$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30291/IY1RX0JknF2Y5qLutazoeAOA0qc.roa File: IY1RX0JknF2Y5qLutazoeAOA0qc.roa (raw, json) Hash identifier: Gnloof5djp0rHZb1ThN4byDXIDozyp1x1urBkTjnIwk= Subject key identifier: 21:8D:51:5F:42:64:9C:5D:98:E6:A2:EE:B5:AC:E8:78:03:80:D2:A7 Certificate issuer: /CN=1CB60B40A98AEAE054CAEE4C09CB7D9AEADE3E9D Certificate serial: 1D Authority key identifier: 1C:B6:0B:40:A9:8A:EA:E0:54:CA:EE:4C:09:CB:7D:9A:EA:DE:3E:9D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/IY1RX0JknF2Y5qLutazoeAOA0qc.roa Signing time: Sat 30 Nov 2024 01:32:23 +0000 ROA not before: Sat 30 Nov 2024 01:32:23 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 131964 IP address blocks: 2400:a140:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CB60B40A98AEAE054CAEE4C09CB7D9AEADE3E9D Validity Not Before: Nov 30 01:32:23 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=218D515F42649C5D98E6A2EEB5ACE8780380D2A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:42:69:08:97:f6:9f:28:c9:b0:a4:88:a8:d5: 09:cd:8c:e8:dd:b9:99:da:d0:6e:08:b3:54:65:c3: 55:fa:3b:c2:a3:84:5a:1b:89:ec:0a:0c:b9:bd:a4: 47:fd:f6:02:5b:e4:a1:15:ef:20:91:7a:45:9e:4b: 0d:21:30:d5:c5:e5:68:1e:e6:63:64:d5:c3:5f:c7: 2c:0e:d7:ce:66:a7:88:51:23:e1:33:90:f0:95:04: 4f:12:66:62:f5:b5:b1:36:f2:05:9c:6e:ce:26:73: 13:8d:22:9c:2c:a4:9a:c2:dd:ad:6d:9f:b0:ed:b1: 28:76:69:33:85:d4:af:b9:9c:59:1f:61:43:28:bd: ab:7f:11:27:d9:1a:ea:a5:48:6d:2e:bb:f0:35:d7: df:93:aa:6b:b6:ee:42:47:b8:c3:62:7b:3b:e6:22: 5d:8d:e8:9c:f7:aa:37:bb:d1:ae:d6:b3:13:82:d1: 70:57:86:cb:8f:7e:66:ff:25:b3:ec:77:c2:00:cf: d5:d2:5f:22:ff:48:a2:1e:cd:bc:cd:b8:c6:8e:85: 78:0a:e3:21:85:ee:63:95:2d:82:20:52:51:e8:54: 87:e6:31:74:53:51:99:54:10:72:58:a3:17:55:fb: 06:66:0d:0e:fd:9a:ff:7c:33:d0:b2:2e:e3:23:a2: 9a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8D:51:5F:42:64:9C:5D:98:E6:A2:EE:B5:AC:E8:78:03:80:D2:A7 X509v3 Authority Key Identifier: keyid:1C:B6:0B:40:A9:8A:EA:E0:54:CA:EE:4C:09:CB:7D:9A:EA:DE:3E:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/IY1RX0JknF2Y5qLutazoeAOA0qc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:a140:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 0e:f6:01:73:bf:62:15:49:a9:05:f0:74:eb:43:e9:50:56:ba: 81:5e:6e:d2:c0:32:59:74:05:55:b3:38:4a:a1:32:33:94:f4: b3:81:24:f8:6d:bb:2d:a1:c6:79:78:fd:29:3a:13:f1:16:23: b2:84:ab:32:71:51:8e:d7:27:d8:f8:16:98:53:c4:a9:03:cb: a8:10:e0:ae:bd:e4:49:39:8a:bf:1c:0e:a5:70:1b:d9:e1:e3: d2:9b:cb:e1:6a:0f:55:39:f0:0b:95:82:74:a9:45:d9:7a:83: dd:2e:4f:cb:9b:56:c5:99:8a:1a:47:f2:d0:27:08:86:24:af: f2:47:a7:c0:6a:e0:03:d5:8b:05:f8:dc:ba:30:97:08:7e:b3: 2a:5b:95:8a:96:09:be:cb:e3:c0:8e:1c:ab:d9:1a:9b:38:9c: ac:8f:54:1f:4c:f7:73:59:84:28:81:b5:39:99:0a:a6:cc:14: 97:94:23:36:28:c1:69:f5:42:a9:f7:8e:58:f8:00:6c:2a:35: 6d:b5:91:30:00:c3:dd:e7:a7:05:e5:d6:ad:68:42:69:5e:96: 0a:cc:50:bc:35:0b:c3:6d:a7:07:b8:b7:08:01:db:06:6b:ac: c1:36:c6:88:b5:31:af:7d:01:65:88:e0:6d:06:5c:d1:f6:a4: cf:2f:46:85 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQ0I2 MEI0MEE5OEFFQUUwNTRDQUVFNEMwOUNCN0Q5QUVBREUzRTlEMB4XDTI0MTEzMDAx MzIyM1oXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMjE4RDUxNUY0MjY0OUM1 RDk4RTZBMkVFQjVBQ0U4NzgwMzgwRDJBNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMxCaQiX9p8oybCkiKjVCc2M6N25mdrQbgizVGXDVfo7wqOEWhuJ 7AoMub2kR/32AlvkoRXvIJF6RZ5LDSEw1cXlaB7mY2TVw1/HLA7XzmaniFEj4TOQ 8JUETxJmYvW1sTbyBZxuziZzE40inCykmsLdrW2fsO2xKHZpM4XUr7mcWR9hQyi9 q38RJ9ka6qVIbS678DXX35Oqa7buQke4w2J7O+YiXY3onPeqN7vRrtazE4LRcFeG y49+Zv8ls+x3wgDP1dJfIv9Ioh7NvM24xo6FeArjIYXuY5UtgiBSUehUh+YxdFNR mVQQclijF1X7BmYNDv2a/3wz0LIu4yOimlUCAwEAAaOCAiswggInMB0GA1UdDgQW BBQhjVFfQmScXZjmou61rOh4A4DSpzAfBgNVHSMEGDAWgBQctgtAqYrq4FTK7kwJ y32a6t4+nTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAyOTEvSExZTFFLbUs2dUJVeXU1TUNjdDltdXJlUHAwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvSExZTFFLbUs2dUJVeXU1TUNjdDlt dXJlUHAwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMjkxL0lZMVJYMEprbkYyWTVxTHV0YXpvZUFPQTBxYy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkAKFA//8wDQYJKoZIhvcNAQELBQADggEBAA72AXO/YhVJqQXwdOtD 6VBWuoFebtLAMll0BVWzOEqhMjOU9LOBJPhtuy2hxnl4/Sk6E/EWI7KEqzJxUY7X J9j4FphTxKkDy6gQ4K695Ek5ir8cDqVwG9nh49Kby+FqD1U58AuVgnSpRdl6g90u T8ubVsWZihpH8tAnCIYkr/JHp8Bq4APViwX43Lowlwh+sypblYqWCb7L48COHKvZ Gps4nKyPVB9M93NZhCiBtTmZCqbMFJeUIzYowWn1Qqn3jlj4AGwqNW21kTAAw93n pwXl1q1oQmlelgrMULw1C8Ntpwe4twgB2wZrrME2xoi1Ma99AWWI4G0GXNH2pM8v RoU= -----END CERTIFICATE-----Generated at Sat Apr 5 17:39:51 2025 by rpki-client