$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/xHvQe9w1ZwGLVNV1gsVD89RPw6g.roa File: xHvQe9w1ZwGLVNV1gsVD89RPw6g.roa (raw, json) Hash identifier: EpLW6HLntApo0dqZX/P9X4anL29Y9QnNGPs/HsE/CkA= Subject key identifier: C4:7B:D0:7B:DC:35:67:01:8B:54:D5:75:82:C5:43:F3:D4:4F:C3:A8 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 051B Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/xHvQe9w1ZwGLVNV1gsVD89RPw6g.roa Signing time: Wed 18 Dec 2024 02:42:19 +0000 ROA not before: Wed 18 Dec 2024 02:42:19 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 218.225.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1307 (0x51b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:42:19 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=C47BD07BDC3567018B54D57582C543F3D44FC3A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ae:e0:21:72:55:c9:46:6e:39:5f:d3:3e:da: ff:5c:08:e1:ad:ad:ea:09:20:eb:20:1d:48:ce:db: 01:71:09:c6:61:c9:a0:45:05:c7:dd:40:86:c8:7c: 70:09:16:7a:23:18:8c:a2:33:ff:58:db:2f:ab:51: c8:c7:d3:d7:34:46:d6:87:dd:e1:7d:72:f4:d1:31: 26:b6:9a:c9:bb:32:59:e9:18:fd:4a:38:d5:ad:b6: 7b:39:95:e6:14:51:a7:bd:4f:eb:dc:36:8c:68:af: d2:82:b0:a0:67:8d:f1:73:fc:00:81:9f:91:9d:ca: 28:77:be:4c:84:ca:d9:53:d7:72:76:33:83:67:1b: d6:82:b8:6e:97:37:e8:18:ea:89:d2:80:05:58:70: 9c:d6:92:4f:03:80:53:0b:36:a4:52:98:e8:4b:0a: bb:11:ab:c7:e0:56:bd:34:f3:82:a0:b6:f2:d6:24: 8d:be:7c:df:68:1c:7a:9f:fd:55:f9:1e:6c:21:82: 97:1b:0c:3e:94:75:84:c7:9f:ec:ae:8e:55:c4:e7: a3:1c:f0:f1:5a:d3:0a:f4:6a:b9:46:6d:a3:0e:70: 47:88:6f:eb:c7:9b:88:04:46:e2:bf:d6:d2:f8:98: 66:76:b4:21:8f:7d:e3:6a:0b:21:7e:1e:3a:dd:31: b6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7B:D0:7B:DC:35:67:01:8B:54:D5:75:82:C5:43:F3:D4:4F:C3:A8 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/xHvQe9w1ZwGLVNV1gsVD89RPw6g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.225.110.0/24 Signature Algorithm: sha256WithRSAEncryption 06:d2:c9:84:e7:75:6a:48:42:67:18:a5:ff:5d:9e:cc:33:7a: c1:4a:4c:d3:4e:8c:8a:f1:e6:ed:4a:ca:00:f5:7e:a2:ec:86: ba:1c:8e:fe:15:fd:0f:ea:f0:d9:b8:11:f4:2d:2d:0c:fa:3c: a3:4e:cc:f1:ac:18:5c:b7:72:90:b3:3f:4b:0f:e4:56:f4:76: 24:e8:ef:70:6e:18:66:73:3b:cb:d6:75:c2:3c:fa:25:78:2f: 4e:27:e8:9d:91:e0:b8:86:c0:3d:65:7a:91:3e:2e:b0:c8:bf: 75:d2:8c:67:ad:de:80:e8:73:ee:0d:e0:9d:0c:fd:30:a5:a2: f7:2b:b9:3b:58:ff:8b:29:fc:f3:7d:27:ce:f6:96:4a:84:91: af:e1:a5:f1:93:93:ce:9d:18:17:ba:8f:73:4f:15:00:f4:17: 43:7b:ec:66:2b:33:b0:e7:74:64:59:d2:0c:98:af:1d:a1:91: 09:63:66:6d:95:15:d5:0d:5b:ed:1c:87:71:07:66:77:4a:e5: e0:ee:e2:2e:e8:f3:1c:d6:d8:97:99:47:b1:d9:e5:f6:fe:c3: a8:75:a3:aa:38:65:58:e4:ee:8a:9c:f7:20:24:29:0f:41:e0: 9e:69:c9:66:d2:a4:18:87:02:16:ba:31:82:1f:cf:2b:61:e5: 0e:2c:55:bc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBRswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjQyMTlaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM0N0JEMDdCREMzNTY3 MDE4QjU0RDU3NTgyQzU0M0YzRDQ0RkMzQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoruAhclXJRm45X9M+2v9cCOGtreoJIOsgHUjO2wFxCcZhyaBF BcfdQIbIfHAJFnojGIyiM/9Y2y+rUcjH09c0RtaH3eF9cvTRMSa2msm7MlnpGP1K ONWttns5leYUUae9T+vcNoxor9KCsKBnjfFz/ACBn5Gdyih3vkyEytlT13J2M4Nn G9aCuG6XN+gY6onSgAVYcJzWkk8DgFMLNqRSmOhLCrsRq8fgVr0084KgtvLWJI2+ fN9oHHqf/VX5HmwhgpcbDD6UdYTHn+yujlXE56Mc8PFa0wr0arlGbaMOcEeIb+vH m4gERuK/1tL4mGZ2tCGPfeNqCyF+HjrdMbYlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxHvQe9w1ZwGLVNV1gsVD89RPw6gwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL3hIdlFlOXcxWndHTFZOVjFnc1ZEODlSUHc2Zy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADa4W4wDQYJKoZIhvcNAQELBQADggEBAAbSyYTndWpIQmcYpf9dnswzesFK TNNOjIrx5u1KygD1fqLshrocjv4V/Q/q8Nm4EfQtLQz6PKNOzPGsGFy3cpCzP0sP 5Fb0diTo73BuGGZzO8vWdcI8+iV4L04n6J2R4LiGwD1lepE+LrDIv3XSjGet3oDo c+4N4J0M/TClovcruTtY/4sp/PN9J872lkqEka/hpfGTk86dGBe6j3NPFQD0F0N7 7GYrM7DndGRZ0gyYrx2hkQljZm2VFdUNW+0ch3EHZndK5eDu4i7o8xzW2JeZR7HZ 5fb+w6h1o6o4ZVjk7oqc9yAkKQ9B4J5pyWbSpBiHAha6MYIfzyth5Q4sVbw= -----END CERTIFICATE-----Generated at Sat Apr 5 17:42:34 2025 by rpki-client