$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30423/He7arKJdZs7Wp_t0v9T7KEUr4bI.roa File: He7arKJdZs7Wp_t0v9T7KEUr4bI.roa (raw, json) Hash identifier: sp+7rxu1QHOVlR4lJDtJnRKVMPaA8aLjGJoV0JsVpFs= Subject key identifier: 1D:EE:DA:AC:A2:5D:66:CE:D6:A7:FB:74:BF:D4:FB:28:45:2B:E1:B2 Certificate issuer: /CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Certificate serial: 2D Authority key identifier: B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/He7arKJdZs7Wp_t0v9T7KEUr4bI.roa Signing time: Sat 14 Dec 2024 07:17:45 +0000 ROA not before: Sat 14 Dec 2024 07:17:45 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 59098 IP address blocks: 2401:d20:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Validity Not Before: Dec 14 07:17:45 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=1DEEDAACA25D66CED6A7FB74BFD4FB28452BE1B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2c:23:41:17:5e:6c:fb:75:50:db:b2:bb:58: fa:61:1f:92:3d:5f:b4:7b:7d:37:de:f5:d7:9b:e9: 23:95:db:d7:b0:c8:ac:d2:ac:a4:73:50:fb:9e:57: c0:88:21:fd:13:9c:25:6c:80:b4:a1:36:64:7c:aa: 68:66:93:4d:e5:44:1b:b3:bc:95:63:62:78:9f:08: 13:af:37:13:2d:8f:ce:2f:ba:f2:c1:b3:7c:aa:a3: 75:6b:0f:03:82:96:64:bb:62:33:24:1f:bc:9c:68: d8:ce:6a:1c:81:ec:f2:af:05:09:fc:98:a6:70:2b: aa:bb:2a:92:ae:7a:5d:ec:04:92:da:ef:4e:da:45: fd:9d:86:03:45:93:5f:56:e5:aa:7a:d7:d9:b6:f7: 7d:9b:96:be:f5:7c:3c:df:3c:78:d6:0e:7e:f8:b4: 29:cd:9d:c3:9c:4e:9d:f5:3d:d7:ba:63:e6:de:ba: 07:7c:63:d5:7d:f5:ee:2d:29:37:e3:32:d8:28:3b: 84:cd:af:8e:70:69:ee:82:ea:94:37:7f:70:d4:b3: 93:6e:ca:5f:7d:34:48:80:88:47:03:bf:b9:8f:60: 2e:b2:b8:67:02:cc:0b:6b:e6:d5:6e:83:75:0a:32: c4:5b:84:1a:f9:d1:8a:6a:38:3b:af:9d:41:96:0b: ff:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:EE:DA:AC:A2:5D:66:CE:D6:A7:FB:74:BF:D4:FB:28:45:2B:E1:B2 X509v3 Authority Key Identifier: keyid:B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/He7arKJdZs7Wp_t0v9T7KEUr4bI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d20:b::/48 Signature Algorithm: sha256WithRSAEncryption 97:bd:5d:42:f4:e1:e0:c5:fe:e3:dd:b6:8f:b6:fd:0e:e2:b5: 55:17:99:42:4b:b5:ae:39:b1:62:59:1b:00:06:b2:1f:d8:d3: e6:3a:6a:72:fe:dc:79:14:4c:71:bc:4b:a6:21:52:3f:f9:ef: 99:d1:47:f1:66:3e:62:da:bc:83:45:a1:f5:4f:07:a5:cd:f0: 88:eb:ff:56:dc:e3:c0:5f:45:eb:f0:f3:56:84:96:f9:0e:28: 0c:1d:62:03:65:ac:20:37:b6:98:af:dd:34:c9:ec:b2:e0:98: 12:14:64:fa:cb:67:9c:53:fd:75:1b:64:45:1f:c9:15:9b:57: 79:b5:f5:95:0a:db:30:5a:29:01:00:c7:30:c7:e2:27:ed:1b: d2:03:e9:37:e1:c2:26:00:93:22:90:fe:7b:ef:b9:f7:7e:96: 02:4e:f1:bc:da:f2:57:d9:76:4b:73:36:11:b8:c3:2a:48:33: 70:55:70:47:b2:a7:56:15:1f:4a:06:73:c0:62:d5:28:ff:2e: 7b:77:be:a8:c9:8e:cd:4d:23:d3:47:ce:21:26:64:0b:bb:03: 3c:ae:8f:25:00:05:e7:9b:b4:9f:e9:c1:05:ee:43:21:01:8f: 69:73:c4:6e:c3:fc:7f:1c:50:d8:38:f0:94:87:31:da:3a:ef: 60:e9:5a:62 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTEw QkQ5NDM3OTY3QzdBRkREMzc0RTFFQTZFQkVEN0ZBNkY5NkI1MB4XDTI0MTIxNDA3 MTc0NVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMURFRURBQUNBMjVENjZD RUQ2QTdGQjc0QkZENEZCMjg0NTJCRTFCMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL8sI0EXXmz7dVDbsrtY+mEfkj1ftHt9N97115vpI5Xb17DIrNKs pHNQ+55XwIgh/ROcJWyAtKE2ZHyqaGaTTeVEG7O8lWNieJ8IE683Ey2Pzi+68sGz fKqjdWsPA4KWZLtiMyQfvJxo2M5qHIHs8q8FCfyYpnArqrsqkq56XewEktrvTtpF /Z2GA0WTX1blqnrX2bb3fZuWvvV8PN88eNYOfvi0Kc2dw5xOnfU917pj5t66B3xj 1X317i0pN+My2Cg7hM2vjnBp7oLqlDd/cNSzk27KX300SICIRwO/uY9gLrK4ZwLM C2vm1W6DdQoyxFuEGvnRimo4O6+dQZYL/7ECAwEAAaOCAiswggInMB0GA1UdDgQW BBQd7tqsol1mztan+3S/1PsoRSvhsjAfBgNVHSMEGDAWgBS5EL2UN5Z8ev3TdOHq br7X+m+WtTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MjMvdVJDOWxEZVdmSHI5MDNUaDZtNi0xX3B2bHJVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdVJDOWxEZVdmSHI5MDNUaDZtNi0x X3B2bHJVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDIzL0hlN2FyS0pkWnM3V3BfdDB2OVQ3S0VVcjRiSS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkAQ0gAAswDQYJKoZIhvcNAQELBQADggEBAJe9XUL04eDF/uPdto+2 /Q7itVUXmUJLta45sWJZGwAGsh/Y0+Y6anL+3HkUTHG8S6YhUj/575nRR/FmPmLa vINFofVPB6XN8Ijr/1bc48BfRevw81aElvkOKAwdYgNlrCA3tpiv3TTJ7LLgmBIU ZPrLZ5xT/XUbZEUfyRWbV3m19ZUK2zBaKQEAxzDH4iftG9ID6TfhwiYAkyKQ/nvv ufd+lgJO8bza8lfZdktzNhG4wypIM3BVcEeyp1YVH0oGc8Bi1Sj/Lnt3vqjJjs1N I9NHziEmZAu7AzyujyUABeebtJ/pwQXuQyEBj2lzxG7D/H8cUNg48JSHMdo672Dp WmI= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:25 2025 by rpki-client