$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/1akS2xk9giA_kXX2Tb1V8n5sINE.roa File: 1akS2xk9giA_kXX2Tb1V8n5sINE.roa (raw, json) Hash identifier: Y6vdTyt4c+JThEhjoBVMwgcUGtNo3YOujHaxDN4Bg5Y= Subject key identifier: D5:A9:12:DB:19:3D:82:20:3F:91:75:F6:4D:BD:55:F2:7E:6C:20:D1 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 04CA Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/1akS2xk9giA_kXX2Tb1V8n5sINE.roa Signing time: Wed 18 Dec 2024 02:36:56 +0000 ROA not before: Wed 18 Dec 2024 02:36:56 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 210.253.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1226 (0x4ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:36:56 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=D5A912DB193D82203F9175F64DBD55F27E6C20D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e7:c8:25:39:f0:6f:82:f5:ca:20:75:b0:e6: ad:83:ab:5e:78:bf:b7:bf:12:21:fb:46:d0:4a:a0: 11:bd:3c:dc:0c:a5:5a:b4:e5:c3:d0:e5:b4:52:89: 83:bd:52:ca:9c:ed:39:6b:79:07:36:c3:bd:fc:68: e7:6d:0d:fb:49:7d:0c:ac:c1:95:92:c2:05:57:63: 6a:1e:7b:d3:95:a4:57:72:ba:d9:62:df:92:ef:3b: 84:6e:7e:06:52:3a:3d:ff:7c:64:ad:0a:0b:1f:ae: ae:0e:63:8f:22:74:fd:3a:61:e8:27:8a:89:cb:e3: c8:f7:eb:2a:97:c6:23:c9:bd:99:a7:28:88:84:4e: e9:05:1b:be:24:09:3f:9c:82:a5:30:79:b0:a1:54: 58:9e:19:11:38:fe:1d:f7:d9:13:b0:1c:91:29:8d: 7d:23:97:57:e8:b5:db:43:17:46:da:cf:d9:22:46: 22:ca:2d:85:f6:57:4b:c4:57:90:23:47:6c:d7:8f: 7d:3d:02:d7:b9:cb:d6:cc:12:64:8d:be:98:05:c9: 64:11:32:e2:91:bf:20:46:79:d1:81:12:67:b6:7b: 6b:08:bb:a6:9f:d7:4c:e8:57:70:cd:d8:e0:be:62: 7a:30:c9:86:b2:35:74:6f:5b:22:37:8f:8d:88:54: 2d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A9:12:DB:19:3D:82:20:3F:91:75:F6:4D:BD:55:F2:7E:6C:20:D1 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/1akS2xk9giA_kXX2Tb1V8n5sINE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.253.129.0/24 Signature Algorithm: sha256WithRSAEncryption 91:3e:b4:13:f9:ee:04:c9:77:fc:fc:b3:3d:86:09:c1:01:47: c3:17:72:8b:3e:8b:7e:40:cf:2f:8a:b5:7c:d8:92:84:af:95: 38:cb:bb:48:ed:a3:b2:19:5b:36:47:e6:8b:94:91:92:25:d1: f9:68:be:a2:80:9d:5d:fe:85:93:46:60:17:b9:06:10:df:40: 4a:d1:92:b7:e3:10:6a:f8:e2:86:79:ca:11:45:a1:b5:30:47: 75:51:2c:78:00:a1:10:e4:ae:8d:bb:db:65:46:05:bc:ab:4d: 21:f8:a8:b9:31:e9:02:78:6c:49:2d:ec:01:d2:d5:f0:a1:d4: 50:be:6e:24:ea:27:30:d0:07:0f:53:1c:2c:1d:6e:fe:81:4a: ba:ef:53:c0:0d:be:08:0f:49:5c:0c:02:6d:87:62:be:20:47: cf:b9:9d:71:b3:d4:49:ea:63:2e:07:60:e8:e6:e5:c8:1b:eb: 1f:12:b1:8e:ff:43:e9:b0:c8:f0:61:53:7b:5a:bf:52:09:fb: 02:57:c9:df:c9:31:ba:23:17:4c:d7:94:00:85:12:8e:8d:02: 9b:91:fb:f0:be:c0:48:ad:3e:49:4b:bd:a0:c9:c5:da:14:e1: 6c:3c:c5:5e:26:91:ed:62:81:a4:d8:e4:57:e1:9d:b1:60:e5: 3d:5a:22:08 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjM2NTZaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQ1QTkxMkRCMTkzRDgy MjAzRjkxNzVGNjREQkQ1NUYyN0U2QzIwRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/58glOfBvgvXKIHWw5q2Dq154v7e/EiH7RtBKoBG9PNwMpVq0 5cPQ5bRSiYO9Usqc7TlreQc2w738aOdtDftJfQyswZWSwgVXY2oee9OVpFdyutli 35LvO4RufgZSOj3/fGStCgsfrq4OY48idP06YegnionL48j36yqXxiPJvZmnKIiE TukFG74kCT+cgqUwebChVFieGRE4/h332ROwHJEpjX0jl1fotdtDF0baz9kiRiLK LYX2V0vEV5AjR2zXj309Ate5y9bMEmSNvpgFyWQRMuKRvyBGedGBEme2e2sIu6af 10zoV3DN2OC+YnowyYayNXRvWyI3j42IVC0BAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1akS2xk9giA/kXX2Tb1V8n5sINEwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxLzFha1MyeGs5Z2lBX2tYWDJUYjFWOG41c0lORS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADS/YEwDQYJKoZIhvcNAQELBQADggEBAJE+tBP57gTJd/z8sz2GCcEBR8MX cos+i35Azy+KtXzYkoSvlTjLu0jto7IZWzZH5ouUkZIl0flovqKAnV3+hZNGYBe5 BhDfQErRkrfjEGr44oZ5yhFFobUwR3VRLHgAoRDkro2722VGBbyrTSH4qLkx6QJ4 bEkt7AHS1fCh1FC+biTqJzDQBw9THCwdbv6BSrrvU8ANvggPSVwMAm2HYr4gR8+5 nXGz1EnqYy4HYOjm5cgb6x8SsY7/Q+mwyPBhU3tav1IJ+wJXyd/JMbojF0zXlACF Eo6NApuR+/C+wEitPklLvaDJxdoU4Ww8xV4mke1igaTY5FfhnbFg5T1aIgg= -----END CERTIFICATE-----Generated at Sat Apr 5 17:48:10 2025 by rpki-client