$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/Qf91UEoLVn7axRg7FukhtMkhhlo.roa File: Qf91UEoLVn7axRg7FukhtMkhhlo.roa (raw, json) Hash identifier: qmV7pgjjjJmLtFlDr8PELhcV+i0rcnOGH3NCJY5Xudw= Subject key identifier: 41:FF:75:50:4A:0B:56:7E:DA:C5:18:3B:16:E9:21:B4:C9:21:86:5A Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 02B2 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Qf91UEoLVn7axRg7FukhtMkhhlo.roa Signing time: Sun 31 Mar 2024 01:29:48 +0000 ROA not before: Sun 31 Mar 2024 01:29:48 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 114.17.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 690 (0x2b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:29:48 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=41FF75504A0B567EDAC5183B16E921B4C921865A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:19:70:11:bb:5a:c1:e0:95:20:11:90:b4:27: 4c:c3:a8:b2:29:99:c6:49:18:03:9f:a0:ef:7c:92: 95:b2:f1:73:2e:e5:8e:61:44:74:00:8a:e1:3e:8e: a4:d1:bd:c5:2b:c7:e1:e3:d3:85:aa:41:d4:73:63: 92:d5:52:02:8c:8d:57:96:34:51:0c:fb:f3:b2:ab: a0:80:8b:bb:75:a3:6f:6b:9e:c4:42:e9:a5:79:8e: ee:28:6d:cd:4c:40:ac:8c:4e:52:d7:45:cb:36:60: 33:a6:65:43:20:24:32:eb:52:5f:3d:60:97:bf:95: 3e:4f:4b:3d:51:95:cb:46:87:a0:7c:22:d7:b4:69: 87:3b:0d:81:c1:0f:fc:f1:93:cb:71:63:a8:36:41: d3:11:9f:e9:36:cc:ce:3c:30:11:d9:fa:6a:4c:89: a1:2c:2c:f9:73:2a:7f:1d:a1:36:5e:9c:80:9b:5e: 1c:26:90:d7:c4:c2:51:a0:d4:8d:21:d6:ff:08:05: 1f:b3:2f:97:39:0b:c0:59:9f:ff:39:03:0f:1d:0f: 21:3e:e9:c4:73:46:8f:2d:a4:ed:bc:1e:d8:53:9e: e5:9e:1e:e0:fe:7e:98:26:8c:78:26:b5:63:09:ce: 41:c1:a7:25:1d:40:36:ad:04:a8:ab:e8:bf:01:c2: a3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FF:75:50:4A:0B:56:7E:DA:C5:18:3B:16:E9:21:B4:C9:21:86:5A X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Qf91UEoLVn7axRg7FukhtMkhhlo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.17.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:11:58:f2:44:21:5b:4b:8f:e5:55:19:54:73:78:b2:54:c6: b2:31:21:6f:f9:44:d0:0d:9c:41:b8:16:30:aa:36:10:41:4a: 56:9d:73:1f:c8:22:9c:6e:f5:93:34:11:33:5f:25:c2:3c:ff: 03:76:43:36:0c:a4:d7:80:2b:01:6e:03:b6:de:ce:c8:d4:b7: a9:14:0c:19:01:56:52:2f:34:3f:ba:cc:72:b7:16:12:90:76: e6:1a:39:44:a6:fb:e7:e5:81:58:44:43:b1:53:26:a7:eb:f2: cf:1b:0d:73:0a:25:90:b8:00:69:a7:12:4a:87:97:0b:53:98: e7:1f:2a:48:cb:7f:96:90:e0:ec:fc:68:de:8f:3c:6a:d8:91: 3b:bf:c2:0a:22:a0:f9:be:c5:74:4a:71:ce:2e:75:ca:de:5a: c2:10:96:7c:b4:05:f9:53:1c:9e:48:c3:95:7f:df:cd:9c:a1: af:e2:4c:5c:c7:bb:14:ec:fd:4a:23:7a:ef:81:0c:a0:4f:71: 74:04:00:63:39:6c:f1:4b:4c:55:f4:36:70:b8:f5:dc:f9:7e: fd:11:c3:b0:ab:eb:33:39:8c:de:c2:47:d7:0a:ed:c4:94:ef: d2:2a:55:b8:a0:70:04:59:cd:60:27:9a:c9:3b:c3:df:45:77: 29:05:bf:c9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICArIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTI5NDhaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQxRkY3NTUwNEEwQjU2 N0VEQUM1MTgzQjE2RTkyMUI0QzkyMTg2NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzGXARu1rB4JUgEZC0J0zDqLIpmcZJGAOfoO98kpWy8XMu5Y5h RHQAiuE+jqTRvcUrx+Hj04WqQdRzY5LVUgKMjVeWNFEM+/Oyq6CAi7t1o29rnsRC 6aV5ju4obc1MQKyMTlLXRcs2YDOmZUMgJDLrUl89YJe/lT5PSz1RlctGh6B8Ite0 aYc7DYHBD/zxk8txY6g2QdMRn+k2zM48MBHZ+mpMiaEsLPlzKn8doTZenICbXhwm kNfEwlGg1I0h1v8IBR+zL5c5C8BZn/85Aw8dDyE+6cRzRo8tpO28HthTnuWeHuD+ fpgmjHgmtWMJzkHBpyUdQDatBKir6L8BwqMjAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUQf91UEoLVn7axRg7FukhtMkhhlowHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL1FmOTFVRW9MVm43YXhSZzdGdWtodE1raGhsby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwByETANBgkqhkiG9w0BAQsFAAOCAQEAjRFY8kQhW0uP5VUZVHN4slTGsjEh b/lE0A2cQbgWMKo2EEFKVp1zH8ginG71kzQRM18lwjz/A3ZDNgyk14ArAW4Dtt7O yNS3qRQMGQFWUi80P7rMcrcWEpB25ho5RKb75+WBWERDsVMmp+vyzxsNcwolkLgA aacSSoeXC1OY5x8qSMt/lpDg7Pxo3o88atiRO7/CCiKg+b7FdEpxzi51yt5awhCW fLQF+VMcnkjDlX/fzZyhr+JMXMe7FOz9SiN674EMoE9xdAQAYzls8UtMVfQ2cLj1 3Pl+/RHDsKvrMzmM3sJH1wrtxJTv0ipVuKBwBFnNYCeayTvD30V3KQW/yQ== -----END CERTIFICATE-----Generated at Thu Jun 6 14:56:13 2024 by rpki-client on console-fra.rpki-client.org