$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/cMJmYncU-JT0Lyxd4Gd2HAwjeR8.roa File: cMJmYncU-JT0Lyxd4Gd2HAwjeR8.roa (raw, json) Hash identifier: 7UYfX5hU3ENcnmkDXRB4DgdcWhaPl+LjsOoe0enqrlA= Subject key identifier: 70:C2:66:62:77:14:F8:94:F4:2F:2C:5D:E0:67:76:1C:0C:23:79:1F Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 056B Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/cMJmYncU-JT0Lyxd4Gd2HAwjeR8.roa Signing time: Wed 18 Dec 2024 03:00:54 +0000 ROA not before: Wed 18 Dec 2024 03:00:54 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 210.253.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1387 (0x56b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 03:00:54 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=70C266627714F894F42F2C5DE067761C0C23791F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0c:0c:99:95:c5:54:1a:11:fd:48:7e:e6:e5: 41:58:49:a1:08:6e:fc:6e:a2:68:9d:3f:33:2f:7a: a0:1d:24:34:c3:48:d1:a6:a8:41:a8:74:51:b3:c1: d7:45:be:1b:90:dc:61:3a:6b:75:98:53:b3:0f:c7: 3a:d8:b1:d7:34:97:37:ad:d1:a9:13:20:00:4d:47: f5:53:6d:4b:77:44:7c:50:02:eb:84:2f:3e:cd:c4: fd:9e:c0:d8:1f:c9:40:3a:ba:63:4f:a0:54:00:79: d5:38:24:f4:a5:58:68:5a:f1:67:e3:4d:ea:42:05: ff:82:ee:50:28:e7:ec:43:b0:3c:c3:b3:83:ef:f4: 98:14:8b:a0:3a:94:51:56:d2:c8:99:83:92:82:a0: 3c:de:52:4e:34:dc:38:0a:9b:48:6b:97:c8:dc:83: f4:0c:53:99:a7:e7:c6:46:d4:3d:b9:a9:5f:9d:7b: c5:22:51:c4:8a:68:a7:e8:ac:7d:34:5f:4e:6f:aa: ee:68:2d:1c:c0:23:93:c0:1c:19:f2:f0:82:2a:a7: 22:73:39:e7:59:60:69:0a:21:e9:93:d9:80:86:34: 2a:f0:9a:01:45:74:ae:09:3c:32:99:de:3d:50:cf: e5:4e:fc:2d:52:50:f4:a7:63:9c:22:f4:a0:a9:88: f7:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C2:66:62:77:14:F8:94:F4:2F:2C:5D:E0:67:76:1C:0C:23:79:1F X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/cMJmYncU-JT0Lyxd4Gd2HAwjeR8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.253.0.0/19 Signature Algorithm: sha256WithRSAEncryption 96:40:2e:e4:f3:a6:6f:20:4e:0e:3b:0f:4c:10:65:bf:02:94: fc:df:b6:c7:5e:71:9b:98:bd:3a:c3:c7:e6:4f:0f:29:8d:70: 03:3c:25:86:3f:96:b1:d8:c6:f4:81:ea:48:06:58:65:c9:88: 99:d3:3c:91:c5:64:38:ee:02:14:5b:00:49:a5:ae:a0:49:44: e6:2e:03:f2:9f:78:0f:c5:53:9f:2f:46:21:0b:68:eb:0c:66: 27:b5:ff:5c:4f:c4:95:30:52:c2:2f:b2:e2:f9:56:42:1f:55: a1:34:9b:6e:a4:5f:5c:75:f8:b4:27:30:25:33:34:b8:76:22: 4c:00:f6:11:5b:9d:4b:e4:76:7d:37:e3:9e:a5:b0:4c:a3:45: 2d:ba:e3:31:84:95:6e:c2:34:b5:c0:4c:ee:bc:7f:76:a3:7d: 30:57:79:58:b1:37:31:a7:f6:ec:d0:29:37:d7:db:57:b2:bf: bc:9e:f0:bd:49:5e:b5:b0:c0:46:a5:1f:89:d2:0a:3e:fb:5e: 9a:6c:66:2e:a0:cb:eb:77:ff:e2:8f:da:ce:7c:63:16:ae:10: 9c:d2:94:09:23:a9:1a:f1:c1:e4:df:14:db:dc:52:56:c9:f1: 0f:c7:01:f1:5e:29:32:ab:28:03:e6:02:70:3f:b7:74:c0:90: e6:42:98:63 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MzAwNTRaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcwQzI2NjYyNzcxNEY4 OTRGNDJGMkM1REUwNjc3NjFDMEMyMzc5MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/DAyZlcVUGhH9SH7m5UFYSaEIbvxuomidPzMveqAdJDTDSNGm qEGodFGzwddFvhuQ3GE6a3WYU7MPxzrYsdc0lzet0akTIABNR/VTbUt3RHxQAuuE Lz7NxP2ewNgfyUA6umNPoFQAedU4JPSlWGha8WfjTepCBf+C7lAo5+xDsDzDs4Pv 9JgUi6A6lFFW0siZg5KCoDzeUk403DgKm0hrl8jcg/QMU5mn58ZG1D25qV+de8Ui UcSKaKforH00X05vqu5oLRzAI5PAHBny8IIqpyJzOedZYGkKIemT2YCGNCrwmgFF dK4JPDKZ3j1Qz+VO/C1SUPSnY5wi9KCpiPdnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcMJmYncU+JT0Lyxd4Gd2HAwjeR8wHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL2NNSm1ZbmNVLUpUMEx5eGQ0R2QySEF3amVSOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXS/QAwDQYJKoZIhvcNAQELBQADggEBAJZALuTzpm8gTg47D0wQZb8ClPzf tsdecZuYvTrDx+ZPDymNcAM8JYY/lrHYxvSB6kgGWGXJiJnTPJHFZDjuAhRbAEml rqBJROYuA/KfeA/FU58vRiELaOsMZie1/1xPxJUwUsIvsuL5VkIfVaE0m26kX1x1 +LQnMCUzNLh2IkwA9hFbnUvkdn03456lsEyjRS264zGElW7CNLXATO68f3ajfTBX eVixNzGn9uzQKTfX21eyv7ye8L1JXrWwwEalH4nSCj77XppsZi6gy+t3/+KP2s58 YxauEJzSlAkjqRrxweTfFNvcUlbJ8Q/HAfFeKTKrKAPmAnA/t3TAkOZCmGM= -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:19 2025 by rpki-client