4f:9b:a0:2b:b0:0f:bf:64:53:36:0e:d4:d3:86: e6:5e:c4:64:bb:ec:80:42:cb:74:70:72:11:b8:2c: 4d:41:7b:09:34:a7:39:f4:81:1a:ef:bf:b9:52:e0: 7d:c8:fe:c5:c6:e8:ac:33:52:f4:67:a2:e2:f3:08: 05:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:DB:61:30:2E:E8:24:7A:82:72:71:5F:4A:D9:84:41:A6:D6:EB:36 X509v3 Authority Key Identifier: keyid:BD:69:00:2D:0E:8B:7E:D2:C3:D1:D5:D0:7A:E6:92:2C:74:97:F0:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/vWkALQ6LftLD0dXQeuaSLHSX8C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/vWkALQ6LftLD0dXQeuaSLHSX8C0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/idthMC7oJHqCcnFfStmEQabW6zY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.252.32.0/19 Signature Algorithm: sha256WithRSAEncryption 0f:2f:de:36:f2:83:f8:04:f8:ab:76:ae:41:17:34:da:93:bb: f8:42:ec:97:a8:2f:c1:5b:93:2d:b1:f0:fb:fe:41:cb:ea:c6: 80:cf:ec:f3:a0:aa:69:d5:9a:4b:c4:c6:d1:ef:fa:6f:7b:7a: fb:29:4b:97:63:a7:68:25:e0:9f:e7:c9:b4:7c:30:d5:ca:88: fd:da:b5:05:04:a3:07:ab:82:ea:de:8a:d2:ac:56:f3:6f:ce: a1:bf:ef:83:99:ea:d8:81:a0:ab:29:b5:c8:1e:bc:52:00:0f: 2a:9a:21:d3:46:4d:12:c0:ae:b7:80:06:5b:55:c9:52:09:2c: 42:22:db:38:7b:0d:62:71:0f:bc:f3:0f:8b:44:e9:05:dc:a1: c5:6c:53:c4:72:bf:1d:aa:80:77:d3:f6:22:fe:ba:d1:b6:0c: a4:fc:7e:26:ce:91:f7:a3:7b:7a:9f:7e:9b:ec:d5:6c:04:40: d1:f2:c7:cc:f2:b6:16:a8:f2:2e:5b:31:c2:a3:8a:ac:37:a3: 00:a5:b9:d3:e4:3d:9e:2e:2f:d8:eb:a5:98:31:94:0e:c1:23: a5:f7:d2:18:fb:71:32:1b:a0:f2:e3:4b:18:a2:46:24:2a:d1: ff:73:8d:54:9f:1c:a7:6a:7d:80:2b:b5:90:d9:b5:91:7e:05: 6a:5c:b7:32 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCRDY5 MDAyRDBFOEI3RUQyQzNEMUQ1RDA3QUU2OTIyQzc0OTdGMDJEMB4XDTI0MDgwNzA2 MDkyNloXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoODlEQjYxMzAyRUU4MjQ3 QTgyNzI3MTVGNEFEOTg0NDFBNkQ2RUIzNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMwuT+t5pf3Sfwr9eYQYxe5DUA2BM1+uNVovewl9hsSfm2m+5ZKa JfEBdtlX0ZcAPY26lYXhJTQx3ft7uOMGqaABm2rKl8SSUJUpuprkX2NHPs09Y05M 9ptplUrlxrPkp3yESyfDwFQe/gkHZMrvgQlsEFVJ83fIVoyYtAGzPjIwMl7FSdYA QC5vjmMtDm/einkGEcKdQboKz/O5TcJs09Yd4C+HVd3URSQpi+yV03Kt6+CoYN+5 fBUFb1u6/ohXjJ7Ww0+boCuwD79kUzYO1NOG5l7EZLvsgELLdHByEbgsTUF7CTSn OfSBGu+/uVLgfcj+xcborDNS9Gei4vMIBR0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSJ22EwLugkeoJycV9K2YRBptbrNjAfBgNVHSMEGDAWgBS9aQAtDot+0sPR1dB6 5pIsdJfwLTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTc3L3ZXa0FMUTZMZnRMRDBkWFFldWFTTEhTWDhDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3ZXa0FMUTZMZnRMRDBkWFFldWFTTEhT WDhDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NzcvaWR0aE1DN29KSHFDY25GZlN0bUVRYWJXNnpZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBXf8IDANBgkqhkiG9w0BAQsFAAOCAQEADy/eNvKD+AT4q3auQRc02pO7+ELs l6gvwVuTLbHw+/5By+rGgM/s86CqadWaS8TG0e/6b3t6+ylLl2OnaCXgn+fJtHww 1cqI/dq1BQSjB6uC6t6K0qxW82/Oob/vg5nq2IGgqym1yB68UgAPKpoh00ZNEsCu t4AGW1XJUgksQiLbOHsNYnEPvPMPi0TpBdyhxWxTxHK/HaqAd9P2Iv660bYMpPx+ Js6R96N7ep9+m+zVbARA0fLHzPK2FqjyLlsxwqOKrDejAKW50+Q9ni4v2OulmDGU DsEjpffSGPtxMhug8uNLGKJGJCrR/3ONVJ8cp2p9gCu1kNm1kX4Faly3Mg== -----END CERTIFICATE-----Generated at Sun Feb 16 22:30:16 2025 by rpki-client