$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/2hQRzx000UFf3hUmWP-Xy7VIl40.roa File: 2hQRzx000UFf3hUmWP-Xy7VIl40.roa (raw, json) Hash identifier: f7XO03ZA2idp+PmaiCu4cPtVf2BD/Xj+Dp8l5FzrIbs= Subject key identifier: DA:14:11:CF:1D:34:D1:41:5F:DE:15:26:58:FF:97:CB:B5:48:97:8D Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 04D1 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/2hQRzx000UFf3hUmWP-Xy7VIl40.roa Signing time: Wed 18 Dec 2024 02:36:58 +0000 ROA not before: Wed 18 Dec 2024 02:36:58 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 218.225.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1233 (0x4d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:36:58 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=DA1411CF1D34D1415FDE152658FF97CBB548978D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3d:32:cd:a8:d9:18:71:d3:a9:d6:64:58:c8: 75:84:15:85:30:bd:fb:93:08:2f:87:ea:7d:b4:da: 37:9b:97:3f:3c:f4:90:61:90:b9:1d:71:4d:23:36: fd:f2:9f:b5:b1:69:c3:0f:83:dd:7e:50:8e:48:c5: c6:78:1b:b3:c4:bd:92:6b:9e:d4:2c:fd:70:d1:e5: 54:d3:ca:86:f9:50:e7:67:34:2e:c4:34:66:6d:20: 8d:f5:1c:81:9b:7f:94:c5:db:a8:d5:3a:e2:20:aa: e4:ea:9b:a4:95:e0:43:01:f0:57:56:ed:b8:31:2a: f6:53:e9:56:97:3b:01:c5:5c:c6:7b:4d:52:34:fe: 80:33:8b:b3:13:54:8b:83:0b:9c:36:78:c0:bb:da: 05:30:a0:a7:3d:b4:aa:1d:fc:d4:27:f7:48:79:95: d1:0f:43:cf:a8:ac:9d:b3:60:11:50:d2:38:d2:b5: b7:eb:0c:ad:cc:bc:34:b2:1b:9e:8c:c0:fa:73:79: a8:fd:50:a2:63:af:d5:c3:19:94:02:e1:b5:df:3c: a5:fe:ad:c0:9d:01:3a:a2:59:48:1b:07:e9:75:f9: 36:9c:da:64:36:3c:20:4f:48:66:48:96:bb:35:85: ed:8d:de:0a:a1:80:88:cd:be:57:cf:26:47:f2:66: be:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:14:11:CF:1D:34:D1:41:5F:DE:15:26:58:FF:97:CB:B5:48:97:8D X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/2hQRzx000UFf3hUmWP-Xy7VIl40.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.225.81.0/24 Signature Algorithm: sha256WithRSAEncryption 08:31:ef:78:66:e8:f3:f1:ed:53:95:f6:f5:94:ca:c1:8a:cc: 5d:38:c3:c2:a4:4a:b5:9c:9c:b0:c5:a0:59:8a:29:1e:37:cd: de:47:b7:d9:6d:d6:b6:95:fb:c5:d4:d9:23:e8:c3:52:52:62: 5e:c4:02:89:64:58:4d:3a:5e:98:ed:c8:69:70:7f:5c:4a:61: bf:f7:54:3d:94:9b:67:1a:48:14:fe:d6:98:ef:5e:d9:67:ec: b6:96:b5:99:83:ef:65:dd:a6:9b:59:c4:ae:02:cd:8d:0d:2c: d2:4e:9b:c2:f0:27:79:29:9f:c2:05:a9:26:44:dd:17:55:41: 55:3a:c6:09:fe:8a:09:ef:23:93:65:af:7b:2f:e6:1a:d3:c0: d9:65:1d:37:a8:f3:e8:b6:e6:39:89:ce:93:11:d1:4e:2e:39: 64:a4:0c:51:08:d7:5d:6d:f6:29:cd:f3:02:64:55:73:d2:a8: 8a:a2:71:d8:c6:71:27:cc:b4:ed:0f:a3:23:ee:5b:92:05:57: 15:c4:3d:93:d0:fd:67:0a:1b:79:2b:a0:ac:3f:c5:b2:4f:a6: bf:6b:81:77:af:32:8f:43:cd:2b:9d:c8:39:fd:7b:d1:c7:93: e7:66:4d:2f:ca:42:51:5b:1e:18:58:79:b2:50:c4:84:23:04: db:31:6b:4c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjM2NThaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERBMTQxMUNGMUQzNEQx NDE1RkRFMTUyNjU4RkY5N0NCQjU0ODk3OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbPTLNqNkYcdOp1mRYyHWEFYUwvfuTCC+H6n202jeblz889JBh kLkdcU0jNv3yn7WxacMPg91+UI5IxcZ4G7PEvZJrntQs/XDR5VTTyob5UOdnNC7E NGZtII31HIGbf5TF26jVOuIgquTqm6SV4EMB8FdW7bgxKvZT6VaXOwHFXMZ7TVI0 /oAzi7MTVIuDC5w2eMC72gUwoKc9tKod/NQn90h5ldEPQ8+orJ2zYBFQ0jjStbfr DK3MvDSyG56MwPpzeaj9UKJjr9XDGZQC4bXfPKX+rcCdATqiWUgbB+l1+Tac2mQ2 PCBPSGZIlrs1he2N3gqhgIjNvlfPJkfyZr7NAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2hQRzx000UFf3hUmWP+Xy7VIl40wHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxLzJoUVJ6eDAwMFVGZjNoVW1XUC1YeTdWSWw0MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADa4VEwDQYJKoZIhvcNAQELBQADggEBAAgx73hm6PPx7VOV9vWUysGKzF04 w8KkSrWcnLDFoFmKKR43zd5Ht9lt1raV+8XU2SPow1JSYl7EAolkWE06XpjtyGlw f1xKYb/3VD2Um2caSBT+1pjvXtln7LaWtZmD72XdpptZxK4CzY0NLNJOm8LwJ3kp n8IFqSZE3RdVQVU6xgn+ignvI5Nlr3sv5hrTwNllHTeo8+i25jmJzpMR0U4uOWSk DFEI111t9inN8wJkVXPSqIqicdjGcSfMtO0PoyPuW5IFVxXEPZPQ/WcKG3kroKw/ xbJPpr9rgXevMo9DzSudyDn9e9HHk+dmTS/KQlFbHhhYebJQxIQjBNsxa0w= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:58 2025 by rpki-client