$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/GeMJvwa9B0Ip9JcYR91aT3ArfbE.roa File: GeMJvwa9B0Ip9JcYR91aT3ArfbE.roa (raw, json) Hash identifier: UDxjuRerL4daPYyGxzwTs9Q6iXr8tOw5rxRRjEWSNR0= Subject key identifier: 19:E3:09:BF:06:BD:07:42:29:F4:97:18:47:DD:5A:4F:70:2B:7D:B1 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0457 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/GeMJvwa9B0Ip9JcYR91aT3ArfbE.roa Signing time: Wed 18 Dec 2024 02:24:09 +0000 ROA not before: Wed 18 Dec 2024 02:24:09 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 106.171.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1111 (0x457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:24:09 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=19E309BF06BD074229F4971847DD5A4F702B7DB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0c:35:24:8b:11:47:e5:53:0a:21:56:4d:26: 33:11:25:c6:1f:23:48:89:43:8d:ae:17:88:03:f9: 65:59:d7:f3:e3:6c:7e:ff:91:d2:ae:66:25:3e:a0: 9c:34:d7:b8:5d:b7:46:ec:0b:ac:1e:e4:70:f9:f8: 82:a3:b0:ea:b2:9b:46:1d:78:96:7c:af:fb:0e:0c: 3c:31:5f:e1:7d:0c:d5:2a:6f:81:c8:2d:c5:f4:a3: 71:21:a5:c6:12:94:ec:5b:53:92:cf:5a:f4:f8:f4: ba:a3:3a:85:14:79:f8:e5:9d:3d:02:85:70:8c:d1: bd:72:31:4b:9c:88:bd:e5:fd:e4:9a:b0:7d:0a:e2: 54:0c:14:51:c4:4c:59:d6:d1:ab:59:76:f4:04:60: 92:89:47:67:7f:b3:77:c2:c5:e9:9a:df:ac:e4:d1: 90:21:60:1c:dc:5d:97:bc:5d:f1:f1:35:b9:68:ab: aa:85:9e:c4:2b:d2:c7:11:2f:f9:3a:c3:48:8c:d1: 98:eb:e8:e2:a0:b5:47:c1:e1:af:32:4e:9d:f2:5a: 1d:8f:f0:a1:47:84:32:2a:d4:cc:89:f6:d0:a9:b1: a9:1c:24:cf:06:2c:08:47:3e:7c:06:9e:50:cf:d3: b0:ea:dc:d4:8f:55:90:60:49:b8:11:2e:ed:29:2f: 81:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:E3:09:BF:06:BD:07:42:29:F4:97:18:47:DD:5A:4F:70:2B:7D:B1 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/GeMJvwa9B0Ip9JcYR91aT3ArfbE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 106.171.0.0/16 Signature Algorithm: sha256WithRSAEncryption 25:27:a7:be:91:ad:6c:18:2c:e0:d6:bf:76:4a:72:a7:10:83: 74:b7:9b:76:25:9b:09:d5:97:07:24:d8:45:e3:51:fe:82:56: 61:64:6c:ec:cb:f7:16:e2:f7:95:56:9b:ef:c5:17:0c:8f:5e: 50:34:05:ca:c3:4b:47:86:ba:13:62:d3:21:da:eb:fe:2a:76: ba:56:89:35:72:66:ea:d6:03:32:9c:56:1a:98:37:83:5d:ed: 8e:13:29:c1:84:27:cd:f1:08:b0:81:ab:7a:48:5a:d8:d1:62: fb:6e:96:a4:d2:7d:89:e9:26:09:1b:92:5d:1b:29:80:a8:41: a9:81:e0:25:a1:80:51:d9:1a:bf:46:43:5c:84:3e:1f:ee:78: 36:ea:09:38:d6:05:2f:3d:09:10:32:3e:70:c6:7c:c4:d1:b2: da:ea:31:0d:2c:27:3c:87:67:19:c3:e3:f2:76:0a:9d:09:d8: 4e:1b:70:20:66:da:c0:fa:e4:58:71:5d:2b:d9:38:bf:99:bd: 8e:85:03:d3:db:77:9a:1e:bb:39:5d:67:65:26:ab:ce:bc:d5: 60:59:00:f8:97:8e:3f:48:0b:2f:99:2d:ae:0a:d3:4a:c7:9c: 95:84:82:b8:7b:83:fe:80:65:c1:e5:42:f2:3a:64:ef:61:f4: af:45:f6:17 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICBFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjI0MDlaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDE5RTMwOUJGMDZCRDA3 NDIyOUY0OTcxODQ3REQ1QTRGNzAyQjdEQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWDDUkixFH5VMKIVZNJjMRJcYfI0iJQ42uF4gD+WVZ1/PjbH7/ kdKuZiU+oJw017hdt0bsC6we5HD5+IKjsOqym0YdeJZ8r/sODDwxX+F9DNUqb4HI LcX0o3EhpcYSlOxbU5LPWvT49LqjOoUUefjlnT0ChXCM0b1yMUuciL3l/eSasH0K 4lQMFFHETFnW0atZdvQEYJKJR2d/s3fCxema36zk0ZAhYBzcXZe8XfHxNbloq6qF nsQr0scRL/k6w0iM0Zjr6OKgtUfB4a8yTp3yWh2P8KFHhDIq1MyJ9tCpsakcJM8G LAhHPnwGnlDP07Dq3NSPVZBgSbgRLu0pL4EDAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUGeMJvwa9B0Ip9JcYR91aT3ArfbEwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0dlTUp2d2E5QjBJcDlKY1lSOTFhVDNBcmZiRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBqqzANBgkqhkiG9w0BAQsFAAOCAQEAJSenvpGtbBgs4Na/dkpypxCDdLeb diWbCdWXByTYReNR/oJWYWRs7Mv3FuL3lVab78UXDI9eUDQFysNLR4a6E2LTIdrr /ip2ulaJNXJm6tYDMpxWGpg3g13tjhMpwYQnzfEIsIGrekha2NFi+26WpNJ9iekm CRuSXRspgKhBqYHgJaGAUdkav0ZDXIQ+H+54NuoJONYFLz0JEDI+cMZ8xNGy2uox DSwnPIdnGcPj8nYKnQnYThtwIGbawPrkWHFdK9k4v5m9joUD09t3mh67OV1nZSar zrzVYFkA+JeOP0gLL5ktrgrTSseclYSCuHuD/oBlweVC8jpk72H0r0X2Fw== -----END CERTIFICATE-----Generated at Sat Apr 5 20:02:56 2025 by rpki-client