$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/W0KRtkGJw-YpidN--pva0mXC4Pg.roa File: W0KRtkGJw-YpidN--pva0mXC4Pg.roa (raw, json) Hash identifier: gnMiEb2BpDQh9yVapHVaEnut3pjocAiJ36cCwdaJkOc= Subject key identifier: 5B:42:91:B6:41:89:C3:E6:29:89:D3:7E:FA:9B:DA:D2:65:C2:E0:F8 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 04DE Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/W0KRtkGJw-YpidN--pva0mXC4Pg.roa Signing time: Wed 18 Dec 2024 02:37:05 +0000 ROA not before: Wed 18 Dec 2024 02:37:05 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 211.125.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1246 (0x4de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:37:05 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=5B4291B64189C3E62989D37EFA9BDAD265C2E0F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5b:fa:ea:17:42:25:c5:b4:60:33:fa:0d:11: 25:ec:5a:3d:20:d3:35:7d:18:5b:87:ef:de:b3:69: c4:b2:9b:db:2c:c5:ee:1b:b2:ad:07:dd:97:1d:d4: 87:8d:cd:eb:40:d6:80:42:66:26:52:c8:dc:65:c1: c3:6f:b4:08:b5:d6:01:6a:c2:94:79:4a:db:f5:a1: 12:54:11:d1:2d:b2:e4:e9:9c:9e:31:b5:32:c7:8f: 0d:fd:b2:8f:5b:4b:09:41:64:b6:0d:cc:66:f4:27: 45:07:c5:75:11:e6:e8:84:74:2a:31:5b:8a:e6:8d: 5d:97:33:6f:a3:87:5b:20:7d:f0:77:a8:2b:82:0a: 85:d2:42:fd:31:77:86:6f:53:11:a3:5f:25:94:25: f3:a1:7b:84:8c:ea:f1:f7:f1:91:0e:8f:ef:1d:1a: 02:28:3d:e5:3c:a8:4e:78:a8:d3:93:d0:5b:42:b0: ae:2a:8f:a3:e1:40:6c:d2:24:92:78:33:1c:d3:83: 51:41:bd:ea:a8:01:48:e7:5c:cc:a6:e6:bb:61:03: 34:46:4c:6b:84:6a:e6:24:ff:ff:cc:03:32:fd:1f: eb:e4:af:39:39:4b:34:82:de:92:34:ec:a6:ab:ed: 4e:8f:fe:40:e5:72:43:29:5f:ef:e2:d6:a4:f6:07: dd:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:42:91:B6:41:89:C3:E6:29:89:D3:7E:FA:9B:DA:D2:65:C2:E0:F8 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/W0KRtkGJw-YpidN--pva0mXC4Pg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.125.160.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:d1:ea:31:9d:9e:0d:92:d9:85:af:25:a2:8c:6a:38:c8:7c: 7e:a9:d0:cf:47:a2:d7:e3:4c:8f:cb:b4:06:a2:d9:92:ca:b5: 6b:67:06:79:cf:ff:0d:c8:1d:e3:23:3b:b0:32:a1:b4:55:94: 05:38:c0:0f:06:22:4c:bb:46:72:0d:5e:88:1a:87:b0:10:86: 72:6b:d8:26:7d:3d:3a:ca:1d:f7:88:a3:26:4d:df:e2:37:f8: 2f:90:a1:87:3f:84:f0:b8:5b:44:67:72:43:c9:79:48:77:2f: 3d:e3:b5:50:1a:3e:5f:73:a4:5c:91:41:70:a5:39:58:b3:3f: 61:dc:02:1f:0d:e6:12:1a:28:15:be:20:21:7f:da:27:51:ed: e0:a7:18:58:1a:5f:b9:9e:96:86:51:6a:c8:91:6c:5c:50:3d: 42:20:bc:d8:13:a1:18:36:6d:d5:d9:1d:0f:e8:34:79:1a:be: 56:ed:da:9a:92:1f:a8:5a:db:c6:7b:c9:49:b4:f3:7f:de:57: 75:17:9a:c2:04:9d:1c:cf:43:f8:a4:cb:6e:a4:d9:9f:d5:9c: 0a:56:39:a4:c1:e3:35:f0:c1:ac:3f:09:e2:22:ef:99:9c:d3: 40:c1:48:7a:8d:e3:4c:86:72:a3:66:0a:0f:3b:5e:b3:ff:8c: 9d:d8:94:bb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBN4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjM3MDVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVCNDI5MUI2NDE4OUMz RTYyOTg5RDM3RUZBOUJEQUQyNjVDMkUwRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClW/rqF0IlxbRgM/oNESXsWj0g0zV9GFuH796zacSym9ssxe4b sq0H3Zcd1IeNzetA1oBCZiZSyNxlwcNvtAi11gFqwpR5Stv1oRJUEdEtsuTpnJ4x tTLHjw39so9bSwlBZLYNzGb0J0UHxXUR5uiEdCoxW4rmjV2XM2+jh1sgffB3qCuC CoXSQv0xd4ZvUxGjXyWUJfOhe4SM6vH38ZEOj+8dGgIoPeU8qE54qNOT0FtCsK4q j6PhQGzSJJJ4MxzTg1FBveqoAUjnXMym5rthAzRGTGuEauYk///MAzL9H+vkrzk5 SzSC3pI07Kar7U6P/kDlckMpX+/i1qT2B90xAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUW0KRtkGJw+YpidN++pva0mXC4PgwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL1cwS1J0a0dKdy1ZcGlkTi0tcHZhMG1YQzRQZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTfaAwDQYJKoZIhvcNAQELBQADggEBAGvR6jGdng2S2YWvJaKMajjIfH6p 0M9HotfjTI/LtAai2ZLKtWtnBnnP/w3IHeMjO7AyobRVlAU4wA8GIky7RnINXoga h7AQhnJr2CZ9PTrKHfeIoyZN3+I3+C+QoYc/hPC4W0RnckPJeUh3Lz3jtVAaPl9z pFyRQXClOVizP2HcAh8N5hIaKBW+ICF/2idR7eCnGFgaX7meloZRasiRbFxQPUIg vNgToRg2bdXZHQ/oNHkavlbt2pqSH6ha28Z7yUm083/eV3UXmsIEnRzPQ/iky26k 2Z/VnApWOaTB4zXwwaw/CeIi75mc00DBSHqN40yGcqNmCg87XrP/jJ3YlLs= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:24 2025 by rpki-client