$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/977/zqbyo-3qRWXcERUKzHIBHrHQD_k.roa File: zqbyo-3qRWXcERUKzHIBHrHQD_k.roa (raw, json) Hash identifier: lYSd7nUk/nnSRv5TrkZP/yBFskEnl7z5U74jv6BORJs= Subject key identifier: CE:A6:F2:A3:ED:EA:45:65:DC:11:15:0A:CC:72:01:1E:B1:D0:0F:F9 Certificate issuer: /CN=BD69002D0E8B7ED2C3D1D5D07AE6922C7497F02D Certificate serial: 17 Authority key identifier: BD:69:00:2D:0E:8B:7E:D2:C3:D1:D5:D0:7A:E6:92:2C:74:97:F0:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/vWkALQ6LftLD0dXQeuaSLHSX8C0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/zqbyo-3qRWXcERUKzHIBHrHQD_k.roa Signing time: Wed 07 Aug 2024 06:09:27 +0000 ROA not before: Wed 07 Aug 2024 06:09:27 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 23784 IP address blocks: 219.117.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/vWkALQ6LftLD0dXQeuaSLHSX8C0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/vWkALQ6LftLD0dXQeuaSLHSX8C0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/vWkALQ6LftLD0dXQeuaSLHSX8C0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD69002D0E8B7ED2C3D1D5D07AE6922C7497F02D Validity Not Before: Aug 7 06:09:27 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=CEA6F2A3EDEA4565DC11150ACC72011EB1D00FF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fc:e5:a7:b0:14:1e:cb:a1:77:e8:ee:7e:20: c7:7f:be:d0:17:b5:97:05:a6:7a:46:13:f3:5a:76: e4:51:72:4c:cf:53:db:04:64:63:5d:7c:cb:d1:a9: 5d:ee:de:f0:ef:08:99:15:5a:08:37:07:0a:ea:9c: b9:43:e8:cb:6e:6b:97:ca:c9:ca:b9:d3:d3:70:2c: bc:d2:34:78:3b:de:42:bc:2d:f8:99:81:7d:bb:45: 19:f3:bf:5f:55:b6:83:bb:b2:46:b1:d3:f6:d7:84: ee:55:8d:68:97:04:70:68:0a:16:d0:04:0d:30:8b: b5:e2:75:d6:fd:41:32:bf:02:ff:61:f2:f8:e4:f0: 27:33:48:92:a4:db:0a:c9:7f:e7:5b:fd:23:8c:ac: 90:b7:60:b7:1e:cf:ff:a7:48:7f:54:29:af:a9:d7: 9f:09:d4:36:f2:c2:7e:49:38:8b:2d:da:26:3e:8a: 80:0b:f1:7a:be:4a:98:83:bc:7c:d4:50:a8:72:94: 61:fa:08:99:e0:58:49:76:3d:00:20:e7:b7:10:a7: b6:fb:2e:d9:c0:af:af:5f:ed:64:b9:dd:f6:8d:4f: c5:48:85:12:27:06:06:94:cc:ef:5d:5b:00:ef:8d: 83:61:1a:2e:62:15:6f:f2:4d:d7:20:6d:06:28:c6: b2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A6:F2:A3:ED:EA:45:65:DC:11:15:0A:CC:72:01:1E:B1:D0:0F:F9 X509v3 Authority Key Identifier: keyid:BD:69:00:2D:0E:8B:7E:D2:C3:D1:D5:D0:7A:E6:92:2C:74:97:F0:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/vWkALQ6LftLD0dXQeuaSLHSX8C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/vWkALQ6LftLD0dXQeuaSLHSX8C0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/zqbyo-3qRWXcERUKzHIBHrHQD_k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.117.144.0/20 Signature Algorithm: sha256WithRSAEncryption bf:6f:1c:86:14:4c:8e:92:1f:3b:bd:11:e0:36:1f:52:d1:fa: d6:df:b9:71:42:df:35:a6:12:b0:b3:1a:15:01:d0:4c:a1:dd: e9:db:15:06:40:2b:34:89:91:b6:e7:48:e0:f1:e9:55:80:4b: 68:7c:a3:29:f2:f6:7d:c3:9b:1f:d7:76:af:09:5d:ec:fc:35: aa:ed:ab:85:7f:b5:f9:d3:2e:c0:5b:9d:ae:1f:b6:42:54:08: 84:94:fa:62:b6:f3:47:d5:06:a0:93:61:0a:26:3c:15:51:f8: 8e:25:e1:2f:8a:63:7b:71:1b:8b:fa:04:9c:91:df:42:ed:95: 54:11:30:1b:89:1e:f7:ad:52:0d:f1:52:45:7c:b7:2e:1a:eb: b1:e2:3e:bf:10:cb:9f:81:aa:0d:d2:42:4a:8a:06:ec:61:10: eb:2c:b6:85:96:ea:4b:d8:19:b3:3d:39:a8:d9:7f:80:a5:69: 5f:d6:8b:4e:68:89:83:61:30:4b:39:70:af:23:b2:1b:92:96: 0f:46:75:07:05:56:1c:3a:c2:6f:de:57:28:d4:56:83:74:7d: 18:32:30:20:a1:29:bc:33:47:e9:f1:78:d5:83:99:89:6e:d2: 66:43:1d:27:51:62:53:d3:31:33:90:13:14:36:85:95:52:0c: 91:49:80:37 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCRDY5 MDAyRDBFOEI3RUQyQzNEMUQ1RDA3QUU2OTIyQzc0OTdGMDJEMB4XDTI0MDgwNzA2 MDkyN1oXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQ0VBNkYyQTNFREVBNDU2 NURDMTExNTBBQ0M3MjAxMUVCMUQwMEZGOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALv85aewFB7LoXfo7n4gx3++0Be1lwWmekYT81p25FFyTM9T2wRk Y118y9GpXe7e8O8ImRVaCDcHCuqcuUPoy25rl8rJyrnT03AsvNI0eDveQrwt+JmB fbtFGfO/X1W2g7uyRrHT9teE7lWNaJcEcGgKFtAEDTCLteJ11v1BMr8C/2Hy+OTw JzNIkqTbCsl/51v9I4yskLdgtx7P/6dIf1Qpr6nXnwnUNvLCfkk4iy3aJj6KgAvx er5KmIO8fNRQqHKUYfoImeBYSXY9ACDntxCntvsu2cCvr1/tZLnd9o1PxUiFEicG BpTM711bAO+Ng2EaLmIVb/JN1yBtBijGsvUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTOpvKj7epFZdwRFQrMcgEesdAP+TAfBgNVHSMEGDAWgBS9aQAtDot+0sPR1dB6 5pIsdJfwLTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTc3L3ZXa0FMUTZMZnRMRDBkWFFldWFTTEhTWDhDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3ZXa0FMUTZMZnRMRDBkWFFldWFTTEhT WDhDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NzcvenFieW8tM3FSV1hjRVJVS3pISUJIckhRRF9rLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNt1kDANBgkqhkiG9w0BAQsFAAOCAQEAv28chhRMjpIfO70R4DYfUtH61t+5 cULfNaYSsLMaFQHQTKHd6dsVBkArNImRtudI4PHpVYBLaHyjKfL2fcObH9d2rwld 7Pw1qu2rhX+1+dMuwFudrh+2QlQIhJT6YrbzR9UGoJNhCiY8FVH4jiXhL4pje3Eb i/oEnJHfQu2VVBEwG4ke961SDfFSRXy3LhrrseI+vxDLn4GqDdJCSooG7GEQ6yy2 hZbqS9gZsz05qNl/gKVpX9aLTmiJg2EwSzlwryOyG5KWD0Z1BwVWHDrCb95XKNRW g3R9GDIwIKEpvDNH6fF41YOZiW7SZkMdJ1FiU9MxM5ATFDaFlVIMkUmANw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:24:13 2025 by rpki-client