$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/wjYdkvZwZ6JvsqPMqcbjo34b3hM.roa File: wjYdkvZwZ6JvsqPMqcbjo34b3hM.roa (raw, json) Hash identifier: uc0ZQNrrFZQZ8Bvz1uNIWB8oT442EAUfCd8eNRGTBic= Subject key identifier: C2:36:1D:92:F6:70:67:A2:6F:B2:A3:CC:A9:C6:E3:A3:7E:1B:DE:13 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 04F0 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/wjYdkvZwZ6JvsqPMqcbjo34b3hM.roa Signing time: Wed 18 Dec 2024 02:40:03 +0000 ROA not before: Wed 18 Dec 2024 02:40:03 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 218.225.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:40:03 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=C2361D92F67067A26FB2A3CCA9C6E3A37E1BDE13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:36:66:1f:9f:fe:9c:e2:a5:79:10:1b:a1:df: 87:1c:8d:ca:dd:9c:01:06:ee:64:f2:5b:ca:44:55: 8e:db:2c:03:97:4c:a3:4e:25:2e:8f:b6:8c:1f:77: da:c0:48:c3:1e:86:68:c2:ed:80:28:fc:4b:81:18: 88:7c:b3:33:ef:1c:47:ca:b5:79:f2:34:f3:2b:5f: d3:26:9b:a7:e5:28:1e:9a:cb:d8:a0:5f:87:61:32: cd:f9:43:7f:74:a9:4c:b3:f5:10:44:a3:a5:6e:a5: 73:e6:6b:e8:37:08:23:4c:56:00:d6:af:09:d2:b7: 8f:8f:c0:86:8c:df:06:7d:44:9e:72:c5:63:5c:a9: bd:d8:84:72:d3:92:cd:b3:e9:d7:60:b9:bd:81:79: 6a:0e:84:fc:d8:10:d4:0d:a4:e2:ca:a6:1b:f4:ca: fe:47:a8:8e:d2:ad:bf:24:4e:b9:67:65:6b:4a:4a: 52:92:b5:95:f1:de:a4:36:48:a7:09:6f:5e:60:40: 70:76:a5:5c:d2:12:17:a2:87:50:41:15:71:c4:5a: 15:23:d8:aa:18:31:62:08:b2:c9:75:bf:0c:db:13: 9d:78:e9:6d:57:29:89:14:18:d3:38:1f:37:da:d1: da:0d:c9:12:c9:41:36:98:ba:f2:de:51:25:5d:ae: 63:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:36:1D:92:F6:70:67:A2:6F:B2:A3:CC:A9:C6:E3:A3:7E:1B:DE:13 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/wjYdkvZwZ6JvsqPMqcbjo34b3hM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.225.112.0/23 Signature Algorithm: sha256WithRSAEncryption 58:86:97:6c:22:62:76:ac:f6:af:80:5c:e5:6d:97:1f:9f:28: 52:42:a0:49:2b:27:3d:bd:f0:e1:1d:3e:00:76:ab:54:42:2f: 56:ae:c0:1f:1b:3e:c5:61:69:bf:21:bd:a8:a1:7f:16:b7:d0: 29:59:c9:56:33:3d:5f:0f:b5:d3:64:a7:f2:b3:74:0e:83:3b: 93:c6:8a:4f:36:f7:5a:e3:3a:75:95:58:c2:90:0c:a7:ba:af: dd:b4:9b:26:41:e7:78:70:dc:39:ec:de:31:90:43:dc:23:95: 56:8a:39:73:85:f7:dc:4f:ab:12:97:56:62:63:8d:12:47:fc: aa:61:91:fd:4b:e5:6e:20:cc:7c:c1:f1:1c:de:51:73:36:b5: 12:f2:a0:35:31:95:fb:45:38:53:b3:93:a7:aa:a0:56:18:23: c0:3e:61:de:02:ca:34:18:49:5f:2b:86:52:5b:17:57:25:3c: 26:54:63:70:bc:bf:dd:e5:cd:85:d0:5e:de:e1:e7:51:e5:14: 60:7e:69:be:b4:39:c1:b6:7d:f0:19:28:f8:cf:f1:bd:cb:dd: 2f:34:88:b4:b8:cf:f8:47:1f:46:b9:fd:2f:c5:68:38:f8:54: 0b:f1:7b:77:69:c1:59:89:58:4a:b5:aa:31:bd:f1:0f:52:f5: e2:01:d4:b8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjQwMDNaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEMyMzYxRDkyRjY3MDY3 QTI2RkIyQTNDQ0E5QzZFM0EzN0UxQkRFMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClNmYfn/6c4qV5EBuh34ccjcrdnAEG7mTyW8pEVY7bLAOXTKNO JS6Ptowfd9rASMMehmjC7YAo/EuBGIh8szPvHEfKtXnyNPMrX9Mmm6flKB6ay9ig X4dhMs35Q390qUyz9RBEo6VupXPma+g3CCNMVgDWrwnSt4+PwIaM3wZ9RJ5yxWNc qb3YhHLTks2z6ddgub2BeWoOhPzYENQNpOLKphv0yv5HqI7Srb8kTrlnZWtKSlKS tZXx3qQ2SKcJb15gQHB2pVzSEheih1BBFXHEWhUj2KoYMWIIssl1vwzbE5146W1X KYkUGNM4Hzfa0doNyRLJQTaYuvLeUSVdrmM9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwjYdkvZwZ6JvsqPMqcbjo34b3hMwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL3dqWWRrdlp3WjZKdnNxUE1xY2JqbzM0YjNoTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHa4XAwDQYJKoZIhvcNAQELBQADggEBAFiGl2wiYnas9q+AXOVtlx+fKFJC oEkrJz298OEdPgB2q1RCL1auwB8bPsVhab8hvaihfxa30ClZyVYzPV8PtdNkp/Kz dA6DO5PGik8291rjOnWVWMKQDKe6r920myZB53hw3Dns3jGQQ9wjlVaKOXOF99xP qxKXVmJjjRJH/Kphkf1L5W4gzHzB8RzeUXM2tRLyoDUxlftFOFOzk6eqoFYYI8A+ Yd4CyjQYSV8rhlJbF1clPCZUY3C8v93lzYXQXt7h51HlFGB+ab60OcG2ffAZKPjP 8b3L3S80iLS4z/hHH0a5/S/FaDj4VAvxe3dpwVmJWEq1qjG98Q9S9eIB1Lg= -----END CERTIFICATE-----Generated at Sat Apr 5 20:02:54 2025 by rpki-client