$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/cp4fSi3kv5K1mSX8zCHZaiJnOhI.roa File: cp4fSi3kv5K1mSX8zCHZaiJnOhI.roa (raw, json) Hash identifier: ryj0vQBEQcJPFAUAVjEp29lijG5I0jKHVtrBMJtorRM= Subject key identifier: 72:9E:1F:4A:2D:E4:BF:92:B5:99:25:FC:CC:21:D9:6A:22:67:3A:12 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 050F Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/cp4fSi3kv5K1mSX8zCHZaiJnOhI.roa Signing time: Wed 18 Dec 2024 02:42:15 +0000 ROA not before: Wed 18 Dec 2024 02:42:15 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 211.10.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1295 (0x50f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:42:15 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=729E1F4A2DE4BF92B59925FCCC21D96A22673A12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:0f:08:4c:60:97:19:f4:f4:8f:f5:a6:b6:a9: a1:40:5a:d0:4a:0d:09:8f:85:84:7f:60:ba:0b:6a: fd:2d:73:f2:6d:23:d9:e8:2d:7b:98:fc:96:92:39: 1b:c8:86:c6:be:0b:a2:73:e4:db:5a:bf:df:32:7a: 52:e8:8a:47:52:6e:2a:9f:42:b4:ea:81:44:8a:89: 6d:1f:e3:16:57:15:b7:b2:68:1d:87:f6:a6:23:98: 53:d8:14:ec:95:18:09:1c:0c:44:77:b2:02:40:43: 63:2a:fe:d0:b2:37:ff:cb:0a:81:c9:8c:bc:3c:15: 98:ef:a5:61:48:59:10:1e:49:b8:68:25:13:aa:d2: 24:e9:cb:e4:d5:75:78:14:ea:fe:b8:ed:2e:ce:f7: a2:36:88:f2:1c:35:cc:47:b4:ac:92:b7:72:04:2a: 19:3e:49:81:bb:60:d0:28:d6:0d:5e:4d:c5:66:b9: ca:f6:4c:86:6c:f8:f4:e2:e0:2a:6c:fe:40:3f:c5: 74:ed:f4:27:2e:c1:56:d1:25:a8:98:7e:eb:89:31: c6:c4:ff:8c:e4:ef:d5:55:42:21:2e:93:59:b2:36: 83:4e:62:e9:dd:0c:32:74:b9:07:65:a9:2f:df:b0: bf:7b:f5:33:4d:fa:58:c0:28:de:f8:fa:6f:7a:a1: e4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:9E:1F:4A:2D:E4:BF:92:B5:99:25:FC:CC:21:D9:6A:22:67:3A:12 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/cp4fSi3kv5K1mSX8zCHZaiJnOhI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.10.171.0/24 Signature Algorithm: sha256WithRSAEncryption ac:20:33:f8:17:81:ef:08:d3:c1:cc:6a:0f:7f:79:e3:24:51: 70:8e:0e:0b:1f:1b:d5:08:4d:4c:e4:a4:4b:0f:43:a1:52:b6: 3d:7b:8a:d4:1c:87:4a:57:59:f8:13:06:23:ff:a9:11:fc:e3: 16:d3:7f:32:15:db:6f:b6:1e:25:ba:a9:59:cc:28:6e:06:d7: 15:cb:36:ac:12:dd:60:7b:6a:82:b3:7e:0c:3a:f2:b0:eb:61: 6a:a8:e3:91:3c:de:87:b9:38:bd:a6:b4:24:7c:8d:37:f9:8f: 07:1f:e7:8e:fb:51:7f:f2:b8:8d:dc:76:15:6e:aa:1c:a5:5c: 69:7f:3f:c6:80:27:e5:ae:63:8e:5b:dd:5b:ad:55:0d:45:31: 43:ea:4b:8b:59:ca:60:47:08:98:22:2e:59:55:47:22:05:a5: cb:fd:b3:d8:9a:aa:f2:67:6b:61:80:46:20:e4:16:11:ea:25: 7f:98:67:9b:ec:b5:cf:c9:eb:fd:96:38:30:b4:31:cb:79:f5: f7:c9:14:dd:28:9b:6e:ca:2a:cd:82:f6:0b:31:63:97:65:a4: 98:8b:b9:90:e7:9c:72:29:df:b2:eb:3a:99:88:8b:77:6a:bd: 61:bb:31:fe:28:86:dc:8c:c4:c7:1d:8e:29:95:8b:3e:ac:b6: 03:77:c8:3d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBQ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjQyMTVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcyOUUxRjRBMkRFNEJG OTJCNTk5MjVGQ0NDMjFEOTZBMjI2NzNBMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVDwhMYJcZ9PSP9aa2qaFAWtBKDQmPhYR/YLoLav0tc/JtI9no LXuY/JaSORvIhsa+C6Jz5Ntav98yelLoikdSbiqfQrTqgUSKiW0f4xZXFbeyaB2H 9qYjmFPYFOyVGAkcDER3sgJAQ2Mq/tCyN//LCoHJjLw8FZjvpWFIWRAeSbhoJROq 0iTpy+TVdXgU6v647S7O96I2iPIcNcxHtKySt3IEKhk+SYG7YNAo1g1eTcVmucr2 TIZs+PTi4Cps/kA/xXTt9CcuwVbRJaiYfuuJMcbE/4zk79VVQiEuk1myNoNOYund DDJ0uQdlqS/fsL979TNN+ljAKN74+m96oeSvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcp4fSi3kv5K1mSX8zCHZaiJnOhIwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL2NwNGZTaTNrdjVLMW1TWDh6Q0haYWlKbk9oSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTCqswDQYJKoZIhvcNAQELBQADggEBAKwgM/gXge8I08HMag9/eeMkUXCO DgsfG9UITUzkpEsPQ6FStj17itQch0pXWfgTBiP/qRH84xbTfzIV22+2HiW6qVnM KG4G1xXLNqwS3WB7aoKzfgw68rDrYWqo45E83oe5OL2mtCR8jTf5jwcf5477UX/y uI3cdhVuqhylXGl/P8aAJ+WuY45b3VutVQ1FMUPqS4tZymBHCJgiLllVRyIFpcv9 s9iaqvJna2GARiDkFhHqJX+YZ5vstc/J6/2WODC0Mct59ffJFN0om27KKs2C9gsx Y5dlpJiLuZDnnHIp37LrOpmIi3dqvWG7Mf4ohtyMxMcdjimViz6stgN3yD0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:45 2025 by rpki-client