$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/sl3GMF2DY7Z17ZV6ccKSZWMRTLc.roa File: sl3GMF2DY7Z17ZV6ccKSZWMRTLc.roa (raw, json) Hash identifier: T600W8HOBE+3b2c7FWoIu3saibFAVgp9329/qQAE7tY= Subject key identifier: B2:5D:C6:30:5D:83:63:B6:75:ED:95:7A:71:C2:92:65:63:11:4C:B7 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 03EA Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/sl3GMF2DY7Z17ZV6ccKSZWMRTLc.roa Signing time: Wed 18 Dec 2024 02:16:35 +0000 ROA not before: Wed 18 Dec 2024 02:16:35 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 106.174.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:16:35 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=B25DC6305D8363B675ED957A71C2926563114CB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a6:dc:38:26:81:91:bb:88:2d:61:33:fe:d1: 85:72:27:f7:a2:bd:79:00:d6:aa:8f:fc:f0:e6:db: 42:f8:58:c1:99:c1:cc:4e:10:22:fe:fc:f5:f0:ba: aa:d0:38:45:bf:e0:74:03:01:12:8d:9f:d6:a2:26: e3:14:2c:e5:c1:18:7e:69:18:9b:23:ad:7c:2b:ea: f2:dd:30:43:e1:98:d1:6d:e7:c2:6a:2b:70:67:d1: 96:41:88:3b:5d:e2:96:bc:de:23:7b:74:b4:a3:65: 03:e2:c2:85:29:27:f3:b8:f0:ac:02:81:1c:01:97: fd:36:13:30:dc:7a:7e:54:45:e3:b0:66:08:d0:35: ac:85:f7:4f:df:61:20:f1:3a:3a:b2:52:d0:4c:14: 47:12:c2:02:e1:06:bf:9f:e4:58:1b:f1:f4:69:0b: cd:72:ff:80:71:6c:01:a7:88:e5:0a:01:f5:7a:b5: 60:5a:a6:6a:e9:b3:2d:66:25:31:2e:df:c1:ac:41: 1c:ef:47:1d:82:30:c2:f5:78:2e:ca:cc:c2:0b:27: f8:5c:78:c6:bd:fe:4c:57:4a:6a:3a:21:35:59:49: a2:61:2a:7c:5f:ca:81:8c:35:12:28:c7:49:b4:35: 9f:d1:40:f7:7e:76:0b:47:c2:8b:e2:85:bc:a8:db: 3a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5D:C6:30:5D:83:63:B6:75:ED:95:7A:71:C2:92:65:63:11:4C:B7 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/sl3GMF2DY7Z17ZV6ccKSZWMRTLc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 106.174.0.0/16 Signature Algorithm: sha256WithRSAEncryption ac:0a:e9:15:17:97:bd:be:b0:b2:e7:3a:ff:2e:8d:51:9e:81: 55:da:c4:03:1d:91:ad:d8:0f:58:87:e8:89:10:1a:e4:d9:47: c3:11:a3:71:07:54:da:0d:87:27:f5:93:7a:0d:1d:97:ba:92: c0:4e:c2:ec:fd:2f:db:55:dd:ce:f1:08:f0:9e:1c:d8:38:89: 9c:b6:13:ff:d8:cc:ad:14:be:7d:18:25:e8:1c:2e:64:e4:f8: 5e:2b:66:a5:dd:8d:af:ab:35:78:d0:93:da:20:73:98:5b:3d: 2a:5e:e4:ec:08:a1:61:38:aa:4b:db:bc:5e:b5:f0:3f:69:f5: 3d:4b:e7:42:d5:82:22:48:84:db:67:e7:d7:86:b9:b6:92:da: 38:ac:54:89:29:da:45:ba:f8:30:67:62:b9:aa:e4:70:6d:82: f6:f7:50:1a:e4:6d:ce:33:20:c8:7b:35:54:43:dd:3a:07:56: 5a:97:a6:e0:8f:95:79:00:c0:87:11:55:71:25:3c:54:3f:bc: 98:19:6a:9f:39:ec:f5:53:dc:45:45:03:48:64:7e:f3:04:6f: 10:38:54:ae:98:2a:5c:fd:45:ae:a8:63:98:41:ca:d0:fa:04: ad:ee:c1:86:59:25:e3:a0:35:67:5c:16:7f:b4:c2:64:94:c9: 2b:61:68:e3 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA+owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjE2MzVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIyNURDNjMwNUQ4MzYz QjY3NUVEOTU3QTcxQzI5MjY1NjMxMTRDQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0ptw4JoGRu4gtYTP+0YVyJ/eivXkA1qqP/PDm20L4WMGZwcxO ECL+/PXwuqrQOEW/4HQDARKNn9aiJuMULOXBGH5pGJsjrXwr6vLdMEPhmNFt58Jq K3Bn0ZZBiDtd4pa83iN7dLSjZQPiwoUpJ/O48KwCgRwBl/02EzDcen5UReOwZgjQ NayF90/fYSDxOjqyUtBMFEcSwgLhBr+f5Fgb8fRpC81y/4BxbAGniOUKAfV6tWBa pmrpsy1mJTEu38GsQRzvRx2CMML1eC7KzMILJ/hceMa9/kxXSmo6ITVZSaJhKnxf yoGMNRIox0m0NZ/RQPd+dgtHwovihbyo2zoNAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUsl3GMF2DY7Z17ZV6ccKSZWMRTLcwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL3NsM0dNRjJEWTdaMTdaVjZjY0tTWldNUlRMYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBqrjANBgkqhkiG9w0BAQsFAAOCAQEArArpFReXvb6wsuc6/y6NUZ6BVdrE Ax2RrdgPWIfoiRAa5NlHwxGjcQdU2g2HJ/WTeg0dl7qSwE7C7P0v21XdzvEI8J4c 2DiJnLYT/9jMrRS+fRgl6BwuZOT4Xitmpd2Nr6s1eNCT2iBzmFs9Kl7k7AihYTiq S9u8XrXwP2n1PUvnQtWCIkiE22fn14a5tpLaOKxUiSnaRbr4MGdiuarkcG2C9vdQ GuRtzjMgyHs1VEPdOgdWWpem4I+VeQDAhxFVcSU8VD+8mBlqnzns9VPcRUUDSGR+ 8wRvEDhUrpgqXP1FrqhjmEHK0PoEre7Bhlkl46A1Z1wWf7TCZJTJK2Fo4w== -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:23 2025 by rpki-client