$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30138/ZbP_Zfa2mwHq82S6XSeyWX_NCCE.roa File: ZbP_Zfa2mwHq82S6XSeyWX_NCCE.roa (raw, json) Hash identifier: ThE65gZNrtvB6ORxoBbpvsXbWhOf17z9TZN9IB4gOGU= Subject key identifier: 65:B3:FF:65:F6:B6:9B:01:EA:F3:64:BA:5D:27:B2:59:7F:CD:08:21 Certificate issuer: /CN=36447C69FE93430A4EF5EB217C409EBB5B676BB9 Certificate serial: 1C Authority key identifier: 36:44:7C:69:FE:93:43:0A:4E:F5:EB:21:7C:40:9E:BB:5B:67:6B:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NkR8af6TQwpO9eshfECeu1tna7k.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30138/ZbP_Zfa2mwHq82S6XSeyWX_NCCE.roa Signing time: Sat 31 Aug 2024 01:31:56 +0000 ROA not before: Sat 31 Aug 2024 01:31:56 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9374 IP address blocks: 2402:c200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30138/NkR8af6TQwpO9eshfECeu1tna7k.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30138/NkR8af6TQwpO9eshfECeu1tna7k.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NkR8af6TQwpO9eshfECeu1tna7k.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36447C69FE93430A4EF5EB217C409EBB5B676BB9 Validity Not Before: Aug 31 01:31:56 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=65B3FF65F6B69B01EAF364BA5D27B2597FCD0821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:17:56:da:82:77:0a:eb:51:be:e2:41:00:38: 12:ff:05:e0:d2:4e:8f:dd:a7:28:75:d7:a3:48:6d: 3c:d9:52:77:63:6a:2a:18:02:81:5e:e8:7a:a4:13: c0:62:d4:d3:78:ef:b6:2d:27:04:0e:01:26:a1:26: d8:6f:8b:2b:b2:7e:ad:01:64:1e:97:0d:ea:bd:64: 28:c7:5c:87:d9:73:cd:62:b4:95:d5:b6:1d:d8:67: 87:94:2c:cb:e7:fb:ac:28:60:7c:08:1c:08:0f:58: 57:9e:6e:93:cc:4d:d8:e7:5e:46:ef:16:be:a7:c4: 96:06:97:05:26:98:dd:84:25:91:4e:41:af:75:2b: 60:65:cc:9c:f0:51:10:1e:b2:fd:b7:41:5d:9b:0c: 1c:8a:bc:b2:99:5a:98:79:a2:9e:bd:6f:30:56:7a: 15:34:31:99:74:c0:63:17:49:1a:0e:46:67:70:13: 86:d8:ac:04:17:14:24:55:57:95:39:a7:2c:12:74: 85:8c:20:7d:ce:5b:29:7e:37:cb:fa:78:2b:6b:1d: 60:1b:e6:eb:71:02:b5:06:54:36:3b:95:1b:af:4e: da:d3:1f:5f:ce:db:99:1f:cb:fa:d0:6f:01:f8:52: 3b:9d:cb:96:1c:b3:31:4b:0e:65:ca:0c:e2:47:98: a5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B3:FF:65:F6:B6:9B:01:EA:F3:64:BA:5D:27:B2:59:7F:CD:08:21 X509v3 Authority Key Identifier: keyid:36:44:7C:69:FE:93:43:0A:4E:F5:EB:21:7C:40:9E:BB:5B:67:6B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30138/NkR8af6TQwpO9eshfECeu1tna7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NkR8af6TQwpO9eshfECeu1tna7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30138/ZbP_Zfa2mwHq82S6XSeyWX_NCCE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:c200::/32 Signature Algorithm: sha256WithRSAEncryption 23:b5:40:13:4e:3c:b5:f4:13:2c:c1:55:a9:65:b3:85:e4:62: 7c:7e:e9:0c:49:17:38:6a:0b:ee:e7:86:90:77:4e:f5:e2:13: 61:9c:6c:58:3f:d0:f0:ae:ba:e5:bc:71:0a:0e:eb:32:36:8a: 2d:43:40:50:88:26:24:65:69:cd:af:b4:74:81:35:3b:a5:d9: 96:c5:dd:76:ee:dd:89:1e:0f:e2:3a:6f:85:20:38:23:57:8e: 54:1b:2f:fa:1f:9b:e3:c4:1d:6b:8f:e0:fd:72:c8:f5:51:25: 99:61:a9:f2:b8:7b:93:71:e5:5c:d5:d0:7e:90:42:d9:b0:a1: ee:b0:1f:c6:a0:41:d8:3e:1d:86:2d:06:4e:4b:3d:cf:52:3c: 86:20:82:60:f4:62:3e:35:3e:c8:b2:4b:f8:42:17:01:e4:71: fa:c3:b2:89:02:c9:bb:5b:51:a0:80:a2:4a:15:93:53:0d:d1: d2:47:6e:72:63:6a:87:b2:7c:06:77:7b:37:e5:b8:4c:bd:51: b3:86:4a:a3:f6:59:15:41:33:2c:76:19:14:c1:32:7b:2d:f7: 4e:46:29:7b:1f:5f:3c:24:84:48:a9:25:87:d0:6e:46:7a:d1: 06:2e:f6:65:3c:cd:6e:df:d5:1a:a4:78:9a:91:99:8f:85:34: 2b:03:6b:5c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNjQ0 N0M2OUZFOTM0MzBBNEVGNUVCMjE3QzQwOUVCQjVCNjc2QkI5MB4XDTI0MDgzMTAx MzE1NloXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoNjVCM0ZGNjVGNkI2OUIw MUVBRjM2NEJBNUQyN0IyNTk3RkNEMDgyMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPcXVtqCdwrrUb7iQQA4Ev8F4NJOj92nKHXXo0htPNlSd2NqKhgC gV7oeqQTwGLU03jvti0nBA4BJqEm2G+LK7J+rQFkHpcN6r1kKMdch9lzzWK0ldW2 Hdhnh5Qsy+f7rChgfAgcCA9YV55uk8xN2OdeRu8WvqfElgaXBSaY3YQlkU5Br3Ur YGXMnPBREB6y/bdBXZsMHIq8splamHminr1vMFZ6FTQxmXTAYxdJGg5GZ3AThtis BBcUJFVXlTmnLBJ0hYwgfc5bKX43y/p4K2sdYBvm63ECtQZUNjuVG69O2tMfX87b mR/L+tBvAfhSO53LlhyzMUsOZcoM4keYpXsCAwEAAaOCAikwggIlMB0GA1UdDgQW BBRls/9l9rabAerzZLpdJ7JZf80IITAfBgNVHSMEGDAWgBQ2RHxp/pNDCk716yF8 QJ67W2druTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxMzgvTmtSOGFmNlRRd3BPOWVzaGZFQ2V1MXRuYTdrLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTmtSOGFmNlRRd3BPOWVzaGZFQ2V1 MXRuYTdrLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTM4L1piUF9aZmEybXdIcTgyUzZYU2V5V1hfTkNDRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAsIAMA0GCSqGSIb3DQEBCwUAA4IBAQAjtUATTjy19BMswVWpZbOF 5GJ8fukMSRc4agvu54aQd0714hNhnGxYP9DwrrrlvHEKDusyNootQ0BQiCYkZWnN r7R0gTU7pdmWxd127t2JHg/iOm+FIDgjV45UGy/6H5vjxB1rj+D9csj1USWZYany uHuTceVc1dB+kELZsKHusB/GoEHYPh2GLQZOSz3PUjyGIIJg9GI+NT7Iskv4QhcB 5HH6w7KJAsm7W1GggKJKFZNTDdHSR25yY2qHsnwGd3s35bhMvVGzhkqj9lkVQTMs dhkUwTJ7LfdORil7H188JIRIqSWH0G5GetEGLvZlPM1u39UapHiakZmPhTQrA2tc -----END CERTIFICATE-----Generated at Mon Apr 7 00:53:06 2025 by rpki-client