$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30156/3TBbScZUVaYwQT9uLIP99vPZEGQ.roa File: 3TBbScZUVaYwQT9uLIP99vPZEGQ.roa (raw, json) Hash identifier: Z+nV6aWSIhCc4HRBHfZhxTIJD8+LrSExqMq+IWDnmpI= Subject key identifier: DD:30:5B:49:C6:54:55:A6:30:41:3F:6E:2C:83:FD:F6:F3:D9:10:64 Certificate issuer: /CN=66BB158F422A7BC0ADAE187EE4858F3A1DA91312 Certificate serial: 5B Authority key identifier: 66:BB:15:8F:42:2A:7B:C0:AD:AE:18:7E:E4:85:8F:3A:1D:A9:13:12 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/3TBbScZUVaYwQT9uLIP99vPZEGQ.roa Signing time: Fri 31 Jan 2025 01:30:52 +0000 ROA not before: Fri 31 Jan 2025 01:30:52 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 55392 IP address blocks: 2404:8e01::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66BB158F422A7BC0ADAE187EE4858F3A1DA91312 Validity Not Before: Jan 31 01:30:52 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=DD305B49C65455A630413F6E2C83FDF6F3D91064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:df:29:01:ba:e0:7f:7b:7a:85:c9:fa:4c:43: fb:13:c6:47:85:c1:66:b4:6f:98:49:05:d8:3b:3b: 2a:d6:f8:d1:99:10:89:1d:62:83:21:81:62:87:69: 36:2d:9e:f2:da:a8:65:7d:be:04:2d:9f:7b:79:84: 09:d5:86:48:e3:5b:88:fb:3f:c2:f3:6c:6b:fd:1e: e6:09:21:ed:12:b0:d6:bc:fe:ea:3c:a1:9d:c8:01: c8:6a:d3:05:a0:68:4d:d0:50:8a:cc:09:d9:38:19: 80:28:2f:2d:ec:20:4b:e5:3d:97:b8:81:17:9a:8e: 41:de:c0:34:a8:47:d8:8f:f7:cd:0d:97:97:ea:3c: be:7a:57:44:24:17:63:3a:18:6a:f6:ab:35:9e:b4: 05:7e:bc:ee:3d:80:ff:0e:c8:8f:50:ee:1c:99:ab: 1a:d6:9c:e5:75:00:da:6f:5d:fb:08:39:6d:fb:15: b5:bc:7f:47:26:fa:aa:ea:6c:e3:5c:77:43:37:0c: 4b:14:05:6b:4c:42:cf:5c:90:4a:69:51:d5:38:7d: 85:2c:3b:ca:d3:94:92:d5:25:46:58:73:68:3a:c6: a1:e3:53:48:1e:24:3e:2d:58:bb:9c:a3:bf:14:b1: 52:19:12:4c:2c:e8:9a:95:34:a3:a9:18:9b:93:16: b7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:30:5B:49:C6:54:55:A6:30:41:3F:6E:2C:83:FD:F6:F3:D9:10:64 X509v3 Authority Key Identifier: keyid:66:BB:15:8F:42:2A:7B:C0:AD:AE:18:7E:E4:85:8F:3A:1D:A9:13:12 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZrsVj0Iqe8Ctrhh-5IWPOh2pExI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30156/3TBbScZUVaYwQT9uLIP99vPZEGQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:8e01::/32 Signature Algorithm: sha256WithRSAEncryption 82:61:82:43:2f:34:91:8d:57:ec:71:6e:72:e0:12:05:23:24: b2:7b:34:53:f1:73:e8:e3:bf:f4:5b:c3:c3:fd:dd:4c:be:d9: 65:93:ac:94:0d:6d:fc:74:74:14:60:49:80:83:71:7d:49:3f: 9d:f4:81:63:01:b1:d6:b6:6a:e8:81:1f:ad:19:ae:57:47:fe: 6c:58:25:96:13:f8:bb:f1:6d:d9:7f:96:b0:f5:60:dc:9b:3a: 9d:af:f1:1b:4a:20:f7:e7:30:9a:1f:3c:ef:3e:f9:ee:5d:7f: af:1f:32:f1:07:5c:2f:04:ac:24:19:5c:c6:c2:b5:83:77:10: 83:c5:e0:9d:c1:42:e2:42:60:5c:a6:6e:be:cc:d0:c0:17:67: 99:3f:37:6b:8f:5b:eb:85:ca:c2:45:71:ad:ed:7c:c8:d6:5c: b7:84:cf:de:9d:bf:2e:5f:a3:4d:6e:c0:e0:86:a8:b0:3f:5b: cd:4c:c7:f4:5c:be:1c:7e:a0:99:25:46:a9:c7:96:d3:bd:cd: 63:7b:b4:41:ae:5f:8e:fe:f7:0c:6d:ac:97:a1:c2:03:e7:1d: 50:36:50:e6:41:67:1e:3c:0f:f4:f9:3d:fc:73:9d:3e:84:69: 2c:e5:a1:14:73:71:d6:0d:43:43:cb:3f:ee:53:25:f4:4c:43: 5b:56:c0:65 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NkJC MTU4RjQyMkE3QkMwQURBRTE4N0VFNDg1OEYzQTFEQTkxMzEyMB4XDTI1MDEzMTAx MzA1MloXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoREQzMDVCNDlDNjU0NTVB NjMwNDEzRjZFMkM4M0ZERjZGM0Q5MTA2NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANLfKQG64H97eoXJ+kxD+xPGR4XBZrRvmEkF2Ds7Ktb40ZkQiR1i gyGBYodpNi2e8tqoZX2+BC2fe3mECdWGSONbiPs/wvNsa/0e5gkh7RKw1rz+6jyh ncgByGrTBaBoTdBQiswJ2TgZgCgvLewgS+U9l7iBF5qOQd7ANKhH2I/3zQ2Xl+o8 vnpXRCQXYzoYavarNZ60BX687j2A/w7Ij1DuHJmrGtac5XUA2m9d+wg5bfsVtbx/ Ryb6qups41x3QzcMSxQFa0xCz1yQSmlR1Th9hSw7ytOUktUlRlhzaDrGoeNTSB4k Pi1Yu5yjvxSxUhkSTCzompU0o6kYm5MWt4UCAwEAAaOCAikwggIlMB0GA1UdDgQW BBTdMFtJxlRVpjBBP24sg/3289kQZDAfBgNVHSMEGDAWgBRmuxWPQip7wK2uGH7k hY86HakTEjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNTYvWnJzVmowSXFlOEN0cmhoLTVJV1BPaDJwRXhJLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWnJzVmowSXFlOEN0cmhoLTVJV1BP aDJwRXhJLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTU2LzNUQmJTY1pVVmFZd1FUOXVMSVA5OXZQWkVHUS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkBI4BMA0GCSqGSIb3DQEBCwUAA4IBAQCCYYJDLzSRjVfscW5y4BIF IySyezRT8XPo47/0W8PD/d1Mvtllk6yUDW38dHQUYEmAg3F9ST+d9IFjAbHWtmro gR+tGa5XR/5sWCWWE/i78W3Zf5aw9WDcmzqdr/EbSiD35zCaHzzvPvnuXX+vHzLx B1wvBKwkGVzGwrWDdxCDxeCdwULiQmBcpm6+zNDAF2eZPzdrj1vrhcrCRXGt7XzI 1ly3hM/enb8uX6NNbsDghqiwP1vNTMf0XL4cfqCZJUapx5bTvc1je7RBrl+O/vcM bayXocID5x1QNlDmQWcePA/0+T38c50+hGks5aEUc3HWDUNDyz/uUyX0TENbVsBl -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:19 2025 by rpki-client