$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/K1x_V9KcH0RlKEVAX8wrmeUiE1k.roa File: K1x_V9KcH0RlKEVAX8wrmeUiE1k.roa (raw, json) Hash identifier: gpHg9ilGqO0Tws7dDoQqEV1tbt8zzwTeMJUEYsZF/0s= Subject key identifier: 2B:5C:7F:57:D2:9C:1F:44:65:28:45:40:5F:CC:2B:99:E5:22:13:59 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 04FB Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/K1x_V9KcH0RlKEVAX8wrmeUiE1k.roa Signing time: Wed 18 Dec 2024 02:40:07 +0000 ROA not before: Wed 18 Dec 2024 02:40:07 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 210.253.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1275 (0x4fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:40:07 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=2B5C7F57D29C1F44652845405FCC2B99E5221359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e1:06:a4:4a:91:71:13:20:10:e8:4b:6b:60: f1:69:51:50:91:b6:d9:49:88:e7:cf:9a:f4:0e:32: 86:95:87:4d:4b:0d:87:de:51:c7:72:45:b6:19:27: e7:ff:8a:0d:e8:ad:d3:18:59:67:37:88:87:a5:e5: 0f:3a:01:96:b8:99:1e:a5:5a:3f:15:6e:0b:a7:9e: 13:6d:44:51:45:80:c8:7e:3a:c1:3b:57:1f:fd:d5: 17:e6:81:68:17:8e:f0:1c:c8:2d:13:bf:cf:cc:d3: c7:5e:7f:6b:73:83:0e:1a:88:5b:e5:8d:ac:b2:bb: 4f:9e:60:0d:4b:6a:2a:e0:d5:6f:ed:75:ed:4f:fb: 47:f1:1d:7b:1d:92:13:96:12:70:57:c7:30:f2:01: 11:20:37:9e:1c:88:36:d7:7e:65:68:f6:ec:70:02: 0e:e6:8e:13:28:b0:bd:fc:8e:3e:68:58:63:97:c7: 14:84:72:a1:d5:e6:81:4b:3e:d5:dd:61:5f:ea:95: 67:65:d8:0a:be:8a:1f:a7:23:e5:fc:e8:99:5d:0d: 1b:64:89:60:f2:46:01:20:a7:b8:25:5e:3d:50:64: 9c:8f:de:15:55:4a:51:b7:41:2e:00:29:70:28:c8: a7:b1:c2:a0:61:70:22:99:4f:c3:a9:90:53:a0:25: b4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:5C:7F:57:D2:9C:1F:44:65:28:45:40:5F:CC:2B:99:E5:22:13:59 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/K1x_V9KcH0RlKEVAX8wrmeUiE1k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.253.142.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:1b:64:e7:76:aa:45:3f:05:f5:c3:61:e9:5c:a3:1a:ae:02: 24:33:3e:80:f6:b6:64:2d:6a:d1:61:64:9f:7a:55:57:03:4c: 14:21:9e:70:66:0f:87:15:b3:bf:c7:5c:e1:42:1c:25:7f:06: 28:b0:36:cc:c0:f7:8b:01:5c:e3:69:6a:c0:22:6a:3c:c8:b5: e5:d6:33:32:4e:29:02:30:bc:7e:56:dd:67:a3:23:5e:82:18: 34:2c:e0:4b:d5:e6:14:d4:b7:8a:61:3f:26:73:14:f8:cf:e7: 24:84:2d:c1:71:07:d5:93:6d:26:84:87:37:a5:09:fc:d4:6e: 62:e1:62:34:74:ef:a6:4d:16:a3:93:79:ad:1f:94:68:61:e4: 82:ee:5a:13:a3:dd:a8:6a:27:25:4a:75:ec:c2:d5:47:ca:0f: 82:ca:07:8e:01:91:03:a4:8a:d5:5b:9b:5b:8d:9c:58:86:73: 92:c6:8c:1d:98:0f:91:f5:66:e0:df:2b:f6:1a:d0:fb:c1:ea: c4:6f:b5:f2:72:76:83:79:ac:97:d2:d5:e8:96:82:f7:3c:0b: 7d:1a:c8:63:ac:cc:a1:8c:91:82:df:eb:31:9b:24:6d:25:d6: 2b:cf:a5:68:f9:3d:1d:51:7f:c7:79:4a:e5:3b:24:97:20:1c: 24:e5:f4:bf -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBPswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjQwMDdaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJCNUM3RjU3RDI5QzFG NDQ2NTI4NDU0MDVGQ0MyQjk5RTUyMjEzNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC64QakSpFxEyAQ6EtrYPFpUVCRttlJiOfPmvQOMoaVh01LDYfe UcdyRbYZJ+f/ig3ordMYWWc3iIel5Q86AZa4mR6lWj8VbgunnhNtRFFFgMh+OsE7 Vx/91RfmgWgXjvAcyC0Tv8/M08def2tzgw4aiFvljayyu0+eYA1Lairg1W/tde1P +0fxHXsdkhOWEnBXxzDyAREgN54ciDbXfmVo9uxwAg7mjhMosL38jj5oWGOXxxSE cqHV5oFLPtXdYV/qlWdl2Aq+ih+nI+X86JldDRtkiWDyRgEgp7glXj1QZJyP3hVV SlG3QS4AKXAoyKexwqBhcCKZT8OpkFOgJbRPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUK1x/V9KcH0RlKEVAX8wrmeUiE1kwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0sxeF9WOUtjSDBSbEtFVkFYOHdybWVVaUUxay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHS/Y4wDQYJKoZIhvcNAQELBQADggEBAH4bZOd2qkU/BfXDYelcoxquAiQz PoD2tmQtatFhZJ96VVcDTBQhnnBmD4cVs7/HXOFCHCV/BiiwNszA94sBXONpasAi ajzIteXWMzJOKQIwvH5W3WejI16CGDQs4EvV5hTUt4phPyZzFPjP5ySELcFxB9WT bSaEhzelCfzUbmLhYjR076ZNFqOTea0flGhh5ILuWhOj3ahqJyVKdezC1UfKD4LK B44BkQOkitVbm1uNnFiGc5LGjB2YD5H1ZuDfK/Ya0PvB6sRvtfJydoN5rJfS1eiW gvc8C30ayGOszKGMkYLf6zGbJG0l1ivPpWj5PR1Rf8d5SuU7JJcgHCTl9L8= -----END CERTIFICATE-----Generated at Sat Apr 5 17:31:01 2025 by rpki-client