$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/tLHwqALBRG5YWJTrvH52acDdQsM.roa File: tLHwqALBRG5YWJTrvH52acDdQsM.roa (raw, json) Hash identifier: Ji5OE4BMB+DuDKl/o5l5XwqZQDKeO3hLOcv8Zbi8Fgc= Subject key identifier: B4:B1:F0:A8:02:C1:44:6E:58:58:94:EB:BC:7E:76:69:C0:DD:42:C3 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 04B0 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/tLHwqALBRG5YWJTrvH52acDdQsM.roa Signing time: Wed 18 Dec 2024 02:29:03 +0000 ROA not before: Wed 18 Dec 2024 02:29:03 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 106.173.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1200 (0x4b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:29:03 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=B4B1F0A802C1446E585894EBBC7E7669C0DD42C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:44:14:3f:a4:91:63:cf:ac:d3:16:42:3f:e8: e6:41:5f:36:8b:bf:1a:10:ad:65:eb:50:11:6d:2b: d0:de:9a:8b:02:6e:bd:3b:f9:69:74:2e:ba:45:27: 80:0b:f5:75:bf:c3:2c:de:70:d5:31:04:74:96:b0: f7:5a:2d:c8:43:5f:6f:d9:ad:dd:53:00:1f:cc:5f: 28:9a:7f:17:6d:90:b6:11:9c:ea:74:f2:d2:f8:87: ce:61:52:6f:c1:8b:ad:16:2a:c4:ed:5a:55:d0:6d: 96:6a:4c:f1:70:24:c0:8c:df:d9:2d:d6:40:9f:18: 92:63:5b:48:0d:f2:bd:c5:0a:35:a2:dc:b3:63:3e: 80:de:fc:12:f0:a7:33:66:df:aa:6f:8a:2a:ad:4e: ec:da:22:44:cf:5b:98:59:b7:2f:da:01:de:35:3f: bd:31:ac:ad:71:0a:b0:a5:d7:c8:d9:df:c2:5e:68: 2a:ed:13:10:dc:bf:cf:75:57:9f:77:69:0a:ac:56: c8:45:35:87:30:57:af:49:50:d0:41:d0:5b:0a:93: 8f:34:9c:da:d8:4d:c1:1d:8a:6c:99:55:09:95:61: c4:85:c5:85:6d:fa:12:17:83:67:e4:ae:dd:26:af: 64:e7:68:52:c8:ff:e7:46:7c:48:ac:18:dc:4f:44: f9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B1:F0:A8:02:C1:44:6E:58:58:94:EB:BC:7E:76:69:C0:DD:42:C3 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/tLHwqALBRG5YWJTrvH52acDdQsM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 106.173.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:e0:6d:4b:8e:46:9f:a6:51:3c:b5:38:de:e4:b1:fb:78:82: 00:f9:b8:df:ac:81:b7:08:e1:2a:66:50:63:4e:99:d8:73:bf: 72:7c:c1:00:44:4a:94:b8:b0:5b:99:59:eb:91:46:84:77:5c: 0d:93:f5:83:69:0d:d4:f6:ad:41:6a:47:7c:f5:80:eb:16:71: 15:a9:04:49:42:69:18:8c:2b:f7:86:4f:8f:34:03:08:13:7a: 8f:9b:47:81:08:fb:5f:c4:54:00:18:56:17:bd:66:7a:8e:a4: 18:d4:d2:46:57:61:49:6b:d6:54:ae:76:76:e4:2f:05:99:fd: b1:3e:3b:12:1a:bb:19:cd:ae:b5:2e:36:74:e9:63:8c:2c:f6: b0:56:50:a5:36:e2:43:f2:53:40:6f:85:ac:99:cc:2d:f3:fe: 2b:6b:f7:0d:7d:88:7c:bb:e0:a4:a1:74:e6:fa:3c:ec:3e:50: cd:d1:11:c8:50:37:65:07:14:d1:59:78:79:fa:65:0a:bf:e8: 10:31:f5:39:26:27:74:4d:29:ff:79:09:b3:f4:52:8a:71:ac: 32:d1:be:97:13:45:8a:4e:82:40:bf:7b:4a:94:9a:87:e4:8c: 63:6a:a7:63:95:92:2f:4e:08:bc:d4:94:07:3d:14:76:57:b3: 86:c6:0f:e4 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICBLAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjI5MDNaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI0QjFGMEE4MDJDMTQ0 NkU1ODU4OTRFQkJDN0U3NjY5QzBERDQyQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkRBQ/pJFjz6zTFkI/6OZBXzaLvxoQrWXrUBFtK9DemosCbr07 +Wl0LrpFJ4AL9XW/wyzecNUxBHSWsPdaLchDX2/Zrd1TAB/MXyiafxdtkLYRnOp0 8tL4h85hUm/Bi60WKsTtWlXQbZZqTPFwJMCM39kt1kCfGJJjW0gN8r3FCjWi3LNj PoDe/BLwpzNm36pviiqtTuzaIkTPW5hZty/aAd41P70xrK1xCrCl18jZ38JeaCrt ExDcv891V593aQqsVshFNYcwV69JUNBB0FsKk480nNrYTcEdimyZVQmVYcSFxYVt +hIXg2fkrt0mr2TnaFLI/+dGfEisGNxPRPnjAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUtLHwqALBRG5YWJTrvH52acDdQsMwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL3RMSHdxQUxCUkc1WVdKVHJ2SDUyYWNEZFFzTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBqrTANBgkqhkiG9w0BAQsFAAOCAQEAjOBtS45Gn6ZRPLU43uSx+3iCAPm4 36yBtwjhKmZQY06Z2HO/cnzBAERKlLiwW5lZ65FGhHdcDZP1g2kN1PatQWpHfPWA 6xZxFakESUJpGIwr94ZPjzQDCBN6j5tHgQj7X8RUABhWF71meo6kGNTSRldhSWvW VK52duQvBZn9sT47Ehq7Gc2utS42dOljjCz2sFZQpTbiQ/JTQG+FrJnMLfP+K2v3 DX2IfLvgpKF05vo87D5QzdERyFA3ZQcU0Vl4efplCr/oEDH1OSYndE0p/3kJs/RS inGsMtG+lxNFik6CQL97SpSah+SMY2qnY5WSL04IvNSUBz0UdlezhsYP5A== -----END CERTIFICATE-----Generated at Sat Apr 5 17:19:41 2025 by rpki-client