$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/7nXDAX5aw3olqSTOO7mL3ydXHEQ.roa File: 7nXDAX5aw3olqSTOO7mL3ydXHEQ.roa (raw, json) Hash identifier: WnPa05//V577hREjrf3IhHpeglcvbaiIwPyO1EU3IMk= Subject key identifier: EE:75:C3:01:7E:5A:C3:7A:25:A9:24:CE:3B:B9:8B:DF:27:57:1C:44 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 03DB Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/7nXDAX5aw3olqSTOO7mL3ydXHEQ.roa Signing time: Wed 18 Dec 2024 02:16:29 +0000 ROA not before: Wed 18 Dec 2024 02:16:29 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 106.178.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:16:29 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=EE75C3017E5AC37A25A924CE3BB98BDF27571C44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:94:cf:70:d3:9d:10:b4:f9:f6:e9:d7:cb:40: 78:32:1a:c2:21:ba:c6:96:51:2e:a1:5c:89:d9:63: 69:2e:94:9c:06:0d:8e:3a:fc:47:85:cf:6a:66:71: cc:af:e5:de:4c:a0:6f:c0:e0:3e:59:63:da:ab:3b: 45:0b:b7:08:64:c1:17:fe:14:45:f9:53:06:43:00: f0:6d:6c:2d:b4:2c:18:99:6a:cf:10:9f:ed:4d:d5: 84:62:70:c1:08:a1:e1:20:95:5c:0a:d2:e0:01:11: 2b:db:36:9b:44:17:6b:06:85:56:40:a7:19:18:a8: 96:05:cc:7c:61:79:44:9d:77:2f:0e:e2:f0:05:9d: 2c:a5:82:6a:b7:e9:ca:22:c6:b5:06:a5:e4:52:57: e0:55:b3:4b:46:9e:a2:b3:d0:24:71:5c:18:92:bd: 1e:51:ab:5d:4b:26:f6:43:64:94:d4:18:37:f6:e1: 15:6e:a2:ab:b4:c6:d5:6c:c5:3a:32:0b:10:5f:ac: 76:6d:92:ab:8c:54:f2:de:a2:cd:17:c5:73:b0:51: 74:7b:5a:16:bf:d8:c7:cd:0f:d3:ca:2a:22:b6:83: 15:6f:c9:c8:7f:8e:bc:cf:df:71:53:9e:30:35:93: 38:4e:b2:38:ad:05:3a:b6:c6:5c:7c:17:9b:44:da: c0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:75:C3:01:7E:5A:C3:7A:25:A9:24:CE:3B:B9:8B:DF:27:57:1C:44 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/7nXDAX5aw3olqSTOO7mL3ydXHEQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 106.178.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8f:8a:c8:da:01:09:18:68:4f:5d:09:b9:c5:79:b1:12:bf:af: 86:e5:44:ce:a6:9a:e9:4d:09:e0:8f:22:04:c6:53:d5:81:1f: 19:ca:41:ad:da:9a:ab:66:a2:5d:15:85:81:c6:90:1d:a6:f8: ec:65:19:ab:3d:5c:1e:83:d5:42:0a:48:34:b6:f5:ea:c8:ef: de:4f:cf:fb:a8:a7:e5:16:ed:c2:30:2d:42:bb:cd:de:e6:2a: cc:c0:d0:22:07:02:8f:b5:3b:33:93:c1:f8:9b:09:aa:d1:15: 97:60:75:ea:57:21:04:e1:c6:38:69:50:6f:1a:a5:43:28:b2: f6:ac:8e:4d:88:9f:76:d3:c8:44:56:eb:3e:90:77:fe:22:cf: e4:a2:00:35:43:0b:3d:5e:5f:f1:12:f9:a5:fc:73:58:76:2b: 1e:8c:cf:76:d7:b8:46:99:1f:a3:13:a1:3f:89:f2:69:a6:b7: 03:3b:b0:fe:15:47:ef:08:72:c3:24:24:c9:b5:4a:7e:77:89: 1c:a2:b8:ae:cd:42:04:78:d4:71:f2:7a:39:e8:a5:38:05:3c: 61:c9:f1:c4:96:1d:df:b4:8e:94:2d:b1:fb:96:3d:98:8f:ee: 81:1a:9d:6f:67:3a:83:b5:aa:1a:02:a4:41:4f:81:66:cc:4b: 1f:58:00:1f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA9swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjE2MjlaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEVFNzVDMzAxN0U1QUMz N0EyNUE5MjRDRTNCQjk4QkRGMjc1NzFDNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwlM9w050QtPn26dfLQHgyGsIhusaWUS6hXInZY2kulJwGDY46 /EeFz2pmccyv5d5MoG/A4D5ZY9qrO0ULtwhkwRf+FEX5UwZDAPBtbC20LBiZas8Q n+1N1YRicMEIoeEglVwK0uABESvbNptEF2sGhVZApxkYqJYFzHxheUSddy8O4vAF nSylgmq36coixrUGpeRSV+BVs0tGnqKz0CRxXBiSvR5Rq11LJvZDZJTUGDf24RVu oqu0xtVsxToyCxBfrHZtkquMVPLeos0XxXOwUXR7Wha/2MfND9PKKiK2gxVvych/ jrzP33FTnjA1kzhOsjitBTq2xlx8F5tE2sB3AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQU7nXDAX5aw3olqSTOO7mL3ydXHEQwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxLzduWERBWDVhdzNvbHFTVE9PN21MM3lkWEhFUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBqsjANBgkqhkiG9w0BAQsFAAOCAQEAj4rI2gEJGGhPXQm5xXmxEr+vhuVE zqaa6U0J4I8iBMZT1YEfGcpBrdqaq2aiXRWFgcaQHab47GUZqz1cHoPVQgpINLb1 6sjv3k/P+6in5RbtwjAtQrvN3uYqzMDQIgcCj7U7M5PB+JsJqtEVl2B16lchBOHG OGlQbxqlQyiy9qyOTYifdtPIRFbrPpB3/iLP5KIANUMLPV5f8RL5pfxzWHYrHozP dte4RpkfoxOhP4nyaaa3Azuw/hVH7whywyQkybVKfneJHKK4rs1CBHjUcfJ6Oeil OAU8YcnxxJYd37SOlC2x+5Y9mI/ugRqdb2c6g7WqGgKkQU+BZsxLH1gAHw== -----END CERTIFICATE-----Generated at Sun Apr 6 12:25:34 2025 by rpki-client