$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30387/x4VdABS7pFP9deEBfDpatKzi64U.roa File: x4VdABS7pFP9deEBfDpatKzi64U.roa (raw, json) Hash identifier: xf4qjCkDwtxIDJmc4i2V/gV5JPAx4C00KqHRQT06/zM= Subject key identifier: C7:85:5D:00:14:BB:A4:53:FD:75:E1:01:7C:3A:5A:B4:AC:E2:EB:85 Certificate issuer: /CN=671784C2CB3B8487CA74726A65F4B447BE012C56 Certificate serial: 03 Authority key identifier: 67:17:84:C2:CB:3B:84:87:CA:74:72:6A:65:F4:B4:47:BE:01:2C:56 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZxeEwss7hIfKdHJqZfS0R74BLFY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30387/x4VdABS7pFP9deEBfDpatKzi64U.roa Signing time: Mon 17 Jun 2024 11:50:37 +0000 ROA not before: Mon 17 Jun 2024 11:50:37 +0000 ROA not after: Sun 15 Jun 2025 01:30:03 +0000 asID: 146969 IP address blocks: 2407:e540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30387/ZxeEwss7hIfKdHJqZfS0R74BLFY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30387/ZxeEwss7hIfKdHJqZfS0R74BLFY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZxeEwss7hIfKdHJqZfS0R74BLFY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=671784C2CB3B8487CA74726A65F4B447BE012C56 Validity Not Before: Jun 17 11:50:37 2024 GMT Not After : Jun 15 01:30:03 2025 GMT Subject: CN=C7855D0014BBA453FD75E1017C3A5AB4ACE2EB85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:39:bb:00:97:0e:b7:c1:81:25:5f:03:92:d8: de:bc:2d:73:12:cd:28:ad:9c:25:a6:8c:16:3c:eb: 84:98:26:c2:8b:6c:13:ca:05:ca:fa:1c:68:2d:9a: da:85:02:2b:f3:5b:9b:c8:cd:32:67:85:e9:48:53: 9d:b1:c4:5f:1d:1c:9b:f3:5c:af:ed:23:f4:24:9c: c6:c1:6e:2c:2b:15:65:d5:44:3f:98:85:23:69:cd: 1a:b0:43:11:96:27:1d:51:aa:5a:10:ec:03:d5:91: 59:63:a6:c3:c6:65:32:7d:b4:f9:09:f7:85:c4:c8: e3:70:7b:ba:c1:5a:38:8d:e6:fa:f0:38:60:47:e1: 3f:5c:5b:9d:aa:7f:04:51:96:48:79:ab:c5:9f:51: 21:a7:1c:d7:0a:96:73:0f:ff:05:53:74:d3:ca:6f: ff:26:89:81:e6:1d:e5:72:37:ec:97:e7:69:d4:1f: 41:9a:ad:d0:46:7f:d5:0e:8c:b1:33:a5:00:c7:c9: b6:53:40:cd:6c:f1:13:dd:40:11:15:61:88:7b:e0: 28:23:33:c6:f0:88:88:31:0f:e0:90:9e:38:cd:3a: 85:05:a9:9e:1d:47:c8:46:41:a6:b3:d3:ab:a6:d5: 29:c6:43:8b:a5:54:f6:d6:cf:f9:8c:12:b1:4d:18: d7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:85:5D:00:14:BB:A4:53:FD:75:E1:01:7C:3A:5A:B4:AC:E2:EB:85 X509v3 Authority Key Identifier: keyid:67:17:84:C2:CB:3B:84:87:CA:74:72:6A:65:F4:B4:47:BE:01:2C:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30387/ZxeEwss7hIfKdHJqZfS0R74BLFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZxeEwss7hIfKdHJqZfS0R74BLFY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30387/x4VdABS7pFP9deEBfDpatKzi64U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:e540::/32 Signature Algorithm: sha256WithRSAEncryption 1d:66:cf:4b:a3:54:39:df:65:0f:d8:77:6d:b7:55:2a:93:40: 17:c5:58:02:59:7b:12:be:8c:b6:3a:8e:e9:d3:c1:4d:af:5d: a9:61:95:54:13:35:62:7e:20:33:b3:50:5e:23:6b:b3:36:36: e9:e1:15:7b:9d:ba:ba:2e:94:81:78:73:4e:d9:26:7f:2b:59: f7:cb:7b:4c:01:23:6f:a8:d8:42:46:28:6a:6e:fa:ff:69:a5: 98:3c:7a:e6:8a:50:1f:9e:c4:9d:c0:d0:a2:bd:35:41:99:4b: 39:81:42:44:32:2d:2a:48:da:da:ef:25:b3:85:45:40:1f:b3: 44:90:35:dd:83:5b:69:55:94:c5:e4:b3:ee:4b:8e:f6:48:d6: 66:53:eb:9f:68:d3:39:13:f3:08:51:e9:b5:1b:70:83:25:87: 08:41:71:d5:8a:96:7b:a6:01:e1:51:e6:15:e5:ed:43:bb:47: c2:4c:9d:75:df:03:28:f7:2c:de:f7:85:0a:9e:a6:ad:b5:42: 21:d5:11:c9:2b:cf:97:e3:e0:1a:6f:8c:78:af:2a:27:79:db: 0a:2a:33:30:fd:93:96:04:7c:cc:71:db:70:31:94:65:5f:21: 6d:4d:93:7e:09:c3:a8:01:aa:19:0f:41:a9:bd:cb:71:75:c5: b6:16:34:89 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NzE3 ODRDMkNCM0I4NDg3Q0E3NDcyNkE2NUY0QjQ0N0JFMDEyQzU2MB4XDTI0MDYxNzEx NTAzN1oXDTI1MDYxNTAxMzAwM1owMzExMC8GA1UEAxMoQzc4NTVEMDAxNEJCQTQ1 M0ZENzVFMTAxN0MzQTVBQjRBQ0UyRUI4NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOM5uwCXDrfBgSVfA5LY3rwtcxLNKK2cJaaMFjzrhJgmwotsE8oF yvocaC2a2oUCK/Nbm8jNMmeF6UhTnbHEXx0cm/Ncr+0j9CScxsFuLCsVZdVEP5iF I2nNGrBDEZYnHVGqWhDsA9WRWWOmw8ZlMn20+Qn3hcTI43B7usFaOI3m+vA4YEfh P1xbnap/BFGWSHmrxZ9RIacc1wqWcw//BVN008pv/yaJgeYd5XI37JfnadQfQZqt 0EZ/1Q6MsTOlAMfJtlNAzWzxE91AERVhiHvgKCMzxvCIiDEP4JCeOM06hQWpnh1H yEZBprPTq6bVKcZDi6VU9tbP+YwSsU0Y1wcCAwEAAaOCAikwggIlMB0GA1UdDgQW BBTHhV0AFLukU/114QF8Olq0rOLrhTAfBgNVHSMEGDAWgBRnF4TCyzuEh8p0cmpl 9LRHvgEsVjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzODcvWnhlRXdzczdoSWZLZEhKcVpmUzBSNzRCTEZZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWnhlRXdzczdoSWZLZEhKcVpmUzBS NzRCTEZZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzg3L3g0VmRBQlM3cEZQOWRlRUJmRHBhdEt6aTY0VS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkB+VAMA0GCSqGSIb3DQEBCwUAA4IBAQAdZs9Lo1Q532UP2Hdtt1Uq k0AXxVgCWXsSvoy2Oo7p08FNr12pYZVUEzVifiAzs1BeI2uzNjbp4RV7nbq6LpSB eHNO2SZ/K1n3y3tMASNvqNhCRihqbvr/aaWYPHrmilAfnsSdwNCivTVBmUs5gUJE Mi0qSNra7yWzhUVAH7NEkDXdg1tpVZTF5LPuS472SNZmU+ufaNM5E/MIUem1G3CD JYcIQXHVipZ7pgHhUeYV5e1Du0fCTJ113wMo9yze94UKnqattUIh1RHJK8+X4+Aa b4x4ryonedsKKjMw/ZOWBHzMcdtwMZRlXyFtTZN+CcOoAaoZD0GpvctxdcW2FjSJ -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:04 2025 by rpki-client