$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/sBbrXvBWRGWj4vnIR4dGeb6yUrs.roa File: sBbrXvBWRGWj4vnIR4dGeb6yUrs.roa (raw, json) Hash identifier: rNmRn4dWccZrsJOtUAZVLpizUWzLtLKomx/A7XuS+Gc= Subject key identifier: B0:16:EB:5E:F0:56:44:65:A3:E2:F9:C8:47:87:46:79:BE:B2:52:BB Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01B9 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/sBbrXvBWRGWj4vnIR4dGeb6yUrs.roa Signing time: Sun 31 Mar 2024 01:29:10 +0000 ROA not before: Sun 31 Mar 2024 01:29:10 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 4713 IP address blocks: 125.170.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 07:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 01:29:10 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=B016EB5EF0564465A3E2F9C847874679BEB252BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:72:c1:6b:27:3f:c0:36:b1:1a:7c:79:38:91: c5:d1:6c:26:f4:8c:36:fa:3a:20:e0:20:77:be:7c: c4:8e:c2:aa:3d:9a:48:eb:9e:80:d7:4f:86:9e:44: 57:7b:c3:93:3b:22:76:fe:f4:3c:48:9f:05:8c:40: 9a:87:e3:a9:ff:7c:f2:39:17:4c:0a:87:6e:18:18: 82:13:69:f2:08:dd:c9:80:aa:fd:cd:ba:76:73:98: 3b:cf:ab:26:90:11:56:08:39:73:77:e8:39:e4:fa: 2b:5c:76:6c:3b:69:f0:ac:60:f0:87:c3:5d:2a:99: 38:ba:71:b8:df:91:a9:c0:f2:0f:2b:f9:1b:b4:4d: 04:a2:7c:e7:65:1a:13:69:d8:84:0e:1b:ec:dc:2e: 3e:49:93:94:a9:10:5b:5c:4e:8a:24:3c:ce:43:31: e6:5a:a3:c1:46:2e:3c:3d:d5:b9:e2:95:e3:03:7a: a5:7e:1a:fd:56:01:1f:37:57:20:b5:cf:3a:ca:4e: e6:4f:27:77:54:39:e0:cf:33:37:d6:f7:e3:d3:9d: a2:0d:f6:9a:2b:2a:85:78:27:aa:a1:d3:ba:a6:7c: 64:70:6a:36:14:f9:c9:e0:8f:90:5b:4c:e7:bf:4c: e8:a2:86:da:30:45:e0:bd:10:34:0e:0f:fa:de:cb: 61:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:16:EB:5E:F0:56:44:65:A3:E2:F9:C8:47:87:46:79:BE:B2:52:BB X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/sBbrXvBWRGWj4vnIR4dGeb6yUrs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.170.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1f:b7:33:1f:ed:4c:be:18:02:34:11:e4:25:dc:c8:01:5b:08: 1b:5c:43:5b:58:5d:85:d0:80:19:a6:7a:f4:84:73:38:56:61: 60:27:e2:dd:56:dc:b8:d6:f6:bb:c0:73:32:9b:f7:52:65:84: 22:17:56:62:12:bd:0c:ee:0a:56:4f:50:03:72:ed:17:e2:e5: bb:99:9c:7b:ca:86:cc:66:d8:6e:5a:00:c3:fa:ea:c4:8b:12: 4f:4d:fa:04:65:81:57:c1:c0:99:d2:db:54:6a:79:36:fe:c9: ac:b4:d9:d1:0b:a3:ab:b6:d5:c1:76:34:54:e5:d5:3a:33:43: 96:c6:7f:b9:ce:3a:b9:bb:f9:12:cf:e3:01:0e:92:8c:11:88: f6:65:a2:cf:8b:97:97:99:19:f8:a4:bf:c5:4f:3e:52:c4:78: 52:15:72:5c:fa:ea:53:5e:12:e8:49:4f:1a:cb:fb:ee:15:00: eb:0b:6c:12:1d:41:07:33:2c:1c:a2:e2:d7:fc:26:76:37:f8: f8:00:bd:3d:f3:ef:20:7f:6e:1e:4f:08:73:76:c8:a6:93:c4: df:7f:00:67:b3:64:d3:60:f6:c8:dc:76:13:80:e5:3b:e4:7d: 89:6a:c9:cc:c4:cf:65:5e:bf:c6:c8:30:56:18:b5:c9:6f:7d: 75:0c:16:67 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDAzMzEw MTI5MTBaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIwMTZFQjVFRjA1NjQ0 NjVBM0UyRjlDODQ3ODc0Njc5QkVCMjUyQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAcsFrJz/ANrEafHk4kcXRbCb0jDb6OiDgIHe+fMSOwqo9mkjr noDXT4aeRFd7w5M7Inb+9DxInwWMQJqH46n/fPI5F0wKh24YGIITafII3cmAqv3N unZzmDvPqyaQEVYIOXN36Dnk+itcdmw7afCsYPCHw10qmTi6cbjfkanA8g8r+Ru0 TQSifOdlGhNp2IQOG+zcLj5Jk5SpEFtcTookPM5DMeZao8FGLjw91bnileMDeqV+ Gv1WAR83VyC1zzrKTuZPJ3dUOeDPMzfW9+PTnaIN9porKoV4J6qh07qmfGRwajYU +cngj5BbTOe/TOiihtowReC9EDQOD/rey2G1AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUsBbrXvBWRGWj4vnIR4dGeb6yUrswHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL3NCYnJYdkJXUkdXajR2bklSNGRHZWI2eVVycy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwB9qjANBgkqhkiG9w0BAQsFAAOCAQEAH7czH+1MvhgCNBHkJdzIAVsIG1xD W1hdhdCAGaZ69IRzOFZhYCfi3VbcuNb2u8BzMpv3UmWEIhdWYhK9DO4KVk9QA3Lt F+Llu5mce8qGzGbYbloAw/rqxIsST036BGWBV8HAmdLbVGp5Nv7JrLTZ0Qujq7bV wXY0VOXVOjNDlsZ/uc46ubv5Es/jAQ6SjBGI9mWiz4uXl5kZ+KS/xU8+UsR4UhVy XPrqU14S6ElPGsv77hUA6wtsEh1BBzMsHKLi1/wmdjf4+AC9PfPvIH9uHk8Ic3bI ppPE338AZ7Nk02D2yNx2E4DlO+R9iWrJzMTPZV6/xsgwVhi1yW99dQwWZw== -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:33 2024 by rpki-client on console-fra.rpki-client.org