$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/Pb_iAjlrFzX0PNhh0Z7-po4q0t0.roa File: Pb_iAjlrFzX0PNhh0Z7-po4q0t0.roa (raw, json) Hash identifier: N1a/OMd49NcgbpsemYgtnBLeLrok4CP6KedkP4+PD00= Subject key identifier: 3D:BF:E2:02:39:6B:17:35:F4:3C:D8:61:D1:9E:FE:A6:8E:2A:D2:DD Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 042F Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Pb_iAjlrFzX0PNhh0Z7-po4q0t0.roa Signing time: Wed 18 Dec 2024 02:22:16 +0000 ROA not before: Wed 18 Dec 2024 02:22:16 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 125.29.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:22:16 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=3DBFE202396B1735F43CD861D19EFEA68E2AD2DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b6:34:19:84:f0:b6:a4:39:9b:3a:43:9a:bf: f8:94:d0:c8:4a:c2:b5:e2:33:7d:29:74:7b:73:83: bc:50:a9:8b:41:7b:b5:40:97:39:fc:91:8a:50:2a: 63:73:d4:70:4e:ea:13:fc:47:b7:95:ed:04:37:8e: a9:0a:22:3f:6c:2d:c3:78:92:c8:b6:c9:ba:40:af: e4:d8:c8:f6:ed:f1:75:01:eb:77:29:0e:ad:9c:a1: f1:74:3c:f8:f4:9e:a7:7c:b3:9b:3e:f7:f8:aa:1e: 6c:5e:63:a2:1c:50:e1:86:3b:c3:41:d9:90:7a:35: 57:fc:43:b0:99:9e:9e:ba:53:eb:71:9c:46:5a:bf: 1b:88:9d:0b:e5:b8:5e:3b:1a:36:17:47:8c:6b:f1: ce:a9:57:13:4d:2d:18:a7:03:c5:ec:e6:68:4e:34: 24:6c:5f:a4:f8:2f:92:5b:fb:c8:77:ac:8a:b5:95: e5:45:bc:64:6a:76:ad:d3:0d:1f:0c:60:0b:4b:cb: 09:be:b1:43:f4:21:5d:a4:0b:92:9f:51:2b:77:b3: 68:2a:69:4c:cd:9f:f0:f7:5c:95:0e:98:52:a4:95: f2:23:98:27:0e:81:13:bc:2e:77:e9:03:76:30:fe: 0d:36:30:1a:d3:36:7b:00:7c:3e:38:f0:18:2a:50: 92:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:BF:E2:02:39:6B:17:35:F4:3C:D8:61:D1:9E:FE:A6:8E:2A:D2:DD X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Pb_iAjlrFzX0PNhh0Z7-po4q0t0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.29.128.0/17 Signature Algorithm: sha256WithRSAEncryption 53:e1:77:08:31:9f:26:31:0d:a2:4f:a2:a4:5d:7b:93:6a:2a: d3:58:7e:14:b5:cc:b6:7f:f3:c5:55:89:5a:36:d0:4b:d3:20: 5e:0a:b3:c5:ba:08:98:42:cc:76:7c:fc:75:87:0e:49:84:50: d7:4e:d7:38:9d:79:7b:e6:a9:7f:81:3b:1c:18:e8:62:3e:47: f4:96:76:0e:17:82:e2:05:86:c0:f3:a0:00:68:93:50:52:17: d3:43:8f:72:1b:7b:11:7b:ac:6c:17:3b:24:15:1a:75:72:76: b7:05:de:2a:aa:a4:ae:52:c6:72:b2:8d:73:fb:fa:50:2f:6f: 6f:20:22:b3:c3:24:fb:27:79:dd:c7:7b:61:1b:8d:1d:30:c6: de:0c:c4:89:ed:b7:26:12:a3:22:22:7c:ec:e3:c2:26:8a:e2: 11:9e:4a:21:db:e1:43:f5:20:55:7b:4f:c8:2a:10:c2:dd:be: 6f:d2:d4:24:44:70:29:aa:59:cf:be:ca:54:19:51:97:f9:f1: eb:30:aa:ee:3f:d7:8c:f2:3e:40:ef:98:ee:69:17:64:15:5e: 32:1b:74:c8:82:d4:7e:cd:cb:67:48:68:63:69:f1:92:e8:59: 89:81:ed:1e:e5:1d:8b:92:02:9a:80:82:ad:44:a3:dc:d4:72: 80:21:fb:0d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjIyMTZaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNEQkZFMjAyMzk2QjE3 MzVGNDNDRDg2MUQxOUVGRUE2OEUyQUQyREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgtjQZhPC2pDmbOkOav/iU0MhKwrXiM30pdHtzg7xQqYtBe7VA lzn8kYpQKmNz1HBO6hP8R7eV7QQ3jqkKIj9sLcN4ksi2ybpAr+TYyPbt8XUB63cp Dq2cofF0PPj0nqd8s5s+9/iqHmxeY6IcUOGGO8NB2ZB6NVf8Q7CZnp66U+txnEZa vxuInQvluF47GjYXR4xr8c6pVxNNLRinA8Xs5mhONCRsX6T4L5Jb+8h3rIq1leVF vGRqdq3TDR8MYAtLywm+sUP0IV2kC5KfUSt3s2gqaUzNn/D3XJUOmFKklfIjmCcO gRO8LnfpA3Yw/g02MBrTNnsAfD448BgqUJIlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPb/iAjlrFzX0PNhh0Z7+po4q0t0wHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL1BiX2lBamxyRnpYMFBOaGgwWjctcG80cTB0MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAd9HYAwDQYJKoZIhvcNAQELBQADggEBAFPhdwgxnyYxDaJPoqRde5NqKtNY fhS1zLZ/88VViVo20EvTIF4Ks8W6CJhCzHZ8/HWHDkmEUNdO1zideXvmqX+BOxwY 6GI+R/SWdg4XguIFhsDzoABok1BSF9NDj3IbexF7rGwXOyQVGnVydrcF3iqqpK5S xnKyjXP7+lAvb28gIrPDJPsned3He2EbjR0wxt4MxInttyYSoyIifOzjwiaK4hGe SiHb4UP1IFV7T8gqEMLdvm/S1CREcCmqWc++ylQZUZf58eswqu4/14zyPkDvmO5p F2QVXjIbdMiC1H7Ny2dIaGNp8ZLoWYmB7R7lHYuSApqAgq1Eo9zUcoAh+w0= -----END CERTIFICATE-----Generated at Sat Apr 5 23:10:55 2025 by rpki-client