$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30155/PCBsi29Ms0io7BJ8j6qBFLUXqx8.roa File: PCBsi29Ms0io7BJ8j6qBFLUXqx8.roa (raw, json) Hash identifier: hkFPp2AYsJL2ok1J1yIf0Wy1kiw61z+n8B8+0/bc7ZA= Subject key identifier: 3C:20:6C:8B:6F:4C:B3:48:A8:EC:12:7C:8F:AA:81:14:B5:17:AB:1F Certificate issuer: /CN=540D04AB978801867F711546D16FB476A278FC9A Certificate serial: 5C Authority key identifier: 54:0D:04:AB:97:88:01:86:7F:71:15:46:D1:6F:B4:76:A2:78:FC:9A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/VA0Eq5eIAYZ_cRVG0W-0dqJ4_Jo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30155/PCBsi29Ms0io7BJ8j6qBFLUXqx8.roa Signing time: Fri 31 Jan 2025 01:30:51 +0000 ROA not before: Fri 31 Jan 2025 01:30:51 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 55391 IP address blocks: 2409:10::/28 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30155/VA0Eq5eIAYZ_cRVG0W-0dqJ4_Jo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30155/VA0Eq5eIAYZ_cRVG0W-0dqJ4_Jo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/VA0Eq5eIAYZ_cRVG0W-0dqJ4_Jo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=540D04AB978801867F711546D16FB476A278FC9A Validity Not Before: Jan 31 01:30:51 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=3C206C8B6F4CB348A8EC127C8FAA8114B517AB1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:86:34:bf:ec:a1:9a:d9:2d:5c:9e:49:8b:1b: a8:a7:37:99:d0:dd:fe:30:f7:ba:a6:07:f7:ae:ce: 74:e7:24:49:cb:42:56:a3:1a:c3:69:99:d4:07:8e: aa:19:e8:96:39:fc:8d:9f:9f:15:e3:df:e5:0a:ee: e6:3c:0b:18:d6:64:64:d5:bf:00:11:55:24:fc:c1: 5f:7b:64:1b:10:ca:08:73:e5:fb:a0:ff:31:44:94: e8:cf:97:bd:e4:e7:46:d0:0e:76:a1:20:b0:72:06: 70:3e:fc:41:92:3d:35:53:d3:6c:6f:d1:66:82:3a: 77:e0:23:a7:a3:23:82:a2:47:d9:36:1b:bb:83:90: b4:bd:8c:06:cd:9b:be:c8:f4:8e:68:27:f2:2d:dc: 83:b9:ba:cf:1e:5d:13:7e:44:45:60:d6:33:9e:11: e8:5f:ee:bf:68:16:4b:e0:41:7c:15:4d:95:b5:24: 9f:7f:eb:c1:63:54:df:94:9d:7e:49:7e:6f:b8:1f: 1d:86:de:f2:51:0c:08:1b:ee:9f:f9:35:ac:e5:af: c7:08:eb:3f:3a:e0:a6:87:ce:ab:a4:90:7c:20:97: 52:25:d6:c5:b1:b3:71:ee:99:e6:8d:4a:d7:b0:12: 76:16:91:07:c4:61:65:b5:1c:48:fd:40:84:e4:c4: 25:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:20:6C:8B:6F:4C:B3:48:A8:EC:12:7C:8F:AA:81:14:B5:17:AB:1F X509v3 Authority Key Identifier: keyid:54:0D:04:AB:97:88:01:86:7F:71:15:46:D1:6F:B4:76:A2:78:FC:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30155/VA0Eq5eIAYZ_cRVG0W-0dqJ4_Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/VA0Eq5eIAYZ_cRVG0W-0dqJ4_Jo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30155/PCBsi29Ms0io7BJ8j6qBFLUXqx8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2409:10::/28 Signature Algorithm: sha256WithRSAEncryption 8d:d9:a2:41:0b:b9:f8:63:8a:f5:4a:a6:63:d2:31:7c:be:a3: 2d:9d:bb:e6:d8:be:fd:7a:34:83:d3:e9:30:8e:b0:f2:8f:f0: 2d:72:22:7e:03:0e:b9:97:02:26:ac:0f:9d:44:18:ba:ff:56: b5:03:3f:b7:b7:67:ff:0a:b4:13:f5:35:aa:28:0e:d9:f6:24: cd:67:7b:57:cc:8b:28:b9:0c:45:f6:64:d2:1b:7c:54:7d:14: e1:27:33:96:fa:41:84:b1:58:37:6f:07:8b:c5:b8:ef:c0:6c: d9:7c:0b:54:06:10:2c:24:7b:24:24:56:61:06:d2:9b:15:26: 01:07:7e:f7:33:b2:43:8d:2a:14:44:b7:d0:0a:25:8e:94:1c: 4e:74:f8:05:65:af:73:2b:51:98:58:e1:59:4a:ae:8b:2f:78: fd:18:02:a4:2e:b9:a1:73:18:e7:ad:7c:87:49:b7:bb:c2:92: 3a:94:4c:2b:af:01:23:b4:ea:39:71:95:bf:55:bd:d2:ce:42: 00:72:f9:0b:b5:82:61:2e:bc:4e:d3:72:46:4a:37:cf:d8:6d: ad:35:6b:31:68:f2:06:f2:aa:bc:66:88:05:38:86:d6:cf:f1: 9f:37:29:39:7a:c3:58:74:ad:e4:99:53:49:84:96:0c:b7:67: e4:ab:10:74 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBXDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1NDBE MDRBQjk3ODgwMTg2N0Y3MTE1NDZEMTZGQjQ3NkEyNzhGQzlBMB4XDTI1MDEzMTAx MzA1MVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoM0MyMDZDOEI2RjRDQjM0 OEE4RUMxMjdDOEZBQTgxMTRCNTE3QUIxRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJmGNL/soZrZLVyeSYsbqKc3mdDd/jD3uqYH967OdOckSctCVqMa w2mZ1AeOqhnoljn8jZ+fFePf5Qru5jwLGNZkZNW/ABFVJPzBX3tkGxDKCHPl+6D/ MUSU6M+XveTnRtAOdqEgsHIGcD78QZI9NVPTbG/RZoI6d+Ajp6MjgqJH2TYbu4OQ tL2MBs2bvsj0jmgn8i3cg7m6zx5dE35ERWDWM54R6F/uv2gWS+BBfBVNlbUkn3/r wWNU35Sdfkl+b7gfHYbe8lEMCBvun/k1rOWvxwjrPzrgpofOq6SQfCCXUiXWxbGz ce6Z5o1K17ASdhaRB8RhZbUcSP1AhOTEJaMCAwEAAaOCAikwggIlMB0GA1UdDgQW BBQ8IGyLb0yzSKjsEnyPqoEUtRerHzAfBgNVHSMEGDAWgBRUDQSrl4gBhn9xFUbR b7R2onj8mjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNTUvVkEwRXE1ZUlBWVpfY1JWRzBXLTBkcUo0X0pvLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVkEwRXE1ZUlBWVpfY1JWRzBXLTBk cUo0X0pvLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTU1L1BDQnNpMjlNczBpbzdCSjhqNnFCRkxVWHF4OC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQQkCQAQMA0GCSqGSIb3DQEBCwUAA4IBAQCN2aJBC7n4Y4r1SqZj0jF8 vqMtnbvm2L79ejSD0+kwjrDyj/AtciJ+Aw65lwImrA+dRBi6/1a1Az+3t2f/CrQT 9TWqKA7Z9iTNZ3tXzIsouQxF9mTSG3xUfRThJzOW+kGEsVg3bweLxbjvwGzZfAtU BhAsJHskJFZhBtKbFSYBB373M7JDjSoURLfQCiWOlBxOdPgFZa9zK1GYWOFZSq6L L3j9GAKkLrmhcxjnrXyHSbe7wpI6lEwrrwEjtOo5cZW/Vb3SzkIAcvkLtYJhLrxO 03JGSjfP2G2tNWsxaPIG8qq8ZogFOIbWz/GfNyk5esNYdK3kmVNJhJYMt2fkqxB0 -----END CERTIFICATE-----Generated at Sun Apr 6 01:57:43 2025 by rpki-client