$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/ONXH4Q_CDDF1-IpRWd_ByjOEiqU.roa File: ONXH4Q_CDDF1-IpRWd_ByjOEiqU.roa (raw, json) Hash identifier: 8ZKsBGsOfVMZqbnTcho4AzqnDyKR8kSgiup+BqU7n9Q= Subject key identifier: 38:D5:C7:E1:0F:C2:0C:31:75:F8:8A:51:59:DF:C1:CA:33:84:8A:A5 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0464 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/ONXH4Q_CDDF1-IpRWd_ByjOEiqU.roa Signing time: Wed 18 Dec 2024 02:24:15 +0000 ROA not before: Wed 18 Dec 2024 02:24:15 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 175.109.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:24:15 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=38D5C7E10FC20C3175F88A5159DFC1CA33848AA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:97:91:50:62:aa:fd:47:7e:40:77:17:bd:02: b3:86:d8:96:59:a9:85:26:5f:d3:b7:17:bb:18:dc: 45:7d:ae:8a:6d:2c:bd:00:89:0a:3a:6b:ef:82:1a: 8a:2a:3b:dd:86:9b:37:72:fa:ae:f5:19:a6:a6:05: 8a:08:72:34:f6:f6:25:04:04:8b:36:67:58:7a:df: 95:9c:86:ce:6f:e3:a1:0c:5c:79:19:93:65:22:2a: 06:2a:35:29:0d:59:64:7b:83:72:dc:87:1f:21:e2: 40:cb:27:7c:15:d8:e5:75:80:b2:f8:6b:d6:c5:44: 7c:5b:ad:42:a7:52:2f:ea:e9:ad:49:a6:24:15:02: ca:0b:5a:96:93:ce:bf:2c:b4:d3:91:f8:d8:6b:95: 06:86:04:c3:05:c2:49:c8:a0:12:1b:ee:c5:0a:21: 28:ea:6e:0f:55:cd:d8:b1:df:7e:77:db:8e:f6:23: 8c:17:67:ca:f4:71:bb:d9:82:b9:a8:a9:83:dc:ec: 7e:8c:bc:47:ee:a0:3b:7e:7b:6c:d9:67:62:9d:e1: 55:5b:a2:21:3c:4c:ef:bc:d4:b0:f0:40:de:05:c3: e3:5b:3e:51:72:92:24:b4:26:a3:aa:0a:69:0c:91: d2:3c:90:98:19:ad:68:8b:c0:66:c8:fa:f4:19:7c: ae:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D5:C7:E1:0F:C2:0C:31:75:F8:8A:51:59:DF:C1:CA:33:84:8A:A5 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/ONXH4Q_CDDF1-IpRWd_ByjOEiqU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:d8:93:12:24:f2:3d:93:5b:d2:31:55:26:da:71:8d:61:cb: 87:42:56:f3:ed:e8:be:78:4e:20:60:ac:a8:9f:22:12:80:08: 99:bb:00:3a:8c:17:f7:44:3a:50:45:d5:45:6a:bf:54:78:e3: 79:7b:9f:aa:b3:32:49:17:49:35:87:d7:74:d8:78:a5:9d:4c: ac:ff:5a:56:c9:12:5a:51:8f:39:74:8b:e6:44:33:cd:c1:4a: 29:83:74:14:2b:db:c9:14:44:37:da:63:7e:88:34:2a:cf:14: cb:dc:ba:6a:94:7c:a8:64:b3:06:b4:88:46:9a:25:74:b8:a1: bd:49:09:d3:1c:be:61:e3:a5:1c:63:e7:80:5c:1f:a4:f2:08: 9d:61:dd:83:f4:0b:73:ce:64:57:12:35:da:b9:0e:fb:48:c9: 7f:bd:c3:09:e6:83:da:e4:54:4c:a5:4f:f1:fd:b7:1d:ce:0d: 17:75:d5:02:f4:9c:bd:33:19:64:54:bb:dc:43:34:ff:a2:0f: 29:bf:cf:04:da:5a:18:99:a8:dd:99:2a:b1:60:ec:71:54:56: 5e:6f:d8:8d:a1:24:dd:a8:cf:a0:0d:b8:7d:7a:4e:da:73:35: ff:aa:6a:bf:66:00:d2:8d:9d:73:2d:87:f3:56:10:c5:ca:6e: ee:18:7e:e2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjI0MTVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDM4RDVDN0UxMEZDMjBD MzE3NUY4OEE1MTU5REZDMUNBMzM4NDhBQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOl5FQYqr9R35Adxe9ArOG2JZZqYUmX9O3F7sY3EV9roptLL0A iQo6a++CGooqO92Gmzdy+q71GaamBYoIcjT29iUEBIs2Z1h635Wchs5v46EMXHkZ k2UiKgYqNSkNWWR7g3Lchx8h4kDLJ3wV2OV1gLL4a9bFRHxbrUKnUi/q6a1JpiQV AsoLWpaTzr8stNOR+NhrlQaGBMMFwknIoBIb7sUKISjqbg9Vzdix33532472I4wX Z8r0cbvZgrmoqYPc7H6MvEfuoDt+e2zZZ2Kd4VVboiE8TO+81LDwQN4Fw+NbPlFy kiS0JqOqCmkMkdI8kJgZrWiLwGbI+vQZfK7XAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUONXH4Q/CDDF1+IpRWd/ByjOEiqUwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL09OWEg0UV9DRERGMS1JcFJXZF9CeWpPRWlxVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCvbTANBgkqhkiG9w0BAQsFAAOCAQEAGdiTEiTyPZNb0jFVJtpxjWHLh0JW 8+3ovnhOIGCsqJ8iEoAImbsAOowX90Q6UEXVRWq/VHjjeXufqrMySRdJNYfXdNh4 pZ1MrP9aVskSWlGPOXSL5kQzzcFKKYN0FCvbyRREN9pjfog0Ks8Uy9y6apR8qGSz BrSIRpoldLihvUkJ0xy+YeOlHGPngFwfpPIInWHdg/QLc85kVxI12rkO+0jJf73D CeaD2uRUTKVP8f23Hc4NF3XVAvScvTMZZFS73EM0/6IPKb/PBNpaGJmo3ZkqsWDs cVRWXm/YjaEk3ajPoA24fXpO2nM1/6pqv2YA0o2dcy2H81YQxcpu7hh+4g== -----END CERTIFICATE-----Generated at Sat Apr 5 23:10:58 2025 by rpki-client