$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/Ax_XoUGtdG58bxTt8mDddFTW2eI.roa File: Ax_XoUGtdG58bxTt8mDddFTW2eI.roa (raw, json) Hash identifier: q5ZLRtOEKcw0YQsVnvnJIlctH/uNVOy2gw0LOZi5QZ8= Subject key identifier: 03:1F:D7:A1:41:AD:74:6E:7C:6F:14:ED:F2:60:DD:74:54:D6:D9:E2 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0323 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Ax_XoUGtdG58bxTt8mDddFTW2eI.roa Signing time: Sun 31 Mar 2024 01:40:35 +0000 ROA not before: Sun 31 Mar 2024 01:40:35 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 125.28.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 01:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:40:35 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=031FD7A141AD746E7C6F14EDF260DD7454D6D9E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f0:59:98:63:42:6c:77:79:4f:b0:36:c8:55: 3b:6b:80:d8:d1:7a:5d:f8:82:7e:d5:a2:71:9f:91: dc:86:33:d1:64:aa:d4:eb:fb:69:93:1f:b9:9a:bf: 8a:ce:f3:2e:5a:a9:2f:bb:b3:ea:14:e5:ef:03:67: a4:38:4e:0b:a9:88:8a:f8:82:47:ec:10:ec:50:32: 83:29:fc:2e:c7:2f:30:67:79:e4:79:5e:ec:33:6f: 97:b4:2f:84:3d:0a:51:b7:82:cf:aa:c2:f7:56:19: 4f:61:0e:41:7f:6c:9f:34:72:18:d9:df:54:33:2f: ed:c6:3f:cb:b9:52:84:2f:f9:f5:b8:93:8a:4d:1e: a8:9b:fe:e6:ce:5d:5d:ed:33:ba:12:ec:3d:98:d3: 9e:3b:c1:6f:4b:d7:62:a1:cb:dd:67:1f:ca:f2:aa: ee:e8:22:f1:60:67:ad:9b:cd:c2:7a:8c:d3:d0:f8: 1f:79:2c:20:e1:15:9a:8e:7c:35:a1:9b:50:f6:40: f4:8a:3c:50:b2:46:49:46:f2:35:91:cf:96:05:ef: e8:f3:d6:20:65:c9:e1:0a:5c:c4:72:84:90:be:2a: 49:86:31:ff:05:ca:de:75:dd:e8:e4:5f:22:42:ab: df:63:10:83:59:69:86:34:d4:9c:7d:16:ad:28:21: e4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:1F:D7:A1:41:AD:74:6E:7C:6F:14:ED:F2:60:DD:74:54:D6:D9:E2 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Ax_XoUGtdG58bxTt8mDddFTW2eI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.28.0.0/17 Signature Algorithm: sha256WithRSAEncryption 33:63:51:3e:55:8a:36:ed:58:a8:20:46:34:20:05:02:ee:14: f0:c4:e4:98:68:a7:b2:69:a5:04:a7:ba:b2:8a:b0:83:0e:e1: 75:70:fb:c7:ae:44:53:63:c3:2b:4e:21:da:1b:9c:95:6e:5f: f5:b2:fe:48:3b:ec:8d:d3:e2:b0:45:6b:de:6d:f2:4c:32:78: f7:b0:e7:cb:bf:bb:3b:5d:93:54:19:a6:ae:5a:20:ef:ad:bf: c4:b6:7d:cc:86:6c:15:dd:8c:90:6d:04:2c:f5:3d:9a:54:d0: b8:70:b7:13:01:cc:ce:4f:b6:5a:0d:37:95:f5:61:ce:20:ad: df:dc:91:05:90:50:40:3c:28:8c:ae:b2:e3:20:22:14:29:e1: 8d:bb:73:23:21:17:9a:62:5c:7c:e4:f8:f5:e5:1c:32:e6:94: d9:f5:99:f4:90:f2:3f:7e:47:e7:57:9f:b9:87:ef:db:77:d9: db:12:94:b9:d5:fb:71:22:56:b5:b8:1b:87:59:9a:5d:2e:e5: 49:e8:ae:d2:ee:6f:ef:ab:81:87:eb:b3:7e:2d:92:e3:55:ec: 01:05:f3:ab:44:02:1a:e6:53:b1:36:1d:ca:99:c3:c8:6e:cc: 3d:ee:53:d0:db:1e:e3:21:b2:e0:74:e7:52:de:be:11:5c:bd: 1f:a0:d0:7a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTQwMzVaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAzMUZEN0ExNDFBRDc0 NkU3QzZGMTRFREYyNjBERDc0NTRENkQ5RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC28FmYY0Jsd3lPsDbIVTtrgNjRel34gn7VonGfkdyGM9FkqtTr +2mTH7mav4rO8y5aqS+7s+oU5e8DZ6Q4TgupiIr4gkfsEOxQMoMp/C7HLzBneeR5 Xuwzb5e0L4Q9ClG3gs+qwvdWGU9hDkF/bJ80chjZ31QzL+3GP8u5UoQv+fW4k4pN Hqib/ubOXV3tM7oS7D2Y0547wW9L12Khy91nH8ryqu7oIvFgZ62bzcJ6jNPQ+B95 LCDhFZqOfDWhm1D2QPSKPFCyRklG8jWRz5YF7+jz1iBlyeEKXMRyhJC+KkmGMf8F yt513ejkXyJCq99jEINZaYY01Jx9Fq0oIeSpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAx/XoUGtdG58bxTt8mDddFTW2eIwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0F4X1hvVUd0ZEc1OGJ4VHQ4bURkZEZUVzJlSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAd9HAAwDQYJKoZIhvcNAQELBQADggEBADNjUT5VijbtWKggRjQgBQLuFPDE 5Jhop7JppQSnurKKsIMO4XVw+8euRFNjwytOIdobnJVuX/Wy/kg77I3T4rBFa95t 8kwyePew58u/uztdk1QZpq5aIO+tv8S2fcyGbBXdjJBtBCz1PZpU0LhwtxMBzM5P tloNN5X1Yc4grd/ckQWQUEA8KIyusuMgIhQp4Y27cyMhF5piXHzk+PXlHDLmlNn1 mfSQ8j9+R+dXn7mH79t32dsSlLnV+3EiVrW4G4dZml0u5UnortLub++rgYfrs34t kuNV7AEF86tEAhrmU7E2HcqZw8huzD3uU9DbHuMhsuB051LevhFcvR+g0Ho= -----END CERTIFICATE-----Generated at Thu Jun 20 08:53:08 2024 by rpki-client on console-fra.rpki-client.org