$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30322/9kO-DXEDBlnL19Py6ZLoEUnkKhQ.roa File: 9kO-DXEDBlnL19Py6ZLoEUnkKhQ.roa (raw, json) Hash identifier: 8xe320sX11bsj4xqg1CzFz3363991ug2gtKXFrl43TU= Subject key identifier: F6:43:BE:0D:71:03:06:59:CB:D7:D3:F2:E9:92:E8:11:49:E4:2A:14 Certificate issuer: /CN=E730FF02D763BBAA54870773BA15B0DF355BA587 Certificate serial: 10 Authority key identifier: E7:30:FF:02:D7:63:BB:AA:54:87:07:73:BA:15:B0:DF:35:5B:A5:87 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5zD_Atdju6pUhwdzuhWw3zVbpYc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30322/9kO-DXEDBlnL19Py6ZLoEUnkKhQ.roa Signing time: Thu 18 Jul 2024 02:10:58 +0000 ROA not before: Thu 18 Jul 2024 02:10:58 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 24259 IP address blocks: 2402:b9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30322/5zD_Atdju6pUhwdzuhWw3zVbpYc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30322/5zD_Atdju6pUhwdzuhWw3zVbpYc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5zD_Atdju6pUhwdzuhWw3zVbpYc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E730FF02D763BBAA54870773BA15B0DF355BA587 Validity Not Before: Jul 18 02:10:58 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=F643BE0D71030659CBD7D3F2E992E81149E42A14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:e8:b8:fb:d6:8b:83:db:1c:4c:2d:0c:24: a2:d2:b5:90:c8:fd:11:de:57:60:96:c1:26:ce:05: 26:d7:19:b3:15:7b:62:57:0c:c2:08:e8:fd:05:46: a5:0c:bc:c5:0f:2b:2c:cd:a4:fc:5f:66:8a:0a:10: 0b:0a:40:5d:20:49:08:b9:f8:d3:0d:d2:94:11:14: 45:49:e6:fb:81:ba:bd:11:a6:bb:a3:5e:cc:b0:2d: 4f:be:5c:87:3e:05:3d:d7:cc:a9:6b:66:3d:07:e3: 68:d8:76:5b:4d:d4:49:1b:2e:b2:32:d5:29:d2:e8: 32:9c:a4:a9:e9:f7:3c:72:e4:28:25:53:b0:b3:09: 08:b1:e4:e0:a3:a3:0d:e8:46:96:43:40:f5:3d:8d: b8:c2:f7:07:a1:b2:7c:be:c4:e3:c0:e9:b6:26:91: b6:b0:5b:fa:0b:4a:a3:7b:6b:82:ee:7e:39:af:85: 54:20:b9:8e:48:55:d0:be:5b:a7:68:4e:16:e4:e1: fd:43:56:94:f2:be:59:c6:52:3b:65:44:42:d8:dc: 65:25:d2:f8:24:ba:e8:62:d0:c3:94:bd:c1:19:fd: 58:4e:ce:37:05:3a:a3:de:a4:90:9a:e2:7b:ac:7a: 97:22:6c:db:f8:cc:eb:77:d4:59:8f:5b:ed:6b:ef: 26:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:43:BE:0D:71:03:06:59:CB:D7:D3:F2:E9:92:E8:11:49:E4:2A:14 X509v3 Authority Key Identifier: keyid:E7:30:FF:02:D7:63:BB:AA:54:87:07:73:BA:15:B0:DF:35:5B:A5:87 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30322/5zD_Atdju6pUhwdzuhWw3zVbpYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5zD_Atdju6pUhwdzuhWw3zVbpYc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30322/9kO-DXEDBlnL19Py6ZLoEUnkKhQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:b9c0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:5c:70:f7:da:52:d4:1f:3f:64:62:ca:90:b0:9b:49:d9:b6: f1:33:ba:3b:4b:39:9f:50:ec:33:7a:e3:0b:85:62:72:8f:62: fb:31:18:ac:af:82:be:12:d5:e7:4d:1b:21:b1:c0:60:41:da: 1a:5e:a1:cb:17:9e:07:cf:6b:ca:34:dd:48:73:47:ac:28:d4: 5e:ae:c4:37:b7:cc:8f:c2:01:60:38:46:02:1e:56:87:e2:c4: 1d:a7:c8:b2:2d:2e:56:27:f6:b2:44:03:16:06:8d:a1:9a:b2: bf:b4:4f:64:74:6f:99:39:eb:ed:2d:96:3c:9a:d5:db:fd:dc: e7:56:62:19:39:65:7f:91:8f:b8:15:a3:aa:f6:c8:2a:60:e6: 78:db:fc:56:a4:eb:48:1a:6c:20:34:ed:48:ac:6a:f2:4b:d6: 34:5b:85:78:85:69:cd:ab:e1:53:1f:85:8d:e7:59:28:28:bf: c2:97:e1:c6:45:57:ca:0c:bb:43:19:5b:d7:c2:0d:18:64:91: c0:0e:ff:24:b5:07:19:13:5f:97:14:3c:7e:25:52:67:bd:b0: 7b:9b:9e:69:38:10:ac:7c:a5:4c:6c:4b:96:d3:cd:ff:44:5f: 90:53:3d:b8:5c:f4:ca:d1:4c:34:10:a3:c4:76:ea:54:3f:14: 9c:a8:40:9b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNzMw RkYwMkQ3NjNCQkFBNTQ4NzA3NzNCQTE1QjBERjM1NUJBNTg3MB4XDTI0MDcxODAy MTA1OFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoRjY0M0JFMEQ3MTAzMDY1 OUNCRDdEM0YyRTk5MkU4MTE0OUU0MkExNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMoL6Lj71ouD2xxMLQwkotK1kMj9Ed5XYJbBJs4FJtcZsxV7YlcM wgjo/QVGpQy8xQ8rLM2k/F9migoQCwpAXSBJCLn40w3SlBEURUnm+4G6vRGmu6Ne zLAtT75chz4FPdfMqWtmPQfjaNh2W03USRsusjLVKdLoMpykqen3PHLkKCVTsLMJ CLHk4KOjDehGlkNA9T2NuML3B6GyfL7E48DptiaRtrBb+gtKo3trgu5+Oa+FVCC5 jkhV0L5bp2hOFuTh/UNWlPK+WcZSO2VEQtjcZSXS+CS66GLQw5S9wRn9WE7ONwU6 o96kkJrie6x6lyJs2/jM63fUWY9b7WvvJn0CAwEAAaOCAikwggIlMB0GA1UdDgQW BBT2Q74NcQMGWcvX0/LpkugRSeQqFDAfBgNVHSMEGDAWgBTnMP8C12O7qlSHB3O6 FbDfNVulhzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzMjIvNXpEX0F0ZGp1NnBVaHdkenVoV3czelZicFljLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvNXpEX0F0ZGp1NnBVaHdkenVoV3cz elZicFljLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzIyLzlrTy1EWEVEQmxuTDE5UHk2WkxvRVVua0toUS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkArnAMA0GCSqGSIb3DQEBCwUAA4IBAQAOXHD32lLUHz9kYsqQsJtJ 2bbxM7o7SzmfUOwzeuMLhWJyj2L7MRisr4K+EtXnTRshscBgQdoaXqHLF54Hz2vK NN1Ic0esKNRersQ3t8yPwgFgOEYCHlaH4sQdp8iyLS5WJ/ayRAMWBo2hmrK/tE9k dG+ZOevtLZY8mtXb/dznVmIZOWV/kY+4FaOq9sgqYOZ42/xWpOtIGmwgNO1IrGry S9Y0W4V4hWnNq+FTH4WN51koKL/Cl+HGRVfKDLtDGVvXwg0YZJHADv8ktQcZE1+X FDx+JVJnvbB7m55pOBCsfKVMbEuW083/RF+QUz24XPTK0Uw0EKPEdupUPxScqECb -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:35 2025 by rpki-client