$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/2HnY5Z-EvE3m2zkqjGKZrzXzKB4.roa File: 2HnY5Z-EvE3m2zkqjGKZrzXzKB4.roa (raw, json) Hash identifier: YD0jxSUxtQIwdsx2FnRSrIhVE4IlfhdKH5/P7Cn0gXc= Subject key identifier: D8:79:D8:E5:9F:84:BC:4D:E6:DB:39:2A:8C:62:99:AF:35:F3:28:1E Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0257 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/2HnY5Z-EvE3m2zkqjGKZrzXzKB4.roa Signing time: Thu 27 Jul 2023 17:23:37 +0000 ROA not before: Thu 27 Jul 2023 17:23:37 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 240a:0:100::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 22:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Jul 27 17:23:37 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=D879D8E59F84BC4DE6DB392A8C6299AF35F3281E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1f:70:64:c4:80:ad:a4:82:62:bf:ba:43:8a: e7:5f:4a:2d:a3:c9:00:86:f3:86:31:e2:2c:e1:c9: f5:b4:f7:76:c4:51:20:e6:09:58:9c:b6:e0:88:20: 27:ac:69:2f:17:f5:a7:19:1d:d4:35:41:2e:0a:fc: 40:26:5d:26:c9:5c:ae:15:86:29:91:6d:fb:0a:50: 28:7f:12:16:10:bb:6b:2c:a2:fc:8a:f8:a1:ca:8b: 4d:6c:e1:fa:d7:68:7e:43:b1:62:5f:4a:0f:19:9a: d0:02:75:ee:8e:5c:3b:58:69:5e:09:54:5b:b4:9e: 0f:df:f6:3d:cb:88:c9:56:03:03:fb:3b:16:91:e7: 29:05:b0:75:1c:48:96:88:e2:70:89:e5:71:30:b5: 5c:9d:28:a3:ef:ea:16:f0:d7:53:5a:e8:8e:39:0d: cb:71:93:fe:8c:a8:d0:d7:32:1a:7d:70:63:0a:f2: cc:95:21:e0:d9:d3:33:c9:6d:50:f4:c0:b6:4a:f6: 55:b8:3f:99:f5:2a:2d:c5:55:e8:c8:21:e3:76:e1: 33:17:ed:fd:f8:78:0a:a3:64:d9:b6:52:5a:af:53: dc:45:77:b8:de:71:c6:e1:08:65:00:52:67:c9:fe: 6c:26:f5:a7:71:83:81:ab:f8:70:47:f6:06:8a:33: ae:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:79:D8:E5:9F:84:BC:4D:E6:DB:39:2A:8C:62:99:AF:35:F3:28:1E X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/2HnY5Z-EvE3m2zkqjGKZrzXzKB4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:0:100::/41 Signature Algorithm: sha256WithRSAEncryption 56:a7:f3:50:bf:cb:30:ed:39:81:8a:f3:50:56:a1:76:e1:1f: b6:2f:d5:b6:bf:7a:00:25:5a:14:f1:66:18:63:51:25:0c:0d: 49:fc:fe:7d:ff:6b:f9:d4:a0:02:b1:ca:46:05:29:e1:4c:13: ab:80:d1:e5:12:e7:42:a4:28:bc:26:29:bd:0a:16:af:35:80: cd:b3:6a:82:85:a0:bc:97:08:49:8d:26:33:d2:77:4a:ef:a4: bb:b3:70:f9:90:f2:3f:be:24:15:36:6e:9e:c1:eb:39:a6:ff: 35:38:b2:98:31:27:15:1a:49:77:49:90:77:e1:4f:a4:da:8f: 10:04:93:8d:be:47:26:4a:65:48:13:bc:37:ad:c9:2c:2c:f6: 18:6a:ac:87:3e:c4:57:d5:62:c7:0b:3d:28:d7:4d:9c:13:60: 84:8b:ce:0a:47:1c:28:a6:d2:c1:19:1f:9b:26:6f:a8:2b:5a: 00:94:08:20:11:e3:55:62:85:6f:dd:25:eb:c8:f7:c5:43:3b: a3:43:e5:4b:a9:d0:6b:32:f3:68:7a:f1:b5:48:ee:32:1b:36: 23:6a:1f:ba:42:88:e8:83:e3:a7:3f:2b:ab:06:6c:a5:78:da: dc:a2:bc:e0:6d:5b:91:e4:47:f8:fb:37:d6:35:11:fa:63:59: 4d:71:fe:c9 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yMzA3Mjcx NzIzMzdaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKEQ4NzlEOEU1OUY4NEJD NERFNkRCMzkyQThDNjI5OUFGMzVGMzI4MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlH3BkxICtpIJiv7pDiudfSi2jyQCG84Yx4izhyfW093bEUSDm CVictuCIICesaS8X9acZHdQ1QS4K/EAmXSbJXK4VhimRbfsKUCh/EhYQu2ssovyK +KHKi01s4frXaH5DsWJfSg8ZmtACde6OXDtYaV4JVFu0ng/f9j3LiMlWAwP7OxaR 5ykFsHUcSJaI4nCJ5XEwtVydKKPv6hbw11Na6I45Dctxk/6MqNDXMhp9cGMK8syV IeDZ0zPJbVD0wLZK9lW4P5n1Ki3FVejIIeN24TMX7f34eAqjZNm2UlqvU9xFd7je ccbhCGUAUmfJ/mwm9adxg4Gr+HBH9gaKM653AgMBAAGjggIrMIICJzAdBgNVHQ4E FgQU2HnY5Z+EvE3m2zkqjGKZrzXzKB4wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS8ySG5ZNVotRXZFM20yemtxakdLWnJ6WHpLQjQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcHJAoAAAEAMA0GCSqGSIb3DQEBCwUAA4IBAQBWp/NQv8sw7TmBivNQ VqF24R+2L9W2v3oAJVoU8WYYY1ElDA1J/P59/2v51KACscpGBSnhTBOrgNHlEudC pCi8Jim9ChavNYDNs2qChaC8lwhJjSYz0ndK76S7s3D5kPI/viQVNm6ewes5pv81 OLKYMScVGkl3SZB34U+k2o8QBJONvkcmSmVIE7w3rcksLPYYaqyHPsRX1WLHCz0o 102cE2CEi84KRxwoptLBGR+bJm+oK1oAlAggEeNVYoVv3SXryPfFQzujQ+VLqdBr MvNoevG1SO4yGzYjah+6Qojog+OnPyurBmyleNrcorzgbVuR5Ef4+zfWNRH6Y1lN cf7J -----END CERTIFICATE-----Generated at Fri Jun 7 00:11:42 2024 by rpki-client on console-ams.rpki-client.org