$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/Om2486oLRPxDxbAuXWPFaEEJfvM.roa File: Om2486oLRPxDxbAuXWPFaEEJfvM.roa (raw, json) Hash identifier: das7APdvCfrS2TWo7j6SfBrPF9vVtek+Z65LzFB/+lM= Subject key identifier: 3A:6D:B8:F3:AA:0B:44:FC:43:C5:B0:2E:5D:63:C5:68:41:09:7E:F3 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 053B Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Om2486oLRPxDxbAuXWPFaEEJfvM.roa Signing time: Wed 18 Dec 2024 02:44:17 +0000 ROA not before: Wed 18 Dec 2024 02:44:17 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 210.235.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:44:17 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=3A6DB8F3AA0B44FC43C5B02E5D63C56841097EF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d9:fc:d4:07:c5:ed:aa:d3:3c:b0:a8:6c:00: 1c:29:b3:8e:78:7c:17:c1:c1:4c:c4:c9:e2:46:e8: a0:e9:c2:b3:c6:b0:c1:60:2c:99:02:8c:7b:e0:bb: a7:2d:b6:3a:00:16:16:85:7f:5d:e1:e6:97:35:e1: b4:30:15:d6:1a:d8:95:e7:ba:d6:95:ca:f4:18:8b: 8d:50:14:da:51:33:fe:76:a6:4c:a9:43:fb:b0:e2: f6:e5:c0:5a:25:11:29:18:1d:3f:66:a4:5b:97:56: 06:a6:00:e0:af:be:0d:73:f0:35:44:97:12:46:d5: 7e:66:05:ae:70:34:ae:87:f9:af:e5:a2:de:62:97: dd:f7:37:36:0c:35:fd:4b:47:8f:90:9e:88:17:fa: 4e:f0:77:ab:aa:88:76:fe:d8:ed:bf:38:90:41:64: c0:19:f4:c1:49:4d:b9:de:b8:e2:88:7e:1c:09:a4: 07:89:b1:cb:bb:b0:3e:c9:a2:d8:b8:85:03:ca:77: 1a:c9:28:1f:e6:b6:aa:56:95:fc:d4:85:42:d8:ee: aa:8f:c8:6b:d9:48:4c:0f:1c:38:78:2b:78:14:ce: 3a:7c:de:76:a5:8f:32:d3:75:97:59:a9:54:55:5b: 6c:95:fd:37:13:3e:88:d7:da:21:a3:34:14:d6:bf: 8d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6D:B8:F3:AA:0B:44:FC:43:C5:B0:2E:5D:63:C5:68:41:09:7E:F3 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Om2486oLRPxDxbAuXWPFaEEJfvM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.235.158.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:97:e2:fa:f7:38:94:ed:65:89:fa:35:8b:c0:df:85:e5:45: 71:df:5d:f0:9c:d3:50:b7:3e:f5:f1:33:a2:8e:93:c9:85:ca: 69:48:01:7a:4c:cb:08:b8:a9:7f:41:04:ef:60:df:ed:c6:5f: 80:b2:1f:1c:08:04:0b:17:e4:af:b3:61:03:ff:4d:49:ef:2e: b6:53:69:7f:af:11:8f:1d:e9:bc:60:c3:42:00:89:2a:f5:8e: 20:65:1c:60:97:03:34:8e:f7:b1:3c:1f:8b:a6:f0:6b:3a:b3: 17:f8:aa:b5:a3:13:45:d5:a2:b7:74:ab:cc:06:d5:3b:aa:09: 9d:9a:fb:1a:69:43:5a:2c:fa:c6:bd:53:d3:e2:23:d1:f6:e4: 77:b4:78:69:52:e3:40:5e:b8:60:47:84:01:20:83:20:de:5e: cc:22:b3:9f:46:28:55:c3:e0:88:b0:1b:9b:76:25:03:64:57: 79:e7:51:08:91:00:b7:1d:20:dd:04:c6:bb:bc:0b:7f:12:5d: 67:bf:ec:37:67:c1:32:4a:3f:c6:a4:2b:d9:57:9b:cc:89:57: 1d:d1:6a:54:45:06:09:66:38:8f:c5:4d:17:78:06:25:d4:76: 0c:49:ba:36:f2:1c:3a:fd:b3:d5:28:60:2f:51:c1:33:a4:55: d7:02:26:89 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBTswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjQ0MTdaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNBNkRCOEYzQUEwQjQ0 RkM0M0M1QjAyRTVENjNDNTY4NDEwOTdFRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCg2fzUB8XtqtM8sKhsABwps454fBfBwUzEyeJG6KDpwrPGsMFg LJkCjHvgu6cttjoAFhaFf13h5pc14bQwFdYa2JXnutaVyvQYi41QFNpRM/52pkyp Q/uw4vblwFolESkYHT9mpFuXVgamAOCvvg1z8DVElxJG1X5mBa5wNK6H+a/lot5i l933NzYMNf1LR4+QnogX+k7wd6uqiHb+2O2/OJBBZMAZ9MFJTbneuOKIfhwJpAeJ scu7sD7Joti4hQPKdxrJKB/mtqpWlfzUhULY7qqPyGvZSEwPHDh4K3gUzjp83nal jzLTdZdZqVRVW2yV/TcTPojX2iGjNBTWv43PAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUOm2486oLRPxDxbAuXWPFaEEJfvMwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL09tMjQ4Nm9MUlB4RHhiQXVYV1BGYUVFSmZ2TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHS654wDQYJKoZIhvcNAQELBQADggEBAHuX4vr3OJTtZYn6NYvA34XlRXHf XfCc01C3PvXxM6KOk8mFymlIAXpMywi4qX9BBO9g3+3GX4CyHxwIBAsX5K+zYQP/ TUnvLrZTaX+vEY8d6bxgw0IAiSr1jiBlHGCXAzSO97E8H4um8Gs6sxf4qrWjE0XV ord0q8wG1TuqCZ2a+xppQ1os+sa9U9PiI9H25He0eGlS40BeuGBHhAEggyDeXswi s59GKFXD4IiwG5t2JQNkV3nnUQiRALcdIN0Exru8C38SXWe/7DdnwTJKP8akK9lX m8yJVx3RalRFBglmOI/FTRd4BiXUdgxJujbyHDr9s9UoYC9RwTOkVdcCJok= -----END CERTIFICATE-----Generated at Sat Apr 5 20:00:43 2025 by rpki-client