$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30423/I7uKk0qqbICpA8GwLZs_DIwSmeQ.roa File: I7uKk0qqbICpA8GwLZs_DIwSmeQ.roa (raw, json) Hash identifier: BoNbWvt2FSHGHXFgSMvvCGedtH+WRrd12cV3A2rm/Ok= Subject key identifier: 23:BB:8A:93:4A:AA:6C:80:A9:03:C1:B0:2D:9B:3F:0C:8C:12:99:E4 Certificate issuer: /CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Certificate serial: 31 Authority key identifier: B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/I7uKk0qqbICpA8GwLZs_DIwSmeQ.roa Signing time: Sun 29 Dec 2024 09:50:16 +0000 ROA not before: Sun 29 Dec 2024 09:50:16 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 31898 IP address blocks: 2401:d20:1b00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Validity Not Before: Dec 29 09:50:16 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=23BB8A934AAA6C80A903C1B02D9B3F0C8C1299E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9f:fb:54:34:28:62:19:ee:de:3c:42:c0:5d: ac:84:4f:83:25:d5:b6:83:af:67:71:7f:0b:d3:e4: 27:0d:94:a2:9e:61:8a:31:85:67:ba:e2:c2:61:5d: 10:8b:4f:2f:84:eb:99:94:3e:ae:63:4f:56:0f:d5: 7c:dd:24:dd:6f:3f:17:bf:f6:9d:51:f9:cc:4c:ee: 9f:99:40:17:15:3b:6f:07:29:31:26:c8:f6:24:22: be:07:b7:8c:db:a8:59:96:21:97:a9:3d:04:8f:69: 02:79:70:9d:76:c2:4a:b2:6b:04:08:65:34:04:28: 35:46:9b:3e:48:29:d4:26:5a:04:60:36:56:91:fd: 2f:a1:d7:ad:c4:1b:79:25:47:b4:2a:44:35:5c:0d: 41:52:69:af:bc:37:f6:12:8a:93:a5:e0:75:7e:d5: 13:fe:19:48:5a:ae:19:92:8a:06:4d:10:76:58:47: 99:c7:9f:a2:b5:af:cc:6f:b9:bd:6b:d8:ee:7c:62: 8a:e2:dd:df:38:a7:92:66:99:61:52:57:05:1f:a6: 4c:23:d2:23:f0:1b:36:3e:a5:29:69:bc:bf:4a:41: ce:80:fd:bd:da:bc:93:97:05:f8:70:95:97:4c:3c: 72:ef:aa:d5:ac:72:92:8b:77:64:9a:36:86:35:4a: b6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BB:8A:93:4A:AA:6C:80:A9:03:C1:B0:2D:9B:3F:0C:8C:12:99:E4 X509v3 Authority Key Identifier: keyid:B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/I7uKk0qqbICpA8GwLZs_DIwSmeQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d20:1b00::/40 Signature Algorithm: sha256WithRSAEncryption a6:44:36:a8:8d:f8:d5:91:70:6d:32:58:e7:86:c2:6e:5a:14: 36:2c:b2:bf:d9:e0:2a:b8:00:8c:08:a7:6d:41:d1:51:a6:87: 62:cd:36:45:55:d6:f3:ad:fa:0b:c8:44:36:a5:8c:49:4a:68: 3d:8b:1d:33:bf:b9:80:ab:0f:04:f0:e4:84:91:c8:7d:1b:0f: 55:d0:e2:89:24:65:9e:99:a9:6c:e5:a4:de:a2:c3:00:02:66: 58:b3:ad:ef:b6:e9:aa:34:ca:66:38:3c:cc:fe:a7:b1:ec:0c: 3c:7e:68:5c:82:10:09:2f:38:2b:0b:3e:54:56:5c:ed:a6:b2: cd:0c:3c:f1:17:5e:d1:86:51:5e:4e:e3:df:85:ce:ff:c3:03: f4:49:49:25:f4:8a:16:55:9c:3c:ed:55:50:72:f9:9d:11:3d: f3:92:19:bb:6a:35:df:fd:fd:6d:27:eb:d0:6f:64:1a:c2:4f: c0:e8:dc:77:81:ac:1f:94:d9:a1:a2:85:c1:41:08:bd:0d:49: 0a:30:2e:6a:57:d7:84:c3:46:4b:35:12:88:c2:91:7b:b7:c2: 41:ca:0f:f6:cd:f4:21:90:9a:09:c3:15:3a:36:c4:51:20:2c: ba:5a:c9:77:ac:f1:3c:b4:87:ec:c1:11:ff:4d:70:3d:49:66: 7d:cc:13:8c -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIBMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTEw QkQ5NDM3OTY3QzdBRkREMzc0RTFFQTZFQkVEN0ZBNkY5NkI1MB4XDTI0MTIyOTA5 NTAxNloXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoMjNCQjhBOTM0QUFBNkM4 MEE5MDNDMUIwMkQ5QjNGMEM4QzEyOTlFNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKyf+1Q0KGIZ7t48QsBdrIRPgyXVtoOvZ3F/C9PkJw2Uop5hijGF Z7riwmFdEItPL4TrmZQ+rmNPVg/VfN0k3W8/F7/2nVH5zEzun5lAFxU7bwcpMSbI 9iQivge3jNuoWZYhl6k9BI9pAnlwnXbCSrJrBAhlNAQoNUabPkgp1CZaBGA2VpH9 L6HXrcQbeSVHtCpENVwNQVJpr7w39hKKk6XgdX7VE/4ZSFquGZKKBk0QdlhHmcef orWvzG+5vWvY7nxiiuLd3zinkmaZYVJXBR+mTCPSI/AbNj6lKWm8v0pBzoD9vdq8 k5cF+HCVl0w8cu+q1axykot3ZJo2hjVKti0CAwEAAaOCAiowggImMB0GA1UdDgQW BBQju4qTSqpsgKkDwbAtmz8MjBKZ5DAfBgNVHSMEGDAWgBS5EL2UN5Z8ev3TdOHq br7X+m+WtTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MjMvdVJDOWxEZVdmSHI5MDNUaDZtNi0xX3B2bHJVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdVJDOWxEZVdmSHI5MDNUaDZtNi0x X3B2bHJVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDIzL0k3dUtrMHFxYklDcEE4R3dMWnNfREl3U21lUS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAkAQ0gGzANBgkqhkiG9w0BAQsFAAOCAQEApkQ2qI341ZFwbTJY54bC bloUNiyyv9ngKrgAjAinbUHRUaaHYs02RVXW8636C8hENqWMSUpoPYsdM7+5gKsP BPDkhJHIfRsPVdDiiSRlnpmpbOWk3qLDAAJmWLOt77bpqjTKZjg8zP6nsewMPH5o XIIQCS84Kws+VFZc7aayzQw88Rde0YZRXk7j34XO/8MD9ElJJfSKFlWcPO1VUHL5 nRE985IZu2o13/39bSfr0G9kGsJPwOjcd4GsH5TZoaKFwUEIvQ1JCjAualfXhMNG SzUSiMKRe7fCQcoP9s30IZCaCcMVOjbEUSAsulrJd6zxPLSH7MER/01wPUlmfcwT jA== -----END CERTIFICATE-----Generated at Sat Apr 5 19:56:14 2025 by rpki-client