$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11247/FhLPOkFw54OsuEGzuKaYPlMTRiI.roa File: FhLPOkFw54OsuEGzuKaYPlMTRiI.roa (raw, json) Hash identifier: o7sZofVYjPeJhxxD52iTpSIAHKppXX/PdDfOnABnHTA= Subject key identifier: 16:12:CF:3A:41:70:E7:83:AC:B8:41:B3:B8:A6:98:3E:53:13:46:22 Certificate issuer: /CN=FBC46294A5D56437E19A11AEF9FB9B877690143E Certificate serial: 68 Authority key identifier: FB:C4:62:94:A5:D5:64:37:E1:9A:11:AE:F9:FB:9B:87:76:90:14:3E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/FhLPOkFw54OsuEGzuKaYPlMTRiI.roa Signing time: Tue 01 Apr 2025 01:32:37 +0000 ROA not before: Tue 01 Apr 2025 01:32:37 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 7684 IP address blocks: 157.17.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBC46294A5D56437E19A11AEF9FB9B877690143E Validity Not Before: Apr 1 01:32:37 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1612CF3A4170E783ACB841B3B8A6983E53134622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ea:73:3c:f9:58:eb:8b:d0:7e:24:b6:b3:9b: 68:e5:1f:76:35:62:bb:34:8e:c8:dd:93:9d:84:80: e0:8e:05:80:1f:5e:fe:71:d9:fa:d3:cf:97:c6:73: 37:f1:2b:56:f5:8f:06:37:34:3b:f7:ac:81:07:25: d1:b7:04:cf:74:ef:ff:e5:9a:aa:5b:54:cb:34:98: 26:4e:b1:f4:91:d1:b0:a8:4b:fc:2f:3b:6f:71:d6: f8:36:78:4b:ce:2a:a2:d4:3a:6d:fb:1f:54:96:40: fa:fa:d7:1e:fb:a2:ae:d9:e0:24:83:f5:89:82:d5: b7:3b:e4:42:35:5d:44:8a:db:d7:ff:d6:d0:a3:48: f6:63:ba:a4:b3:72:95:21:70:8c:38:41:c2:be:00: 7c:15:d7:f0:6e:98:ee:8a:56:77:45:5d:c2:b3:a6: bc:7d:89:89:bd:8f:ec:00:7b:4f:f2:a2:00:b2:28: 14:a0:40:99:e6:a0:ef:3d:99:d8:11:e7:d4:08:35: 6a:29:10:4e:e7:10:de:db:6e:fd:3a:b0:06:10:87: de:dd:6a:ff:64:28:a3:39:87:f4:3c:a6:b5:0a:eb: 85:10:79:9a:52:3e:c3:54:a9:0b:ee:ca:c1:71:8e: d5:00:5d:1d:0f:8d:43:03:79:cd:14:de:7b:36:b7: de:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:12:CF:3A:41:70:E7:83:AC:B8:41:B3:B8:A6:98:3E:53:13:46:22 X509v3 Authority Key Identifier: keyid:FB:C4:62:94:A5:D5:64:37:E1:9A:11:AE:F9:FB:9B:87:76:90:14:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/FhLPOkFw54OsuEGzuKaYPlMTRiI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.17.64.0/20 Signature Algorithm: sha256WithRSAEncryption a7:72:76:5d:18:6a:94:eb:be:c2:10:4c:83:a8:7a:0f:9f:9e: e6:8e:79:a0:db:e3:35:35:d3:7b:13:df:af:10:0e:96:48:b0: 9b:17:2a:b8:39:71:81:c0:f1:7b:d4:09:19:6a:06:6f:ea:1e: 83:50:1e:b8:b9:53:1e:69:c5:c1:1e:2c:69:fe:5b:e0:d5:8a: c9:90:45:e4:34:c9:71:61:59:6e:cc:67:84:40:6a:73:20:34: cb:87:c5:49:e2:21:84:63:93:80:da:04:03:4c:f3:0d:3c:0a: 67:d5:95:40:2b:b1:76:fb:11:22:71:8b:fc:9a:2b:dd:22:86: d5:e5:e3:40:d6:96:f0:5f:1f:7b:59:5a:3c:cd:45:29:f0:1c: 9f:86:42:bd:5a:dd:9a:4e:ae:7a:29:17:c7:34:4b:a9:18:b4: e4:58:13:ea:5f:f2:88:4e:86:f5:f2:8b:76:16:3a:27:56:78: 74:a4:c7:b6:93:20:21:c2:be:38:87:80:b2:1d:9d:50:e0:ae: b1:1e:69:df:de:af:e4:3c:02:e7:bd:35:2c:f4:23:69:2d:6e: d0:d1:12:48:88:10:ff:df:3e:61:43:4b:7c:7c:70:19:cf:ce: 43:b2:cf:4f:cd:70:51:30:41:e5:6a:cc:44:e4:71:f4:ec:ab: 0a:30:96:d2 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGQkM0 NjI5NEE1RDU2NDM3RTE5QTExQUVGOUZCOUI4Nzc2OTAxNDNFMB4XDTI1MDQwMTAx MzIzN1oXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoMTYxMkNGM0E0MTcwRTc4 M0FDQjg0MUIzQjhBNjk4M0U1MzEzNDYyMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKjqczz5WOuL0H4ktrObaOUfdjViuzSOyN2TnYSA4I4FgB9e/nHZ +tPPl8ZzN/ErVvWPBjc0O/esgQcl0bcEz3Tv/+WaqltUyzSYJk6x9JHRsKhL/C87 b3HW+DZ4S84qotQ6bfsfVJZA+vrXHvuirtngJIP1iYLVtzvkQjVdRIrb1//W0KNI 9mO6pLNylSFwjDhBwr4AfBXX8G6Y7opWd0VdwrOmvH2Jib2P7AB7T/KiALIoFKBA meag7z2Z2BHn1Ag1aikQTucQ3ttu/TqwBhCH3t1q/2QoozmH9DymtQrrhRB5mlI+ w1SpC+7KwXGO1QBdHQ+NQwN5zRTeeza33qsCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQWEs86QXDng6y4QbO4ppg+UxNGIjAfBgNVHSMEGDAWgBT7xGKUpdVkN+GaEa75 +5uHdpAUPjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTEyNDcvLThSaWxLWFZaRGZobWhHdS1mdWJoM2FRRkQ0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLThSaWxLWFZaRGZobWhHdS1mdWJo M2FRRkQ0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzExMjQ3L0ZoTFBPa0Z3NTRPc3VFR3p1S2FZUGxNVFJpSS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBASdEUAwDQYJKoZIhvcNAQELBQADggEBAKdydl0YapTrvsIQTIOoeg+f nuaOeaDb4zU103sT368QDpZIsJsXKrg5cYHA8XvUCRlqBm/qHoNQHri5Ux5pxcEe LGn+W+DVismQReQ0yXFhWW7MZ4RAanMgNMuHxUniIYRjk4DaBANM8w08CmfVlUAr sXb7ESJxi/yaK90ihtXl40DWlvBfH3tZWjzNRSnwHJ+GQr1a3ZpOrnopF8c0S6kY tORYE+pf8ohOhvXyi3YWOidWeHSkx7aTICHCvjiHgLIdnVDgrrEead/er+Q8Aue9 NSz0I2ktbtDREkiIEP/fPmFDS3x8cBnPzkOyz0/NcFEwQeVqzETkcfTsqwowltI= -----END CERTIFICATE-----Generated at Mon Apr 28 22:50:55 2025 by rpki-client on console.sobornost.net