$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/8ZdaFPxfopXM4dP_jHcEcr2rVmY.roa File: 8ZdaFPxfopXM4dP_jHcEcr2rVmY.roa (raw, json) Hash identifier: vI7jTkEpLXCQf0KN8UdIULPioc/8/2bkO5hiLDDipAw= Subject key identifier: F1:97:5A:14:FC:5F:A2:95:CC:E1:D3:FF:8C:77:04:72:BD:AB:56:66 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 039E Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/8ZdaFPxfopXM4dP_jHcEcr2rVmY.roa Signing time: Mon 17 Jun 2024 08:48:34 +0000 ROA not before: Mon 17 Jun 2024 08:48:34 +0000 ROA not after: Sun 15 Jun 2025 01:30:03 +0000 asID: 9605 IP address blocks: 240a:61:7000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 926 (0x39e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Jun 17 08:48:34 2024 GMT Not After : Jun 15 01:30:03 2025 GMT Subject: CN=F1975A14FC5FA295CCE1D3FF8C770472BDAB5666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:02:1f:23:67:38:38:fd:23:7e:a5:e6:84:2c: 93:3e:77:eb:8f:1a:a7:38:80:03:12:04:fd:33:b4: cb:4b:50:65:5e:c0:e2:20:c3:6d:49:ac:fc:a0:a5: 56:87:30:34:04:d6:e0:ab:f1:bc:72:6f:7a:a7:0d: 1e:2a:78:f7:83:c9:14:c1:59:41:8c:1b:46:b8:b0: 25:69:c8:11:fc:57:5a:38:02:9d:12:81:be:eb:01: c0:a7:60:71:c8:25:07:1d:e5:8a:e1:b5:1d:36:15: 62:f0:4d:33:b2:96:42:58:71:ee:0e:cb:c9:02:82: 3e:81:b5:9d:72:4d:ac:87:a5:31:cc:5e:68:d0:76: 85:72:12:09:fd:49:8e:bf:07:38:49:52:72:2d:86: c8:a1:6f:c2:53:32:db:fc:0b:d2:1a:9c:0f:8d:46: 6d:3f:97:ef:84:10:30:49:2f:47:53:1c:a1:9b:b6: da:e6:43:49:70:a2:63:cf:43:d4:8c:f4:59:8d:de: a0:6f:6b:29:72:56:99:de:d0:84:bf:a4:e6:63:0e: 51:0c:e6:61:75:9a:ea:b8:4f:4b:0d:42:79:e8:ba: df:ce:29:0d:e2:86:52:15:26:a1:f7:0b:40:00:ae: 31:54:69:15:47:74:97:9d:9e:90:70:14:b7:e0:b8: 43:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:97:5A:14:FC:5F:A2:95:CC:E1:D3:FF:8C:77:04:72:BD:AB:56:66 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/8ZdaFPxfopXM4dP_jHcEcr2rVmY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:61:7000::/37 Signature Algorithm: sha256WithRSAEncryption 4e:2a:e5:d1:65:5c:b7:d7:3c:0a:4e:5f:2c:80:4e:64:15:3d: ff:53:5d:24:89:58:a0:42:c5:17:4a:b1:46:8d:f5:ac:9b:b6: 9b:5b:55:5a:87:59:ba:14:63:2d:b5:21:44:1a:cc:33:3c:f8: 90:80:00:d5:b1:da:61:46:ce:42:d8:ce:ed:99:b2:72:af:70: bf:dc:43:5a:23:57:af:f6:7f:95:88:94:f8:80:30:86:26:29: 9b:c1:13:c0:45:1a:fb:46:2f:9f:cf:ab:01:67:8c:c2:48:b0: 27:14:24:f3:b4:63:c0:ec:56:0a:03:32:07:9a:0f:dc:36:64: b5:16:a9:e4:f8:39:e7:ff:c1:40:ad:e1:56:29:d6:cc:b1:d3: 98:1f:d5:0c:06:22:7b:3f:db:ef:9c:bd:46:71:97:51:02:cb: 02:bb:72:5b:c4:0b:2e:0a:d5:4e:6a:92:1b:5d:aa:52:5e:1f: 67:aa:1e:36:7d:18:33:db:d5:5d:90:cd:11:e4:9e:df:37:06: 9c:5e:53:5d:9e:d7:85:89:70:b8:d9:37:7a:e4:95:dc:99:23: 9f:65:b3:69:cc:f0:de:9f:ee:4f:33:c1:b8:09:13:da:40:55: bb:16:9b:15:a9:5f:55:8f:15:87:51:bf:3b:38:4f:82:a2:c8: f4:52:04:d3 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICA54wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA2MTcw ODQ4MzRaFw0yNTA2MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEYxOTc1QTE0RkM1RkEy OTVDQ0UxRDNGRjhDNzcwNDcyQkRBQjU2NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+Ah8jZzg4/SN+peaELJM+d+uPGqc4gAMSBP0ztMtLUGVewOIg w21JrPygpVaHMDQE1uCr8bxyb3qnDR4qePeDyRTBWUGMG0a4sCVpyBH8V1o4Ap0S gb7rAcCnYHHIJQcd5YrhtR02FWLwTTOylkJYce4Oy8kCgj6BtZ1yTayHpTHMXmjQ doVyEgn9SY6/BzhJUnIthsihb8JTMtv8C9IanA+NRm0/l++EEDBJL0dTHKGbttrm Q0lwomPPQ9SM9FmN3qBvaylyVpne0IS/pOZjDlEM5mF1muq4T0sNQnnout/OKQ3i hlIVJqH3C0AArjFUaRVHdJednpBwFLfguEPpAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQU8ZdaFPxfopXM4dP/jHcEcr2rVmYwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS84WmRhRlB4Zm9wWE00ZFBfakhjRWNyMnJWbVku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYDJAoAYXAwDQYJKoZIhvcNAQELBQADggEBAE4q5dFlXLfXPApOXyyA TmQVPf9TXSSJWKBCxRdKsUaN9aybtptbVVqHWboUYy21IUQazDM8+JCAANWx2mFG zkLYzu2ZsnKvcL/cQ1ojV6/2f5WIlPiAMIYmKZvBE8BFGvtGL5/PqwFnjMJIsCcU JPO0Y8DsVgoDMgeaD9w2ZLUWqeT4Oef/wUCt4VYp1syx05gf1QwGIns/2++cvUZx l1ECywK7clvECy4K1U5qkhtdqlJeH2eqHjZ9GDPb1V2QzRHknt83BpxeU12e14WJ cLjZN3rkldyZI59ls2nM8N6f7k8zwbgJE9pAVbsWmxWpX1WPFYdRvzs4T4KiyPRS BNM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:34 2025 by rpki-client