$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/2bAr1SxdLoUs8eDmBZKt8z-OYyQ.roa File: 2bAr1SxdLoUs8eDmBZKt8z-OYyQ.roa (raw, json) Hash identifier: 3PjSoIZime8/xl4jHCiNVB1iwtBTp3Z7/TyaN4Yop5Y= Subject key identifier: D9:B0:2B:D5:2C:5D:2E:85:2C:F1:E0:E6:05:92:AD:F3:3F:8E:63:24 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0275 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/2bAr1SxdLoUs8eDmBZKt8z-OYyQ.roa Signing time: Tue 30 Apr 2024 01:32:13 +0000 ROA not before: Tue 30 Apr 2024 01:32:13 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:f000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:32:13 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=D9B02BD52C5D2E852CF1E0E60592ADF33F8E6324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4e:61:c8:a7:b6:0e:3b:03:24:0e:b4:22:f8: 4a:1f:83:1f:1d:ab:11:22:29:6c:aa:b5:11:5b:7a: 42:f8:8b:fc:86:1c:d4:49:a3:7f:68:d4:aa:78:e7: ae:86:8f:2d:91:ca:0d:c9:28:45:07:59:ee:98:a4: 61:b4:ab:f9:97:f1:46:75:a8:96:d4:6b:a8:44:13: 9a:69:f8:31:61:c4:9d:85:bf:3d:94:69:37:89:bd: ff:82:12:c8:1a:7d:65:d5:13:1d:6a:40:45:c6:ca: c5:81:da:c0:54:2b:d6:d1:12:29:b1:93:fd:b9:7e: 7d:7a:d6:8c:3b:75:0a:16:95:72:78:e0:22:63:55: 76:fe:1d:6a:18:af:9a:5b:a0:c8:65:ed:8c:92:9c: 41:8b:f6:8d:e4:ff:85:d9:38:32:6f:48:05:18:27: 43:b2:76:f7:66:a0:db:52:63:ae:c4:8d:19:f1:38: fa:e4:ec:5a:78:89:87:7b:bd:2b:a4:f0:93:27:67: 79:ce:2b:24:b6:25:3b:7c:3a:e7:71:e5:53:ff:b6: de:6f:20:5c:8d:0d:5a:f8:73:b0:ff:e0:ab:eb:90: 15:38:84:ce:68:36:a3:d3:fb:be:e1:ff:56:39:e1: 6a:8c:5b:3f:15:12:17:96:5c:04:da:e3:2f:34:8f: c7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B0:2B:D5:2C:5D:2E:85:2C:F1:E0:E6:05:92:AD:F3:3F:8E:63:24 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/2bAr1SxdLoUs8eDmBZKt8z-OYyQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:f000::/40 Signature Algorithm: sha256WithRSAEncryption 38:77:7e:28:dc:e1:82:14:9c:79:ab:7c:19:51:ea:35:b8:5f: ad:87:e7:06:d5:29:cb:83:ad:56:af:68:32:a1:17:5d:28:76: 3c:38:65:7d:3d:68:e9:8d:29:37:65:84:c3:66:a6:93:d3:95: 91:eb:ef:86:8a:c5:57:ec:ba:d1:39:8d:30:73:ab:d9:4d:ac: 4e:77:d2:a4:5e:be:00:7e:72:d3:98:7f:cd:e3:9b:60:cc:53: 9f:e8:ae:48:d2:f0:81:19:58:08:5f:09:24:f0:8a:4e:87:de: 6c:3c:e9:8d:b1:c6:49:5b:d6:a9:8a:97:1c:e1:53:a9:49:ee: 69:92:f6:52:e8:0a:88:58:7a:6b:3f:d2:b8:73:e7:b3:45:c8: 55:8b:f8:cb:60:03:44:90:99:d6:af:31:1d:f4:e1:55:69:9e: 7c:de:cb:77:4e:34:e0:70:53:5e:3b:27:43:11:22:e1:fb:30: 72:6a:15:38:8c:8d:e5:b4:81:73:48:5e:d4:28:a3:8a:17:6e: 99:27:67:de:8c:ad:ac:75:d5:26:60:ae:be:eb:17:e6:03:7b: c3:1f:7a:80:a9:f6:6f:26:25:6b:d0:03:61:45:f2:08:b8:3a: c3:82:16:a1:c3:6b:68:d3:df:e2:59:a0:28:31:b7:e2:69:d2: 75:97:bd:7c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTMyMTNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ5QjAyQkQ1MkM1RDJF ODUyQ0YxRTBFNjA1OTJBREYzM0Y4RTYzMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDTmHIp7YOOwMkDrQi+Eofgx8dqxEiKWyqtRFbekL4i/yGHNRJ o39o1Kp4566Gjy2Ryg3JKEUHWe6YpGG0q/mX8UZ1qJbUa6hEE5pp+DFhxJ2Fvz2U aTeJvf+CEsgafWXVEx1qQEXGysWB2sBUK9bREimxk/25fn161ow7dQoWlXJ44CJj VXb+HWoYr5pboMhl7YySnEGL9o3k/4XZODJvSAUYJ0OydvdmoNtSY67EjRnxOPrk 7Fp4iYd7vSuk8JMnZ3nOKyS2JTt8Oudx5VP/tt5vIFyNDVr4c7D/4KvrkBU4hM5o NqPT+77h/1Y54WqMWz8VEheWXATa4y80j8dpAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQU2bAr1SxdLoUs8eDmBZKt8z+OYyQwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS8yYkFyMVN4ZExvVXM4ZURtQlpLdDh6LU9ZeVEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa/AwDQYJKoZIhvcNAQELBQADggEBADh3fijc4YIUnHmrfBlR 6jW4X62H5wbVKcuDrVavaDKhF10odjw4ZX09aOmNKTdlhMNmppPTlZHr74aKxVfs utE5jTBzq9lNrE530qRevgB+ctOYf83jm2DMU5/orkjS8IEZWAhfCSTwik6H3mw8 6Y2xxklb1qmKlxzhU6lJ7mmS9lLoCohYems/0rhz57NFyFWL+MtgA0SQmdavMR30 4VVpnnzey3dONOBwU147J0MRIuH7MHJqFTiMjeW0gXNIXtQoo4oXbpknZ96Mrax1 1SZgrr7rF+YDe8MfeoCp9m8mJWvQA2FF8gi4OsOCFqHDa2jT3+JZoCgxt+Jp0nWX vXw= -----END CERTIFICATE-----Generated at Sun Feb 16 22:33:31 2025 by rpki-client