$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/tcYUy4c9NKjbCs9WPcG2Cz2nkVA.roa File: tcYUy4c9NKjbCs9WPcG2Cz2nkVA.roa (raw, json) Hash identifier: cwqn9RDRr2Q8kZFRitFcLHgJcInY4gXShjn4RHsSsmI= Subject key identifier: B5:C6:14:CB:87:3D:34:A8:DB:0A:CF:56:3D:C1:B6:0B:3D:A7:91:50 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 03BB Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/tcYUy4c9NKjbCs9WPcG2Cz2nkVA.roa Signing time: Wed 18 Dec 2024 02:13:01 +0000 ROA not before: Wed 18 Dec 2024 02:13:01 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 222.0.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 955 (0x3bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:13:01 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=B5C614CB873D34A8DB0ACF563DC1B60B3DA79150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:af:85:cd:2f:5b:18:57:49:ce:e7:a7:20:0f: 07:bb:c8:c5:cd:56:a1:d1:6f:1c:48:94:72:d3:30: 9d:ee:3e:f9:d5:90:04:8e:1e:c5:f9:6c:9d:b6:b9: 78:07:31:a9:18:94:ab:6f:8e:ee:68:5e:3c:36:60: 74:3b:0f:b5:50:44:81:b1:ad:88:7a:12:30:5b:c7: 3f:de:2c:38:e5:c4:7a:76:05:49:70:65:0c:70:03: cc:19:4d:fb:3d:d6:b6:80:78:b0:3d:a4:44:57:8c: 68:bd:0d:b7:1a:3e:a9:e9:1b:1f:d2:c9:6f:e2:7d: 8e:aa:fd:fb:be:ce:56:06:17:a3:b6:bc:ed:ba:82: 31:2a:86:cc:6b:84:b7:ed:5a:47:bc:34:64:bf:60: 20:72:15:8a:1a:85:d7:80:df:86:b3:99:d4:09:2b: 50:8b:42:df:37:46:dd:7c:d5:5d:12:cd:bd:9f:5d: c9:ad:03:9f:06:e3:98:6d:4b:c2:1f:22:d6:3c:2b: 08:e0:3c:d6:c4:3c:04:0e:a3:69:06:ed:77:99:6d: fa:cd:5f:da:b6:1b:7d:d6:e6:a1:0e:c3:55:4a:a8: 24:f4:ef:da:68:03:46:af:1b:27:18:a0:2d:1f:d5: b2:c3:10:fb:ee:ac:8d:92:21:4d:f3:ce:b2:50:b3: 1e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C6:14:CB:87:3D:34:A8:DB:0A:CF:56:3D:C1:B6:0B:3D:A7:91:50 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/tcYUy4c9NKjbCs9WPcG2Cz2nkVA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption 80:77:b5:bd:d7:1a:34:da:32:ee:9f:bf:ca:0a:d4:81:db:2f: 59:ec:37:16:47:55:9a:4b:69:05:be:76:2b:b8:74:1b:e8:27: 50:7e:a8:9f:93:7c:ce:df:30:90:49:17:2c:15:e0:e2:d0:56: 51:89:d5:92:26:19:3b:20:21:ab:5a:94:c2:eb:0c:89:30:04: 2b:96:32:5c:76:fa:38:70:1e:3d:ec:50:99:bb:15:a5:b8:29: f8:95:ca:78:39:1b:9c:84:5b:07:67:2b:37:d1:00:a4:db:2d: f1:f3:8b:40:ff:04:c3:1d:93:29:a4:4d:a7:55:7e:13:c1:39: 69:fa:a2:bc:64:12:40:1c:bb:39:ab:d1:9f:08:99:a5:85:32: 9a:4d:50:a2:09:34:9b:7d:34:d4:4e:64:23:d4:96:22:e6:d0: 9d:21:5e:dd:20:69:1e:6f:54:4d:50:00:92:35:e3:8a:04:e6: 44:eb:c5:b7:ae:49:d0:5f:41:0c:88:36:35:03:04:09:75:0d: 67:03:01:c8:3b:82:a4:f5:bf:a2:95:80:5e:c0:1b:4d:a4:d0: a7:26:11:12:7f:8e:70:3f:45:80:f3:36:2b:40:8e:a7:58:6e: 57:9a:10:e2:4f:b9:de:a2:ae:ed:d6:9e:ce:4f:02:b8:60:79: a0:e9:6e:a6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA7swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjEzMDFaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI1QzYxNENCODczRDM0 QThEQjBBQ0Y1NjNEQzFCNjBCM0RBNzkxNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxr4XNL1sYV0nO56cgDwe7yMXNVqHRbxxIlHLTMJ3uPvnVkASO HsX5bJ22uXgHMakYlKtvju5oXjw2YHQ7D7VQRIGxrYh6EjBbxz/eLDjlxHp2BUlw ZQxwA8wZTfs91raAeLA9pERXjGi9DbcaPqnpGx/SyW/ifY6q/fu+zlYGF6O2vO26 gjEqhsxrhLftWke8NGS/YCByFYoahdeA34azmdQJK1CLQt83Rt181V0Szb2fXcmt A58G45htS8IfItY8KwjgPNbEPAQOo2kG7XeZbfrNX9q2G33W5qEOw1VKqCT079po A0avGycYoC0f1bLDEPvurI2SIU3zzrJQsx6ZAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUtcYUy4c9NKjbCs9WPcG2Cz2nkVAwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL3RjWVV5NGM5TktqYkNzOVdQY0cyQ3oybmtWQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDeADANBgkqhkiG9w0BAQsFAAOCAQEAgHe1vdcaNNoy7p+/ygrUgdsvWew3 FkdVmktpBb52K7h0G+gnUH6on5N8zt8wkEkXLBXg4tBWUYnVkiYZOyAhq1qUwusM iTAEK5YyXHb6OHAePexQmbsVpbgp+JXKeDkbnIRbB2crN9EApNst8fOLQP8Ewx2T KaRNp1V+E8E5afqivGQSQBy7OavRnwiZpYUymk1Qogk0m3001E5kI9SWIubQnSFe 3SBpHm9UTVAAkjXjigTmROvFt65J0F9BDIg2NQMECXUNZwMByDuCpPW/opWAXsAb TaTQpyYREn+OcD9FgPM2K0COp1huV5oQ4k+53qKu7daezk8CuGB5oOlupg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:23 2025 by rpki-client