$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2490/X6bdYSXuTkb3OLZsF_J9hZVrWEk.roa File: X6bdYSXuTkb3OLZsF_J9hZVrWEk.roa (raw, json) Hash identifier: BiAErEwTz9R+bJw7vxAhfQxs3AjtUAUXChLhrDrbHH8= Subject key identifier: 5F:A6:DD:61:25:EE:4E:46:F7:38:B6:6C:17:F2:7D:85:95:6B:58:49 Certificate issuer: /CN=B8E53C5244B7F9A76D5F9DF9FBAF61E57B2EA93B Certificate serial: 58 Authority key identifier: B8:E5:3C:52:44:B7:F9:A7:6D:5F:9D:F9:FB:AF:61:E5:7B:2E:A9:3B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uOU8UkS3-adtX535-69h5XsuqTs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/X6bdYSXuTkb3OLZsF_J9hZVrWEk.roa Signing time: Fri 31 Jan 2025 01:30:38 +0000 ROA not before: Fri 31 Jan 2025 01:30:38 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 7687 IP address blocks: 160.246.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/uOU8UkS3-adtX535-69h5XsuqTs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/uOU8UkS3-adtX535-69h5XsuqTs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uOU8UkS3-adtX535-69h5XsuqTs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8E53C5244B7F9A76D5F9DF9FBAF61E57B2EA93B Validity Not Before: Jan 31 01:30:38 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=5FA6DD6125EE4E46F738B66C17F27D85956B5849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c5:45:c6:91:64:5d:d2:60:03:fe:96:76:39: 73:4b:4f:8d:f2:68:ed:3a:dd:76:02:0f:69:e0:f8: 7d:ad:49:88:78:80:70:ee:85:66:89:04:d3:2b:c4: 02:72:8f:da:85:c6:43:4a:65:54:9a:a1:9d:1b:d4: 0e:da:98:2c:ab:2b:49:68:54:76:d5:fb:1e:19:cb: 19:9f:66:b2:7f:ef:cb:cb:32:3b:ab:60:d9:34:d1: 32:29:2f:a6:b6:24:14:21:ca:b2:ff:66:18:a3:3c: fa:2f:29:4e:7d:54:0d:dd:63:b2:37:4d:7c:ba:22: af:92:f8:a0:ca:0f:3b:81:47:48:79:d6:fe:0d:8a: 28:43:e0:a1:18:e7:f2:0d:80:9c:96:cd:e4:b3:ff: b8:4e:ab:66:60:21:40:6e:e7:0f:ee:95:dd:a3:45: 6e:e7:70:bf:e1:ea:70:a5:4b:00:f4:f2:72:66:e8: 8f:99:a7:cf:2f:77:75:17:68:81:96:67:64:9a:75: 31:ac:2f:dd:ce:2a:35:c5:85:d4:3e:8d:5a:f2:b6: c6:54:31:f0:02:9c:ef:55:a5:f2:34:e3:6b:33:e7: 47:a7:0e:ad:39:87:f5:80:6c:33:51:cb:4d:b8:34: 93:a3:4b:d7:e8:57:18:8d:73:b9:2f:29:5f:a5:ca: 47:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:A6:DD:61:25:EE:4E:46:F7:38:B6:6C:17:F2:7D:85:95:6B:58:49 X509v3 Authority Key Identifier: keyid:B8:E5:3C:52:44:B7:F9:A7:6D:5F:9D:F9:FB:AF:61:E5:7B:2E:A9:3B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/uOU8UkS3-adtX535-69h5XsuqTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uOU8UkS3-adtX535-69h5XsuqTs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/X6bdYSXuTkb3OLZsF_J9hZVrWEk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.246.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:ff:2e:71:bf:3e:31:30:d3:91:21:27:ad:a7:d9:e3:da:2e: 74:e1:aa:41:9e:6c:53:b5:c0:30:f7:e8:25:c0:4a:6a:9e:73: 10:19:4e:52:b9:d2:0c:47:50:6c:92:f5:31:b1:db:72:6d:c4: e5:cc:4c:88:de:e7:a4:c3:d1:12:5e:b3:c9:57:fd:ce:82:9f: 53:9a:e1:d1:b7:08:77:59:12:b7:2d:9a:7c:7e:34:06:e5:a1: 31:54:1c:93:c7:ec:85:1c:9a:fc:f2:04:a0:83:02:23:b8:80: 78:da:20:79:b0:dc:5e:31:b9:b5:17:45:7d:33:79:b9:27:e0: 03:15:48:d0:1b:7f:6c:49:11:66:98:4a:81:42:58:96:df:f8: 0f:4f:44:5e:b2:bd:12:fe:ac:91:98:10:41:da:7a:aa:e6:3b: d0:41:d6:2d:d3:07:df:01:b6:bf:7f:9c:4d:d3:47:90:dc:20: 0e:86:cd:8b:e9:4c:32:73:87:08:a3:10:29:0a:7d:26:f3:0c: f2:b3:3c:32:a7:f9:8f:bb:f7:e2:11:44:af:6c:89:5e:74:fa: 11:9b:a6:db:c9:49:06:1a:28:92:0f:82:ab:ff:ab:e3:f2:7a: 6d:37:0c:5a:3a:fc:d0:46:1e:4c:1d:36:c8:97:37:24:01:ab: 2e:a3:8f:3a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBWDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEU1 M0M1MjQ0QjdGOUE3NkQ1RjlERjlGQkFGNjFFNTdCMkVBOTNCMB4XDTI1MDEzMTAx MzAzOFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoNUZBNkRENjEyNUVFNEU0 NkY3MzhCNjZDMTdGMjdEODU5NTZCNTg0OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMDFRcaRZF3SYAP+lnY5c0tPjfJo7TrddgIPaeD4fa1JiHiAcO6F ZokE0yvEAnKP2oXGQ0plVJqhnRvUDtqYLKsrSWhUdtX7HhnLGZ9msn/vy8syO6tg 2TTRMikvprYkFCHKsv9mGKM8+i8pTn1UDd1jsjdNfLoir5L4oMoPO4FHSHnW/g2K KEPgoRjn8g2AnJbN5LP/uE6rZmAhQG7nD+6V3aNFbudwv+HqcKVLAPTycmboj5mn zy93dRdogZZnZJp1Mawv3c4qNcWF1D6NWvK2xlQx8AKc71Wl8jTjazPnR6cOrTmH 9YBsM1HLTbg0k6NL1+hXGI1zuS8pX6XKR88CAwEAAaOCAiUwggIhMB0GA1UdDgQW BBRfpt1hJe5ORvc4tmwX8n2FlWtYSTAfBgNVHSMEGDAWgBS45TxSRLf5p21fnfn7 r2Hley6pOzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQ5MC91T1U4VWtTMy1hZHRYNTM1LTY5aDVYc3VxVHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91T1U4VWtTMy1hZHRYNTM1LTY5aDVY c3VxVHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQ5MC9YNmJkWVNYdVRrYjNPTFpzRl9KOWhaVnJXRWsucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMAoPYwDQYJKoZIhvcNAQELBQADggEBAET/LnG/PjEw05EhJ62n2ePaLnTh qkGebFO1wDD36CXASmqecxAZTlK50gxHUGyS9TGx23JtxOXMTIje56TD0RJes8lX /c6Cn1Oa4dG3CHdZErctmnx+NAbloTFUHJPH7IUcmvzyBKCDAiO4gHjaIHmw3F4x ubUXRX0zebkn4AMVSNAbf2xJEWaYSoFCWJbf+A9PRF6yvRL+rJGYEEHaeqrmO9BB 1i3TB98Btr9/nE3TR5DcIA6GzYvpTDJzhwijECkKfSbzDPKzPDKn+Y+79+IRRK9s iV50+hGbptvJSQYaKJIPgqv/q+Pyem03DFo6/NBGHkwdNsiXNyQBqy6jjzo= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:38 2025 by rpki-client