$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30091/o9Jtwkqd341lE8eBGgyP_1zOEPE.roa File: o9Jtwkqd341lE8eBGgyP_1zOEPE.roa (raw, json) Hash identifier: 1+wa4kb3fY3bbhiVx2vAOeAIjTFtLHSH841h06c9NKA= Subject key identifier: A3:D2:6D:C2:4A:9D:DF:8D:65:13:C7:81:1A:0C:8F:FF:5C:CE:10:F1 Certificate issuer: /CN=89801DBDBE168863AB0E802F0EC90A3525C2347C Certificate serial: 58 Authority key identifier: 89:80:1D:BD:BE:16:88:63:AB:0E:80:2F:0E:C9:0A:35:25:C2:34:7C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/iYAdvb4WiGOrDoAvDskKNSXCNHw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30091/o9Jtwkqd341lE8eBGgyP_1zOEPE.roa Signing time: Sat 30 Nov 2024 01:30:33 +0000 ROA not before: Sat 30 Nov 2024 01:30:33 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 38639 IP address blocks: 2402:c800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30091/iYAdvb4WiGOrDoAvDskKNSXCNHw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30091/iYAdvb4WiGOrDoAvDskKNSXCNHw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/iYAdvb4WiGOrDoAvDskKNSXCNHw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89801DBDBE168863AB0E802F0EC90A3525C2347C Validity Not Before: Nov 30 01:30:33 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=A3D26DC24A9DDF8D6513C7811A0C8FFF5CCE10F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e4:68:e1:b9:3d:94:ae:2b:b7:d1:0c:b5:b1: 95:7d:4b:e0:ee:31:6e:7a:8d:66:8d:42:a1:18:4c: 11:93:17:c0:b8:8e:28:20:8b:9e:f8:10:ac:17:0a: e2:5a:01:90:87:2b:a3:cd:7a:48:35:f1:91:61:4e: 62:21:e2:40:ff:93:fe:24:5a:79:04:59:34:cd:54: b7:b1:92:88:3e:38:7d:cd:f2:b4:e0:c9:a6:be:be: 8d:c5:df:28:9c:68:70:27:ac:81:73:48:31:f9:e3: c8:62:43:f9:e0:47:e1:8a:53:da:cc:43:0d:b3:2d: 22:e0:0e:4e:56:2d:51:70:33:66:2d:87:65:9a:72: 55:90:63:81:75:88:b4:ff:0a:91:7c:e1:a0:d1:43: bd:9e:2f:88:4d:d9:9c:b0:4d:b6:ea:cd:9e:ca:76: f1:b7:84:4e:f7:83:99:60:df:f0:29:92:ae:2d:02: c2:bd:12:6c:39:3b:44:bb:39:b6:c5:c5:9a:fd:0e: c4:bc:20:16:23:7f:c9:dd:bd:c7:bb:da:38:56:86: 01:52:09:ec:b6:ce:62:ef:29:f7:af:13:c9:8e:9c: ae:88:5b:79:de:7d:3c:77:f8:33:8a:13:b2:a5:68: b9:7d:e9:54:e3:59:38:f9:5d:65:13:83:87:39:bb: 53:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D2:6D:C2:4A:9D:DF:8D:65:13:C7:81:1A:0C:8F:FF:5C:CE:10:F1 X509v3 Authority Key Identifier: keyid:89:80:1D:BD:BE:16:88:63:AB:0E:80:2F:0E:C9:0A:35:25:C2:34:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30091/iYAdvb4WiGOrDoAvDskKNSXCNHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/iYAdvb4WiGOrDoAvDskKNSXCNHw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30091/o9Jtwkqd341lE8eBGgyP_1zOEPE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:c800::/32 Signature Algorithm: sha256WithRSAEncryption 4f:cc:47:73:d9:45:b4:ad:e2:57:ff:bc:31:ce:bf:02:7f:dd: 7e:25:b6:24:b1:18:16:6a:de:b4:20:38:af:5e:df:87:90:34: 87:19:6f:02:62:7a:24:e6:7f:39:ad:7e:e3:bb:bd:ae:f1:8b: 92:d1:22:16:c5:aa:47:06:56:c5:05:bc:84:69:55:d3:0c:34: 1f:69:93:a7:e1:64:d3:2a:02:bd:05:03:16:54:b5:f4:7b:02: b5:93:82:0a:e0:82:5b:ad:8e:b8:60:54:82:a8:ce:f1:5e:7f: 2c:2f:65:5a:8b:20:46:03:bb:66:63:84:53:70:5d:e4:1c:3a: 05:44:5b:c5:1e:2c:39:e1:a6:79:79:3c:59:ad:39:c6:64:2c: 66:87:25:30:c1:72:73:de:7e:72:cc:d4:4d:ec:ac:f4:de:45: ef:75:60:8a:d9:b4:a3:f9:07:27:7e:7f:3c:b9:7b:87:74:6d: 13:fe:32:86:29:23:69:23:b3:eb:e5:62:1d:f9:c0:5b:e9:64: 48:9f:d3:b6:e6:07:a9:ca:15:8b:02:55:4d:52:56:69:bd:b1: 0e:b9:dc:c4:a5:79:65:90:2b:58:06:80:0a:77:54:aa:68:20: c1:06:75:b1:08:a1:e7:1f:7d:67:79:10:2b:dc:8c:20:ea:1a: c6:cf:9d:85 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBWDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4OTgw MURCREJFMTY4ODYzQUIwRTgwMkYwRUM5MEEzNTI1QzIzNDdDMB4XDTI0MTEzMDAx MzAzM1oXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoQTNEMjZEQzI0QTlEREY4 RDY1MTNDNzgxMUEwQzhGRkY1Q0NFMTBGMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALHkaOG5PZSuK7fRDLWxlX1L4O4xbnqNZo1CoRhMEZMXwLiOKCCL nvgQrBcK4loBkIcro816SDXxkWFOYiHiQP+T/iRaeQRZNM1Ut7GSiD44fc3ytODJ pr6+jcXfKJxocCesgXNIMfnjyGJD+eBH4YpT2sxDDbMtIuAOTlYtUXAzZi2HZZpy VZBjgXWItP8KkXzhoNFDvZ4viE3ZnLBNturNnsp28beETveDmWDf8CmSri0Cwr0S bDk7RLs5tsXFmv0OxLwgFiN/yd29x7vaOFaGAVIJ7LbOYu8p968TyY6crohbed59 PHf4M4oTsqVouX3pVONZOPldZRODhzm7UwMCAwEAAaOCAikwggIlMB0GA1UdDgQW BBSj0m3CSp3fjWUTx4EaDI//XM4Q8TAfBgNVHSMEGDAWgBSJgB29vhaIY6sOgC8O yQo1JcI0fDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwOTEvaVlBZHZiNFdpR09yRG9BdkRza0tOU1hDTkh3LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaVlBZHZiNFdpR09yRG9BdkRza0tO U1hDTkh3LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMDkxL285SnR3a3FkMzQxbEU4ZUJHZ3lQXzF6T0VQRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAsgAMA0GCSqGSIb3DQEBCwUAA4IBAQBPzEdz2UW0reJX/7wxzr8C f91+JbYksRgWat60IDivXt+HkDSHGW8CYnok5n85rX7ju72u8YuS0SIWxapHBlbF BbyEaVXTDDQfaZOn4WTTKgK9BQMWVLX0ewK1k4IK4IJbrY64YFSCqM7xXn8sL2Va iyBGA7tmY4RTcF3kHDoFRFvFHiw54aZ5eTxZrTnGZCxmhyUwwXJz3n5yzNRN7Kz0 3kXvdWCK2bSj+Qcnfn88uXuHdG0T/jKGKSNpI7Pr5WId+cBb6WRIn9O25gepyhWL AlVNUlZpvbEOudzEpXllkCtYBoAKd1SqaCDBBnWxCKHnH31neRAr3Iwg6hrGz52F -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:36 2025 by rpki-client