$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/ccoUD1HQd0pIdY1AQNxH9RggMvo.roa File: ccoUD1HQd0pIdY1AQNxH9RggMvo.roa (raw, json) Hash identifier: C7VkGJlfEF6hLl+i0MOOfe9qMXV7gQtdptuFAs4m0LY= Subject key identifier: 71:CA:14:0F:51:D0:77:4A:48:75:8D:40:40:DC:47:F5:18:20:32:FA Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 044B Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/ccoUD1HQd0pIdY1AQNxH9RggMvo.roa Signing time: Wed 18 Dec 2024 02:24:04 +0000 ROA not before: Wed 18 Dec 2024 02:24:04 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 27.89.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:24:04 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=71CA140F51D0774A48758D4040DC47F5182032FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:97:7c:f9:0c:dd:d5:07:dc:a3:aa:dc:57:0e: 48:6d:88:2b:13:2b:75:2d:36:dd:89:8d:a9:14:26: 8d:67:6a:45:9e:ff:68:53:2d:e9:9a:9c:39:d3:6b: d0:34:b6:0f:7b:c8:17:01:ea:0d:1d:b7:27:2f:3d: c3:db:f0:7b:8f:5b:4f:d4:42:62:bc:9a:bf:9d:8d: 3d:ba:1a:6b:3e:63:e2:29:f7:f5:27:ee:a1:83:91: b4:87:03:23:65:0b:e1:94:af:7c:ce:f8:d6:65:1d: 8d:ba:2e:1d:9a:5b:c1:cf:d3:fd:18:f1:69:4f:63: d8:a4:a0:80:3d:aa:0f:29:1d:63:48:83:3a:40:02: 50:58:7e:55:67:f4:a4:4e:f4:8a:25:e4:fa:a9:04: ca:b6:83:b5:1c:df:42:c6:84:9a:73:e2:5b:46:6e: d7:8f:18:81:f9:9a:87:44:93:48:0c:db:2c:5f:05: f6:9f:e6:4c:b0:0b:a3:a4:49:20:6a:27:49:b2:72: 54:88:5e:59:bf:40:91:0e:ae:cf:08:95:32:e6:1a: 6b:9c:df:20:04:b7:8d:94:b6:56:37:38:cb:4a:45: ad:9b:60:2e:6d:77:60:90:85:58:61:cd:87:f6:6c: c8:b5:3d:ee:4f:e5:5b:9c:e3:5b:4b:89:ba:d8:b3: 1e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:CA:14:0F:51:D0:77:4A:48:75:8D:40:40:DC:47:F5:18:20:32:FA X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/ccoUD1HQd0pIdY1AQNxH9RggMvo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption ac:64:b7:9e:42:bd:70:30:44:51:e0:2e:94:86:76:56:15:a0: 00:0c:92:9d:6e:b6:38:2f:b6:7b:6b:b9:27:a9:af:b0:b7:df: 02:8f:6f:1d:02:30:8f:f9:88:39:16:16:78:02:4c:7b:95:2e: 11:5b:72:ef:70:4e:e6:43:40:59:ae:20:06:75:84:4f:2a:b7: e5:04:cd:8b:dc:44:28:94:77:5a:3d:2b:52:26:29:e2:96:10: 19:4c:fb:52:8a:68:5e:ce:32:41:1a:99:41:cf:b7:58:38:3e: d1:04:18:62:a9:35:9b:83:53:a0:c6:91:a1:b4:46:a3:75:48: c0:83:30:d2:47:9c:40:e5:c5:80:9c:0d:36:00:32:9d:39:6b: 0a:d5:87:20:a2:e9:5a:8f:0b:58:b9:d0:bc:69:81:90:11:88: e1:44:eb:b2:89:e2:1f:e2:74:fe:72:d2:ca:7d:e3:c3:45:d7: c3:d7:87:51:d6:81:09:06:83:5f:61:ec:86:f2:f6:30:8c:72: 93:05:a7:6c:5f:41:da:ac:03:e3:5a:1d:10:97:8f:a5:f8:ef: 77:f8:89:62:77:21:1c:b9:6c:d7:59:b3:87:97:75:41:88:6a: 29:96:fa:0a:fb:61:71:14:ff:c5:da:b7:a2:e3:c7:50:01:fd: c7:0d:a8:22 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICBEswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjI0MDRaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcxQ0ExNDBGNTFEMDc3 NEE0ODc1OEQ0MDQwREM0N0Y1MTgyMDMyRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2l3z5DN3VB9yjqtxXDkhtiCsTK3UtNt2JjakUJo1nakWe/2hT LemanDnTa9A0tg97yBcB6g0dtycvPcPb8HuPW0/UQmK8mr+djT26Gms+Y+Ip9/Un 7qGDkbSHAyNlC+GUr3zO+NZlHY26Lh2aW8HP0/0Y8WlPY9ikoIA9qg8pHWNIgzpA AlBYflVn9KRO9Iol5PqpBMq2g7Uc30LGhJpz4ltGbtePGIH5modEk0gM2yxfBfaf 5kywC6OkSSBqJ0myclSIXlm/QJEOrs8IlTLmGmuc3yAEt42UtlY3OMtKRa2bYC5t d2CQhVhhzYf2bMi1Pe5P5Vuc41tLibrYsx6jAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUccoUD1HQd0pIdY1AQNxH9RggMvowHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL2Njb1VEMUhRZDBwSWRZMUFRTnhIOVJnZ012by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAbWTANBgkqhkiG9w0BAQsFAAOCAQEArGS3nkK9cDBEUeAulIZ2VhWgAAyS nW62OC+2e2u5J6mvsLffAo9vHQIwj/mIORYWeAJMe5UuEVty73BO5kNAWa4gBnWE Tyq35QTNi9xEKJR3Wj0rUiYp4pYQGUz7UopoXs4yQRqZQc+3WDg+0QQYYqk1m4NT oMaRobRGo3VIwIMw0kecQOXFgJwNNgAynTlrCtWHIKLpWo8LWLnQvGmBkBGI4UTr soniH+J0/nLSyn3jw0XXw9eHUdaBCQaDX2HshvL2MIxykwWnbF9B2qwD41odEJeP pfjvd/iJYnchHLls11mzh5d1QYhqKZb6CvthcRT/xdq3ouPHUAH9xw2oIg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:46 2025 by rpki-client