$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/xPFN1eRXPzjn7mnxZoMYgBxd5t0.roa File: xPFN1eRXPzjn7mnxZoMYgBxd5t0.roa (raw, json) Hash identifier: KJ8aqnv4sDmRFoX2SXjvgDpMoV4dZHEue85Ud4BAfm8= Subject key identifier: C4:F1:4D:D5:E4:57:3F:38:E7:EE:69:F1:66:83:18:80:1C:5D:E6:DD Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 035A Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/xPFN1eRXPzjn7mnxZoMYgBxd5t0.roa Signing time: Sun 31 Mar 2024 01:42:48 +0000 ROA not before: Sun 31 Mar 2024 01:42:48 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2516 IP address blocks: 210.238.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 858 (0x35a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Mar 31 01:42:48 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=C4F14DD5E4573F38E7EE69F1668318801C5DE6DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:64:66:f5:22:f3:49:86:23:44:f4:08:cb:ed: b9:e8:c2:6d:2a:6a:2f:c8:ac:e7:6f:bc:e4:ad:13: 0b:7f:94:8a:1e:ff:76:66:c5:c2:25:6f:8e:fb:dc: d7:07:80:96:98:9f:fb:76:50:13:ab:c9:7c:cb:c1: 67:4d:c0:67:09:74:ab:60:6e:15:5c:c4:2c:89:ae: d5:ff:62:63:14:75:f1:f6:65:45:2a:24:64:b3:a6: 55:a1:1f:44:6d:3b:f9:de:d3:67:03:1e:b0:f2:12: 09:de:1e:10:84:7d:a6:8a:6f:05:3c:c2:75:a2:4c: 77:65:5f:59:b7:5f:1c:1c:49:07:86:81:75:99:27: bd:91:89:b6:44:f4:ae:0d:b1:a1:da:e0:b1:be:31: c2:2d:21:aa:fa:6d:e0:13:24:1b:66:0d:89:59:c3: ab:3c:e6:42:82:42:3b:a3:16:6e:04:06:19:61:3d: 3e:9b:6a:ef:c1:6a:3d:eb:06:32:3f:54:7d:76:58: 65:82:52:88:d7:e1:ce:a8:a0:0a:ce:0a:4e:be:c9: e3:a0:bc:0e:31:30:84:b8:44:40:3f:8c:53:79:d0: e7:de:21:61:44:ff:9a:b8:38:33:e2:67:5d:e7:3a: 0b:40:ea:20:54:c1:c0:a7:f1:ab:66:25:d8:32:d1: 7c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F1:4D:D5:E4:57:3F:38:E7:EE:69:F1:66:83:18:80:1C:5D:E6:DD X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/xPFN1eRXPzjn7mnxZoMYgBxd5t0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.238.128.0/17 Signature Algorithm: sha256WithRSAEncryption 83:7c:ce:0a:52:1c:cb:54:86:8b:48:d9:57:bc:9f:f7:9c:6e: 18:95:74:61:50:c3:69:d2:ee:92:ae:35:d0:d0:d3:5e:d2:7d: 4c:bb:31:6a:15:a3:4b:a9:bd:bf:a2:01:44:fe:3c:01:60:70: b4:1d:7a:fc:e8:04:b3:0e:b2:9f:c0:81:80:16:f9:bd:5a:07: 0c:0b:1f:8d:a2:6e:3b:4f:60:1b:b3:d9:01:16:ce:e1:72:1b: 43:2d:b7:84:6f:89:2e:7c:df:22:5b:19:d5:3e:1e:f5:6c:e8: 05:d6:23:ab:8d:30:3f:a5:5a:78:a9:d2:d7:1f:4c:aa:37:ac: 72:d0:19:23:51:dd:94:2d:02:96:4b:41:34:9d:de:b4:f5:d9: dd:00:30:75:73:5a:4c:1b:63:fb:24:c9:77:ed:df:4d:78:4d: 8d:5e:25:ab:e1:70:d3:bc:08:c2:c3:d8:a4:2b:12:f9:fa:30: 35:e2:02:52:9b:b5:29:db:69:74:ec:52:f8:af:fa:2e:53:6d: d4:87:96:ee:07:b0:ac:86:d3:25:13:2d:5f:df:f0:25:82:50: f9:ca:d5:af:18:b2:c2:b9:a8:0c:7c:04:26:0c:43:5e:f7:37: b9:be:46:69:25:77:c2:e0:e9:39:6d:31:7f:42:c6:a3:c5:9a: 9d:bb:a1:0a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA1owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAzMzEw MTQyNDhaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM0RjE0REQ1RTQ1NzNG MzhFN0VFNjlGMTY2ODMxODgwMUM1REU2REQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3ZGb1IvNJhiNE9AjL7bnowm0qai/IrOdvvOStEwt/lIoe/3Zm xcIlb4773NcHgJaYn/t2UBOryXzLwWdNwGcJdKtgbhVcxCyJrtX/YmMUdfH2ZUUq JGSzplWhH0RtO/ne02cDHrDyEgneHhCEfaaKbwU8wnWiTHdlX1m3XxwcSQeGgXWZ J72RibZE9K4NsaHa4LG+McItIar6beATJBtmDYlZw6s85kKCQjujFm4EBhlhPT6b au/Baj3rBjI/VH12WGWCUojX4c6ooArOCk6+yeOgvA4xMIS4REA/jFN50OfeIWFE /5q4ODPiZ13nOgtA6iBUwcCn8atmJdgy0XxzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxPFN1eRXPzjn7mnxZoMYgBxd5t0wHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL3hQRk4xZVJYUHpqbjdtbnhab01ZZ0J4ZDV0MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfS7oAwDQYJKoZIhvcNAQELBQADggEBAIN8zgpSHMtUhotI2Ve8n/ecbhiV dGFQw2nS7pKuNdDQ017SfUy7MWoVo0upvb+iAUT+PAFgcLQdevzoBLMOsp/AgYAW +b1aBwwLH42ibjtPYBuz2QEWzuFyG0Mtt4RviS583yJbGdU+HvVs6AXWI6uNMD+l Wnip0tcfTKo3rHLQGSNR3ZQtApZLQTSd3rT12d0AMHVzWkwbY/skyXft3014TY1e JavhcNO8CMLD2KQrEvn6MDXiAlKbtSnbaXTsUviv+i5TbdSHlu4HsKyG0yUTLV/f 8CWCUPnK1a8YssK5qAx8BCYMQ173N7m+Rmkld8Lg6TltMX9CxqPFmp27oQo= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:09 2024 by rpki-client on console-ams.rpki-client.org