$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/mKy6fJp-8P1AC9oPUXs1W5V6J1c.roa File: mKy6fJp-8P1AC9oPUXs1W5V6J1c.roa (raw, json) Hash identifier: DF9g3cnA86xtIMUntTrg1vl38o0bOHT9xnh56hsKjn4= Subject key identifier: 98:AC:BA:7C:9A:7E:F0:FD:40:0B:DA:0F:51:7B:35:5B:95:7A:27:57 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 02F2 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/mKy6fJp-8P1AC9oPUXs1W5V6J1c.roa Signing time: Sun 31 Mar 2024 01:35:51 +0000 ROA not before: Sun 31 Mar 2024 01:35:51 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 220.214.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 754 (0x2f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:35:51 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=98ACBA7C9A7EF0FD400BDA0F517B355B957A2757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ed:ea:bf:b4:85:e2:59:c2:92:e4:e5:ef:37: c9:50:6a:96:dc:06:12:a8:4c:7d:b0:b1:91:ab:fd: e3:6a:c9:d0:ac:cb:db:3f:a5:e5:9c:49:3e:e4:de: d6:71:c8:77:b1:75:64:e9:ac:a4:96:79:2b:97:0c: df:1c:d4:f6:49:bb:e8:b9:37:0d:28:bb:fc:66:8e: 15:f5:09:3c:5d:3b:59:cf:8f:72:2d:a1:a6:3e:77: a3:d4:33:2f:2d:b4:cd:31:56:47:a3:b8:14:53:67: 23:09:03:fa:bf:82:b3:ce:87:ff:27:ad:b5:df:3b: ec:22:55:72:4f:fe:6c:54:5a:e8:7f:74:42:01:5b: 88:e0:ae:f5:b0:cf:57:12:17:49:43:5c:51:af:a1: 53:eb:dd:f4:89:83:97:b8:31:be:39:87:49:de:c9: fa:bc:ed:34:31:a9:fb:2b:fb:d3:83:dd:4b:df:d5: 44:f8:5a:b7:5e:ed:21:be:e4:42:51:9a:2b:bb:14: 59:71:32:3d:34:39:59:13:15:b1:bb:8a:52:0e:b8: 16:35:5a:88:ea:b3:49:57:a8:fb:90:f0:79:58:12: 97:aa:fb:8f:55:26:79:7d:65:9c:23:7c:da:8c:43: 20:b0:ff:21:10:a5:49:a3:67:ec:a7:e1:96:c7:60: 94:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AC:BA:7C:9A:7E:F0:FD:40:0B:DA:0F:51:7B:35:5B:95:7A:27:57 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/mKy6fJp-8P1AC9oPUXs1W5V6J1c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.214.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1b:b1:31:1f:6e:24:f5:67:0f:65:78:09:f8:ad:f7:c7:88:60: 06:5f:0f:59:9e:28:bf:01:5a:05:64:eb:9e:82:da:24:e6:e3: 65:bf:dc:7c:8a:10:d0:fd:f9:45:6c:56:0b:cd:6b:0b:8b:b5: ea:b3:29:00:f3:15:b6:e7:cc:eb:6d:71:27:f4:6e:7b:cd:cb: b2:df:87:b4:ea:8d:ed:1d:cf:22:72:94:23:fa:8f:f6:16:c6: 01:58:e7:4a:10:f2:70:bf:f2:2b:2b:fc:a1:8a:a2:f7:d9:24: e9:47:b9:06:41:1a:fe:7e:45:f1:d9:ee:d7:af:8a:5e:7f:a2: 66:d6:7a:49:fb:14:c4:eb:1e:80:de:0b:4f:56:74:b7:db:b7: 67:fb:e6:bd:44:92:98:08:fb:27:fc:52:94:8c:97:a2:7d:16: 1e:c7:8b:e3:aa:37:b1:b1:15:e9:c9:d0:b7:59:a6:9c:1a:d5: c7:11:a2:5a:f8:05:9e:c8:27:89:01:b5:7b:a7:8b:da:c7:d8: f6:db:04:d6:1c:fa:e0:2e:8e:3d:50:5d:0d:16:22:b9:dc:a3: 79:95:a6:46:f1:24:36:72:63:69:ce:79:72:f4:c3:d4:f2:78: fd:9b:f5:51:44:ab:15:be:ef:f2:7b:c8:a2:b9:4f:c6:44:41: 9f:4b:6f:13 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTM1NTFaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk4QUNCQTdDOUE3RUYw RkQ0MDBCREEwRjUxN0IzNTVCOTU3QTI3NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCk7eq/tIXiWcKS5OXvN8lQapbcBhKoTH2wsZGr/eNqydCsy9s/ peWcST7k3tZxyHexdWTprKSWeSuXDN8c1PZJu+i5Nw0ou/xmjhX1CTxdO1nPj3It oaY+d6PUMy8ttM0xVkejuBRTZyMJA/q/grPOh/8nrbXfO+wiVXJP/mxUWuh/dEIB W4jgrvWwz1cSF0lDXFGvoVPr3fSJg5e4Mb45h0neyfq87TQxqfsr+9OD3Uvf1UT4 Wrde7SG+5EJRmiu7FFlxMj00OVkTFbG7ilIOuBY1Wojqs0lXqPuQ8HlYEpeq+49V Jnl9ZZwjfNqMQyCw/yEQpUmjZ+yn4ZbHYJQtAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUmKy6fJp+8P1AC9oPUXs1W5V6J1cwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL21LeTZmSnAtOFAxQUM5b1BVWHMxVzVWNkoxYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDc1jANBgkqhkiG9w0BAQsFAAOCAQEAG7ExH24k9WcPZXgJ+K33x4hgBl8P WZ4ovwFaBWTrnoLaJObjZb/cfIoQ0P35RWxWC81rC4u16rMpAPMVtufM621xJ/Ru e83Lst+HtOqN7R3PInKUI/qP9hbGAVjnShDycL/yKyv8oYqi99kk6Ue5BkEa/n5F 8dnu16+KXn+iZtZ6SfsUxOsegN4LT1Z0t9u3Z/vmvUSSmAj7J/xSlIyXon0WHseL 46o3sbEV6cnQt1mmnBrVxxGiWvgFnsgniQG1e6eL2sfY9tsE1hz64C6OPVBdDRYi udyjeZWmRvEkNnJjac55cvTD1PJ4/Zv1UUSrFb7v8nvIorlPxkRBn0tvEw== -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:56 2024 by rpki-client on console-fra.rpki-client.org