$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/NvzLL0F0MgJuOwJtFoLzCRgYKUU.roa File: NvzLL0F0MgJuOwJtFoLzCRgYKUU.roa (raw, json) Hash identifier: iU9wW1BMsLUtjWxdE7mfyutATJrYrpfUsXDCSJyYj/8= Subject key identifier: 36:FC:CB:2F:41:74:32:02:6E:3B:02:6D:16:82:F3:09:18:18:29:45 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 040B Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/NvzLL0F0MgJuOwJtFoLzCRgYKUU.roa Signing time: Wed 18 Dec 2024 02:18:55 +0000 ROA not before: Wed 18 Dec 2024 02:18:55 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 121.109.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1035 (0x40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:18:55 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=36FCCB2F417432026E3B026D1682F30918182945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e3:a7:85:5f:36:af:e3:c6:b1:3a:c1:99:5c: 60:fa:38:44:ea:4a:eb:01:3f:c8:9f:82:68:ef:44: ae:a0:55:99:aa:94:b4:44:de:c5:37:75:1d:a0:da: 28:44:28:3b:b1:75:e5:70:b3:e3:e3:62:92:46:13: 19:be:19:08:aa:6d:67:52:6d:43:09:70:13:4c:42: 64:64:b5:10:cc:86:16:00:a2:00:cc:df:ec:7c:83: df:94:da:89:c2:aa:a6:99:f0:4b:b3:42:bd:79:51: 0e:ce:14:41:12:f7:2f:f5:8b:af:3c:75:74:53:87: a7:75:be:75:a6:1e:3e:fe:bd:69:33:40:4f:d4:b9: 86:ea:52:59:bf:d1:38:a0:95:f6:38:43:71:de:32: dc:ce:4c:63:33:b7:88:74:4f:a4:21:0b:85:47:6c: 5a:c1:23:e3:5c:04:50:b1:d2:95:12:55:dd:66:ce: 55:8d:48:8f:10:22:af:a5:d8:58:34:b9:d0:e3:03: 45:c7:e4:d1:b1:ae:8a:83:f5:c9:ad:c0:34:b6:41: 0e:f3:8d:b5:11:af:58:24:e9:c8:ed:b3:ec:af:1c: 85:04:4d:d1:8c:d1:45:0b:6a:78:bc:3e:8e:49:89: 5b:f6:d0:f8:86:cd:39:08:04:0e:10:b1:87:81:dd: 25:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FC:CB:2F:41:74:32:02:6E:3B:02:6D:16:82:F3:09:18:18:29:45 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/NvzLL0F0MgJuOwJtFoLzCRgYKUU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:0b:65:a7:80:46:a5:e9:f7:85:a2:ca:c3:b8:d5:8b:20:d2: 3a:04:bd:57:46:2f:98:58:cc:16:78:c6:6f:c3:79:b0:ed:28: 9e:cf:5b:27:f3:ab:46:cb:79:1d:84:86:f2:d6:5f:91:6f:8d: 87:c2:bc:5a:59:81:f0:86:c1:f6:55:e5:9d:3c:49:26:e9:56: ef:c9:f0:dd:c7:f2:f5:9e:2d:c5:4e:37:e1:f8:0c:9a:46:c6: af:a2:20:34:a9:78:94:c6:d3:06:2c:8b:14:39:61:7b:6e:7a: 49:5f:6b:2e:a6:9f:63:7c:ca:21:14:f8:b8:e2:1e:79:ee:40: 4b:9a:0e:32:8f:58:ac:b4:2c:61:c3:24:ac:6e:91:c9:f0:2d: 54:ce:03:03:68:15:16:50:78:49:e3:01:fb:3e:fe:a1:58:e4: 5a:0e:bc:91:10:1d:69:76:41:62:16:45:9e:06:3f:c5:07:98: 6b:41:be:9e:15:d0:0d:8f:f5:28:25:72:75:78:35:c7:3d:c5: 52:d7:62:c6:43:f4:b3:eb:62:d2:41:ce:4a:9d:9b:db:f3:99: 46:8a:cc:b1:70:3b:08:15:1d:f5:2c:06:10:2b:23:41:dd:ac: 2e:c0:71:5c:c9:8f:52:fd:ac:49:2f:6f:ce:40:e4:28:88:83: 39:b6:04:c5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICBAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjE4NTVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDM2RkNDQjJGNDE3NDMy MDI2RTNCMDI2RDE2ODJGMzA5MTgxODI5NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL46eFXzav48axOsGZXGD6OETqSusBP8ifgmjvRK6gVZmqlLRE 3sU3dR2g2ihEKDuxdeVws+PjYpJGExm+GQiqbWdSbUMJcBNMQmRktRDMhhYAogDM 3+x8g9+U2onCqqaZ8EuzQr15UQ7OFEES9y/1i688dXRTh6d1vnWmHj7+vWkzQE/U uYbqUlm/0TiglfY4Q3HeMtzOTGMzt4h0T6QhC4VHbFrBI+NcBFCx0pUSVd1mzlWN SI8QIq+l2Fg0udDjA0XH5NGxroqD9cmtwDS2QQ7zjbURr1gk6cjts+yvHIUETdGM 0UULani8Po5JiVv20PiGzTkIBA4QsYeB3SXXAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUNvzLL0F0MgJuOwJtFoLzCRgYKUUwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL052ekxMMEYwTWdKdU93SnRGb0x6Q1JnWUtVVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwB5bTANBgkqhkiG9w0BAQsFAAOCAQEAYQtlp4BGpen3haLKw7jViyDSOgS9 V0YvmFjMFnjGb8N5sO0ons9bJ/OrRst5HYSG8tZfkW+Nh8K8WlmB8IbB9lXlnTxJ JulW78nw3cfy9Z4txU434fgMmkbGr6IgNKl4lMbTBiyLFDlhe256SV9rLqafY3zK IRT4uOIeee5AS5oOMo9YrLQsYcMkrG6RyfAtVM4DA2gVFlB4SeMB+z7+oVjkWg68 kRAdaXZBYhZFngY/xQeYa0G+nhXQDY/1KCVydXg1xz3FUtdixkP0s+ti0kHOSp2b 2/OZRorMsXA7CBUd9SwGECsjQd2sLsBxXMmPUv2sSS9vzkDkKIiDObYExQ== -----END CERTIFICATE-----Generated at Sat Apr 5 17:37:59 2025 by rpki-client