$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/YyZgnIAWaoglSzQzZX20Yp6IAMs.roa File: YyZgnIAWaoglSzQzZX20Yp6IAMs.roa (raw, json) Hash identifier: vmGLROXRiQrnNDvsIPtbgO3P7rPlPrn2RqLUxXVn5sI= Subject key identifier: 63:26:60:9C:80:16:6A:88:25:4B:34:33:65:7D:B4:62:9E:88:00:CB Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0498 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/YyZgnIAWaoglSzQzZX20Yp6IAMs.roa Signing time: Wed 18 Dec 2024 02:28:54 +0000 ROA not before: Wed 18 Dec 2024 02:28:54 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 124.215.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:28:54 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=6326609C80166A88254B3433657DB4629E8800CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e1:c1:70:ad:b5:18:50:c2:23:77:35:c0:fa: e1:ce:17:20:56:48:0e:97:93:0c:f0:a9:c6:f3:34: f5:b2:e4:73:ba:8b:00:3c:40:89:e4:d6:de:43:55: f7:d8:97:58:eb:fd:5f:e3:8d:7e:08:15:5a:b2:4f: 09:f5:e5:be:c2:39:01:be:9e:f9:28:6e:d0:f3:97: 93:d6:fa:4a:7c:eb:43:6d:31:ee:29:14:87:40:4d: c6:6a:96:4f:dc:c3:d4:65:5d:37:9a:8a:2e:f1:60: 73:2e:8e:83:f9:54:db:32:bd:71:e9:58:56:71:67: 1e:93:6f:2a:4d:10:04:bb:12:39:54:a1:e3:9e:0f: 19:ed:f9:36:f8:f8:1e:64:55:93:ed:76:ae:c4:e0: 66:1e:89:39:93:cf:a8:41:31:9e:41:a5:45:d6:69: b2:25:90:b4:e1:35:ea:72:c4:a4:04:dd:7c:0a:e6: 89:41:36:b7:4c:ee:01:2b:cb:09:d3:e1:b8:22:14: cc:f9:04:5f:2f:d4:5d:98:6b:af:2d:39:ee:52:0c: 3e:e3:5a:77:22:c0:fb:ab:5d:79:2f:a8:8c:a6:dd: e4:75:99:ff:5d:44:92:21:24:a8:2b:d1:89:84:41: 94:ee:3a:6a:35:44:05:d3:2b:b6:03:cc:63:2b:bd: 3e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:26:60:9C:80:16:6A:88:25:4B:34:33:65:7D:B4:62:9E:88:00:CB X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/YyZgnIAWaoglSzQzZX20Yp6IAMs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.215.128.0/18 Signature Algorithm: sha256WithRSAEncryption 59:4e:99:c7:ad:3f:1f:08:e6:f4:1b:58:bc:de:66:af:b9:45: 1e:d9:d5:19:a3:08:94:aa:ce:9c:77:75:73:51:d9:bd:e6:07: d7:6a:cf:5f:de:10:63:93:a4:63:9e:f8:c3:57:a7:10:7a:57: 47:b1:11:16:56:11:b8:3c:08:29:bb:30:7f:37:34:91:19:07: fe:48:73:64:c2:d0:8b:8a:c3:18:ce:26:28:01:27:29:66:69: 2b:75:f1:e7:be:59:24:2f:52:59:71:04:f8:80:6d:c6:88:b7: c7:6a:89:7a:30:75:f8:fb:d7:e2:6d:98:1c:3b:df:ab:66:f9: dd:93:c3:74:b3:13:ce:07:01:3b:ed:94:7c:25:29:73:f1:99: ec:c3:c6:25:d9:56:f6:d3:e6:b2:21:fa:dd:6d:b3:71:c9:92: 58:75:58:93:d5:af:08:8a:3d:6d:9d:d2:35:03:f3:dc:18:4c: 12:bd:55:34:0f:07:a0:37:3c:8e:a8:aa:96:a6:e7:12:27:49: e0:10:f3:18:12:bb:dd:a8:92:bc:19:e2:0c:e5:e1:09:ab:3e: 4d:57:d2:b7:b6:d8:42:4f:9a:df:ed:c9:d4:a3:10:6e:d2:9b: c3:17:df:2b:c9:9f:be:f4:34:6e:7d:87:b5:71:7f:db:4e:b4: 04:74:2f:d1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjI4NTRaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYzMjY2MDlDODAxNjZB ODgyNTRCMzQzMzY1N0RCNDYyOUU4ODAwQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF4cFwrbUYUMIjdzXA+uHOFyBWSA6XkwzwqcbzNPWy5HO6iwA8 QInk1t5DVffYl1jr/V/jjX4IFVqyTwn15b7COQG+nvkobtDzl5PW+kp860NtMe4p FIdATcZqlk/cw9RlXTeaii7xYHMujoP5VNsyvXHpWFZxZx6TbypNEAS7EjlUoeOe Dxnt+Tb4+B5kVZPtdq7E4GYeiTmTz6hBMZ5BpUXWabIlkLThNepyxKQE3XwK5olB NrdM7gErywnT4bgiFMz5BF8v1F2Ya68tOe5SDD7jWnciwPurXXkvqIym3eR1mf9d RJIhJKgr0YmEQZTuOmo1RAXTK7YDzGMrvT5pAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYyZgnIAWaoglSzQzZX20Yp6IAMswHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL1l5WmduSUFXYW9nbFN6UXpaWDIwWXA2SUFNcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ814AwDQYJKoZIhvcNAQELBQADggEBAFlOmcetPx8I5vQbWLzeZq+5RR7Z 1RmjCJSqzpx3dXNR2b3mB9dqz1/eEGOTpGOe+MNXpxB6V0exERZWEbg8CCm7MH83 NJEZB/5Ic2TC0IuKwxjOJigBJylmaSt18ee+WSQvUllxBPiAbcaIt8dqiXowdfj7 1+JtmBw736tm+d2Tw3SzE84HATvtlHwlKXPxmezDxiXZVvbT5rIh+t1ts3HJklh1 WJPVrwiKPW2d0jUD89wYTBK9VTQPB6A3PI6oqpam5xInSeAQ8xgSu92okrwZ4gzl 4QmrPk1X0re22EJPmt/tydSjEG7Sm8MX3yvJn770NG59h7Vxf9tOtAR0L9E= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:47 2025 by rpki-client