$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30412/iuhQ_RekSxrD8vIcnCSrBzJTQWo.roa File: iuhQ_RekSxrD8vIcnCSrBzJTQWo.roa (raw, json) Hash identifier: T6PeX/6uVDQCZEGlR0Qa1JBugPMwN6wSVXw/9GR9cYM= Subject key identifier: 8A:E8:50:FD:17:A4:4B:1A:C3:F2:F2:1C:9C:24:AB:07:32:53:41:6A Certificate issuer: /CN=35AAA59851E392DF892E5CB7ABE6225165AEC897 Certificate serial: 1D Authority key identifier: 35:AA:A5:98:51:E3:92:DF:89:2E:5C:B7:AB:E6:22:51:65:AE:C8:97 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NaqlmFHjkt-JLly3q-YiUWWuyJc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30412/iuhQ_RekSxrD8vIcnCSrBzJTQWo.roa Signing time: Sat 30 Nov 2024 01:29:30 +0000 ROA not before: Sat 30 Nov 2024 01:29:30 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2915 IP address blocks: 2400:c320::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30412/NaqlmFHjkt-JLly3q-YiUWWuyJc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30412/NaqlmFHjkt-JLly3q-YiUWWuyJc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NaqlmFHjkt-JLly3q-YiUWWuyJc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35AAA59851E392DF892E5CB7ABE6225165AEC897 Validity Not Before: Nov 30 01:29:30 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=8AE850FD17A44B1AC3F2F21C9C24AB073253416A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c7:cd:72:56:30:e3:df:47:84:a6:b0:ff:5c: 8f:76:ac:c9:9d:ec:f2:68:50:7a:31:a8:44:8a:02: 38:eb:92:55:75:aa:30:61:fc:37:5f:5a:ae:56:17: 5a:00:7a:37:94:6e:d5:2b:c5:56:6d:5c:85:97:58: 61:0b:7b:73:3f:29:4a:10:e4:00:c3:df:54:47:6f: 17:5c:f5:50:c6:05:b0:60:da:a0:cc:9d:81:20:f8: 38:f8:dd:6c:c4:9f:78:4b:ce:04:ca:0e:cb:14:77: 75:1f:37:29:ac:cc:74:bd:1f:e2:7d:67:0c:55:29: 6b:3a:2b:1a:5e:37:bf:61:4e:10:1d:f2:93:05:d3: 09:16:3f:c3:19:67:9c:99:ba:be:34:e2:32:3c:76: fc:25:99:e6:0d:14:66:10:f5:64:e4:24:ba:6b:c0: 96:12:35:03:f8:ef:df:07:01:f4:42:0f:8f:eb:b2: 74:ba:ec:5f:13:b7:19:47:43:ec:49:4e:e8:27:c3: 40:e0:fb:7b:2d:7e:c0:8c:08:3f:2f:3f:13:fd:f3: 2c:06:ff:e5:81:6d:e5:f4:c9:b3:cb:94:71:27:a4: 66:a3:d4:29:74:39:0e:86:af:bf:1b:da:71:cd:a2: 0f:b6:ea:9c:88:f4:84:8e:bf:0d:60:31:83:44:b0: ec:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E8:50:FD:17:A4:4B:1A:C3:F2:F2:1C:9C:24:AB:07:32:53:41:6A X509v3 Authority Key Identifier: keyid:35:AA:A5:98:51:E3:92:DF:89:2E:5C:B7:AB:E6:22:51:65:AE:C8:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30412/NaqlmFHjkt-JLly3q-YiUWWuyJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NaqlmFHjkt-JLly3q-YiUWWuyJc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30412/iuhQ_RekSxrD8vIcnCSrBzJTQWo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:c320::/32 Signature Algorithm: sha256WithRSAEncryption 9c:f3:ec:69:88:d4:97:79:e0:1b:c0:60:4d:76:08:ee:38:2c: f2:9d:68:aa:cd:d0:60:b0:31:26:e6:9a:3d:e6:73:04:ac:da: fe:58:d1:4e:32:73:a2:c5:f5:68:73:06:43:83:41:a1:03:8a: 9f:0e:bb:c9:f1:f4:21:56:c3:92:88:f8:1e:e4:98:ca:1e:df: 67:14:71:9a:cf:23:4d:06:19:c6:f0:c4:5e:79:29:d4:7b:0a: af:1b:12:67:fc:70:f6:49:93:70:70:23:64:05:bc:78:d1:61: 1b:d2:1c:3c:ed:f4:26:df:b9:12:ae:d0:dd:25:9c:8d:3d:44: d6:48:36:6b:0b:9a:52:be:4f:1a:b5:a5:44:a7:a9:08:90:17: 1c:93:25:7a:d6:88:e3:e4:a3:9b:d5:71:17:6d:9f:62:30:21: 1c:9f:75:86:3d:f4:6f:3b:60:01:bf:32:98:44:28:b5:42:9a: 8d:d9:7a:41:35:ef:41:07:b0:d6:22:62:2f:3d:10:75:9e:4f: d8:33:86:99:0f:ee:32:dc:4f:df:d1:7f:60:01:6d:3f:97:87: 24:cc:62:c8:3b:34:55:29:a7:67:4a:d2:9f:92:a1:c0:8f:30: 86:d6:e4:7f:d6:a0:27:59:b1:13:f5:ab:2a:f0:6a:69:f7:21: 85:d4:37:5f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNUFB QTU5ODUxRTM5MkRGODkyRTVDQjdBQkU2MjI1MTY1QUVDODk3MB4XDTI0MTEzMDAx MjkzMFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoOEFFODUwRkQxN0E0NEIx QUMzRjJGMjFDOUMyNEFCMDczMjUzNDE2QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMTHzXJWMOPfR4SmsP9cj3asyZ3s8mhQejGoRIoCOOuSVXWqMGH8 N19arlYXWgB6N5Ru1SvFVm1chZdYYQt7cz8pShDkAMPfVEdvF1z1UMYFsGDaoMyd gSD4OPjdbMSfeEvOBMoOyxR3dR83KazMdL0f4n1nDFUpazorGl43v2FOEB3ykwXT CRY/wxlnnJm6vjTiMjx2/CWZ5g0UZhD1ZOQkumvAlhI1A/jv3wcB9EIPj+uydLrs XxO3GUdD7ElO6CfDQOD7ey1+wIwIPy8/E/3zLAb/5YFt5fTJs8uUcSekZqPUKXQ5 Doavvxvacc2iD7bqnIj0hI6/DWAxg0Sw7E8CAwEAAaOCAikwggIlMB0GA1UdDgQW BBSK6FD9F6RLGsPy8hycJKsHMlNBajAfBgNVHSMEGDAWgBQ1qqWYUeOS34kuXLer 5iJRZa7IlzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MTIvTmFxbG1GSGprdC1KTGx5M3EtWWlVV1d1eUpjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTmFxbG1GSGprdC1KTGx5M3EtWWlV V1d1eUpjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDEyL2l1aFFfUmVrU3hyRDh2SWNuQ1NyQnpKVFFXby5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAMMgMA0GCSqGSIb3DQEBCwUAA4IBAQCc8+xpiNSXeeAbwGBNdgju OCzynWiqzdBgsDEm5po95nMErNr+WNFOMnOixfVocwZDg0GhA4qfDrvJ8fQhVsOS iPge5JjKHt9nFHGazyNNBhnG8MReeSnUewqvGxJn/HD2SZNwcCNkBbx40WEb0hw8 7fQm37kSrtDdJZyNPUTWSDZrC5pSvk8ataVEp6kIkBcckyV61ojj5KOb1XEXbZ9i MCEcn3WGPfRvO2ABvzKYRCi1QpqN2XpBNe9BB7DWImIvPRB1nk/YM4aZD+4y3E/f 0X9gAW0/l4ckzGLIOzRVKadnStKfkqHAjzCG1uR/1qAnWbET9asq8Gpp9yGF1Ddf -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:47 2025 by rpki-client