$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30286/xcesSD3lTJOi7RfNeE11uBBsbpA.roa File: xcesSD3lTJOi7RfNeE11uBBsbpA.roa (raw, json) Hash identifier: CZu5u6fJx3PgccGjnRd4xxO6+h+ko6Wp1IK23WHL1s8= Subject key identifier: C5:C7:AC:48:3D:E5:4C:93:A2:ED:17:CD:78:4D:75:B8:10:6C:6E:90 Certificate issuer: /CN=0CE9148428894A9D99226AC1F46D15383D64D856 Certificate serial: 2D Authority key identifier: 0C:E9:14:84:28:89:4A:9D:99:22:6A:C1:F4:6D:15:38:3D:64:D8:56 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DOkUhCiJSp2ZImrB9G0VOD1k2FY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30286/xcesSD3lTJOi7RfNeE11uBBsbpA.roa Signing time: Sat 30 Nov 2024 01:28:58 +0000 ROA not before: Sat 30 Nov 2024 01:28:58 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 23805 IP address blocks: 2405:fc80::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30286/DOkUhCiJSp2ZImrB9G0VOD1k2FY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30286/DOkUhCiJSp2ZImrB9G0VOD1k2FY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DOkUhCiJSp2ZImrB9G0VOD1k2FY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE9148428894A9D99226AC1F46D15383D64D856 Validity Not Before: Nov 30 01:28:58 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=C5C7AC483DE54C93A2ED17CD784D75B8106C6E90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e9:8d:89:25:b4:01:bd:01:93:d0:55:9f:46: 01:3d:57:95:14:28:0a:ed:58:d2:bc:6b:b3:a1:9a: 95:f8:5b:63:bc:ed:14:44:b3:9d:0a:2c:94:e5:8c: de:e7:6c:07:58:1a:e4:33:ca:38:41:6f:1d:8c:02: e6:3b:bd:26:9d:dd:1d:71:58:94:ab:40:24:99:15: 1e:a3:d3:a2:67:59:cf:1f:91:7c:96:9a:9a:be:3c: 80:c4:b6:52:07:75:78:b9:1c:1a:bb:86:95:d8:f6: ac:d7:15:4e:21:a6:36:7a:6a:fb:9c:98:a1:5f:01: 5f:3b:c9:b2:4a:8a:3d:e8:db:9c:e0:8e:45:7e:ff: 70:4b:3f:7f:bc:7c:22:ed:06:15:8a:9b:ca:13:d2: 4d:ba:33:0d:17:42:73:05:7b:7d:39:22:97:5c:cd: 7d:a2:d9:ab:91:e3:71:79:04:19:a7:7a:2c:c9:a7: 9f:83:56:b7:d5:c7:a5:0a:e0:ef:62:9e:d0:29:f5: ae:34:c6:db:cb:df:9f:1d:f7:dd:36:da:d5:89:36: 31:fb:37:f7:62:8c:32:1b:8a:65:1e:c3:70:4e:e3: 75:c6:64:6d:d1:30:3f:1b:5e:1a:6b:63:35:2d:79: ae:a4:bc:c7:4d:c0:e2:6d:70:50:76:77:21:f3:a3: d1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C7:AC:48:3D:E5:4C:93:A2:ED:17:CD:78:4D:75:B8:10:6C:6E:90 X509v3 Authority Key Identifier: keyid:0C:E9:14:84:28:89:4A:9D:99:22:6A:C1:F4:6D:15:38:3D:64:D8:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30286/DOkUhCiJSp2ZImrB9G0VOD1k2FY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DOkUhCiJSp2ZImrB9G0VOD1k2FY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30286/xcesSD3lTJOi7RfNeE11uBBsbpA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:fc80::/32 Signature Algorithm: sha256WithRSAEncryption 25:c7:38:6f:94:a4:a6:d1:6b:5e:2a:4c:fd:e2:37:07:86:66: 3b:1d:e5:b3:34:0e:28:0b:0d:01:76:7d:a0:10:ba:2e:c1:61: 6d:01:a4:c1:04:c9:56:9d:f4:00:98:42:78:03:90:05:bd:93: 2c:a8:47:82:3b:6a:d8:a9:89:4f:eb:7d:a7:87:4c:57:ea:d1: 65:a0:cd:09:c0:60:31:d4:91:a6:4f:39:2f:a3:83:38:4e:86: 61:b3:25:86:18:99:46:26:cd:be:d9:8d:80:9f:06:19:8e:4f: ca:69:38:41:32:46:01:f4:32:c3:92:13:40:13:2f:3c:43:bf: 60:f6:e1:fe:d1:5b:8d:80:c7:19:9c:da:f0:fe:b2:13:9c:53: 01:79:40:78:4c:bb:62:96:d0:19:1c:3c:a6:fa:d0:ad:d1:6b: c2:b9:5c:3f:cc:f9:e2:b4:c5:ce:6f:b6:40:da:e5:33:cf:db: a3:8a:f1:7b:30:63:1e:26:cf:55:eb:21:cc:44:30:54:76:cb: 36:23:13:0c:49:5a:a4:f2:4e:6d:da:dc:25:03:34:97:40:50: 66:d3:0e:b4:bc:e9:11:15:8f:e1:75:27:ba:ab:00:71:4e:3b: f3:0a:c2:b2:9e:6d:98:08:89:b5:b6:06:d9:2d:c7:d7:c7:94: 61:af:e4:80 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwQ0U5 MTQ4NDI4ODk0QTlEOTkyMjZBQzFGNDZEMTUzODNENjREODU2MB4XDTI0MTEzMDAx Mjg1OFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoQzVDN0FDNDgzREU1NEM5 M0EyRUQxN0NENzg0RDc1QjgxMDZDNkU5MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKzpjYkltAG9AZPQVZ9GAT1XlRQoCu1Y0rxrs6GalfhbY7ztFESz nQoslOWM3udsB1ga5DPKOEFvHYwC5ju9Jp3dHXFYlKtAJJkVHqPTomdZzx+RfJaa mr48gMS2Ugd1eLkcGruGldj2rNcVTiGmNnpq+5yYoV8BXzvJskqKPejbnOCORX7/ cEs/f7x8Iu0GFYqbyhPSTbozDRdCcwV7fTkil1zNfaLZq5HjcXkEGad6LMmnn4NW t9XHpQrg72Ke0Cn1rjTG28vfnx333Tba1Yk2Mfs392KMMhuKZR7DcE7jdcZkbdEw PxteGmtjNS15rqS8x03A4m1wUHZ3IfOj0V0CAwEAAaOCAikwggIlMB0GA1UdDgQW BBTFx6xIPeVMk6LtF814TXW4EGxukDAfBgNVHSMEGDAWgBQM6RSEKIlKnZkiasH0 bRU4PWTYVjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAyODYvRE9rVWhDaUpTcDJaSW1yQjlHMFZPRDFrMkZZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvRE9rVWhDaUpTcDJaSW1yQjlHMFZP RDFrMkZZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMjg2L3hjZXNTRDNsVEpPaTdSZk5lRTExdUJCc2JwQS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkBfyAMA0GCSqGSIb3DQEBCwUAA4IBAQAlxzhvlKSm0WteKkz94jcH hmY7HeWzNA4oCw0Bdn2gELouwWFtAaTBBMlWnfQAmEJ4A5AFvZMsqEeCO2rYqYlP 632nh0xX6tFloM0JwGAx1JGmTzkvo4M4ToZhsyWGGJlGJs2+2Y2AnwYZjk/KaThB MkYB9DLDkhNAEy88Q79g9uH+0VuNgMcZnNrw/rITnFMBeUB4TLtiltAZHDym+tCt 0WvCuVw/zPnitMXOb7ZA2uUzz9ujivF7MGMeJs9V6yHMRDBUdss2IxMMSVqk8k5t 2twlAzSXQFBm0w60vOkRFY/hdSe6qwBxTjvzCsKynm2YCIm1tgbZLcfXx5Rhr+SA -----END CERTIFICATE-----Generated at Sat Apr 5 17:45:51 2025 by rpki-client