$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/HEOhzM9uL70CPnEz7Xr0mv7vk2g.roa File: HEOhzM9uL70CPnEz7Xr0mv7vk2g.roa (raw, json) Hash identifier: Xg7Kxvopsd/MIC/DJLcjOEgAOVbZ9IC8UhXvzEzX8SM= Subject key identifier: 1C:43:A1:CC:CF:6E:2F:BD:02:3E:71:33:ED:7A:F4:9A:FE:EF:93:68 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0303 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/HEOhzM9uL70CPnEz7Xr0mv7vk2g.roa Signing time: Sun 31 Mar 2024 01:38:33 +0000 ROA not before: Sun 31 Mar 2024 01:38:33 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 222.11.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 771 (0x303) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:38:33 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=1C43A1CCCF6E2FBD023E7133ED7AF49AFEEF9368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:24:db:a7:7f:99:63:0b:30:46:87:94:78:e8: 67:2d:97:da:12:79:f0:3e:95:1e:04:9f:28:6b:3f: 65:ed:e5:05:60:83:6a:3b:d7:c6:98:ba:da:62:fd: 11:9e:bf:d1:12:07:03:7a:3a:9b:c5:02:70:5c:87: 80:ed:25:11:bc:0d:20:59:aa:6e:63:7b:72:b1:b4: 96:ad:ba:63:30:c8:bc:9f:3c:5b:cb:6e:33:69:25: 54:c3:43:f4:46:17:41:44:a5:59:fa:a5:f8:8a:0f: 08:c9:62:a0:83:73:26:62:3b:b5:a5:80:88:75:78: 7e:ac:1a:8b:59:ab:28:5c:d4:b5:c8:17:a5:c5:db: 31:54:00:f8:73:8d:b1:32:e5:b3:a6:1b:49:95:ae: 42:28:2b:1d:80:a5:cb:d0:cf:78:e1:40:14:29:d1: 2b:11:a2:98:92:f0:d8:d9:46:d5:27:d4:9f:ab:e3: 3e:5e:e0:f7:32:ff:bd:94:26:c5:f0:11:78:76:41: c4:29:30:8f:6a:07:29:46:ee:a4:1e:ba:ed:c4:3a: 73:3d:45:ba:dc:13:ae:7d:de:47:12:7f:ce:f3:8f: 87:f6:b4:6d:97:ff:66:d7:74:08:e9:7b:8d:7f:64: cd:07:73:9a:bc:4d:19:17:50:04:35:2e:38:21:5f: 5a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:43:A1:CC:CF:6E:2F:BD:02:3E:71:33:ED:7A:F4:9A:FE:EF:93:68 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/HEOhzM9uL70CPnEz7Xr0mv7vk2g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.11.0.0/16 Signature Algorithm: sha256WithRSAEncryption ab:4e:b1:5a:84:69:0d:a4:46:dc:16:ce:0b:18:b9:e7:41:ac: dc:eb:df:37:60:32:d4:f2:f9:fe:36:2b:5e:8b:77:db:f4:ee: 53:0b:1d:d0:44:2f:e6:67:2a:bf:71:2a:89:21:2f:25:d4:d2: 4a:73:eb:90:17:64:ad:fe:43:c3:2e:f8:d5:94:21:d9:f0:42: b0:2e:6d:e7:cd:f4:80:30:12:9a:41:3e:6f:51:21:06:1b:77: 4b:d4:99:85:2e:1f:4d:e9:7c:85:fe:d0:30:b4:80:00:73:03: 78:64:d1:ac:51:b9:70:7a:44:0e:46:f8:e6:65:0d:6d:15:06: 3e:bc:e8:58:1c:2f:2a:28:9c:72:f2:81:91:ea:d5:89:e7:a8: 0a:eb:ea:37:c0:98:e2:b5:6f:fa:c0:d5:f0:29:78:95:3a:27: bf:c4:0d:d7:09:62:28:6e:83:0d:96:46:dc:3b:73:9d:bb:e7: 61:53:a2:8b:f9:5b:8c:b6:98:88:c1:dc:9d:f0:1d:8e:d5:b6: 1d:2f:37:fa:d2:48:d9:36:42:2d:3d:71:d3:27:bf:7a:03:e3: 54:ea:78:57:75:ca:75:d3:65:90:72:cd:c5:5e:8f:d2:ec:db: 97:1b:1b:52:05:28:a9:0f:aa:a6:43:64:1f:59:01:3a:2e:a8: 68:5e:3c:6d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAwMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTM4MzNaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFDNDNBMUNDQ0Y2RTJG QkQwMjNFNzEzM0VEN0FGNDlBRkVFRjkzNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdJNunf5ljCzBGh5R46Gctl9oSefA+lR4EnyhrP2Xt5QVgg2o7 18aYutpi/RGev9ESBwN6OpvFAnBch4DtJRG8DSBZqm5je3KxtJatumMwyLyfPFvL bjNpJVTDQ/RGF0FEpVn6pfiKDwjJYqCDcyZiO7WlgIh1eH6sGotZqyhc1LXIF6XF 2zFUAPhzjbEy5bOmG0mVrkIoKx2ApcvQz3jhQBQp0SsRopiS8NjZRtUn1J+r4z5e 4Pcy/72UJsXwEXh2QcQpMI9qBylG7qQeuu3EOnM9RbrcE6593kcSf87zj4f2tG2X /2bXdAjpe41/ZM0Hc5q8TRkXUAQ1LjghX1qTAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUHEOhzM9uL70CPnEz7Xr0mv7vk2gwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0hFT2h6TTl1TDcwQ1BuRXo3WHIwbXY3dmsyZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDeCzANBgkqhkiG9w0BAQsFAAOCAQEAq06xWoRpDaRG3BbOCxi550Gs3Ovf N2Ay1PL5/jYrXot32/TuUwsd0EQv5mcqv3EqiSEvJdTSSnPrkBdkrf5Dwy741ZQh 2fBCsC5t5830gDASmkE+b1EhBht3S9SZhS4fTel8hf7QMLSAAHMDeGTRrFG5cHpE Dkb45mUNbRUGPrzoWBwvKiiccvKBkerVieeoCuvqN8CY4rVv+sDV8Cl4lTonv8QN 1wliKG6DDZZG3DtznbvnYVOii/lbjLaYiMHcnfAdjtW2HS83+tJI2TZCLT1x0ye/ egPjVOp4V3XKddNlkHLNxV6P0uzblxsbUgUoqQ+qpkNkH1kBOi6oaF48bQ== -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:42 2024 by rpki-client on console-fra.rpki-client.org