$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/1cafTwkXj3xDAXUIA3Bu3HVpbIM.roa File: 1cafTwkXj3xDAXUIA3Bu3HVpbIM.roa (raw, json) Hash identifier: S2/ZZiH10o/fP6ZM5lAecpWR2nEJ5HzBmNt5wnFUacw= Subject key identifier: D5:C6:9F:4F:09:17:8F:7C:43:01:75:08:03:70:6E:DC:75:69:6C:83 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 02B3 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/1cafTwkXj3xDAXUIA3Bu3HVpbIM.roa Signing time: Sun 31 Mar 2024 01:29:48 +0000 ROA not before: Sun 31 Mar 2024 01:29:48 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 59.134.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:29:48 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=D5C69F4F09178F7C4301750803706EDC75696C83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:60:18:a6:57:7a:50:59:f9:a4:c3:bc:59:2e: 1f:82:5d:cd:0a:e7:2c:57:e7:55:27:4d:7c:0e:61: bc:f7:b1:3d:56:a0:8f:0c:cf:ca:2e:87:01:de:ff: c5:33:da:ee:f5:3c:3c:ba:28:57:9b:35:9b:ca:d2: 17:a1:08:24:ac:f1:15:48:89:9a:95:8a:a3:c0:d2: 22:07:7d:b3:a6:bb:58:69:21:4a:cf:a0:35:6b:6a: 75:b2:06:6e:2d:06:62:05:f0:2d:ee:ab:3f:c6:ba: c8:88:4f:85:44:95:b7:1b:4d:95:ea:84:86:39:16: f5:f3:0e:2e:0d:c6:27:71:93:7c:f3:d5:1f:c7:a0: 6a:4e:b4:2e:52:a8:0b:d1:55:2c:c1:41:a7:6e:46: dc:88:07:a7:38:95:a1:d6:26:08:69:92:63:9c:18: d7:0c:c8:24:12:14:66:fe:ea:71:78:12:11:87:c2: 45:a5:38:a4:33:31:b6:0b:1a:30:ec:3e:0c:4e:97: f8:2a:da:01:e6:26:9b:69:26:2c:f1:4c:ec:57:b2: 5d:dd:fc:cf:e8:07:c9:30:c4:02:e4:a2:e7:68:f5: 31:2d:07:f8:ae:bd:e9:8b:bb:a9:ac:b0:fe:6c:27: 9f:00:25:0e:94:cb:4e:17:6e:0d:00:6b:ea:a7:e7: dc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C6:9F:4F:09:17:8F:7C:43:01:75:08:03:70:6E:DC:75:69:6C:83 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/1cafTwkXj3xDAXUIA3Bu3HVpbIM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption a7:2d:17:b6:f8:88:58:3b:3e:77:43:3e:7f:e7:b6:3a:1a:4c: 3b:05:8e:13:9b:40:20:13:0c:0b:dd:f4:4c:75:f7:26:ef:63: 87:b8:36:cc:81:1d:a4:b9:98:ef:1b:ef:ad:04:1f:60:a8:ec: 7d:57:13:49:ed:58:93:f9:21:4c:30:ae:ec:bf:1b:a2:dd:fa: 59:66:00:53:20:26:a3:0e:0b:be:4e:4c:e9:87:1b:cc:4b:42: 3a:d8:65:44:93:47:0c:dd:e1:57:52:ae:5b:15:8a:d0:23:e7: bc:96:dc:c2:26:0d:5c:ef:67:b5:b8:84:6c:10:41:df:1c:ce: 39:ca:59:c6:fc:1f:14:dd:dd:9f:11:09:f3:8c:c3:80:a5:c9: e4:7a:3f:00:2e:fd:bd:a6:11:27:a5:1b:2b:5d:7a:6c:4c:78: 99:06:db:fb:ec:77:f8:6a:3b:61:ab:00:07:80:11:24:6d:3b: f5:ac:a5:3f:9c:83:94:02:22:70:79:83:5d:9b:3c:e7:64:59: 1d:8b:d8:ef:24:5a:22:4b:7d:79:c0:09:ad:de:f4:d5:04:28: eb:b9:6f:f5:e6:65:d8:c6:3c:2c:7f:a3:33:e3:0a:a1:fd:f4: ee:2e:a3:75:01:80:bf:dd:13:a7:42:14:97:f2:0a:af:d2:27: d2:37:b3:d2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICArMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTI5NDhaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ1QzY5RjRGMDkxNzhG N0M0MzAxNzUwODAzNzA2RURDNzU2OTZDODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoYBimV3pQWfmkw7xZLh+CXc0K5yxX51UnTXwOYbz3sT1WoI8M z8ouhwHe/8Uz2u71PDy6KFebNZvK0hehCCSs8RVIiZqViqPA0iIHfbOmu1hpIUrP oDVranWyBm4tBmIF8C3uqz/GusiIT4VElbcbTZXqhIY5FvXzDi4Nxidxk3zz1R/H oGpOtC5SqAvRVSzBQaduRtyIB6c4laHWJghpkmOcGNcMyCQSFGb+6nF4EhGHwkWl OKQzMbYLGjDsPgxOl/gq2gHmJptpJizxTOxXsl3d/M/oB8kwxALkoudo9TEtB/iu vemLu6mssP5sJ58AJQ6Uy04Xbg0Aa+qn59zLAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQU1cafTwkXj3xDAXUIA3Bu3HVpbIMwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxLzFjYWZUd2tYajN4REFYVUlBM0J1M0hWcGJJTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA7hjANBgkqhkiG9w0BAQsFAAOCAQEApy0XtviIWDs+d0M+f+e2OhpMOwWO E5tAIBMMC930THX3Ju9jh7g2zIEdpLmY7xvvrQQfYKjsfVcTSe1Yk/khTDCu7L8b ot36WWYAUyAmow4Lvk5M6YcbzEtCOthlRJNHDN3hV1KuWxWK0CPnvJbcwiYNXO9n tbiEbBBB3xzOOcpZxvwfFN3dnxEJ84zDgKXJ5Ho/AC79vaYRJ6UbK116bEx4mQbb ++x3+Go7YasAB4ARJG079aylP5yDlAIicHmDXZs852RZHYvY7yRaIkt9ecAJrd70 1QQo67lv9eZl2MY8LH+jM+MKof307i6jdQGAv90Tp0IUl/IKr9In0jez0g== -----END CERTIFICATE-----Generated at Thu Jun 6 14:56:13 2024 by rpki-client on console-fra.rpki-client.org