$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/E8QrQvcoFT3h9zm2Y1_UVCyir7Y.roa File: E8QrQvcoFT3h9zm2Y1_UVCyir7Y.roa (raw, json) Hash identifier: 0ntCXP5ZiJh3rZwrOHtW/8Rj2pDv3ir7t2SKiEpe/KA= Subject key identifier: 13:C4:2B:42:F7:28:15:3D:E1:F7:39:B6:63:5F:D4:54:2C:A2:AF:B6 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0440 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/E8QrQvcoFT3h9zm2Y1_UVCyir7Y.roa Signing time: Wed 18 Dec 2024 02:22:22 +0000 ROA not before: Wed 18 Dec 2024 02:22:22 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 124.215.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:22:22 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=13C42B42F728153DE1F739B6635FD4542CA2AFB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3b:ae:f9:d9:47:39:14:fc:82:89:10:38:5c: 59:54:18:12:9e:20:8b:dc:78:99:7c:b5:64:2a:2a: b7:d6:fb:9d:bc:46:53:b4:40:52:47:65:af:bc:57: f5:05:a9:10:6b:9b:ae:65:e5:68:04:fc:d8:3e:c6: 12:be:12:ef:5d:cd:a4:ed:d0:3e:19:d1:79:c4:f2: da:5c:ba:35:b7:f8:1b:4f:ff:8d:ed:e9:4b:1e:be: 40:5f:19:ed:59:77:de:75:74:9b:1f:2a:27:5f:fa: 2f:bb:1d:7d:6b:16:97:c6:c9:66:38:a3:cd:ce:21: 57:f2:9f:df:f7:be:ea:1b:bd:b1:1a:99:36:00:10: 47:53:e8:f1:b4:33:ed:ed:96:26:c6:94:df:ce:44: 12:9f:a2:0f:85:fb:75:7f:61:6f:fa:98:44:b8:f8: 61:fd:9e:46:ab:74:b0:ba:7d:9b:a5:6b:0e:1b:aa: 08:fa:84:93:94:5d:a9:e1:fb:90:fd:3f:27:e6:c7: 15:2d:71:11:6a:89:a8:d6:d1:8b:8f:67:63:33:94: 37:80:b4:79:0b:e6:5a:91:c3:5f:cd:63:ba:a4:f3: 2a:bd:19:f1:85:64:ce:6d:91:a2:a3:b1:cb:3f:08: 2c:c4:9c:21:77:66:58:ad:62:89:4c:2e:bb:a9:dc: 70:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:C4:2B:42:F7:28:15:3D:E1:F7:39:B6:63:5F:D4:54:2C:A2:AF:B6 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/E8QrQvcoFT3h9zm2Y1_UVCyir7Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.215.0.0/17 Signature Algorithm: sha256WithRSAEncryption 4f:ad:8e:0c:73:1d:7a:16:4f:93:57:69:9a:12:ed:cc:0b:40: fb:11:be:71:d0:28:fc:b0:01:06:ed:1e:16:80:b5:65:7f:48: b2:d1:a6:b6:e6:3e:24:1c:e9:cc:01:4e:8e:bc:10:da:99:ec: 2c:04:a6:18:d6:6b:b2:2d:0a:bb:e8:9a:46:e5:8d:92:90:19: 0d:6e:c4:b5:14:2e:06:96:78:3a:ac:d4:bb:9c:19:23:28:29: 48:c0:11:ef:11:c6:dd:64:1a:94:4b:4c:23:2c:67:48:43:aa: de:89:f3:5f:7a:96:97:f2:d5:c4:c9:78:1c:cb:6f:4c:b4:ae: b9:dd:5e:95:40:7f:44:af:99:ed:eb:8a:69:a9:b8:ed:db:0c: 5a:12:d7:a8:01:65:b7:ff:e4:10:f9:53:6a:2e:3f:c0:04:52: b4:3f:5c:3e:73:07:03:b5:93:a6:88:e3:50:28:bb:b6:5f:1c: 04:36:24:51:a4:9a:bd:61:56:7e:48:00:57:fb:0a:5f:b6:e6: b7:07:13:55:66:54:22:cf:fb:f8:2d:05:e6:d4:82:fe:93:a7: 89:94:5a:46:7f:3d:39:fa:35:92:2b:ac:23:1e:7a:0f:35:0e: ed:b4:7c:65:22:2d:25:1d:50:45:8f:11:b8:7b:61:57:8a:08: d9:8b:cc:86 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjIyMjJaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDEzQzQyQjQyRjcyODE1 M0RFMUY3MzlCNjYzNUZENDU0MkNBMkFGQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEO6752Uc5FPyCiRA4XFlUGBKeIIvceJl8tWQqKrfW+528RlO0 QFJHZa+8V/UFqRBrm65l5WgE/Ng+xhK+Eu9dzaTt0D4Z0XnE8tpcujW3+BtP/43t 6UsevkBfGe1Zd951dJsfKidf+i+7HX1rFpfGyWY4o83OIVfyn9/3vuobvbEamTYA EEdT6PG0M+3tlibGlN/ORBKfog+F+3V/YW/6mES4+GH9nkardLC6fZulaw4bqgj6 hJOUXanh+5D9PyfmxxUtcRFqiajW0YuPZ2MzlDeAtHkL5lqRw1/NY7qk8yq9GfGF ZM5tkaKjscs/CCzEnCF3ZlitYolMLrup3HDlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUE8QrQvcoFT3h9zm2Y1/UVCyir7YwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0U4UXJRdmNvRlQzaDl6bTJZMV9VVkN5aXI3WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAd81wAwDQYJKoZIhvcNAQELBQADggEBAE+tjgxzHXoWT5NXaZoS7cwLQPsR vnHQKPywAQbtHhaAtWV/SLLRprbmPiQc6cwBTo68ENqZ7CwEphjWa7ItCrvomkbl jZKQGQ1uxLUULgaWeDqs1LucGSMoKUjAEe8Rxt1kGpRLTCMsZ0hDqt6J8196lpfy 1cTJeBzLb0y0rrndXpVAf0Svme3rimmpuO3bDFoS16gBZbf/5BD5U2ouP8AEUrQ/ XD5zBwO1k6aI41Aou7ZfHAQ2JFGkmr1hVn5IAFf7Cl+25rcHE1VmVCLP+/gtBebU gv6Tp4mUWkZ/PTn6NZIrrCMeeg81Du20fGUiLSUdUEWPEbh7YVeKCNmLzIY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:48 2025 by rpki-client