$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/0kH_s0a12Lce-7YiHMmYX4mf0SQ.roa File: 0kH_s0a12Lce-7YiHMmYX4mf0SQ.roa (raw, json) Hash identifier: 0vISpniCrjuo4gvYN8xqGIxUiHzpk9ha+ldYAupmusE= Subject key identifier: D2:41:FF:B3:46:B5:D8:B7:1E:FB:B6:22:1C:C9:98:5F:89:9F:D1:24 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 03C9 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/0kH_s0a12Lce-7YiHMmYX4mf0SQ.roa Signing time: Wed 18 Dec 2024 02:13:06 +0000 ROA not before: Wed 18 Dec 2024 02:13:06 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 125.29.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 969 (0x3c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:13:06 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=D241FFB346B5D8B71EFBB6221CC9985F899FD124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1d:87:8d:ea:c8:71:e2:71:d0:fe:b6:a0:f9: 2f:9e:66:2a:48:61:3e:49:37:af:66:4c:26:85:da: cc:f3:87:83:2a:b6:37:42:6b:8b:31:f4:e4:b5:1a: 74:a9:3f:32:cc:58:43:38:90:93:d6:02:8a:a8:b9: 58:65:05:b9:85:5c:c2:c2:ad:c1:68:e5:b0:1a:d2: 21:1b:b5:9c:98:00:0c:46:e4:af:e0:29:1a:32:e8: d7:85:c5:0b:a1:a8:d2:5f:8e:0a:91:5a:68:7b:1c: 66:9a:a0:b5:49:f4:cc:ad:f2:ac:c7:d5:f1:b6:5c: 40:16:de:fd:54:01:72:9e:85:38:b8:df:32:f3:5e: b4:3c:46:af:34:ca:90:72:16:f0:fd:61:19:03:9b: 78:65:35:b1:a0:65:f0:f9:bb:84:d0:7c:1b:66:68: 05:19:a5:02:64:98:2d:c1:5e:61:02:ae:b9:d4:78: a2:bf:5e:39:25:2d:0d:26:4a:35:b4:c9:12:f5:53: 54:34:99:3b:8b:f6:8b:31:ff:12:db:7e:0f:82:85: 0a:68:b2:f6:fb:77:3f:98:78:e6:5f:ad:d4:26:f2: 17:c5:82:bf:27:fa:a7:01:58:a5:d1:01:5b:bd:68: ff:7f:be:6a:aa:d1:f5:cc:80:f9:bb:d1:7f:8d:5b: 3c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:41:FF:B3:46:B5:D8:B7:1E:FB:B6:22:1C:C9:98:5F:89:9F:D1:24 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/0kH_s0a12Lce-7YiHMmYX4mf0SQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.29.0.0/18 Signature Algorithm: sha256WithRSAEncryption 7c:83:8f:45:2f:43:39:68:43:4c:a1:10:9c:22:9f:96:55:5f: 08:63:73:e8:65:f1:c1:71:a7:2a:8a:18:0e:f1:de:6e:ab:c5: 37:04:59:b1:68:50:9d:b9:19:4e:93:18:bb:93:fd:ed:55:51: 67:02:de:ab:3e:9c:5c:54:dc:ef:21:08:62:ba:d9:52:f2:5a: 6f:2c:cd:6b:2e:50:04:ed:1b:45:6f:60:72:9a:65:a6:fb:85: 1f:22:99:b7:fd:ea:92:04:2e:da:20:2c:eb:93:91:c4:50:82: a2:be:49:bc:56:18:a8:be:be:1a:ee:31:49:60:b2:ed:dd:bb: bf:92:76:f2:c3:b2:c3:9e:a3:19:c0:d1:11:bd:34:aa:ba:ff: bd:93:ee:37:8e:df:fd:6d:e4:d7:a4:9d:b1:ad:5b:49:8d:53: a0:d1:b9:a1:b9:d3:a7:d8:99:ec:1e:89:ac:21:ba:99:27:1c: b3:54:30:10:ae:48:6b:4c:47:82:3b:c1:f8:08:af:e8:ba:a0: 8d:db:f5:00:31:7f:dd:2c:df:e9:ab:e4:68:b6:e4:da:1f:fd: 8a:a5:8b:dd:de:30:6a:9c:d5:8c:ab:93:8f:15:11:05:90:b7: 73:c4:57:88:6c:21:f2:73:ba:d9:fa:8b:8d:37:c0:17:d6:62: ca:e2:ca:d4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjEzMDZaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQyNDFGRkIzNDZCNUQ4 QjcxRUZCQjYyMjFDQzk5ODVGODk5RkQxMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQHYeN6shx4nHQ/rag+S+eZipIYT5JN69mTCaF2szzh4MqtjdC a4sx9OS1GnSpPzLMWEM4kJPWAoqouVhlBbmFXMLCrcFo5bAa0iEbtZyYAAxG5K/g KRoy6NeFxQuhqNJfjgqRWmh7HGaaoLVJ9Myt8qzH1fG2XEAW3v1UAXKehTi43zLz XrQ8Rq80ypByFvD9YRkDm3hlNbGgZfD5u4TQfBtmaAUZpQJkmC3BXmECrrnUeKK/ XjklLQ0mSjW0yRL1U1Q0mTuL9osx/xLbfg+ChQposvb7dz+YeOZfrdQm8hfFgr8n +qcBWKXRAVu9aP9/vmqq0fXMgPm70X+NWzyHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU0kH/s0a12Lce+7YiHMmYX4mf0SQwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxLzBrSF9zMGExMkxjZS03WWlITW1ZWDRtZjBTUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ9HQAwDQYJKoZIhvcNAQELBQADggEBAHyDj0UvQzloQ0yhEJwin5ZVXwhj c+hl8cFxpyqKGA7x3m6rxTcEWbFoUJ25GU6TGLuT/e1VUWcC3qs+nFxU3O8hCGK6 2VLyWm8szWsuUATtG0VvYHKaZab7hR8imbf96pIELtogLOuTkcRQgqK+SbxWGKi+ vhruMUlgsu3du7+SdvLDssOeoxnA0RG9NKq6/72T7jeO3/1t5NeknbGtW0mNU6DR uaG506fYmeweiawhupknHLNUMBCuSGtMR4I7wfgIr+i6oI3b9QAxf90s3+mr5Gi2 5Nof/Yqli93eMGqc1Yyrk48VEQWQt3PEV4hsIfJzutn6i403wBfWYsriytQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:56 2025 by rpki-client