$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/MUCrcS_ux9Z97TGjpjTMcoRqznM.roa File: MUCrcS_ux9Z97TGjpjTMcoRqznM.roa (raw, json) Hash identifier: QVincn5hMPd8nWQESa9x1F8/SbKKLYXBuigJJuMzie4= Subject key identifier: 31:40:AB:71:2F:EE:C7:D6:7D:ED:31:A3:A6:34:CC:72:84:6A:CE:73 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0421 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/MUCrcS_ux9Z97TGjpjTMcoRqznM.roa Signing time: Wed 18 Dec 2024 02:19:02 +0000 ROA not before: Wed 18 Dec 2024 02:19:02 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 121.106.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1057 (0x421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:19:02 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=3140AB712FEEC7D67DED31A3A634CC72846ACE73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cb:81:a5:c8:5e:f7:53:45:b5:e4:70:70:41: d3:77:ad:18:11:18:4f:1e:4a:03:dd:30:21:51:6d: 7f:fc:7b:4b:42:01:56:a2:ca:09:3e:f3:36:b2:e1: ca:bf:0a:80:b9:00:c8:2f:d6:ca:36:5d:e8:80:23: f3:08:7c:24:e5:7d:26:b4:9b:9c:13:89:39:3f:25: a7:ff:71:f4:61:7d:4b:48:05:e4:5b:51:c9:43:93: be:c2:b0:53:25:93:20:45:f8:e5:99:e3:37:49:c2: 13:72:98:ab:87:8d:1e:8a:d9:01:1a:af:75:ae:5f: fd:b7:67:74:d4:6f:48:31:33:0c:cf:52:18:1c:02: e9:20:02:91:21:11:f2:04:2b:d2:fb:93:1c:46:c6: 32:51:b5:39:90:ee:4b:79:5f:d0:52:80:c6:a0:b7: 24:8e:fb:1d:4a:cd:ad:48:fb:b3:4e:6d:0a:50:a6: 64:4b:f1:5a:62:06:29:5a:c9:0d:b3:83:28:65:61: 95:b0:d8:68:7d:d0:50:41:f6:d0:d3:ab:ef:f2:b5: 24:2a:d4:33:53:9d:2a:23:5a:b3:b3:61:d3:09:d5: 21:b6:d1:d5:76:40:0d:18:0f:d6:00:94:64:77:d7: cb:8d:cf:9b:c1:15:d9:20:5d:d1:14:80:61:5f:64: d7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:40:AB:71:2F:EE:C7:D6:7D:ED:31:A3:A6:34:CC:72:84:6A:CE:73 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/MUCrcS_ux9Z97TGjpjTMcoRqznM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.106.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:b7:7a:52:be:b9:c5:52:6f:f5:df:c6:2f:2d:80:27:a2:95: 40:14:f3:02:d1:c3:92:23:64:1c:63:40:56:02:11:8c:ef:99: 4f:aa:66:92:ed:32:8e:42:95:25:ba:84:50:2d:cb:b6:0f:cc: f3:03:5f:83:0b:5b:53:70:5a:15:26:bb:73:ce:48:c7:f4:29: cf:d0:63:65:02:b9:4b:1e:fc:cb:68:27:68:55:66:c1:2f:64: 1b:5b:fd:ca:19:36:5f:47:62:bb:e3:c2:9d:d7:a1:f7:06:36: bb:69:6a:e1:80:1a:13:04:12:39:2f:4d:f3:86:9d:c8:ba:65: ad:45:36:28:62:5b:3c:09:02:c9:23:ae:3c:07:a3:38:af:0a: 3f:fa:01:38:42:cc:50:3e:16:ba:e4:37:fa:40:e0:1b:f1:6e: df:b6:e2:65:3e:ea:ae:8a:11:2b:01:cd:5d:76:52:23:af:2e: b7:e2:55:11:c4:ae:81:5b:89:5e:c4:e0:5f:70:77:4d:8f:5e: 30:15:33:e1:54:18:5e:76:de:5f:83:7a:fd:83:7f:75:85:ba: f5:a1:c9:91:91:68:81:6f:a6:00:74:9c:3f:33:96:62:25:e8: 6d:39:63:55:d4:ed:0f:43:e1:3d:74:41:39:2a:3a:6e:e9:38: fc:bd:b3:f2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICBCEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjE5MDJaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMxNDBBQjcxMkZFRUM3 RDY3REVEMzFBM0E2MzRDQzcyODQ2QUNFNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDny4GlyF73U0W15HBwQdN3rRgRGE8eSgPdMCFRbX/8e0tCAVai ygk+8zay4cq/CoC5AMgv1so2XeiAI/MIfCTlfSa0m5wTiTk/Jaf/cfRhfUtIBeRb UclDk77CsFMlkyBF+OWZ4zdJwhNymKuHjR6K2QEar3WuX/23Z3TUb0gxMwzPUhgc AukgApEhEfIEK9L7kxxGxjJRtTmQ7kt5X9BSgMagtySO+x1Kza1I+7NObQpQpmRL 8VpiBilayQ2zgyhlYZWw2Gh90FBB9tDTq+/ytSQq1DNTnSojWrOzYdMJ1SG20dV2 QA0YD9YAlGR318uNz5vBFdkgXdEUgGFfZNdDAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUMUCrcS/ux9Z97TGjpjTMcoRqznMwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL01VQ3JjU191eDlaOTdUR2pwalRNY29ScXpuTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwB5ajANBgkqhkiG9w0BAQsFAAOCAQEAYbd6Ur65xVJv9d/GLy2AJ6KVQBTz AtHDkiNkHGNAVgIRjO+ZT6pmku0yjkKVJbqEUC3Ltg/M8wNfgwtbU3BaFSa7c85I x/Qpz9BjZQK5Sx78y2gnaFVmwS9kG1v9yhk2X0diu+PCndeh9wY2u2lq4YAaEwQS OS9N84adyLplrUU2KGJbPAkCySOuPAejOK8KP/oBOELMUD4WuuQ3+kDgG/Fu37bi ZT7qrooRKwHNXXZSI68ut+JVEcSugVuJXsTgX3B3TY9eMBUz4VQYXnbeX4N6/YN/ dYW69aHJkZFogW+mAHScPzOWYiXobTljVdTtD0PhPXRBOSo6buk4/L2z8g== -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:10 2025 by rpki-client