$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30040/zpvSJ3Fd1IML3uArZTHO1UX6W8A.roa File: zpvSJ3Fd1IML3uArZTHO1UX6W8A.roa (raw, json) Hash identifier: 0KkSHARCC6irqiGZ7wulx8OkM1RY6pb6zrNTmRYY2NY= Subject key identifier: CE:9B:D2:27:71:5D:D4:83:0B:DE:E0:2B:65:31:CE:D5:45:FA:5B:C0 Certificate issuer: /CN=5DEFF9E1A97D46CCDC12F606EEB38A3E64DBC81F Certificate serial: 12 Authority key identifier: 5D:EF:F9:E1:A9:7D:46:CC:DC:12:F6:06:EE:B3:8A:3E:64:DB:C8:1F Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/zpvSJ3Fd1IML3uArZTHO1UX6W8A.roa Signing time: Fri 02 Feb 2024 08:12:59 +0000 ROA not before: Fri 02 Feb 2024 08:12:59 +0000 ROA not after: Tue 14 Jan 2025 01:30:02 +0000 asID: 9619 IP address blocks: 2001:cf8:acf::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/Xe_54al9RszcEvYG7rOKPmTbyB8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/Xe_54al9RszcEvYG7rOKPmTbyB8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DEFF9E1A97D46CCDC12F606EEB38A3E64DBC81F Validity Not Before: Feb 2 08:12:59 2024 GMT Not After : Jan 14 01:30:02 2025 GMT Subject: CN=CE9BD227715DD4830BDEE02B6531CED545FA5BC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:75:81:b8:d8:9a:1f:cd:0f:88:84:59:2f:18: 57:92:de:81:8a:fa:91:ee:b7:16:b3:bb:d4:11:ae: 22:7c:8a:35:7c:88:48:4f:71:4d:a5:45:43:5c:33: b9:55:32:8c:ab:5d:0f:77:0b:ae:6c:81:8a:f4:35: ae:01:11:10:41:b6:ac:33:02:1f:22:4c:88:d2:ad: 6e:82:ab:50:16:68:69:5f:70:37:b1:96:7f:e0:72: e2:bf:94:18:0a:84:0f:f5:e7:56:8d:dc:1a:e3:d1: cb:95:7d:ea:fe:1b:ea:e0:e0:17:ee:8b:3a:73:d9: 89:48:c1:e9:f2:ee:93:17:34:a2:64:81:3f:10:b9: 30:76:67:07:e8:99:a1:a4:5d:b6:d2:62:d7:01:c2: 6c:d2:ef:40:0a:f4:15:da:92:37:da:7d:99:46:9e: 93:aa:3b:23:e3:ef:d6:cf:7e:e9:a7:50:17:47:9e: 1a:c6:a7:2f:55:4e:2c:ea:56:86:a9:de:e7:80:30: ca:e0:bd:14:35:4b:c8:59:e5:f6:1c:d4:95:ad:81: 49:3b:ed:0d:83:e0:9d:4e:3f:cb:f2:a0:7c:8f:b2: 69:cb:60:50:f6:d5:e3:fc:83:02:77:5c:bb:e5:75: f4:0e:6f:ad:57:a3:a5:95:9c:ee:26:54:07:50:71: 9b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9B:D2:27:71:5D:D4:83:0B:DE:E0:2B:65:31:CE:D5:45:FA:5B:C0 X509v3 Authority Key Identifier: keyid:5D:EF:F9:E1:A9:7D:46:CC:DC:12:F6:06:EE:B3:8A:3E:64:DB:C8:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/Xe_54al9RszcEvYG7rOKPmTbyB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xe_54al9RszcEvYG7rOKPmTbyB8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30040/zpvSJ3Fd1IML3uArZTHO1UX6W8A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:cf8:acf::/48 Signature Algorithm: sha256WithRSAEncryption 9b:9d:30:03:0e:ad:23:0d:50:a6:97:b9:4d:1e:dc:37:c9:be: ba:e9:71:ce:73:39:c7:ee:0e:ab:c8:3c:80:4e:54:7e:96:b7: 05:53:ca:e2:b4:6b:2b:c7:f8:5c:ae:00:a8:7c:cb:c9:47:6e: af:1b:00:2a:48:a3:58:e4:90:95:a5:50:2a:e2:3f:80:1a:2d: 35:0f:6d:12:ff:55:09:99:40:3d:d0:17:7d:de:2a:67:bd:31: 23:78:af:a1:b8:a6:11:f8:be:13:6d:63:a7:3f:2d:a8:0d:ec: 03:23:72:e7:bf:7a:38:a5:5d:80:dc:76:f3:3f:1f:02:5b:e9: c6:96:af:c6:12:88:c2:51:27:0d:ee:52:e4:aa:6d:91:cc:bd: 76:3a:6d:b1:c5:fe:c4:b9:b6:b7:d4:34:34:50:b6:96:7c:f3: 0d:ea:c6:fd:07:52:ac:46:de:9a:f8:07:5a:e6:99:1d:7d:a9: 40:57:ff:32:7e:3a:ec:d8:4a:47:1c:0c:49:c4:af:60:ce:52: b4:6e:ab:2e:6f:a7:71:e8:48:4a:21:c5:50:8d:d0:71:fb:25: 2a:1b:ec:30:f1:93:87:4b:40:6f:ba:57:df:30:78:8e:15:e6: 98:32:09:f0:02:e7:cb:3f:d8:14:ea:c9:a5:0f:7f:4e:48:ed: c5:f9:ab:d8 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1REVG RjlFMUE5N0Q0NkNDREMxMkY2MDZFRUIzOEEzRTY0REJDODFGMB4XDTI0MDIwMjA4 MTI1OVoXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoQ0U5QkQyMjc3MTVERDQ4 MzBCREVFMDJCNjUzMUNFRDU0NUZBNUJDMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMt1gbjYmh/ND4iEWS8YV5LegYr6ke63FrO71BGuInyKNXyISE9x TaVFQ1wzuVUyjKtdD3cLrmyBivQ1rgEREEG2rDMCHyJMiNKtboKrUBZoaV9wN7GW f+By4r+UGAqED/XnVo3cGuPRy5V96v4b6uDgF+6LOnPZiUjB6fLukxc0omSBPxC5 MHZnB+iZoaRdttJi1wHCbNLvQAr0FdqSN9p9mUaek6o7I+Pv1s9+6adQF0eeGsan L1VOLOpWhqne54AwyuC9FDVLyFnl9hzUla2BSTvtDYPgnU4/y/KgfI+yactgUPbV 4/yDAndcu+V19A5vrVejpZWc7iZUB1Bxm1MCAwEAAaOCAiswggInMB0GA1UdDgQW BBTOm9IncV3Ugwve4CtlMc7VRfpbwDAfBgNVHSMEGDAWgBRd7/nhqX1GzNwS9gbu s4o+ZNvIHzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwNDAvWGVfNTRhbDlSc3pjRXZZRzdyT0tQbVRieUI4LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWGVfNTRhbDlSc3pjRXZZRzdyT0tQ bVRieUI4LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMDQwL3pwdlNKM0ZkMUlNTDN1QXJaVEhPMVVYNlc4QS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQz4Cs8wDQYJKoZIhvcNAQELBQADggEBAJudMAMOrSMNUKaXuU0e 3DfJvrrpcc5zOcfuDqvIPIBOVH6WtwVTyuK0ayvH+FyuAKh8y8lHbq8bACpIo1jk kJWlUCriP4AaLTUPbRL/VQmZQD3QF33eKme9MSN4r6G4phH4vhNtY6c/LagN7AMj cue/ejilXYDcdvM/HwJb6caWr8YSiMJRJw3uUuSqbZHMvXY6bbHF/sS5trfUNDRQ tpZ88w3qxv0HUqxG3pr4B1rmmR19qUBX/zJ+OuzYSkccDEnEr2DOUrRuqy5vp3Ho SEohxVCN0HH7JSob7DDxk4dLQG+6V98weI4V5pgyCfAC58s/2BTqyaUPf05I7cX5 q9g= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:30 2024 by rpki-client on console-ams.rpki-client.org