$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/gFMv8Ua2IDDl3vANFW9kMrpMaOw.roa File: gFMv8Ua2IDDl3vANFW9kMrpMaOw.roa (raw, json) Hash identifier: t9HRR5HWwl5N963+ST39GAH7eTxXiutZqtR5b8wZrE4= Subject key identifier: 80:53:2F:F1:46:B6:20:30:E5:DE:F0:0D:15:6F:64:32:BA:4C:68:EC Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 02FA Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/gFMv8Ua2IDDl3vANFW9kMrpMaOw.roa Signing time: Sun 31 Mar 2024 01:35:54 +0000 ROA not before: Sun 31 Mar 2024 01:35:54 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 222.2.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 762 (0x2fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:35:54 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=80532FF146B62030E5DEF00D156F6432BA4C68EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:55:b1:64:21:7c:a2:19:dc:4f:e2:2f:f9:34: 8d:73:6f:11:2a:2d:20:1d:2c:c1:96:f6:93:ca:97: d6:2f:87:1c:dd:9a:c3:b5:f1:65:94:8c:c1:72:32: 3e:b3:8a:03:c7:19:a2:81:a3:fa:7e:20:1b:f5:9d: ec:01:16:f2:df:0a:22:79:02:2f:ba:5c:b7:75:de: 6a:50:98:c9:50:fc:10:71:a3:f9:22:00:f1:b4:e2: 38:7d:fe:33:d5:ee:ff:05:f8:7e:c7:59:6f:cc:37: b2:9b:3a:fd:76:e4:7a:5a:d1:ff:17:28:6a:8a:0a: 89:e9:47:a5:c4:8a:eb:66:30:96:ce:5e:96:d9:8a: f6:ab:b3:87:3f:24:d3:8a:d5:4b:3a:e1:e8:4e:d8: 86:d6:a3:65:c9:2b:99:b9:cc:2a:64:74:1b:fc:97: 29:ed:fb:e5:30:ff:ee:8b:a7:7f:df:22:d3:16:4e: 49:95:71:d6:94:39:c5:a8:2b:ef:d3:de:a7:32:c3: 47:db:ef:75:b5:7e:98:29:ee:6b:38:dc:23:09:a5: 6f:84:b3:4d:ca:9e:98:8d:99:56:76:d7:6e:cf:1c: 29:08:75:37:d5:fb:de:3a:49:cb:91:37:1f:23:ce: 47:77:ed:df:ed:d8:97:5b:c5:5e:cd:4a:c7:c2:6c: 6d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:53:2F:F1:46:B6:20:30:E5:DE:F0:0D:15:6F:64:32:BA:4C:68:EC X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/gFMv8Ua2IDDl3vANFW9kMrpMaOw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.2.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8f:a8:85:ef:c9:b3:1b:27:8a:d0:8f:87:17:36:e1:99:13:f5: f8:8b:b6:fb:32:75:54:8d:51:95:dc:67:56:c3:3d:a0:15:55: 01:c2:98:48:89:f1:c8:e9:14:4b:4d:63:18:a1:35:84:17:ea: 1d:22:04:ff:bf:b8:e9:8c:97:b9:08:7b:9e:78:d6:54:15:79: 25:1e:ba:8e:66:7f:16:c9:e5:5d:fd:98:5d:df:14:24:a7:14: b4:db:f8:ad:db:7b:14:b2:8a:4b:2b:8d:3a:ca:4b:a8:6a:93: 42:f8:00:cb:be:33:50:46:f2:22:f4:c6:96:b4:15:b8:bb:75: 6c:a4:dc:56:cd:77:1f:f8:7d:d4:a7:4a:e2:d0:1a:98:c1:4c: e9:7c:78:1d:ef:be:dc:29:86:54:2c:0e:2d:37:e6:75:91:02: 67:2b:e9:31:e8:71:90:5e:5a:ea:5b:ab:48:34:18:5b:eb:3a: 25:30:e8:ee:0c:16:fe:6d:94:61:f4:62:c3:79:af:45:89:0b: 87:e0:60:79:55:0e:51:55:84:af:73:f4:ad:be:3b:5d:be:96: 04:50:70:45:ff:1a:46:da:c3:95:61:e0:73:81:eb:5d:4e:d3: 1d:a4:5e:e8:61:e5:d3:ea:5e:71:a4:ff:95:db:c1:41:72:91: 16:f7:1c:f3 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAvowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTM1NTRaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDgwNTMyRkYxNDZCNjIw MzBFNURFRjAwRDE1NkY2NDMyQkE0QzY4RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNVbFkIXyiGdxP4i/5NI1zbxEqLSAdLMGW9pPKl9YvhxzdmsO1 8WWUjMFyMj6zigPHGaKBo/p+IBv1newBFvLfCiJ5Ai+6XLd13mpQmMlQ/BBxo/ki APG04jh9/jPV7v8F+H7HWW/MN7KbOv125Hpa0f8XKGqKConpR6XEiutmMJbOXpbZ ivars4c/JNOK1Us64ehO2IbWo2XJK5m5zCpkdBv8lynt++Uw/+6Lp3/fItMWTkmV cdaUOcWoK+/T3qcyw0fb73W1fpgp7ms43CMJpW+Es03KnpiNmVZ2127PHCkIdTfV +946ScuRNx8jzkd37d/t2JdbxV7NSsfCbG03AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUgFMv8Ua2IDDl3vANFW9kMrpMaOwwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL2dGTXY4VWEySUREbDN2QU5GVzlrTXJwTWFPdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDeAjANBgkqhkiG9w0BAQsFAAOCAQEAj6iF78mzGyeK0I+HFzbhmRP1+Iu2 +zJ1VI1RldxnVsM9oBVVAcKYSInxyOkUS01jGKE1hBfqHSIE/7+46YyXuQh7nnjW VBV5JR66jmZ/FsnlXf2YXd8UJKcUtNv4rdt7FLKKSyuNOspLqGqTQvgAy74zUEby IvTGlrQVuLt1bKTcVs13H/h91KdK4tAamMFM6Xx4He++3CmGVCwOLTfmdZECZyvp MehxkF5a6lurSDQYW+s6JTDo7gwW/m2UYfRiw3mvRYkLh+BgeVUOUVWEr3P0rb47 Xb6WBFBwRf8aRtrDlWHgc4HrXU7THaRe6GHl0+pecaT/ldvBQXKRFvcc8w== -----END CERTIFICATE-----Generated at Thu Jun 6 15:06:28 2024 by rpki-client on console-ams.rpki-client.org