$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/lr29cSYKmoiFFFD544ku5cUr3hk.roa File: lr29cSYKmoiFFFD544ku5cUr3hk.roa (raw, json) Hash identifier: A3KCZPwKdrPDI3OHILPPtd0YT/+vWj9kzVTvdRFHemo= Subject key identifier: 96:BD:BD:71:26:0A:9A:88:85:14:50:F9:E3:89:2E:E5:C5:2B:DE:19 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 046F Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/lr29cSYKmoiFFFD544ku5cUr3hk.roa Signing time: Wed 18 Dec 2024 02:26:20 +0000 ROA not before: Wed 18 Dec 2024 02:26:20 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 210.230.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1135 (0x46f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:26:20 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=96BDBD71260A9A88851450F9E3892EE5C52BDE19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:3b:24:22:cc:78:d2:89:2f:68:66:b5:c2:6c: 87:d8:60:7b:3a:fa:f2:a5:fc:f7:91:10:eb:bf:09: 35:46:19:e0:cc:91:2d:72:f6:c2:d2:c3:4b:21:f4: 31:43:25:3e:0f:37:cd:22:9d:08:49:e6:dd:c7:99: d0:b1:30:a5:19:19:ec:b1:fb:3c:b6:d2:4b:47:b8: 62:44:20:05:06:2e:07:77:4b:e2:bf:3d:ca:b5:a9: 43:0f:92:ec:09:2e:0d:e6:a5:fa:53:79:23:8d:59: e7:85:c7:e0:ae:2f:19:2c:16:69:c3:d3:6a:6f:42: f5:c5:b6:49:93:29:57:94:6e:1c:fe:cb:82:b9:a2: 0c:a5:f3:58:f8:b4:88:38:b6:50:65:65:97:80:7f: 92:50:88:20:58:08:a8:17:57:80:2d:d4:a8:9c:2f: af:49:0e:24:0c:9a:a2:31:f2:4f:1a:80:d5:55:4c: a3:a1:8c:df:63:a6:65:79:87:b4:05:5c:db:ed:6d: d2:8d:2a:d2:77:2a:26:85:5e:72:13:eb:0e:12:8a: 1c:20:9a:12:7d:b1:bb:d5:2d:af:f9:19:10:c9:3a: 60:2b:8f:02:04:38:8f:7a:cc:75:55:02:da:7a:3a: 3e:d9:1a:37:0f:20:fd:83:56:0e:68:48:2c:3e:04: 04:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:BD:BD:71:26:0A:9A:88:85:14:50:F9:E3:89:2E:E5:C5:2B:DE:19 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/lr29cSYKmoiFFFD544ku5cUr3hk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.230.0.0/17 Signature Algorithm: sha256WithRSAEncryption 54:f6:69:ab:53:87:9c:f8:f3:75:46:95:9a:7c:d1:5e:af:9d: 37:41:b7:5a:35:50:ad:d3:b3:0b:e0:8a:43:d2:44:93:11:14: b0:0f:38:5b:38:8c:c6:23:27:6e:92:4b:5a:74:ea:24:10:16: b3:18:ae:ef:70:55:37:08:c0:01:27:f4:a0:6c:78:57:ee:3c: 8a:22:39:b7:bd:08:2e:9d:7b:e4:41:87:93:cd:89:30:bb:d4: ea:ed:ca:5c:10:21:61:df:61:ce:97:d9:6b:e0:fb:53:7a:1e: b2:26:17:9a:ee:86:67:f5:ec:93:b7:52:9c:6a:44:08:c0:f3: 43:c4:a4:8a:18:6f:ca:c4:b9:0b:6b:6e:1a:40:bd:75:f6:c1: 97:11:b5:d1:e2:a3:6b:f8:83:f6:49:da:09:00:59:e7:94:6d: e7:cc:be:f2:1f:be:63:62:c7:40:21:23:52:3e:41:76:89:72: c7:ea:dd:d3:a6:18:a2:8a:88:8a:73:45:bd:70:a6:39:91:5d: c8:81:23:83:ec:95:60:44:8e:48:d8:78:a6:5c:91:df:ba:b1: 74:3a:ff:ef:4c:35:88:f4:74:8f:9b:c1:a8:4b:04:25:fe:d0: e3:eb:ee:5a:f4:30:aa:aa:43:50:d6:51:ff:e2:3c:0f:5b:c2: fb:4b:47:09 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjI2MjBaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk2QkRCRDcxMjYwQTlB ODg4NTE0NTBGOUUzODkyRUU1QzUyQkRFMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsOyQizHjSiS9oZrXCbIfYYHs6+vKl/PeREOu/CTVGGeDMkS1y 9sLSw0sh9DFDJT4PN80inQhJ5t3HmdCxMKUZGeyx+zy20ktHuGJEIAUGLgd3S+K/ Pcq1qUMPkuwJLg3mpfpTeSONWeeFx+CuLxksFmnD02pvQvXFtkmTKVeUbhz+y4K5 ogyl81j4tIg4tlBlZZeAf5JQiCBYCKgXV4At1KicL69JDiQMmqIx8k8agNVVTKOh jN9jpmV5h7QFXNvtbdKNKtJ3KiaFXnIT6w4SihwgmhJ9sbvVLa/5GRDJOmArjwIE OI96zHVVAtp6Oj7ZGjcPIP2DVg5oSCw+BAT9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlr29cSYKmoiFFFD544ku5cUr3hkwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL2xyMjljU1lLbW9pRkZGRDU0NGt1NWNVcjNoay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfS5gAwDQYJKoZIhvcNAQELBQADggEBAFT2aatTh5z483VGlZp80V6vnTdB t1o1UK3TswvgikPSRJMRFLAPOFs4jMYjJ26SS1p06iQQFrMYru9wVTcIwAEn9KBs eFfuPIoiObe9CC6de+RBh5PNiTC71OrtylwQIWHfYc6X2Wvg+1N6HrImF5ruhmf1 7JO3UpxqRAjA80PEpIoYb8rEuQtrbhpAvXX2wZcRtdHio2v4g/ZJ2gkAWeeUbefM vvIfvmNix0AhI1I+QXaJcsfq3dOmGKKKiIpzRb1wpjmRXciBI4PslWBEjkjYeKZc kd+6sXQ6/+9MNYj0dI+bwahLBCX+0OPr7lr0MKqqQ1DWUf/iPA9bwvtLRwk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:37 2025 by rpki-client