$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/oKsjUXwvh4XnJ4V_PYLUMfMT2NQ.roa File: oKsjUXwvh4XnJ4V_PYLUMfMT2NQ.roa (raw, json) Hash identifier: 5PieidzKX5rZCRNKk93axaZ33B7vqz+02UTX7B4sNzs= Subject key identifier: A0:AB:23:51:7C:2F:87:85:E7:27:85:7F:3D:82:D4:31:F3:13:D8:D4 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 02C1 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/oKsjUXwvh4XnJ4V_PYLUMfMT2NQ.roa Signing time: Sun 31 Mar 2024 01:33:19 +0000 ROA not before: Sun 31 Mar 2024 01:33:19 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 59.143.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:33:19 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=A0AB23517C2F8785E727857F3D82D431F313D8D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:19:a0:22:c4:6a:2e:b9:16:93:dd:a0:73:1b: 90:4a:b5:b3:65:d3:81:8c:68:d0:86:04:3c:df:6b: e2:d6:5a:a1:29:ab:a8:b2:dd:8e:bf:45:5f:dc:c7: 4d:d2:00:a7:e2:f7:cd:02:92:7e:5e:23:98:8c:58: 98:8f:f9:61:e1:09:90:d6:7f:ce:a4:43:8c:5f:96: b7:86:61:f2:d2:b5:39:7a:5f:87:97:1d:40:79:fc: f0:97:e8:9c:e2:ab:88:11:34:00:8f:b4:0d:fd:81: 3c:9a:5b:5a:cd:9e:6d:f1:72:4d:05:0e:9d:3b:c5: 1c:ae:97:48:fc:1d:24:b7:c8:cd:7b:12:2d:ba:1e: da:73:92:3f:6e:57:3b:a4:ba:12:78:71:af:d9:46: 66:7f:73:ef:0d:d8:ca:83:9e:39:f9:93:f9:c6:da: ef:c6:05:2f:65:fd:d1:09:e3:44:d6:2a:e8:9e:24: 3b:9e:e5:e6:35:2a:e7:1d:c5:58:33:4f:19:3c:e9: 2e:a5:b9:2b:0b:40:ff:ab:ae:0d:54:80:b5:ec:0d: ac:00:8c:e2:95:34:57:70:96:2b:f6:98:4a:83:4d: f6:fe:b4:0e:9e:c7:b5:d7:c7:6c:42:7a:15:25:47: 97:6f:4f:6e:a3:37:80:19:be:ea:e6:1a:32:04:3a: fe:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AB:23:51:7C:2F:87:85:E7:27:85:7F:3D:82:D4:31:F3:13:D8:D4 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/oKsjUXwvh4XnJ4V_PYLUMfMT2NQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.143.0.0/16 Signature Algorithm: sha256WithRSAEncryption b1:f6:a4:90:ff:01:96:40:2e:03:56:7c:24:2f:34:54:d1:10: 5c:ec:3e:09:b5:a9:99:7f:39:92:3a:ef:e9:05:b0:20:e9:53: d0:05:dd:29:d5:5d:d0:95:da:f0:2e:fc:79:f3:af:ed:19:58: a0:44:00:37:fd:b4:52:83:69:45:bb:26:50:9d:cc:ba:1a:34: 04:5f:26:65:1a:5f:99:80:cc:7d:5f:5a:f3:7e:b9:2c:e2:87: 75:26:f2:54:66:3f:20:56:07:f4:0b:0f:04:34:96:be:b2:fa: d9:b7:75:05:8b:cc:77:cd:10:6c:97:8b:a9:89:3d:11:0f:7e: e3:30:6c:9c:62:ec:12:93:d1:fe:e0:0c:91:a8:de:2f:cd:10: 28:47:88:6f:c2:41:ff:95:2a:90:1c:a9:1e:dc:76:ca:9f:7b: 4a:da:d8:55:bf:a3:d9:fc:43:d5:67:28:72:1c:00:6f:96:1d: 6d:03:11:39:05:6d:a5:b6:33:0e:ec:ca:90:f1:8a:31:2f:f4: 9b:a0:ce:fb:30:37:ee:d1:18:48:f4:25:c8:49:12:c2:bb:83: b1:7c:db:cb:aa:2c:51:1d:aa:6c:14:3f:ae:5c:fe:c7:9f:fc: 82:e6:9f:97:0d:5a:88:c0:81:03:c8:98:d2:e1:c4:d5:25:e8: c9:12:9a:da -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTMzMTlaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEEwQUIyMzUxN0MyRjg3 ODVFNzI3ODU3RjNEODJENDMxRjMxM0Q4RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNGaAixGouuRaT3aBzG5BKtbNl04GMaNCGBDzfa+LWWqEpq6iy 3Y6/RV/cx03SAKfi980Ckn5eI5iMWJiP+WHhCZDWf86kQ4xflreGYfLStTl6X4eX HUB5/PCX6Jziq4gRNACPtA39gTyaW1rNnm3xck0FDp07xRyul0j8HSS3yM17Ei26 Htpzkj9uVzukuhJ4ca/ZRmZ/c+8N2MqDnjn5k/nG2u/GBS9l/dEJ40TWKuieJDue 5eY1KucdxVgzTxk86S6luSsLQP+rrg1UgLXsDawAjOKVNFdwliv2mEqDTfb+tA6e x7XXx2xCehUlR5dvT26jN4AZvurmGjIEOv7HAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUoKsjUXwvh4XnJ4V/PYLUMfMT2NQwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL29Lc2pVWHd2aDRYbko0Vl9QWUxVTWZNVDJOUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA7jzANBgkqhkiG9w0BAQsFAAOCAQEAsfakkP8BlkAuA1Z8JC80VNEQXOw+ CbWpmX85kjrv6QWwIOlT0AXdKdVd0JXa8C78efOv7RlYoEQAN/20UoNpRbsmUJ3M uho0BF8mZRpfmYDMfV9a8365LOKHdSbyVGY/IFYH9AsPBDSWvrL62bd1BYvMd80Q bJeLqYk9EQ9+4zBsnGLsEpPR/uAMkajeL80QKEeIb8JB/5UqkBypHtx2yp97StrY Vb+j2fxD1WcochwAb5YdbQMROQVtpbYzDuzKkPGKMS/0m6DO+zA37tEYSPQlyEkS wruDsXzby6osUR2qbBQ/rlz+x5/8guaflw1aiMCBA8iY0uHE1SXoyRKa2g== -----END CERTIFICATE-----Generated at Thu Jun 6 14:56:13 2024 by rpki-client on console-fra.rpki-client.org