$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/H8YEOLAkHh4GRtn--2X2BB5WmvY.roa File: H8YEOLAkHh4GRtn--2X2BB5WmvY.roa (raw, json) Hash identifier: TQohKdJMzVqw3QaROl3Jvii+9hs0OlV1ilYdJO8nWH4= Subject key identifier: 1F:C6:04:38:B0:24:1E:1E:06:46:D9:FE:FB:65:F6:04:1E:56:9A:F6 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 03E2 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/H8YEOLAkHh4GRtn--2X2BB5WmvY.roa Signing time: Wed 18 Dec 2024 02:16:32 +0000 ROA not before: Wed 18 Dec 2024 02:16:32 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 111.98.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:16:32 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=1FC60438B0241E1E0646D9FEFB65F6041E569AF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:87:fb:df:71:1c:f8:50:39:bc:51:5e:15:50: 20:c5:da:03:9d:3b:8c:6e:fe:68:62:63:f9:f9:f6: d4:3d:ef:da:c5:11:79:eb:e7:84:13:08:c8:8c:32: 8d:e8:dc:a3:66:43:05:cf:c3:15:06:e4:cb:18:82: 9d:80:5b:83:4e:87:02:3b:6e:e4:10:e6:cc:21:28: 9b:40:85:fe:92:09:74:d3:4a:b2:2d:77:24:6c:da: e9:ed:2a:89:05:93:8b:3c:20:02:f9:92:da:e0:c9: ea:56:08:48:cc:d5:34:f7:79:32:2c:2e:77:f2:b9: 83:95:57:c2:04:ae:1d:e2:e4:ab:fd:11:d1:d0:79: 37:c3:95:43:17:39:cd:c2:a8:21:66:5f:b3:4f:0b: 22:e7:1a:70:02:11:61:e6:91:45:00:fe:0e:5f:62: bb:d0:fc:f8:8b:be:7e:f2:4a:a4:d6:19:d9:12:5d: 43:3a:16:11:9d:9d:ce:5c:42:c6:31:3e:4d:84:b3: 58:ba:8e:e8:cf:24:c2:49:57:12:6f:4d:3a:bf:00: 7b:fa:ab:b4:e2:be:6c:5e:58:6b:4c:ef:29:84:f5: 17:14:05:db:36:60:cb:34:1e:6f:66:5b:f8:e5:25: b6:47:44:85:ec:b4:a3:0c:74:8a:a8:d7:8e:20:f5: 38:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C6:04:38:B0:24:1E:1E:06:46:D9:FE:FB:65:F6:04:1E:56:9A:F6 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/H8YEOLAkHh4GRtn--2X2BB5WmvY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.98.0.0/16 Signature Algorithm: sha256WithRSAEncryption 82:7b:52:4a:2d:eb:3f:7e:84:da:e8:4a:79:0e:9c:a5:e6:5a: 7d:3a:5c:c0:5e:e7:f7:05:2b:94:85:59:f7:86:39:93:86:5e: ef:c4:da:98:c5:8a:2f:87:a8:f6:94:3a:f5:3b:e1:71:15:b5: b3:41:b9:2e:6f:cf:84:12:c5:03:c8:42:1b:8f:51:02:7a:18: 3e:26:d3:bd:23:b5:a5:44:c0:d6:87:d4:df:c4:6e:2b:f5:16: 03:e2:55:8a:1c:0e:3d:8c:53:68:4d:ee:3a:23:2c:b4:4c:f0: b4:0d:39:8d:a7:7b:f1:ef:9b:26:55:72:f8:42:a6:3f:aa:ff: c4:41:ef:d0:9b:1a:e3:ed:ba:91:1e:d7:f8:bb:21:b5:43:07: fb:33:c9:0a:dc:ee:ed:3d:ad:0c:34:52:da:1f:2c:1b:ae:bd: b3:15:17:b2:75:03:7d:fa:3e:0b:e0:59:bb:5f:99:7d:b1:e1: 32:d8:a4:8c:25:3c:8a:91:b0:7e:54:c8:eb:b1:bb:b2:30:5b: 5e:03:51:3d:89:42:c0:f8:e2:7b:ee:1f:fe:c6:e1:cf:4c:43: 62:6c:da:96:6a:e6:f9:2c:d8:68:28:55:81:60:83:32:61:67: 83:8d:a6:07:39:fb:f7:15:97:90:2e:13:d0:78:32:62:80:c6: 67:34:4e:9a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjE2MzJaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFGQzYwNDM4QjAyNDFF MUUwNjQ2RDlGRUZCNjVGNjA0MUU1NjlBRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEh/vfcRz4UDm8UV4VUCDF2gOdO4xu/mhiY/n59tQ979rFEXnr 54QTCMiMMo3o3KNmQwXPwxUG5MsYgp2AW4NOhwI7buQQ5swhKJtAhf6SCXTTSrIt dyRs2untKokFk4s8IAL5ktrgyepWCEjM1TT3eTIsLnfyuYOVV8IErh3i5Kv9EdHQ eTfDlUMXOc3CqCFmX7NPCyLnGnACEWHmkUUA/g5fYrvQ/PiLvn7ySqTWGdkSXUM6 FhGdnc5cQsYxPk2Es1i6jujPJMJJVxJvTTq/AHv6q7TivmxeWGtM7ymE9RcUBds2 YMs0Hm9mW/jlJbZHRIXstKMMdIqo144g9TjjAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUH8YEOLAkHh4GRtn++2X2BB5WmvYwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0g4WUVPTEFrSGg0R1J0bi0tMlgyQkI1V212WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBvYjANBgkqhkiG9w0BAQsFAAOCAQEAgntSSi3rP36E2uhKeQ6cpeZafTpc wF7n9wUrlIVZ94Y5k4Ze78TamMWKL4eo9pQ69TvhcRW1s0G5Lm/PhBLFA8hCG49R AnoYPibTvSO1pUTA1ofU38RuK/UWA+JVihwOPYxTaE3uOiMstEzwtA05jad78e+b JlVy+EKmP6r/xEHv0Jsa4+26kR7X+LshtUMH+zPJCtzu7T2tDDRS2h8sG669sxUX snUDffo+C+BZu1+ZfbHhMtikjCU8ipGwflTI67G7sjBbXgNRPYlCwPjie+4f/sbh z0xDYmzalmrm+SzYaChVgWCDMmFng42mBzn79xWXkC4T0HgyYoDGZzROmg== -----END CERTIFICATE-----Generated at Sat Apr 5 23:11:19 2025 by rpki-client