$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/5CoL67f6cyywIyh9hkCjAiAlkso.roa File: 5CoL67f6cyywIyh9hkCjAiAlkso.roa (raw, json) Hash identifier: E5S2ELtjL2QKMgMfbtrrXOynLQEVQ0SAKOTFdcM5Hzg= Subject key identifier: E4:2A:0B:EB:B7:FA:73:2C:B0:23:28:7D:86:40:A3:02:20:25:92:CA Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 038A Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/5CoL67f6cyywIyh9hkCjAiAlkso.roa Signing time: Sat 31 Aug 2024 01:29:49 +0000 ROA not before: Sat 31 Aug 2024 01:29:49 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 2516 IP address blocks: 61.117.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 906 (0x38a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Aug 31 01:29:49 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=E42A0BEBB7FA732CB023287D8640A302202592CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e8:75:56:23:ca:89:e9:76:82:4f:0a:f1:3d: a9:b7:19:90:9f:f0:ca:9e:9f:bb:2b:a2:07:cd:9d: 6f:09:87:5d:d4:f7:d0:a6:58:4f:0d:bf:8b:70:77: d0:12:ab:38:fb:bb:e1:76:99:ac:83:a7:94:38:6b: 79:6f:7b:30:50:ae:0c:e8:54:4e:9d:a0:5d:81:0c: 72:78:69:27:15:39:2c:a5:46:ec:e8:a1:e0:27:a7: 47:e6:72:f7:9d:62:1d:c2:85:32:cb:0f:08:48:77: 1a:92:80:ab:24:d4:31:ab:f7:c0:78:17:4a:e7:31: 8f:d9:9f:55:e7:ab:8d:cb:63:0d:c7:66:56:58:e1: 30:ed:1a:c0:47:de:b9:bd:e2:43:d8:51:1f:e2:c0: 52:91:18:77:81:84:52:04:f4:fb:92:6c:07:22:40: 6c:b1:cf:0b:39:32:0e:c3:57:07:d1:71:e1:af:f1: 70:08:b6:da:3d:35:df:d7:3a:33:66:68:26:4c:52: f5:76:73:d6:da:5f:a6:aa:aa:b1:f0:e9:db:d6:20: 27:e9:06:2a:43:5c:4a:7b:fe:e1:1c:ac:13:d3:1a: 7c:04:03:a2:84:b2:d6:6f:7c:81:24:5c:b9:46:77: 0b:4d:4f:4d:2b:51:b3:1c:fd:3c:98:ea:30:99:2b: 9f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:2A:0B:EB:B7:FA:73:2C:B0:23:28:7D:86:40:A3:02:20:25:92:CA X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/5CoL67f6cyywIyh9hkCjAiAlkso.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.117.0.0/17 Signature Algorithm: sha256WithRSAEncryption 25:9b:5d:23:e0:3d:1a:81:7c:c0:02:f0:3d:09:76:94:40:97: ea:03:f2:83:14:7a:55:2b:e1:b5:ec:c1:ab:b1:83:dd:8c:71: 7c:26:0b:23:ca:6e:f6:92:9a:5e:37:9b:ae:c7:4a:02:7b:7f: dc:3a:21:41:e9:25:b7:89:a5:4e:4b:97:3d:4e:64:71:4f:fa: 32:2a:c8:7f:72:9d:a8:5f:e4:31:4a:39:28:ff:6d:b2:87:2f: 4e:b2:56:55:13:3d:ac:25:07:c3:7e:41:9b:cb:48:ed:52:4d: 4c:bc:39:fc:80:db:54:50:7c:ea:fb:f2:59:ed:c0:00:ca:0e: 15:61:78:17:55:da:3e:0f:db:e2:d2:7f:98:05:ae:0d:96:5c: c8:30:cb:3a:b8:ba:b9:73:8f:b7:a3:cc:73:71:c2:73:c2:03: 9a:4e:03:62:0e:26:fb:85:e3:a9:a3:74:ee:a4:c8:14:c6:aa: 5b:29:a2:d6:f9:68:4c:c2:54:46:14:41:7f:69:35:fb:ec:bd: 56:e9:5f:56:21:48:c3:fe:19:92:e3:b6:b0:55:55:73:0e:ee: 9c:61:c4:b1:77:24:cf:8e:ad:5f:09:b3:90:ca:7a:49:74:b6: 73:1d:7d:4c:e3:84:ff:32:4a:71:0a:d4:ab:42:9a:b4:5f:bc: 4a:f6:a3:1f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDA4MzEw MTI5NDlaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEU0MkEwQkVCQjdGQTcz MkNCMDIzMjg3RDg2NDBBMzAyMjAyNTkyQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo6HVWI8qJ6XaCTwrxPam3GZCf8Mqen7srogfNnW8Jh13U99Cm WE8Nv4twd9ASqzj7u+F2mayDp5Q4a3lvezBQrgzoVE6doF2BDHJ4aScVOSylRuzo oeAnp0fmcvedYh3ChTLLDwhIdxqSgKsk1DGr98B4F0rnMY/Zn1Xnq43LYw3HZlZY 4TDtGsBH3rm94kPYUR/iwFKRGHeBhFIE9PuSbAciQGyxzws5Mg7DVwfRceGv8XAI tto9Nd/XOjNmaCZMUvV2c9baX6aqqrHw6dvWICfpBipDXEp7/uEcrBPTGnwEA6KE stZvfIEkXLlGdwtNT00rUbMc/TyY6jCZK58HAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5CoL67f6cyywIyh9hkCjAiAlksowHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxLzVDb0w2N2Y2Y3l5d0l5aDloa0NqQWlBbGtzby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc9dQAwDQYJKoZIhvcNAQELBQADggEBACWbXSPgPRqBfMAC8D0JdpRAl+oD 8oMUelUr4bXswauxg92McXwmCyPKbvaSml43m67HSgJ7f9w6IUHpJbeJpU5Llz1O ZHFP+jIqyH9ynahf5DFKOSj/bbKHL06yVlUTPawlB8N+QZvLSO1STUy8OfyA21RQ fOr78lntwADKDhVheBdV2j4P2+LSf5gFrg2WXMgwyzq4urlzj7ejzHNxwnPCA5pO A2IOJvuF46mjdO6kyBTGqlspotb5aEzCVEYUQX9pNfvsvVbpX1YhSMP+GZLjtrBV VXMO7pxhxLF3JM+OrV8Js5DKekl0tnMdfUzjhP8ySnEK1KtCmrRfvEr2ox8= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:02 2024 by rpki-client on console-fra.rpki-client.org