$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30040/MeEHE-vlUdq2BHWefRHYnB38w_Y.roa File: MeEHE-vlUdq2BHWefRHYnB38w_Y.roa (raw, json) Hash identifier: 9ysP4c/5sFhvMJDAaPTUAsgR36XZBI+PYmJljtgR7Po= Subject key identifier: 31:E1:07:13:EB:E5:51:DA:B6:04:75:9E:7D:11:D8:9C:1D:FC:C3:F6 Certificate issuer: /CN=5DEFF9E1A97D46CCDC12F606EEB38A3E64DBC81F Certificate serial: 22 Authority key identifier: 5D:EF:F9:E1:A9:7D:46:CC:DC:12:F6:06:EE:B3:8A:3E:64:DB:C8:1F Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/MeEHE-vlUdq2BHWefRHYnB38w_Y.roa Signing time: Tue 31 Dec 2024 01:32:02 +0000 ROA not before: Tue 31 Dec 2024 01:32:02 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 9619 IP address blocks: 2001:cf8:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/Xe_54al9RszcEvYG7rOKPmTbyB8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/Xe_54al9RszcEvYG7rOKPmTbyB8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DEFF9E1A97D46CCDC12F606EEB38A3E64DBC81F Validity Not Before: Dec 31 01:32:02 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=31E10713EBE551DAB604759E7D11D89C1DFCC3F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e6:a2:f4:9d:1d:c2:2c:b9:cb:6e:29:75:ad: df:c2:96:58:79:69:04:fa:89:a9:d9:13:a5:da:7a: 00:0a:62:61:2f:34:92:b5:12:ed:d4:89:39:32:e0: e0:d2:76:79:06:64:cb:9b:79:e1:62:be:ec:6d:2c: 51:f9:7c:01:1b:fd:50:3e:61:ca:81:a4:19:ce:08: 1b:5f:02:1b:9b:a7:7b:d3:81:96:af:b7:8c:b4:c7: 9f:31:c4:31:5b:84:c0:b2:1d:82:8d:5a:36:96:0e: 1e:33:49:a8:b4:b4:27:80:3f:8a:7c:b3:0c:d5:fe: 64:45:cd:60:a1:5d:b9:1a:1c:bc:a3:a2:cb:31:43: a0:d7:e6:03:b2:9f:62:bf:6d:cd:c0:8a:8d:e6:71: 5e:8e:90:35:25:06:1e:42:ce:28:d3:0f:e7:ae:33: 2e:89:c7:d4:ef:36:3f:e5:0b:93:d6:1b:99:51:f8: 8b:53:37:4b:0d:6f:38:bb:db:0a:14:b4:db:54:74: 9c:08:b5:72:92:08:8e:94:40:bf:52:31:6a:5d:fd: 24:f3:c0:97:77:de:18:78:9f:ae:37:ea:e3:4a:ec: a1:e7:6d:50:32:74:67:9c:9a:93:f3:5c:75:38:6b: a8:4b:30:67:f0:6f:79:86:8c:64:55:11:c9:d5:33: 87:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:E1:07:13:EB:E5:51:DA:B6:04:75:9E:7D:11:D8:9C:1D:FC:C3:F6 X509v3 Authority Key Identifier: keyid:5D:EF:F9:E1:A9:7D:46:CC:DC:12:F6:06:EE:B3:8A:3E:64:DB:C8:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/Xe_54al9RszcEvYG7rOKPmTbyB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/MeEHE-vlUdq2BHWefRHYnB38w_Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:cf8:5::/48 Signature Algorithm: sha256WithRSAEncryption 13:f5:c8:76:97:fd:02:70:cd:43:60:59:c3:b1:c1:de:53:f7: da:cf:e1:51:7e:87:76:58:79:6e:29:28:a1:47:02:03:60:7a: bf:5b:55:32:4a:9f:90:00:db:04:4f:ae:e3:83:c0:fa:f1:ce: 54:34:d7:4d:b6:62:78:e1:58:e9:9c:ab:bf:d0:0c:b3:3f:cb: 34:62:dc:71:96:af:3f:a1:ca:02:78:a8:34:b6:4c:d0:26:35: d6:b1:a4:8a:4b:14:e0:42:f8:c9:cc:f4:c2:48:77:60:ab:6b: 8e:02:56:8a:a5:69:c8:3d:f9:34:9e:1f:50:2b:2c:b9:78:41: 6a:4f:69:5e:0f:4a:7d:99:ce:a0:4d:f5:42:62:ff:26:19:20: 2f:f8:3e:6f:ac:42:ec:1a:2a:9d:48:f4:ac:ed:e9:75:b8:79: 78:9c:36:73:5e:cb:bc:5f:d4:35:7b:4b:59:ca:16:0d:4f:45: c1:c3:c7:d0:c2:db:97:bb:28:7d:cc:70:1b:5b:bb:70:d8:5a: 2a:0f:5b:9b:83:07:55:73:85:49:47:63:00:06:d2:05:a7:27: 80:45:27:b5:f6:cb:b7:b5:95:98:96:c4:83:7a:05:37:92:1f: c6:ae:db:48:8d:42:b5:3f:50:e9:1d:a4:f5:02:2e:73:72:99: 52:cd:c5:85 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBIjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1REVG RjlFMUE5N0Q0NkNDREMxMkY2MDZFRUIzOEEzRTY0REJDODFGMB4XDTI0MTIzMTAx MzIwMloXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoMzFFMTA3MTNFQkU1NTFE QUI2MDQ3NTlFN0QxMUQ4OUMxREZDQzNGNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM3movSdHcIsuctuKXWt38KWWHlpBPqJqdkTpdp6AApiYS80krUS 7dSJOTLg4NJ2eQZky5t54WK+7G0sUfl8ARv9UD5hyoGkGc4IG18CG5une9OBlq+3 jLTHnzHEMVuEwLIdgo1aNpYOHjNJqLS0J4A/inyzDNX+ZEXNYKFduRocvKOiyzFD oNfmA7KfYr9tzcCKjeZxXo6QNSUGHkLOKNMP564zLonH1O82P+ULk9YbmVH4i1M3 Sw1vOLvbChS021R0nAi1cpIIjpRAv1Ixal39JPPAl3feGHifrjfq40rsoedtUDJ0 Z5yak/NcdThrqEswZ/BveYaMZFURydUzh9UCAwEAAaOCAiswggInMB0GA1UdDgQW BBQx4QcT6+VR2rYEdZ59EdicHfzD9jAfBgNVHSMEGDAWgBRd7/nhqX1GzNwS9gbu s4o+ZNvIHzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwNDAvWGVfNTRhbDlSc3pjRXZZRzdyT0tQbVRieUI4LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWGVfNTRhbDlSc3pjRXZZRzdyT0tQ bVRieUI4LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMDQwL01lRUhFLXZsVWRxMkJIV2VmUkhZbkIzOHdfWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQz4AAUwDQYJKoZIhvcNAQELBQADggEBABP1yHaX/QJwzUNgWcOx wd5T99rP4VF+h3ZYeW4pKKFHAgNger9bVTJKn5AA2wRPruODwPrxzlQ01022Ynjh WOmcq7/QDLM/yzRi3HGWrz+hygJ4qDS2TNAmNdaxpIpLFOBC+MnM9MJId2Cra44C Voqlacg9+TSeH1ArLLl4QWpPaV4PSn2ZzqBN9UJi/yYZIC/4Pm+sQuwaKp1I9Kzt 6XW4eXicNnNey7xf1DV7S1nKFg1PRcHDx9DC25e7KH3McBtbu3DYWioPW5uDB1Vz hUlHYwAG0gWnJ4BFJ7X2y7e1lZiWxIN6BTeSH8au20iNQrU/UOkdpPUCLnNymVLN xYU= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:36 2025 by rpki-client