$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30099/P5UZIjrF1UC1RAsFdpoQoMcvcRg.roa File: P5UZIjrF1UC1RAsFdpoQoMcvcRg.roa (raw, json) Hash identifier: 3U4/yQ8JX6JuJHTZoDcXqShiZP2C8t5GO3JUbTIp4hk= Subject key identifier: 3F:95:19:22:3A:C5:D5:40:B5:44:0B:05:76:9A:10:A0:C7:2F:71:18 Certificate issuer: /CN=D6B98D9AE608D1E060709B960EEF133AF2B81351 Certificate serial: 49 Authority key identifier: D6:B9:8D:9A:E6:08:D1:E0:60:70:9B:96:0E:EF:13:3A:F2:B8:13:51 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1rmNmuYI0eBgcJuWDu8TOvK4E1E.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30099/P5UZIjrF1UC1RAsFdpoQoMcvcRg.roa Signing time: Fri 31 Jan 2025 01:32:28 +0000 ROA not before: Fri 31 Jan 2025 01:32:28 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10021 IP address blocks: 2400:1000::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30099/1rmNmuYI0eBgcJuWDu8TOvK4E1E.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30099/1rmNmuYI0eBgcJuWDu8TOvK4E1E.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1rmNmuYI0eBgcJuWDu8TOvK4E1E.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6B98D9AE608D1E060709B960EEF133AF2B81351 Validity Not Before: Jan 31 01:32:28 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=3F9519223AC5D540B5440B05769A10A0C72F7118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:97:71:7e:01:2f:b3:b8:50:c9:a4:27:f7:13: 11:f1:f6:09:81:99:e2:51:ca:e5:6f:80:42:ff:31: 04:c3:52:c0:18:e3:a8:aa:14:6a:0c:1d:f0:78:94: 48:61:8c:24:a6:32:08:66:0b:11:b8:ae:8b:59:ab: 95:6c:b4:7c:4d:2a:a0:66:55:e9:cf:1a:f4:83:bd: ca:a4:15:f9:14:b2:94:5d:a5:6f:b0:62:b3:d3:77: 5a:5e:74:0e:97:0f:af:38:4e:83:8b:56:1a:f3:60: e0:b7:e3:ee:48:7f:ba:64:6f:dc:7c:18:eb:0b:2f: 76:94:93:5e:93:78:ef:c1:25:ed:7a:f9:3e:f3:1b: c1:0a:65:4a:4b:67:0f:79:82:54:1b:4f:c7:19:e0: e0:9e:91:76:ec:e8:e5:89:0c:da:2d:a6:a1:1f:7c: 52:2d:f0:37:b1:d2:e5:8f:4d:00:01:8c:27:86:a4: 45:c7:ff:da:9e:10:3b:88:d1:11:92:e9:9d:09:58: 0d:82:7d:76:99:71:d8:a6:7b:34:d9:30:c5:15:bb: ee:e1:0f:1e:22:69:fa:3e:ca:73:ba:cb:83:76:87: 2c:3a:c1:64:88:73:45:b7:13:e5:64:b6:ee:61:9f: cc:76:9e:e8:f5:ee:1c:02:e7:c5:45:f2:6c:21:d8: 39:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:95:19:22:3A:C5:D5:40:B5:44:0B:05:76:9A:10:A0:C7:2F:71:18 X509v3 Authority Key Identifier: keyid:D6:B9:8D:9A:E6:08:D1:E0:60:70:9B:96:0E:EF:13:3A:F2:B8:13:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30099/1rmNmuYI0eBgcJuWDu8TOvK4E1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1rmNmuYI0eBgcJuWDu8TOvK4E1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30099/P5UZIjrF1UC1RAsFdpoQoMcvcRg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:1000::/32 Signature Algorithm: sha256WithRSAEncryption 2c:d0:a1:70:c0:7d:9f:a0:2b:37:b9:63:5b:0d:85:a0:4a:83: 9c:c9:24:2f:5f:d2:fe:11:1d:2e:1d:94:fc:94:c7:24:28:68: ba:c1:7c:c5:27:05:37:9e:a0:d2:3a:91:a3:d4:22:d6:22:1e: cd:d4:a1:60:58:ed:51:f5:46:b5:92:e1:da:04:7c:e0:2c:10: e5:2b:24:64:e2:30:83:f3:0d:b0:98:17:db:70:30:82:4a:78: c6:19:98:e9:b0:e7:e9:b9:c0:8a:a9:90:fc:ba:56:0f:84:36: b1:b1:40:73:22:15:d2:2b:06:5e:b5:ed:bd:e7:e9:91:49:28: c3:61:71:83:4f:90:bf:b1:c3:61:87:2c:10:d0:b3:fb:3a:78: dd:8e:b2:a4:6a:35:24:7a:61:1b:03:84:10:03:24:f5:00:58: 1b:4d:58:b5:11:7e:49:9a:b3:ea:58:59:0b:ba:3e:27:25:0d: a3:a8:7e:06:7a:bb:e5:c5:19:d6:95:46:39:c4:e0:ff:a7:42: 60:00:33:17:21:5f:ec:42:0a:8a:93:23:e8:fa:2f:a7:5f:05: 04:87:45:48:38:0f:ab:26:88:6f:aa:10:09:fd:ae:8a:78:0a: da:0a:b4:b4:1a:98:a8:e9:0c:7e:74:26:ab:a4:06:35:ed:d3: 15:cb:46:c3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENkI5 OEQ5QUU2MDhEMUUwNjA3MDlCOTYwRUVGMTMzQUYyQjgxMzUxMB4XDTI1MDEzMTAx MzIyOFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoM0Y5NTE5MjIzQUM1RDU0 MEI1NDQwQjA1NzY5QTEwQTBDNzJGNzExODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANOXcX4BL7O4UMmkJ/cTEfH2CYGZ4lHK5W+AQv8xBMNSwBjjqKoU agwd8HiUSGGMJKYyCGYLEbiui1mrlWy0fE0qoGZV6c8a9IO9yqQV+RSylF2lb7Bi s9N3Wl50DpcPrzhOg4tWGvNg4Lfj7kh/umRv3HwY6wsvdpSTXpN478El7Xr5PvMb wQplSktnD3mCVBtPxxng4J6Rduzo5YkM2i2moR98Ui3wN7HS5Y9NAAGMJ4akRcf/ 2p4QO4jREZLpnQlYDYJ9dplx2KZ7NNkwxRW77uEPHiJp+j7Kc7rLg3aHLDrBZIhz RbcT5WS27mGfzHae6PXuHALnxUXybCHYOa8CAwEAAaOCAikwggIlMB0GA1UdDgQW BBQ/lRkiOsXVQLVECwV2mhCgxy9xGDAfBgNVHSMEGDAWgBTWuY2a5gjR4GBwm5YO 7xM68rgTUTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwOTkvMXJtTm11WUkwZUJnY0p1V0R1OFRPdks0RTFFLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMXJtTm11WUkwZUJnY0p1V0R1OFRP dks0RTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMDk5L1A1VVpJanJGMVVDMVJBc0ZkcG9Rb01jdmNSZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkABAAMA0GCSqGSIb3DQEBCwUAA4IBAQAs0KFwwH2foCs3uWNbDYWg SoOcySQvX9L+ER0uHZT8lMckKGi6wXzFJwU3nqDSOpGj1CLWIh7N1KFgWO1R9Ua1 kuHaBHzgLBDlKyRk4jCD8w2wmBfbcDCCSnjGGZjpsOfpucCKqZD8ulYPhDaxsUBz IhXSKwZete295+mRSSjDYXGDT5C/scNhhywQ0LP7OnjdjrKkajUkemEbA4QQAyT1 AFgbTVi1EX5JmrPqWFkLuj4nJQ2jqH4GervlxRnWlUY5xOD/p0JgADMXIV/sQgqK kyPo+i+nXwUEh0VIOA+rJohvqhAJ/a6KeAraCrS0Gpio6Qx+dCarpAY17dMVy0bD -----END CERTIFICATE-----Generated at Sat Apr 5 12:05:12 2025 by rpki-client