$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/DpFCColBxvlKcQWFalHgBUTeHAE.roa File: DpFCColBxvlKcQWFalHgBUTeHAE.roa (raw, json) Hash identifier: 0ZBd3Cfr88245THjbr9rQCtmGKWckIxPpboTFHFSlI8= Subject key identifier: 0E:91:42:0A:89:41:C6:F9:4A:71:05:85:6A:51:E0:05:44:DE:1C:01 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0575 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/DpFCColBxvlKcQWFalHgBUTeHAE.roa Signing time: Wed 18 Dec 2024 03:00:59 +0000 ROA not before: Wed 18 Dec 2024 03:00:59 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 106.187.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 03:00:59 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=0E91420A8941C6F94A7105856A51E00544DE1C01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f8:a2:04:1b:25:14:c4:23:61:2b:a4:8f:81: 34:32:e3:8e:8f:26:51:7b:a8:1d:ef:f0:92:a4:45: 9f:e0:81:e7:b6:36:0c:a5:2f:ff:26:59:ab:2a:ef: 67:79:08:e8:8a:11:de:68:57:17:1b:e4:83:72:c7: 9e:53:56:87:2a:51:10:e9:53:ea:09:e7:f4:3f:57: 9b:cd:79:0c:5c:ac:0b:9f:36:47:66:9a:bf:d5:a3: 5c:05:a2:3f:34:aa:24:e4:44:69:08:1e:bb:22:bc: b3:d7:cd:8a:eb:5c:b7:ae:1d:25:89:75:f6:9f:40: d1:73:eb:c5:0e:71:18:17:65:ac:37:bb:a6:94:4a: 1a:e3:d3:ab:1d:17:07:58:68:a9:0f:e7:14:77:b0: c8:ee:cc:ff:c1:6d:cf:ea:9b:2c:bb:67:67:53:56: dc:74:40:70:6c:c1:09:c3:53:45:2d:17:c9:89:08: 13:38:ca:c5:4f:17:42:55:a7:2d:6e:0f:21:c7:7f: 93:a9:83:a4:1d:ad:29:05:e9:e8:86:bc:6d:fc:a2: e1:a6:b2:da:55:80:f5:77:ac:ea:ed:bb:d8:fa:88: 51:c7:94:13:87:d2:d0:d6:2f:a2:4e:41:2e:7e:a6: c1:0c:6b:c5:59:9a:82:f6:74:29:03:98:4e:e5:c4: df:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:91:42:0A:89:41:C6:F9:4A:71:05:85:6A:51:E0:05:44:DE:1C:01 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/DpFCColBxvlKcQWFalHgBUTeHAE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 106.187.64.0/18 Signature Algorithm: sha256WithRSAEncryption 51:46:67:f6:40:30:c1:00:68:62:7d:8b:2b:ea:03:c3:0c:ca: c6:ce:26:63:0f:d9:79:74:35:84:61:3a:f8:cb:04:22:b1:80: 86:97:1f:43:64:de:cf:9d:4d:ee:fa:13:67:52:20:d8:b1:c6: ec:6e:6e:8f:79:12:4c:bd:69:bc:d2:f0:3f:76:9f:56:3a:94: f8:53:c8:43:c9:27:5a:74:78:51:f6:e3:a1:75:a6:63:1c:9b: c0:f4:d9:7f:0a:2e:81:a5:3d:8a:bb:82:33:e4:d4:0e:98:36: cb:5f:93:27:d6:7d:20:7e:e1:04:af:d1:d4:44:d2:87:92:34: f7:5d:92:41:d2:ca:e9:23:a3:2a:48:d4:c3:13:31:eb:2a:ba: 6a:65:31:72:d9:00:9c:a1:79:36:b1:e8:5d:a7:f2:45:ba:0e: 20:2e:bf:28:33:4f:47:9d:9c:5d:93:67:79:de:47:8e:9d:35: 87:f3:52:bc:e8:4d:22:c8:4d:e9:52:55:02:b3:b1:c7:42:de: d0:a2:99:f0:42:4a:3b:55:e2:32:fb:17:c6:a3:06:72:b1:c3: 9a:4a:d9:1d:b1:97:9d:dc:6d:98:14:54:7c:0d:0e:20:19:34: 6e:79:d4:75:24:70:a1:2e:96:96:11:48:bd:f6:21:33:96:7f: 47:72:e7:17 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MzAwNTlaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBFOTE0MjBBODk0MUM2 Rjk0QTcxMDU4NTZBNTFFMDA1NDRERTFDMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK+KIEGyUUxCNhK6SPgTQy446PJlF7qB3v8JKkRZ/ggee2Ngyl L/8mWasq72d5COiKEd5oVxcb5INyx55TVocqURDpU+oJ5/Q/V5vNeQxcrAufNkdm mr/Vo1wFoj80qiTkRGkIHrsivLPXzYrrXLeuHSWJdfafQNFz68UOcRgXZaw3u6aU Shrj06sdFwdYaKkP5xR3sMjuzP/Bbc/qmyy7Z2dTVtx0QHBswQnDU0UtF8mJCBM4 ysVPF0JVpy1uDyHHf5Opg6QdrSkF6eiGvG38ouGmstpVgPV3rOrtu9j6iFHHlBOH 0tDWL6JOQS5+psEMa8VZmoL2dCkDmE7lxN9vAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDpFCColBxvlKcQWFalHgBUTeHAEwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0RwRkNDb2xCeHZsS2NRV0ZhbEhnQlVUZUhBRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZqu0AwDQYJKoZIhvcNAQELBQADggEBAFFGZ/ZAMMEAaGJ9iyvqA8MMysbO JmMP2Xl0NYRhOvjLBCKxgIaXH0Nk3s+dTe76E2dSINixxuxubo95Eky9abzS8D92 n1Y6lPhTyEPJJ1p0eFH246F1pmMcm8D02X8KLoGlPYq7gjPk1A6YNstfkyfWfSB+ 4QSv0dRE0oeSNPddkkHSyukjoypI1MMTMesqumplMXLZAJyheTax6F2n8kW6DiAu vygzT0ednF2TZ3neR46dNYfzUrzoTSLITelSVQKzscdC3tCimfBCSjtV4jL7F8aj BnKxw5pK2R2xl53cbZgUVHwNDiAZNG551HUkcKEulpYRSL32ITOWf0dy5xc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:19:34 2025 by rpki-client