$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/NIYaSILAPVbAcXEzB34NA75Gbi4.roa File: NIYaSILAPVbAcXEzB34NA75Gbi4.roa (raw, json) Hash identifier: BAPdU7beHpa36yPr6oXbdqHq+JZY+IsAkt10dikooLI= Subject key identifier: 34:86:1A:48:82:C0:3D:56:C0:71:71:33:07:7E:0D:03:BE:46:6E:2E Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0528 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/NIYaSILAPVbAcXEzB34NA75Gbi4.roa Signing time: Wed 18 Dec 2024 02:42:25 +0000 ROA not before: Wed 18 Dec 2024 02:42:25 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 124.109.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:42:25 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=34861A4882C03D56C0717133077E0D03BE466E2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:16:3a:81:9e:07:fa:a9:21:a9:ab:9f:12:66: 81:db:71:96:79:e0:b7:24:5d:33:2c:f5:16:2d:6e: f8:23:32:c0:eb:02:ed:93:84:0c:3e:85:be:4c:3d: 6b:c5:0d:f2:62:31:1c:a9:e7:8a:d0:3b:0c:14:f6: a6:f5:3b:c9:5e:1c:73:94:e1:da:8b:b3:f6:aa:24: 99:e0:9a:9e:82:bc:f4:dd:d4:fc:df:c0:c8:ef:65: a7:bc:f1:87:06:19:1d:2c:6d:45:08:40:d9:15:2f: fb:2b:17:e3:3a:60:0c:0c:24:20:70:f3:5e:4b:88: ab:a9:a7:bb:a9:f7:e1:3b:fe:59:c1:eb:c5:97:a4: 8e:e0:09:95:3b:b5:54:4a:a3:bd:73:60:f7:90:95: 30:0e:46:02:7d:10:0f:9e:af:a7:f1:fe:2e:2d:d5: cb:77:91:56:9f:0c:82:57:47:a9:39:c9:66:dc:c3: e3:4f:25:14:93:a6:ac:17:43:ce:a6:38:61:c2:43: b5:7f:b6:a8:2c:03:e9:e4:5b:e0:fd:bd:05:6b:a1: 02:d2:a9:c4:0f:aa:43:63:ad:fc:13:67:88:52:17: 5e:56:74:e7:62:81:4f:60:50:3b:70:9c:3f:c1:fb: c8:51:1c:9a:d9:16:c1:c0:11:0c:a7:7b:39:5e:ed: b6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:86:1A:48:82:C0:3D:56:C0:71:71:33:07:7E:0D:03:BE:46:6E:2E X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/NIYaSILAPVbAcXEzB34NA75Gbi4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.109.158.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:46:57:17:9e:3a:61:0e:1b:dd:86:aa:ef:7c:ab:ea:35:76: 0e:c8:a1:41:5b:14:36:3a:ae:25:bf:d0:4a:a4:23:41:cc:1b: c1:f0:1d:48:4c:95:b6:e4:e1:75:c5:86:41:db:d9:b7:ee:b7: 7f:f6:f5:b7:2e:d1:06:77:73:38:70:1b:76:fc:68:de:3e:f9: cd:39:6a:01:24:7a:90:64:d8:0b:75:dc:9f:8c:4c:ad:ec:a5: 49:83:58:af:12:15:ff:ec:34:9d:77:b1:96:3f:cc:bf:36:75: 18:40:05:4c:74:b9:36:8a:92:37:2d:25:55:46:cc:39:2b:bc: ec:78:31:ec:80:a0:0b:34:71:ff:d2:8c:ae:53:90:a9:78:e2: 62:88:43:51:e5:04:84:18:bc:f5:af:14:c9:e2:ca:e9:f9:1a: e1:5c:23:67:c8:31:93:11:77:3f:36:9b:30:47:da:6b:d4:f7: cf:32:a3:3e:ae:53:d0:aa:4d:d7:22:36:4e:18:5b:b3:42:1f: cc:09:ff:9d:82:9d:27:12:ed:d8:23:4e:a5:c4:38:24:fc:c1: 5e:01:87:25:0b:6b:3f:64:af:52:26:5f:f1:7f:97:cc:07:bc: 45:51:7a:67:26:60:e3:e7:15:81:64:7e:01:c9:dc:5d:3e:ab: 91:35:53:d3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjQyMjVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDM0ODYxQTQ4ODJDMDNE NTZDMDcxNzEzMzA3N0UwRDAzQkU0NjZFMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpFjqBngf6qSGpq58SZoHbcZZ54LckXTMs9RYtbvgjMsDrAu2T hAw+hb5MPWvFDfJiMRyp54rQOwwU9qb1O8leHHOU4dqLs/aqJJngmp6CvPTd1Pzf wMjvZae88YcGGR0sbUUIQNkVL/srF+M6YAwMJCBw815LiKupp7up9+E7/lnB68WX pI7gCZU7tVRKo71zYPeQlTAORgJ9EA+er6fx/i4t1ct3kVafDIJXR6k5yWbcw+NP JRSTpqwXQ86mOGHCQ7V/tqgsA+nkW+D9vQVroQLSqcQPqkNjrfwTZ4hSF15WdOdi gU9gUDtwnD/B+8hRHJrZFsHAEQynezle7bZXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNIYaSILAPVbAcXEzB34NA75Gbi4wHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL05JWWFTSUxBUFZiQWNYRXpCMzROQTc1R2JpNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB8bZ4wDQYJKoZIhvcNAQELBQADggEBACpGVxeeOmEOG92Gqu98q+o1dg7I oUFbFDY6riW/0EqkI0HMG8HwHUhMlbbk4XXFhkHb2bfut3/29bcu0QZ3czhwG3b8 aN4++c05agEkepBk2At13J+MTK3spUmDWK8SFf/sNJ13sZY/zL82dRhABUx0uTaK kjctJVVGzDkrvOx4MeyAoAs0cf/SjK5TkKl44mKIQ1HlBIQYvPWvFMniyun5GuFc I2fIMZMRdz82mzBH2mvU988yoz6uU9CqTdciNk4YW7NCH8wJ/52CnScS7dgjTqXE OCT8wV4BhyULaz9kr1ImX/F/l8wHvEVRemcmYOPnFYFkfgHJ3F0+q5E1U9M= -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:30 2025 by rpki-client