$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/FCW1QJMngFvNnyajPPOAd0FDfjo.roa File: FCW1QJMngFvNnyajPPOAd0FDfjo.roa (raw, json) Hash identifier: RSoW9vsFrKu/LFpDMvot7VItGHB47AoV9IR1DJ5OLvU= Subject key identifier: 14:25:B5:40:93:27:80:5B:CD:9F:26:A3:3C:F3:80:77:41:43:7E:3A Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 04AD Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/FCW1QJMngFvNnyajPPOAd0FDfjo.roa Signing time: Wed 18 Dec 2024 02:29:01 +0000 ROA not before: Wed 18 Dec 2024 02:29:01 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 27.80.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1197 (0x4ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:29:01 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=1425B5409327805BCD9F26A33CF3807741437E3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:58:dd:97:b5:8f:8c:84:6c:da:14:3d:08:c8: 9d:ca:65:0a:33:f4:a5:c3:ad:7b:0d:b9:d3:e1:bc: 70:f0:b1:d8:b6:e4:7a:95:45:46:bb:a3:f1:ca:ec: 48:35:d1:1a:be:d5:ad:94:34:47:6e:bd:81:9b:aa: 70:48:b9:77:2d:a1:d3:28:ec:c2:41:a9:75:da:0d: dc:1f:eb:6d:b6:7d:2d:1d:f7:61:ef:a8:a0:99:83: 76:32:3b:8f:1a:98:f4:a9:96:ee:4e:6c:7e:78:a7: 1e:6a:b7:b8:61:2e:c9:d6:22:26:b2:14:9b:20:85: ca:9a:04:4a:27:8c:7f:b0:bf:f8:aa:b0:f9:69:e4: 51:2a:a6:82:28:7f:d4:0d:f9:ce:a3:7d:1f:d4:a1: 2e:45:e2:44:37:df:68:07:0e:56:97:5e:c8:ae:5e: b7:54:a5:de:f6:0a:3f:64:81:25:c8:9f:89:b5:81: 92:a8:88:6c:30:37:7b:aa:43:38:9e:7c:4b:a7:cf: 2a:d9:46:2d:6b:17:da:a7:7d:eb:4c:3f:d0:ac:4a: ef:10:ab:81:f7:8c:e1:d3:03:39:f0:fa:13:3c:90: e5:a1:7f:89:08:83:2f:e1:23:77:0f:a2:42:23:e2: 67:3b:71:53:55:65:39:1e:e7:49:b4:5e:c9:ec:c5: a1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:25:B5:40:93:27:80:5B:CD:9F:26:A3:3C:F3:80:77:41:43:7E:3A X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/FCW1QJMngFvNnyajPPOAd0FDfjo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:50:7b:ab:05:0f:5b:13:fa:53:c9:a5:66:4f:36:87:03:e7: 9c:ae:66:53:76:02:62:73:5e:7c:55:d4:6a:46:ce:c0:2d:c9: d8:0a:5a:16:0d:ea:14:89:07:9f:4e:c1:89:ae:9f:a1:d8:b5: e3:de:ea:fa:17:59:69:a0:59:04:fb:c7:4a:46:16:29:bc:d0: 6e:5c:48:0e:bd:df:6e:6d:b7:f1:28:1e:23:52:4d:49:d2:f4: ed:60:e7:38:b2:bb:23:88:4f:32:c9:2b:a0:9e:87:db:25:52: 0b:2b:55:6d:fd:28:19:9d:58:8c:f5:57:a2:31:e9:de:99:ad: 60:25:f4:08:0e:1b:10:9b:45:68:92:73:d4:48:7b:29:9a:fc: 53:8c:38:34:57:b2:73:4f:97:5a:84:23:d8:ee:dd:2a:c6:5b: 34:f2:ed:b8:22:61:e4:0f:3b:c6:30:35:14:ab:54:46:af:e1: e9:eb:3b:0b:d5:0d:b2:81:52:b2:87:dc:a2:90:4e:e6:8b:7a: 21:33:b9:8e:94:cd:69:09:a6:8c:df:68:a5:eb:af:d1:d6:83: 5e:f8:61:40:f5:e6:01:d8:ca:be:4d:69:6e:b6:51:c0:ab:8c: 3c:35:66:2d:bb:d2:28:e2:be:88:ee:59:ff:c5:83:f6:e7:dc: 50:d9:9d:2d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICBK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjI5MDFaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDE0MjVCNTQwOTMyNzgw NUJDRDlGMjZBMzNDRjM4MDc3NDE0MzdFM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgWN2XtY+MhGzaFD0IyJ3KZQoz9KXDrXsNudPhvHDwsdi25HqV RUa7o/HK7Eg10Rq+1a2UNEduvYGbqnBIuXctodMo7MJBqXXaDdwf6222fS0d92Hv qKCZg3YyO48amPSplu5ObH54px5qt7hhLsnWIiayFJsghcqaBEonjH+wv/iqsPlp 5FEqpoIof9QN+c6jfR/UoS5F4kQ332gHDlaXXsiuXrdUpd72Cj9kgSXIn4m1gZKo iGwwN3uqQziefEunzyrZRi1rF9qnfetMP9CsSu8Qq4H3jOHTAznw+hM8kOWhf4kI gy/hI3cPokIj4mc7cVNVZTke50m0XsnsxaH9AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUFCW1QJMngFvNnyajPPOAd0FDfjowHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0ZDVzFRSk1uZ0Z2Tm55YWpQUE9BZDBGRGZqby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAbUDANBgkqhkiG9w0BAQsFAAOCAQEAnFB7qwUPWxP6U8mlZk82hwPnnK5m U3YCYnNefFXUakbOwC3J2ApaFg3qFIkHn07Bia6fodi1497q+hdZaaBZBPvHSkYW KbzQblxIDr3fbm238SgeI1JNSdL07WDnOLK7I4hPMskroJ6H2yVSCytVbf0oGZ1Y jPVXojHp3pmtYCX0CA4bEJtFaJJz1Eh7KZr8U4w4NFeyc0+XWoQj2O7dKsZbNPLt uCJh5A87xjA1FKtURq/h6es7C9UNsoFSsofcopBO5ot6ITO5jpTNaQmmjN9opeuv 0daDXvhhQPXmAdjKvk1pbrZRwKuMPDVmLbvSKOK+iO5Z/8WD9ufcUNmdLQ== -----END CERTIFICATE-----Generated at Sat Apr 5 20:01:46 2025 by rpki-client