$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30423/mXo--iDnaCoRrRa33vpMPMVb348.roa File: mXo--iDnaCoRrRa33vpMPMVb348.roa (raw, json) Hash identifier: pCmpP/Um5YZQ3Jx5A+9jwXHwqMn7WbLW4xSYECkPPJI= Subject key identifier: 99:7A:3E:FA:20:E7:68:2A:11:AD:16:B7:DE:FA:4C:3C:C5:5B:DF:8F Certificate issuer: /CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Certificate serial: 1E Authority key identifier: B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/mXo--iDnaCoRrRa33vpMPMVb348.roa Signing time: Sun 26 May 2024 07:32:58 +0000 ROA not before: Sun 26 May 2024 07:32:58 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 151382 IP address blocks: 2401:d20:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Jun 2024 06:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Validity Not Before: May 26 07:32:58 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=997A3EFA20E7682A11AD16B7DEFA4C3CC55BDF8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a2:47:8a:8c:b3:f0:5d:73:61:91:93:56:0e: bf:06:4b:4c:70:e2:99:48:12:2e:17:4d:81:04:d4: 71:7b:fc:b1:5d:7d:c6:9a:a5:43:04:d7:4d:bf:69: 3f:52:a9:f7:8e:f2:4a:78:f7:fe:90:7a:46:22:1e: ed:00:88:fc:6d:51:2f:5f:54:37:0c:09:a4:c7:56: 04:bc:e3:35:83:91:fd:a1:87:3c:e9:e8:e3:53:ac: b0:40:4f:6b:05:f7:c6:2d:63:09:e2:8b:45:03:25: 0f:5c:ed:e3:62:1c:43:35:30:f2:58:3e:cf:90:cc: 2c:84:99:b9:78:34:db:e4:ad:9a:5e:d1:23:22:e0: c9:ea:03:41:6e:89:37:8b:72:4f:dc:cb:44:8d:24: ca:ff:c7:6d:e8:11:20:ba:f6:0c:b0:19:76:00:99: 3a:31:82:7b:b0:fd:f5:e1:df:68:ee:29:ae:3b:94: 04:e3:66:5c:74:9c:79:0f:05:aa:fd:25:2a:c0:ce: 84:75:9d:a7:16:1b:a0:4b:1b:8d:8b:39:cc:9e:2c: 80:0d:a1:98:f9:e3:14:82:73:37:35:18:00:e3:f2: 30:69:69:18:71:87:0e:42:71:9f:34:c4:c5:7b:0c: 2b:1f:8a:0f:cc:f7:4e:39:04:c2:aa:ca:10:1e:f2: b9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:7A:3E:FA:20:E7:68:2A:11:AD:16:B7:DE:FA:4C:3C:C5:5B:DF:8F X509v3 Authority Key Identifier: keyid:B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/mXo--iDnaCoRrRa33vpMPMVb348.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d20:a::/48 Signature Algorithm: sha256WithRSAEncryption b8:c4:f0:e1:70:a4:ff:34:20:a5:63:c4:15:9e:80:ab:6c:f4: 26:94:a6:70:c1:e4:82:62:99:b4:93:ea:d7:18:9a:16:7b:31: 89:3a:95:e4:97:84:ff:d9:1c:7a:13:fc:dc:bc:4b:41:a6:50: d1:e0:84:08:d5:2b:93:77:cc:4a:7a:19:85:9a:08:61:cd:38: dc:b0:91:98:b3:a8:e0:19:da:8a:cc:59:93:07:30:06:2a:67: 8b:0c:7a:6d:aa:f0:da:76:34:69:c6:0c:71:50:db:1c:9e:91: d9:d0:ee:87:83:81:04:61:3d:6c:ed:78:f9:04:b9:44:87:fc: 37:19:79:1d:46:94:2c:11:90:c5:f6:5a:c2:21:af:5a:48:4f: 8b:3e:c2:a8:5d:41:f8:5c:b3:7f:32:fe:03:e0:a5:bb:8f:b4: 2e:41:bf:19:69:fc:b8:a9:0d:bf:f0:bd:68:bb:80:05:8a:9b: 27:7f:84:8e:bd:fe:31:f3:38:fe:db:a8:55:9b:37:4f:5b:40: d3:87:ab:26:95:fe:dc:ff:d0:69:f9:e1:ac:1c:45:08:b7:44: 74:f7:68:e4:d2:7b:23:09:57:67:68:d6:1e:8a:24:48:3f:ec: 2c:35:18:85:ab:c9:0c:04:38:69:b8:72:45:54:78:b8:fd:90: d9:16:36:44 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTEw QkQ5NDM3OTY3QzdBRkREMzc0RTFFQTZFQkVEN0ZBNkY5NkI1MB4XDTI0MDUyNjA3 MzI1OFoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoOTk3QTNFRkEyMEU3Njgy QTExQUQxNkI3REVGQTRDM0NDNTVCREY4RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM+iR4qMs/Bdc2GRk1YOvwZLTHDimUgSLhdNgQTUcXv8sV19xpql QwTXTb9pP1Kp947ySnj3/pB6RiIe7QCI/G1RL19UNwwJpMdWBLzjNYOR/aGHPOno 41OssEBPawX3xi1jCeKLRQMlD1zt42IcQzUw8lg+z5DMLISZuXg02+Stml7RIyLg yeoDQW6JN4tyT9zLRI0kyv/HbegRILr2DLAZdgCZOjGCe7D99eHfaO4prjuUBONm XHSceQ8Fqv0lKsDOhHWdpxYboEsbjYs5zJ4sgA2hmPnjFIJzNzUYAOPyMGlpGHGH DkJxnzTExXsMKx+KD8z3TjkEwqrKEB7yuc0CAwEAAaOCAiswggInMB0GA1UdDgQW BBSZej76IOdoKhGtFrfe+kw8xVvfjzAfBgNVHSMEGDAWgBS5EL2UN5Z8ev3TdOHq br7X+m+WtTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MjMvdVJDOWxEZVdmSHI5MDNUaDZtNi0xX3B2bHJVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdVJDOWxEZVdmSHI5MDNUaDZtNi0x X3B2bHJVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDIzL21Yby0taURuYUNvUnJSYTMzdnBNUE1WYjM0OC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAkAQ0gAAowDQYJKoZIhvcNAQELBQADggEBALjE8OFwpP80IKVjxBWe gKts9CaUpnDB5IJimbST6tcYmhZ7MYk6leSXhP/ZHHoT/Ny8S0GmUNHghAjVK5N3 zEp6GYWaCGHNONywkZizqOAZ2orMWZMHMAYqZ4sMem2q8Np2NGnGDHFQ2xyekdnQ 7oeDgQRhPWztePkEuUSH/DcZeR1GlCwRkMX2WsIhr1pIT4s+wqhdQfhcs38y/gPg pbuPtC5Bvxlp/LipDb/wvWi7gAWKmyd/hI69/jHzOP7bqFWbN09bQNOHqyaV/tz/ 0Gn54awcRQi3RHT3aOTSeyMJV2do1h6KJEg/7Cw1GIWryQwEOGm4ckVUeLj9kNkW NkQ= -----END CERTIFICATE-----Generated at Sat Jun 22 13:59:02 2024 by rpki-client on console-fra.rpki-client.org