$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/Hk-Q4AMxwPj9sKs-dl4sOWGog-w.roa File: Hk-Q4AMxwPj9sKs-dl4sOWGog-w.roa (raw, json) Hash identifier: zgLTGtH1Vt+cV91h54eqzWlU/cmYBHZp2m+0LrwsN1E= Subject key identifier: 1E:4F:90:E0:03:31:C0:F8:FD:B0:AB:3E:76:5E:2C:39:61:A8:83:EC Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0355 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Hk-Q4AMxwPj9sKs-dl4sOWGog-w.roa Signing time: Sun 31 Mar 2024 01:42:46 +0000 ROA not before: Sun 31 Mar 2024 01:42:46 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 210.169.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 853 (0x355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:42:46 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=1E4F90E00331C0F8FDB0AB3E765E2C3961A883EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:b4:d6:7c:40:1e:47:75:8d:39:a4:cb:9e:a1: 98:04:d0:c8:b8:50:e0:ca:5f:a1:e7:bb:95:8b:0f: cc:9d:36:17:07:2c:e3:7d:a3:4b:41:d3:8c:45:b3: 2e:88:41:4b:c1:70:9c:6d:77:29:07:87:79:15:f6: 56:76:b9:76:14:17:1b:7a:2d:2d:75:fc:0a:a6:b5: b0:e3:65:e7:30:aa:04:0c:22:4f:0e:22:17:66:95: a3:20:a6:b4:15:ce:92:90:90:af:a0:05:9b:a5:61: 43:f3:60:43:c8:69:70:13:5a:17:07:5f:ef:9e:0a: 22:e6:9c:1d:88:01:d4:20:42:5c:74:f7:64:36:f5: 66:ae:d0:8e:29:85:a3:3c:d4:e0:55:1a:f7:8a:a9: d5:ed:39:97:1e:45:85:52:a4:8d:89:59:15:8a:c8: 8e:b3:7e:fc:97:95:2e:6a:0b:07:ec:5e:3a:40:55: 29:55:83:da:e9:8b:a4:d9:39:68:ca:24:ac:35:c2: 00:fd:19:46:93:7f:01:2b:8c:18:e3:be:75:74:40: b4:37:4d:28:a0:31:61:cd:af:a3:00:ff:58:17:f7: 8d:05:3f:b8:e4:8d:11:49:7a:0f:95:d2:c3:82:99: a3:93:2d:33:da:4a:c1:8c:b3:9a:4f:94:1a:f8:e4: f5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:4F:90:E0:03:31:C0:F8:FD:B0:AB:3E:76:5E:2C:39:61:A8:83:EC X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Hk-Q4AMxwPj9sKs-dl4sOWGog-w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.169.0.0/17 Signature Algorithm: sha256WithRSAEncryption 30:b5:b1:6b:bc:70:c3:42:26:6a:e3:85:5c:bb:31:4d:18:b4: a2:ab:98:d7:6d:8f:87:e0:f6:b7:cd:d4:34:c7:7e:41:32:03: 5c:bd:a1:1e:37:2d:ce:a3:eb:51:c2:df:d3:47:74:e8:99:92: be:8a:0c:53:83:e1:33:5c:a6:fd:b5:8e:3f:7c:ae:d3:d9:68: 0f:73:1f:28:11:b8:56:11:88:f2:b8:7d:1a:21:72:ca:76:c1: 21:92:ea:97:d0:f6:eb:d6:d1:ae:f2:4c:56:e4:23:d7:e7:bb: 79:96:3d:83:b5:6d:f5:f1:18:d2:8f:8d:90:24:c4:19:1c:5e: cc:df:c2:dd:f2:2f:8c:95:6a:ec:5c:a7:52:31:86:6d:18:28: ad:2c:1b:80:53:b5:14:d2:dc:4c:d3:04:53:58:e6:d3:94:45: b2:c7:a2:aa:6c:a5:fd:7e:27:bd:b5:a0:78:cf:54:c8:15:ce: f2:51:f5:c4:ba:e2:ec:f9:c3:20:7e:70:55:d5:a8:ca:4c:d9: 87:73:34:18:81:7a:d8:67:cf:26:80:80:79:07:c5:f7:f0:0f: 61:d7:72:97:5d:61:b0:f5:72:f8:80:89:a9:6e:f7:c2:d0:37: d3:66:4d:6b:2b:97:1e:69:24:b5:d9:3b:3d:ec:1b:7d:75:4d: 25:79:b1:af -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA1UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTQyNDZaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFFNEY5MEUwMDMzMUMw RjhGREIwQUIzRTc2NUUyQzM5NjFBODgzRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD9tNZ8QB5HdY05pMueoZgE0Mi4UODKX6Hnu5WLD8ydNhcHLON9 o0tB04xFsy6IQUvBcJxtdykHh3kV9lZ2uXYUFxt6LS11/AqmtbDjZecwqgQMIk8O IhdmlaMgprQVzpKQkK+gBZulYUPzYEPIaXATWhcHX++eCiLmnB2IAdQgQlx092Q2 9Wau0I4phaM81OBVGveKqdXtOZceRYVSpI2JWRWKyI6zfvyXlS5qCwfsXjpAVSlV g9rpi6TZOWjKJKw1wgD9GUaTfwErjBjjvnV0QLQ3TSigMWHNr6MA/1gX940FP7jk jRFJeg+V0sOCmaOTLTPaSsGMs5pPlBr45PVVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHk+Q4AMxwPj9sKs+dl4sOWGog+wwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0hrLVE0QU14d1BqOXNLcy1kbDRzT1dHb2ctdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfSqQAwDQYJKoZIhvcNAQELBQADggEBADC1sWu8cMNCJmrjhVy7MU0YtKKr mNdtj4fg9rfN1DTHfkEyA1y9oR43Lc6j61HC39NHdOiZkr6KDFOD4TNcpv21jj98 rtPZaA9zHygRuFYRiPK4fRohcsp2wSGS6pfQ9uvW0a7yTFbkI9fnu3mWPYO1bfXx GNKPjZAkxBkcXszfwt3yL4yVauxcp1Ixhm0YKK0sG4BTtRTS3EzTBFNY5tOURbLH oqpspf1+J721oHjPVMgVzvJR9cS64uz5wyB+cFXVqMpM2YdzNBiBethnzyaAgHkH xffwD2HXcpddYbD1cviAialu98LQN9NmTWsrlx5pJLXZOz3sG311TSV5sa8= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:16 2024 by rpki-client on console-ams.rpki-client.org