$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/sGaz1j2GnYoHEL0MPzLsWUW4bWQ.roa File: sGaz1j2GnYoHEL0MPzLsWUW4bWQ.roa (raw, json) Hash identifier: Aw+QsiEC6atHbxWNYc1YXy5so6fJCMBk+muwGylTuLM= Subject key identifier: B0:66:B3:D6:3D:86:9D:8A:07:10:BD:0C:3F:32:EC:59:45:B8:6D:64 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 0389 Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/sGaz1j2GnYoHEL0MPzLsWUW4bWQ.roa Signing time: Sat 31 Aug 2024 01:29:49 +0000 ROA not before: Sat 31 Aug 2024 01:29:49 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 2516 IP address blocks: 59.139.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Aug 31 01:29:49 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=B066B3D63D869D8A0710BD0C3F32EC5945B86D64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1c:cc:0d:c3:97:9c:02:a3:02:fd:eb:8a:2d: d6:fb:2b:fb:3b:63:68:c0:21:78:18:76:cf:46:c2: 40:7b:a7:9f:ce:0f:dd:48:34:4f:d3:57:02:29:4b: 63:39:f4:10:37:4e:dd:a3:75:d5:2d:fd:b5:76:a2: 6b:43:a1:99:f0:d7:84:a8:d3:76:37:b7:ab:db:2b: 70:96:85:e5:de:3e:c7:fb:96:e0:68:e7:c4:8e:dc: 98:9e:a0:9d:14:78:e7:9f:36:00:3f:f7:c2:a5:ce: a1:1c:0a:fc:9e:a1:13:2b:01:1b:8c:04:9f:8a:9f: 79:6e:0e:bb:1d:08:57:7a:f7:ba:45:19:e9:38:ee: f0:5b:48:07:aa:0c:ab:9e:0c:67:35:a0:3d:1a:5a: d3:0e:7f:eb:b1:73:a3:7e:be:86:c0:da:a3:2e:bf: eb:fd:94:e1:01:ad:9a:f6:d0:6c:bd:21:4b:2f:c6: 94:1b:4a:90:08:86:0e:66:ea:7f:f8:4c:3b:5e:6f: 42:33:2d:b9:08:c0:6b:d2:be:79:e3:bd:b8:dd:c2: 51:7f:8a:c3:d0:d1:8d:d3:50:5a:9a:67:cb:0f:d7: 92:1e:bb:94:bf:1b:c8:22:8b:cd:2d:1e:f7:15:ac: 07:20:3a:72:1d:ba:c4:70:93:06:f6:3c:2d:e1:f8: a1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:66:B3:D6:3D:86:9D:8A:07:10:BD:0C:3F:32:EC:59:45:B8:6D:64 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/sGaz1j2GnYoHEL0MPzLsWUW4bWQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.139.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2a:5f:4b:a1:8b:51:b2:60:23:28:f2:bb:a2:85:4b:3d:42:b3: 02:37:5b:aa:24:e6:b2:1b:77:0b:04:cf:69:59:df:bb:0b:d6: 8d:fa:5d:bc:12:4c:1e:39:f2:14:42:9f:48:94:9c:6b:47:d9: c7:e4:48:4a:59:12:36:16:73:c9:7a:90:06:3d:38:54:99:0f: 3b:fd:2a:62:c7:c1:88:6f:1d:8d:c4:10:a6:ba:fb:8a:3d:a9: 30:4b:a7:e2:04:a6:c2:4b:63:4b:64:02:33:3b:97:61:9a:87: e1:83:4e:96:26:e8:16:0c:5a:75:e6:74:c4:2a:c6:5d:c3:4a: 02:19:cc:01:d4:05:ab:01:ae:ae:c7:d6:77:ed:b8:8b:61:56: 18:01:91:53:35:95:5a:e1:ad:53:d8:00:a6:54:ce:79:4a:06: 78:5b:c2:48:c6:71:a8:c7:db:58:02:14:84:35:40:ef:0c:0c: 44:0a:81:15:d0:d4:0f:ef:4b:7b:46:fd:3c:06:ef:22:a1:86: f1:7f:e4:46:bd:57:b5:b1:51:32:7d:d8:92:2a:ba:54:18:bb: 8e:09:bd:c4:6d:46:06:a3:cf:e4:08:9a:be:52:56:fe:ad:09: ef:bb:fe:91:fa:2b:72:90:cd:00:03:ac:a3:3d:73:8f:9a:8c: e1:4f:e1:9d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDA4MzEw MTI5NDlaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIwNjZCM0Q2M0Q4NjlE OEEwNzEwQkQwQzNGMzJFQzU5NDVCODZENjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKHMwNw5ecAqMC/euKLdb7K/s7Y2jAIXgYds9GwkB7p5/OD91I NE/TVwIpS2M59BA3Tt2jddUt/bV2omtDoZnw14So03Y3t6vbK3CWheXePsf7luBo 58SO3JieoJ0UeOefNgA/98KlzqEcCvyeoRMrARuMBJ+Kn3luDrsdCFd697pFGek4 7vBbSAeqDKueDGc1oD0aWtMOf+uxc6N+vobA2qMuv+v9lOEBrZr20Gy9IUsvxpQb SpAIhg5m6n/4TDteb0IzLbkIwGvSvnnjvbjdwlF/isPQ0Y3TUFqaZ8sP15Ieu5S/ G8gii80tHvcVrAcgOnIdusRwkwb2PC3h+KENAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUsGaz1j2GnYoHEL0MPzLsWUW4bWQwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL3NHYXoxajJHbllvSEVMME1QekxzV1VXNGJXUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA7izANBgkqhkiG9w0BAQsFAAOCAQEAKl9LoYtRsmAjKPK7ooVLPUKzAjdb qiTmsht3CwTPaVnfuwvWjfpdvBJMHjnyFEKfSJSca0fZx+RISlkSNhZzyXqQBj04 VJkPO/0qYsfBiG8djcQQprr7ij2pMEun4gSmwktjS2QCMzuXYZqH4YNOliboFgxa deZ0xCrGXcNKAhnMAdQFqwGursfWd+24i2FWGAGRUzWVWuGtU9gAplTOeUoGeFvC SMZxqMfbWAIUhDVA7wwMRAqBFdDUD+9Le0b9PAbvIqGG8X/kRr1XtbFRMn3Ykiq6 VBi7jgm9xG1GBqPP5AiavlJW/q0J77v+kforcpDNAAOsoz1zj5qM4U/hnQ== -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:09 2024 by rpki-client on console-ams.rpki-client.org