$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/ZCEi0L7bVaY4wOssX-C9oZUDaeM.roa File: ZCEi0L7bVaY4wOssX-C9oZUDaeM.roa (raw, json) Hash identifier: SsOfkaCXqiHwX82bFZ2b1cyy+fxvbbSSN4MqCAAs1gk= Subject key identifier: 64:21:22:D0:BE:DB:55:A6:38:C0:EB:2C:5F:E0:BD:A1:95:03:69:E3 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 02A6 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/ZCEi0L7bVaY4wOssX-C9oZUDaeM.roa Signing time: Sun 31 Mar 2024 01:29:42 +0000 ROA not before: Sun 31 Mar 2024 01:29:42 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 27.91.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:29:42 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=642122D0BEDB55A638C0EB2C5FE0BDA1950369E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e8:d6:c1:05:37:14:e6:71:ed:bd:d5:aa:b9: 20:40:6a:aa:59:5c:bd:15:7a:7c:5e:88:70:7e:75: 5a:91:ae:9f:2d:8d:03:9a:c1:b2:ec:ae:6b:a3:87: 14:32:86:bb:02:c2:79:e7:ab:d6:f1:53:34:78:f9: d6:f1:f3:ab:27:30:06:5a:f4:02:a9:06:f3:1f:c5: a4:e9:fc:af:38:09:9f:02:89:1c:c1:2b:1f:34:1b: bc:8a:f2:f6:42:14:05:6b:8e:e8:c9:cd:a1:b0:5f: b9:04:02:ea:53:4f:b1:f9:fa:58:35:a3:bf:44:20: 77:2b:2d:c3:69:f3:f8:07:82:57:56:94:cd:f9:e3: 88:41:01:48:af:a1:d1:25:75:72:61:79:92:7e:d7: 1b:7c:75:f3:8f:84:91:41:f1:ed:e6:fe:6a:19:f9: a2:8e:70:54:fe:d4:b2:43:f1:7f:7e:8e:65:2f:49: 18:1c:8c:46:1e:e4:6b:2e:5b:36:5a:e4:1d:79:10: c5:e6:27:ef:bd:f5:b5:a8:b6:b8:3d:92:6e:52:b6: 7c:25:45:bb:87:b1:61:31:66:51:6e:e8:8c:a5:aa: 9f:bf:bf:ea:ae:c0:10:80:44:88:e8:0c:a9:cf:5f: b3:fa:b2:1b:2e:6f:b1:2d:3a:c5:a9:1f:54:df:95: c1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:21:22:D0:BE:DB:55:A6:38:C0:EB:2C:5F:E0:BD:A1:95:03:69:E3 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/ZCEi0L7bVaY4wOssX-C9oZUDaeM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.91.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:da:48:3d:34:dd:2d:a3:82:15:e3:f3:a4:a4:42:a9:d6:94: 50:c0:ab:bb:65:f4:72:50:ac:85:cb:57:f7:c8:a2:8e:79:71: 01:35:b9:24:a1:16:f7:b8:f3:53:f1:2f:11:44:4b:8d:ad:f7: 7b:e1:06:9e:24:db:b4:56:4e:2b:57:ed:90:f9:ce:ac:3f:79: 04:0a:80:b4:0d:87:47:fe:0a:38:5f:f3:af:d1:c8:92:c8:4e: 5e:cd:2a:f5:af:64:46:0d:b5:a9:30:eb:81:6b:87:66:76:56: f8:65:45:88:cc:d1:4a:75:56:b3:69:f1:f9:ee:ee:b2:c5:86: 6e:fc:44:4b:fd:20:19:e5:d1:45:af:88:8a:ea:7c:bb:97:e7: 8d:40:b2:b2:60:64:a1:d6:15:44:93:89:dd:29:75:e9:5e:4a: 21:f3:69:78:04:89:b7:ff:aa:97:4c:06:85:a9:f6:56:d5:34: 40:de:ef:b8:f8:98:f6:97:4d:96:b2:74:71:b1:98:fa:0b:ab: 11:c1:48:42:bf:99:90:06:3e:26:28:08:cf:b6:2a:10:33:9a: 31:f4:15:b7:c9:fb:7e:ff:6a:ec:8d:1e:7e:bf:b9:5c:a6:c0: da:98:16:63:6c:1f:77:dc:57:01:09:46:d8:ed:b0:e6:53:ae: 20:d1:f7:80 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTI5NDJaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY0MjEyMkQwQkVEQjU1 QTYzOEMwRUIyQzVGRTBCREExOTUwMzY5RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC66NbBBTcU5nHtvdWquSBAaqpZXL0VenxeiHB+dVqRrp8tjQOa wbLsrmujhxQyhrsCwnnnq9bxUzR4+dbx86snMAZa9AKpBvMfxaTp/K84CZ8CiRzB Kx80G7yK8vZCFAVrjujJzaGwX7kEAupTT7H5+lg1o79EIHcrLcNp8/gHgldWlM35 44hBAUivodEldXJheZJ+1xt8dfOPhJFB8e3m/moZ+aKOcFT+1LJD8X9+jmUvSRgc jEYe5GsuWzZa5B15EMXmJ++99bWotrg9km5StnwlRbuHsWExZlFu6Iylqp+/v+qu wBCARIjoDKnPX7P6shsub7EtOsWpH1TflcGnAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUZCEi0L7bVaY4wOssX+C9oZUDaeMwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL1pDRWkwTDdiVmFZNHdPc3NYLUM5b1pVRGFlTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAbWzANBgkqhkiG9w0BAQsFAAOCAQEAOdpIPTTdLaOCFePzpKRCqdaUUMCr u2X0clCshctX98iijnlxATW5JKEW97jzU/EvEURLja33e+EGniTbtFZOK1ftkPnO rD95BAqAtA2HR/4KOF/zr9HIkshOXs0q9a9kRg21qTDrgWuHZnZW+GVFiMzRSnVW s2nx+e7ussWGbvxES/0gGeXRRa+Iiup8u5fnjUCysmBkodYVRJOJ3Sl16V5KIfNp eASJt/+ql0wGhan2VtU0QN7vuPiY9pdNlrJ0cbGY+gurEcFIQr+ZkAY+JigIz7Yq EDOaMfQVt8n7fv9q7I0efr+5XKbA2pgWY2wfd9xXAQlG2O2w5lOuINH3gA== -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:26 2024 by rpki-client on console-ams.rpki-client.org