$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/xFG4FiwIMGzNaBtnFT5uGe4WYU0.roa File: xFG4FiwIMGzNaBtnFT5uGe4WYU0.roa (raw, json) Hash identifier: oWxbEAImUnQe6/O/yhDSeuYx46J0s0p8FMzFZ8XPuTo= Subject key identifier: C4:51:B8:16:2C:08:30:6C:CD:68:1B:67:15:3E:6E:19:EE:16:61:4D Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 03F6 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/xFG4FiwIMGzNaBtnFT5uGe4WYU0.roa Signing time: Wed 18 Dec 2024 02:18:47 +0000 ROA not before: Wed 18 Dec 2024 02:18:47 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 125.51.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:18:47 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=C451B8162C08306CCD681B67153E6E19EE16614D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e8:74:17:ee:d6:dd:d2:d3:13:5b:e4:7b:c7: b3:44:30:df:49:68:fe:4f:20:8c:fd:03:13:13:66: f0:82:c1:ec:c3:04:27:ad:61:a1:72:fb:9e:87:22: ff:ad:10:97:8b:6e:2b:0d:0a:bb:16:60:92:a7:a4: b6:42:5d:06:f0:53:23:90:c0:f3:27:75:ae:db:96: cb:2f:49:dc:9b:a8:8b:81:d6:8f:10:6b:ba:b8:ce: 6d:8d:28:31:72:cd:48:c4:17:ed:02:a3:b6:1b:f8: e0:b9:2e:ec:12:1d:bd:8c:9e:1d:dd:00:1c:98:f9: 86:d2:72:7f:a3:e1:7e:80:55:91:03:38:69:fc:03: 53:3d:35:89:39:2a:d8:31:59:bd:f4:4a:33:96:90: 96:25:f1:69:2e:35:13:81:5c:2a:a5:36:c2:45:a4: fd:79:78:ff:e2:a8:53:ec:6c:d2:d4:c3:1a:1d:4d: 76:1f:45:d6:29:78:bf:c7:73:a8:23:28:81:7c:17: 9d:6a:eb:48:85:5d:40:8a:43:16:49:a2:2c:d1:5f: 76:8b:8b:db:61:8d:74:c9:7a:00:9d:3d:b7:8d:b8: 1a:5c:e8:69:db:6f:95:46:42:6f:f4:96:8b:2d:7f: c7:41:c8:17:ea:bd:5f:c3:aa:69:ab:76:f4:f9:ac: 20:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:51:B8:16:2C:08:30:6C:CD:68:1B:67:15:3E:6E:19:EE:16:61:4D X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/xFG4FiwIMGzNaBtnFT5uGe4WYU0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.51.0.0/16 Signature Algorithm: sha256WithRSAEncryption 06:d9:68:52:cc:fc:47:6d:2e:b0:80:73:03:08:11:78:36:ad: 3f:c1:81:07:42:d9:80:3e:4c:ad:53:8d:cf:62:1a:d4:54:ed: f1:50:67:86:1e:c1:d9:fe:c5:7c:c9:d3:aa:6b:52:c2:89:ab: cd:8b:a1:ad:35:a7:ba:36:84:62:22:9a:ea:20:a1:51:53:b8: a4:70:3a:68:c6:12:f0:1a:9e:1d:59:6a:fb:bb:90:cc:46:9e: d7:94:ed:68:c0:b3:0e:a5:2f:7a:b5:f1:0e:84:ed:29:9f:a4: 17:7c:b1:b1:76:02:2f:d5:2d:63:ff:8c:c1:23:34:28:58:3f: 86:bc:81:f1:19:92:6e:89:bf:bf:16:fd:61:ad:60:2e:2d:e2: 61:b5:84:55:e5:9a:fe:84:52:fa:79:5b:e2:d7:af:fc:99:7c: 0d:d1:12:99:ee:86:e3:d4:2a:a7:a4:a5:38:a2:52:b7:37:d0: e8:5d:71:d1:3a:81:8f:06:b0:89:f4:0e:01:dc:83:93:a9:f7: 53:12:ae:54:0a:12:ce:fa:7a:72:1b:5a:13:c9:5e:59:0c:af: b5:34:18:e1:57:85:f8:f4:d9:91:44:67:7c:0b:1a:7b:ce:e4: 86:49:c8:37:6b:53:f5:dc:9e:a3:c3:1d:ab:2d:1c:e5:26:eb: 0c:e7:1c:7e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjE4NDdaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM0NTFCODE2MkMwODMw NkNDRDY4MUI2NzE1M0U2RTE5RUUxNjYxNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCe6HQX7tbd0tMTW+R7x7NEMN9JaP5PIIz9AxMTZvCCwezDBCet YaFy+56HIv+tEJeLbisNCrsWYJKnpLZCXQbwUyOQwPMnda7blssvSdybqIuB1o8Q a7q4zm2NKDFyzUjEF+0Co7Yb+OC5LuwSHb2Mnh3dAByY+YbScn+j4X6AVZEDOGn8 A1M9NYk5KtgxWb30SjOWkJYl8WkuNROBXCqlNsJFpP15eP/iqFPsbNLUwxodTXYf RdYpeL/Hc6gjKIF8F51q60iFXUCKQxZJoizRX3aLi9thjXTJegCdPbeNuBpc6Gnb b5VGQm/0lostf8dByBfqvV/DqmmrdvT5rCCrAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUxFG4FiwIMGzNaBtnFT5uGe4WYU0wHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL3hGRzRGaXdJTUd6TmFCdG5GVDV1R2U0V1lVMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwB9MzANBgkqhkiG9w0BAQsFAAOCAQEABtloUsz8R20usIBzAwgReDatP8GB B0LZgD5MrVONz2Ia1FTt8VBnhh7B2f7FfMnTqmtSwomrzYuhrTWnujaEYiKa6iCh UVO4pHA6aMYS8BqeHVlq+7uQzEae15TtaMCzDqUverXxDoTtKZ+kF3yxsXYCL9Ut Y/+MwSM0KFg/hryB8RmSbom/vxb9Ya1gLi3iYbWEVeWa/oRS+nlb4tev/Jl8DdES me6G49Qqp6SlOKJStzfQ6F1x0TqBjwawifQOAdyDk6n3UxKuVAoSzvp6chtaE8le WQyvtTQY4VeF+PTZkURnfAsae87khknIN2tT9dyeo8Mdqy0c5SbrDOccfg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:42 2025 by rpki-client