$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30423/h3OQC2Ew8cEkVNVc-APlHFMSlLE.roa File: h3OQC2Ew8cEkVNVc-APlHFMSlLE.roa (raw, json) Hash identifier: 4EIseoNqmWB2Uzqfytxr2kQsVNfr0mwubqEmwJnLCnk= Subject key identifier: 87:73:90:0B:61:30:F1:C1:24:54:D5:5C:F8:03:E5:1C:53:12:94:B1 Certificate issuer: /CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Certificate serial: 2B Authority key identifier: B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/h3OQC2Ew8cEkVNVc-APlHFMSlLE.roa Signing time: Sat 14 Dec 2024 07:17:42 +0000 ROA not before: Sat 14 Dec 2024 07:17:42 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 59098 IP address blocks: 2401:d20:b000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Validity Not Before: Dec 14 07:17:42 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=8773900B6130F1C12454D55CF803E51C531294B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:77:3b:cd:12:d5:6d:4e:cd:a9:d4:f9:ba:8a: 61:9d:e6:55:04:ea:5b:4f:22:d4:3b:b5:19:d3:8a: aa:8f:80:42:61:11:3f:81:58:12:02:bb:11:48:89: b3:e4:a3:37:4f:1b:ea:af:56:7a:fe:c3:f7:e7:84: a0:28:7e:86:03:09:f8:c7:49:1d:b5:03:df:57:71: 29:89:92:94:d0:b9:f6:5b:64:1c:67:10:b4:08:32: 08:0b:9d:b9:fa:dd:c4:eb:57:28:db:46:24:c3:3b: 66:c5:50:03:45:1e:00:a3:d1:b0:5e:93:64:12:e7: e3:7d:f0:a4:2f:c9:86:6c:e7:c4:70:42:0e:56:91: 6d:80:97:7a:a3:5c:77:91:0e:bc:8a:dd:32:11:d8: a8:69:d0:b8:bb:f3:64:bc:1c:5e:5d:d7:f9:99:d8: 18:b1:21:55:4c:bf:1f:56:a0:c8:6f:a2:e8:27:29: b2:d8:08:42:b2:89:3d:8e:41:17:c6:37:d5:15:d9: 9b:45:50:88:8e:03:73:93:e2:2f:8a:69:99:ff:1a: dc:f5:fe:23:0b:32:f1:79:a5:d2:e9:14:d1:35:a1: 15:6e:b0:53:d4:a4:17:6a:61:4e:12:fd:f5:f3:43: 7d:ec:9b:00:90:58:b5:82:a6:71:81:69:1a:94:18: 22:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:73:90:0B:61:30:F1:C1:24:54:D5:5C:F8:03:E5:1C:53:12:94:B1 X509v3 Authority Key Identifier: keyid:B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/h3OQC2Ew8cEkVNVc-APlHFMSlLE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d20:b000::/36 Signature Algorithm: sha256WithRSAEncryption 96:bf:20:1b:77:65:bc:2d:bd:ba:a2:1a:f5:04:a0:07:01:a2: 99:8d:e0:ba:a2:41:9b:a5:42:3a:af:65:f6:34:06:91:f8:30: 7a:03:07:e1:b7:eb:8d:2d:ed:f0:fa:32:80:6c:df:36:c6:ae: d6:a8:ec:1f:e6:af:f4:c2:e1:9e:0b:14:71:cd:c8:74:27:24: 5b:d2:48:bb:30:08:48:3f:e8:d4:54:1b:1d:e5:c6:5e:87:99: 02:17:a8:6e:41:2d:4d:d4:a8:54:0a:51:ed:16:4f:3b:9d:78: cd:d0:c8:d1:e5:d8:13:fe:7b:61:7e:eb:bf:d2:e1:f6:c7:e9: 00:d6:4b:ad:ac:c0:01:aa:55:ac:05:b6:c6:88:03:f7:4e:7a: 98:6b:0e:2c:30:f2:07:5c:02:c7:27:73:f1:ea:c0:0c:85:12: 75:c5:8a:27:e8:aa:30:48:b8:6d:5f:c2:1a:0c:f5:95:53:98: cb:ed:38:88:ff:9b:0e:3f:ad:dd:d5:44:f6:3d:17:b7:a4:41: 40:be:2a:99:52:2c:a5:84:28:92:44:c5:ff:01:e5:1e:e0:02: e9:28:5b:19:9b:ed:da:70:5b:9d:a6:af:d2:23:79:3e:46:b3: 6d:83:82:5e:86:7d:4d:5a:7f:5a:4d:63:e2:0f:a9:e6:0d:03: 3b:30:2d:36 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIBKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTEw QkQ5NDM3OTY3QzdBRkREMzc0RTFFQTZFQkVEN0ZBNkY5NkI1MB4XDTI0MTIxNDA3 MTc0MloXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoODc3MzkwMEI2MTMwRjFD MTI0NTRENTVDRjgwM0U1MUM1MzEyOTRCMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANp3O80S1W1OzanU+bqKYZ3mVQTqW08i1Du1GdOKqo+AQmERP4FY EgK7EUiJs+SjN08b6q9Wev7D9+eEoCh+hgMJ+MdJHbUD31dxKYmSlNC59ltkHGcQ tAgyCAudufrdxOtXKNtGJMM7ZsVQA0UeAKPRsF6TZBLn433wpC/JhmznxHBCDlaR bYCXeqNcd5EOvIrdMhHYqGnQuLvzZLwcXl3X+ZnYGLEhVUy/H1agyG+i6CcpstgI QrKJPY5BF8Y31RXZm0VQiI4Dc5PiL4ppmf8a3PX+Iwsy8Xml0ukU0TWhFW6wU9Sk F2phThL99fNDfeybAJBYtYKmcYFpGpQYIuMCAwEAAaOCAiowggImMB0GA1UdDgQW BBSHc5ALYTDxwSRU1Vz4A+UcUxKUsTAfBgNVHSMEGDAWgBS5EL2UN5Z8ev3TdOHq br7X+m+WtTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MjMvdVJDOWxEZVdmSHI5MDNUaDZtNi0xX3B2bHJVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdVJDOWxEZVdmSHI5MDNUaDZtNi0x X3B2bHJVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDIzL2gzT1FDMkV3OGNFa1ZOVmMtQVBsSEZNU2xMRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQkAQ0gsDANBgkqhkiG9w0BAQsFAAOCAQEAlr8gG3dlvC29uqIa9QSg BwGimY3guqJBm6VCOq9l9jQGkfgwegMH4bfrjS3t8PoygGzfNsau1qjsH+av9MLh ngsUcc3IdCckW9JIuzAISD/o1FQbHeXGXoeZAheobkEtTdSoVApR7RZPO514zdDI 0eXYE/57YX7rv9Lh9sfpANZLrazAAapVrAW2xogD9056mGsOLDDyB1wCxydz8erA DIUSdcWKJ+iqMEi4bV/CGgz1lVOYy+04iP+bDj+t3dVE9j0Xt6RBQL4qmVIspYQo kkTF/wHlHuAC6ShbGZvt2nBbnaav0iN5PkazbYOCXoZ9TVp/Wk1j4g+p5g0DOzAt Ng== -----END CERTIFICATE-----Generated at Sun Apr 6 05:43:43 2025 by rpki-client