$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/xmRUl2-STkKu5MyDQ3up6UO_M8k.roa File: xmRUl2-STkKu5MyDQ3up6UO_M8k.roa (raw, json) Hash identifier: rxTCzvZRxquOu2UhfmE3Aj5He1rBln38DiHfAS4kojE= Subject key identifier: C6:64:54:97:6F:92:4E:42:AE:E4:CC:83:43:7B:A9:E9:43:BF:33:C9 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 04EF Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/xmRUl2-STkKu5MyDQ3up6UO_M8k.roa Signing time: Wed 18 Dec 2024 02:40:02 +0000 ROA not before: Wed 18 Dec 2024 02:40:02 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2516 IP address blocks: 211.1.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Dec 18 02:40:02 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=C66454976F924E42AEE4CC83437BA9E943BF33C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:44:93:1f:7d:62:c1:99:ef:f6:44:97:bd:cd: 83:76:47:c1:03:71:41:21:a4:2f:ea:75:0a:a6:1c: 6b:f6:b9:ab:16:9e:0d:72:bb:12:99:9b:04:a7:93: 26:cc:eb:97:f3:28:d7:4f:c8:f0:65:b3:65:7f:62: 65:7d:2d:b2:75:8c:54:a1:02:a6:8a:8c:1a:d1:08: cb:56:90:fd:c1:58:f9:8e:1e:46:ee:54:bb:94:df: 2a:23:6a:60:69:bc:7e:08:39:f1:e3:ca:73:c5:a8: 91:7e:9d:dd:55:3d:17:5c:cf:71:b5:9c:35:95:2a: c1:a0:a8:51:56:98:97:47:e1:cd:64:56:d1:48:72: ae:80:c1:77:71:0d:e8:3d:41:9b:9e:ac:fe:2b:c2: 06:a6:9f:85:80:e8:34:cc:10:f8:e9:c6:ce:21:8f: 03:b8:9a:9f:cd:38:13:34:69:4a:ef:60:46:69:83: 25:4b:9f:f5:d9:4f:2b:2f:02:0c:27:aa:bd:ed:b0: fb:b3:f4:3a:08:8f:ea:b8:ab:74:e9:15:f6:2d:2f: 83:c9:c6:ae:5b:53:bb:4d:15:53:27:60:7c:4d:32: 9b:47:77:b9:5e:0a:97:93:a6:57:ee:61:95:85:69: 5d:78:6d:63:50:54:72:49:86:d6:0d:91:92:ef:57: 70:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:64:54:97:6F:92:4E:42:AE:E4:CC:83:43:7B:A9:E9:43:BF:33:C9 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/xmRUl2-STkKu5MyDQ3up6UO_M8k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.1.104.0/21 Signature Algorithm: sha256WithRSAEncryption 78:b5:d6:cb:75:ea:04:26:29:7e:1c:82:27:81:3e:5c:6a:c8: 16:5e:b9:9a:be:c0:dc:9e:e4:7b:92:6d:c9:ea:7b:a7:6e:06: 52:92:eb:10:8b:3d:6d:e5:52:1f:02:ff:96:41:3d:bd:ec:b0: 7e:11:9f:8a:fa:a3:79:1f:b1:e4:ce:3a:3b:47:ca:48:53:fc: c2:e8:3e:8d:e3:a0:bf:56:80:ce:8f:28:97:23:19:86:29:95: 28:02:eb:c4:c3:3c:ee:05:25:96:75:16:72:97:6b:26:74:bb: 87:38:77:19:bd:18:cf:27:3a:5c:22:50:7d:90:a3:ad:5e:bc: 6e:76:9c:22:c4:d5:49:26:6e:a6:99:c5:5b:b7:be:00:6e:6c: 24:b5:84:63:75:3d:84:04:7d:e6:e9:9d:c6:8e:71:ee:31:3a: 50:a8:9a:f0:aa:38:2f:20:90:5c:e8:b7:b3:7a:9f:fd:b1:55: 51:d2:87:df:08:79:72:14:3c:11:13:a2:20:f7:0b:31:66:36: ec:79:f6:34:9c:b3:91:99:7d:d1:23:af:9f:47:82:34:4a:67: d1:7a:dd:24:44:63:1c:7a:b4:53:f7:99:14:3a:ac:e4:c5:7a: 54:39:b2:fa:46:b5:97:c3:65:bd:f8:bd:fe:3c:d8:46:57:1d: c2:86:71:9d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDEyMTgw MjQwMDJaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM2NjQ1NDk3NkY5MjRF NDJBRUU0Q0M4MzQzN0JBOUU5NDNCRjMzQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3RJMffWLBme/2RJe9zYN2R8EDcUEhpC/qdQqmHGv2uasWng1y uxKZmwSnkybM65fzKNdPyPBls2V/YmV9LbJ1jFShAqaKjBrRCMtWkP3BWPmOHkbu VLuU3yojamBpvH4IOfHjynPFqJF+nd1VPRdcz3G1nDWVKsGgqFFWmJdH4c1kVtFI cq6AwXdxDeg9QZuerP4rwgamn4WA6DTMEPjpxs4hjwO4mp/NOBM0aUrvYEZpgyVL n/XZTysvAgwnqr3tsPuz9DoIj+q4q3TpFfYtL4PJxq5bU7tNFVMnYHxNMptHd7le CpeTplfuYZWFaV14bWNQVHJJhtYNkZLvV3AFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxmRUl2+STkKu5MyDQ3up6UO/M8kwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL3htUlVsMi1TVGtLdTVNeURRM3VwNlVPX004ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPTAWgwDQYJKoZIhvcNAQELBQADggEBAHi11st16gQmKX4cgieBPlxqyBZe uZq+wNye5HuSbcnqe6duBlKS6xCLPW3lUh8C/5ZBPb3ssH4Rn4r6o3kfseTOOjtH ykhT/MLoPo3joL9WgM6PKJcjGYYplSgC68TDPO4FJZZ1FnKXayZ0u4c4dxm9GM8n OlwiUH2Qo61evG52nCLE1UkmbqaZxVu3vgBubCS1hGN1PYQEfebpncaOce4xOlCo mvCqOC8gkFzot7N6n/2xVVHSh98IeXIUPBEToiD3CzFmNux59jScs5GZfdEjr59H gjRKZ9F63SREYxx6tFP3mRQ6rOTFelQ5svpGtZfDZb34vf482EZXHcKGcZ0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:24 2025 by rpki-client