$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30228/k9I7oP3dL7VTAxMVI4HwvdVvN70.roa File: k9I7oP3dL7VTAxMVI4HwvdVvN70.roa (raw, json) Hash identifier: V3W3Vf7fY2kkvR7LHf1soGGmp0DgNvIvG4GvvpFKLP0= Subject key identifier: 93:D2:3B:A0:FD:DD:2F:B5:53:03:13:15:23:81:F0:BD:D5:6F:37:BD Certificate issuer: /CN=D10D886582BDDF48B041851C38C0B632115F5C21 Certificate serial: 7C Authority key identifier: D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0Q2IZYK930iwQYUcOMC2MhFfXCE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/k9I7oP3dL7VTAxMVI4HwvdVvN70.roa Signing time: Fri 31 Jan 2025 01:30:54 +0000 ROA not before: Fri 31 Jan 2025 01:30:54 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 2403:7800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0Q2IZYK930iwQYUcOMC2MhFfXCE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D10D886582BDDF48B041851C38C0B632115F5C21 Validity Not Before: Jan 31 01:30:54 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=93D23BA0FDDD2FB5530313152381F0BDD56F37BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e0:fe:75:a0:6e:f9:e7:d3:9e:14:3c:de:90: eb:33:d2:1a:17:5a:23:07:bd:de:d0:2f:50:6b:1d: 36:ab:97:02:c7:9f:77:ca:6a:54:4c:ad:08:b3:71: a4:57:8e:cb:15:b2:36:56:48:5e:fb:e8:31:cd:94: ae:74:33:41:1f:bc:a9:62:c4:de:15:71:c3:85:2b: 8f:bf:f1:0c:42:97:21:f5:5a:f8:48:ea:d0:ce:4a: d6:fb:60:b6:91:b7:2b:14:60:68:e2:5c:1b:5e:93: 00:07:30:06:3a:f7:44:44:8f:88:c5:9f:fc:73:8d: 28:88:02:85:7f:4a:ac:56:52:8a:23:9f:a4:8b:d6: 68:80:f6:e7:5a:ca:60:b8:0d:ad:15:bc:41:3f:62: b7:c0:44:08:b9:25:fe:f5:01:e3:b6:57:e3:eb:e7: 0f:b0:e5:3c:4a:58:50:d6:de:b5:5b:8a:ed:30:77: da:a7:b6:ab:c3:10:9d:64:42:22:35:d3:68:ae:2c: c4:ca:6c:d8:50:30:40:16:d9:db:9a:b0:87:13:57: 28:1c:ac:f5:28:4d:8b:34:7f:c6:99:6c:4c:da:ea: 8c:aa:40:f9:22:6a:c7:ff:b7:20:c1:4b:5d:84:76: bb:df:3b:2f:d9:01:76:ea:9d:ff:85:9a:25:55:ef: 4f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:D2:3B:A0:FD:DD:2F:B5:53:03:13:15:23:81:F0:BD:D5:6F:37:BD X509v3 Authority Key Identifier: keyid:D1:0D:88:65:82:BD:DF:48:B0:41:85:1C:38:C0:B6:32:11:5F:5C:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/0Q2IZYK930iwQYUcOMC2MhFfXCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0Q2IZYK930iwQYUcOMC2MhFfXCE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30228/k9I7oP3dL7VTAxMVI4HwvdVvN70.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:7800::/32 Signature Algorithm: sha256WithRSAEncryption a7:cd:3a:8f:29:f1:1f:d0:00:72:9d:40:32:c9:53:59:4a:44: 26:7a:da:0f:29:6b:70:12:32:cb:65:52:c5:3c:5c:f1:67:8e: 26:3a:ac:cb:78:12:8f:2b:c5:33:8a:17:fc:59:8c:4a:70:20: ad:23:17:a4:25:82:07:8d:25:9d:eb:75:13:09:b7:a9:33:ae: ff:56:fb:81:1e:6d:d3:c2:98:57:a1:b2:7a:61:72:99:49:94: d9:78:1f:71:79:ce:03:1f:75:55:7f:f4:90:b2:58:4f:df:05: a9:44:6a:9d:fa:9e:62:dd:d8:25:24:50:ec:56:7f:b0:f2:48: 29:ff:aa:44:6e:5e:ea:ce:b8:0a:c7:e7:be:b4:bc:0a:b2:e6: 81:9e:62:b3:af:57:7d:dc:a8:74:be:ec:f2:de:31:68:c3:23: b2:84:c5:be:a1:2a:c0:39:1f:2a:5b:a5:2d:8c:c5:45:c8:ae: ae:2e:37:47:d6:91:f2:62:d6:30:0b:37:97:d4:f5:15:e4:93: 38:e8:9e:b9:67:64:30:91:c7:48:89:9b:1c:74:95:cc:b5:ef: f7:71:de:29:f7:44:bc:f1:c1:73:ef:bd:cf:1a:44:10:eb:5a: 0f:50:ce:4d:6f:32:43:82:01:ee:6d:c6:19:91:07:bb:83:0a: b4:42:cb:ef -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTBE ODg2NTgyQkRERjQ4QjA0MTg1MUMzOEMwQjYzMjExNUY1QzIxMB4XDTI1MDEzMTAx MzA1NFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoOTNEMjNCQTBGREREMkZC NTUzMDMxMzE1MjM4MUYwQkRENTZGMzdCRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANTg/nWgbvnn054UPN6Q6zPSGhdaIwe93tAvUGsdNquXAsefd8pq VEytCLNxpFeOyxWyNlZIXvvoMc2UrnQzQR+8qWLE3hVxw4Urj7/xDEKXIfVa+Ejq 0M5K1vtgtpG3KxRgaOJcG16TAAcwBjr3RESPiMWf/HONKIgChX9KrFZSiiOfpIvW aID251rKYLgNrRW8QT9it8BECLkl/vUB47ZX4+vnD7DlPEpYUNbetVuK7TB32qe2 q8MQnWRCIjXTaK4sxMps2FAwQBbZ25qwhxNXKBys9ShNizR/xplsTNrqjKpA+SJq x/+3IMFLXYR2u987L9kBduqd/4WaJVXvT5UCAwEAAaOCAikwggIlMB0GA1UdDgQW BBST0jug/d0vtVMDExUjgfC91W83vTAfBgNVHSMEGDAWgBTRDYhlgr3fSLBBhRw4 wLYyEV9cITAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAyMjgvMFEySVpZSzkzMGl3UVlVY09NQzJNaEZmWENFLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFEySVpZSzkzMGl3UVlVY09NQzJN aEZmWENFLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMjI4L2s5STdvUDNkTDdWVEF4TVZJNEh3dmRWdk43MC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkA3gAMA0GCSqGSIb3DQEBCwUAA4IBAQCnzTqPKfEf0ABynUAyyVNZ SkQmetoPKWtwEjLLZVLFPFzxZ44mOqzLeBKPK8Uzihf8WYxKcCCtIxekJYIHjSWd 63UTCbepM67/VvuBHm3TwphXobJ6YXKZSZTZeB9xec4DH3VVf/SQslhP3wWpRGqd +p5i3dglJFDsVn+w8kgp/6pEbl7qzrgKx+e+tLwKsuaBnmKzr1d93Kh0vuzy3jFo wyOyhMW+oSrAOR8qW6UtjMVFyK6uLjdH1pHyYtYwCzeX1PUV5JM46J65Z2QwkcdI iZscdJXMte/3cd4p90S88cFz773PGkQQ61oPUM5NbzJDggHubcYZkQe7gwq0Qsvv -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:01 2025 by rpki-client