$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/3FR8MetczOnjWZF9dPFUTv8bZqY.roa File: 3FR8MetczOnjWZF9dPFUTv8bZqY.roa (raw, json) Hash identifier: U4suIA4pbxCNFoaCQsS1fsWgw2ocdmW436CcXPA6bZw= Subject key identifier: DC:54:7C:31:EB:5C:CC:E9:E3:59:91:7D:74:F1:54:4E:FF:1B:66:A6 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0556 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/3FR8MetczOnjWZF9dPFUTv8bZqY.roa Signing time: Wed 18 Dec 2024 02:44:28 +0000 ROA not before: Wed 18 Dec 2024 02:44:28 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 211.1.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:44:28 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=DC547C31EB5CCCE9E359917D74F1544EFF1B66A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:66:57:b4:87:2c:ef:91:5e:ef:d0:03:f0:61: 52:ef:64:6f:d9:f6:e7:82:81:57:d3:90:8c:82:01: ab:d5:ab:34:92:54:fd:ad:4e:1f:31:91:e2:21:61: df:d4:95:65:b9:81:ff:5d:be:a7:80:4d:0c:7c:94: c6:e6:e0:1d:52:67:79:c6:3b:e2:db:b7:82:24:c0: a7:00:99:f2:0d:1d:c1:11:30:ec:6e:52:d0:3d:8c: a2:22:6e:08:ef:38:d7:27:57:94:05:75:0b:59:30: c4:c4:0f:bb:e0:17:a5:28:bf:42:17:5d:7a:03:e2: 91:5a:59:c7:0c:c7:06:6e:c1:4d:16:11:86:10:52: d9:1a:dc:c9:4f:e1:00:e3:8a:36:2e:74:34:2c:f1: 39:05:ed:0d:e4:03:ae:25:4e:94:d6:ea:d0:1a:60: 69:ff:b7:00:51:64:4e:4e:83:b3:c4:80:41:ed:6a: 89:ea:58:15:04:bd:b9:ea:e8:8d:e6:56:7d:77:b2: d1:ca:9f:d5:90:6d:35:ef:8d:f8:4b:2b:eb:9f:36: 73:ad:ea:76:a6:6c:d3:a1:41:04:85:27:55:5f:e5: 73:1f:26:0d:68:2d:13:a4:f5:b9:40:de:60:bb:a4: b5:f1:14:2f:e2:45:df:d9:a9:f5:c8:62:fe:94:13: 13:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:54:7C:31:EB:5C:CC:E9:E3:59:91:7D:74:F1:54:4E:FF:1B:66:A6 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/3FR8MetczOnjWZF9dPFUTv8bZqY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.1.69.0/24 Signature Algorithm: sha256WithRSAEncryption 68:13:60:d2:63:5f:04:bd:6c:37:e5:b4:9f:1a:a5:a9:6a:fd: 38:bf:0d:d6:05:cf:67:6e:9c:9b:7e:5b:1f:96:7e:89:79:6f: 14:6f:31:44:44:60:dd:28:49:24:8f:51:25:41:54:1b:6c:31: 5e:3e:f4:0c:fa:84:51:78:7d:a8:82:6c:02:2f:37:fe:1d:ef: ab:4c:10:4d:b4:7d:06:8b:e0:db:d0:17:bf:25:5b:2f:59:76: bd:fd:49:57:78:12:5f:3b:b9:5b:66:0c:f7:b0:61:a6:c5:b5: 5a:9b:bf:f4:cc:04:10:9e:39:aa:ac:1d:2a:dd:2c:e1:c1:b2: 35:d4:76:f9:64:25:0e:b6:6c:33:c7:3f:cf:c2:47:b9:b8:8f: 22:d8:d7:9b:ee:82:8c:f3:61:56:78:c5:15:82:c4:19:5d:17: 7b:17:01:7a:34:8a:a3:45:7b:ea:5d:51:5c:50:64:6f:7f:24: a4:07:68:8c:4a:a6:8d:42:e4:95:b4:62:4f:c3:35:fe:6b:81: 07:72:8c:38:12:b0:af:4c:10:47:9b:3f:f1:af:5b:dc:28:60: 48:da:e9:7a:d0:c0:dc:50:e2:64:a5:53:f3:0d:b8:58:49:6d: 87:04:b9:ad:4c:20:0c:53:6f:38:be:ae:5a:26:ff:45:59:0f: 6a:c7:c6:5d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjQ0MjhaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERDNTQ3QzMxRUI1Q0ND RTlFMzU5OTE3RDc0RjE1NDRFRkYxQjY2QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGZle0hyzvkV7v0APwYVLvZG/Z9ueCgVfTkIyCAavVqzSSVP2t Th8xkeIhYd/UlWW5gf9dvqeATQx8lMbm4B1SZ3nGO+Lbt4IkwKcAmfINHcERMOxu UtA9jKIibgjvONcnV5QFdQtZMMTED7vgF6Uov0IXXXoD4pFaWccMxwZuwU0WEYYQ Utka3MlP4QDjijYudDQs8TkF7Q3kA64lTpTW6tAaYGn/twBRZE5Og7PEgEHtaonq WBUEvbnq6I3mVn13stHKn9WQbTXvjfhLK+ufNnOt6nambNOhQQSFJ1Vf5XMfJg1o LROk9blA3mC7pLXxFC/iRd/ZqfXIYv6UExM3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3FR8MetczOnjWZF9dPFUTv8bZqYwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxLzNGUjhNZXRjek9ualdaRjlkUEZVVHY4YlpxWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTAUUwDQYJKoZIhvcNAQELBQADggEBAGgTYNJjXwS9bDfltJ8apalq/Ti/ DdYFz2dunJt+Wx+Wfol5bxRvMUREYN0oSSSPUSVBVBtsMV4+9Az6hFF4faiCbAIv N/4d76tMEE20fQaL4NvQF78lWy9Zdr39SVd4El87uVtmDPewYabFtVqbv/TMBBCe OaqsHSrdLOHBsjXUdvlkJQ62bDPHP8/CR7m4jyLY15vugozzYVZ4xRWCxBldF3sX AXo0iqNFe+pdUVxQZG9/JKQHaIxKpo1C5JW0Yk/DNf5rgQdyjDgSsK9MEEebP/Gv W9woYEja6XrQwNxQ4mSlU/MNuFhJbYcEua1MIAxTbzi+rlom/0VZD2rHxl0= -----END CERTIFICATE-----Generated at Sat Apr 5 19:55:37 2025 by rpki-client