$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/BLFUD9lemmXfxbDeG4O7VPIDfRM.roa File: BLFUD9lemmXfxbDeG4O7VPIDfRM.roa (raw, json) Hash identifier: +Rb78OJDtTl5i6QdzgQG1/6F1Cms6PUMCEdzrO0IdF8= Subject key identifier: 04:B1:54:0F:D9:5E:9A:65:DF:C5:B0:DE:1B:83:BB:54:F2:03:7D:13 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0341 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/BLFUD9lemmXfxbDeG4O7VPIDfRM.roa Signing time: Tue 30 Apr 2024 01:54:03 +0000 ROA not before: Tue 30 Apr 2024 01:54:03 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:d700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 20:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:54:03 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=04B1540FD95E9A65DFC5B0DE1B83BB54F2037D13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0d:40:35:03:3d:c4:c5:e4:a8:b2:11:ee:d3: 65:1a:a8:1c:fa:a5:a1:b2:91:b8:49:36:bd:f4:7e: df:49:e3:ab:f8:6a:29:6b:d9:62:09:95:a1:00:61: ed:c2:50:56:63:61:b1:e9:31:09:bd:24:56:0b:23: 61:39:99:58:78:55:07:d7:c6:06:f5:c8:ca:58:30: 0e:db:38:b2:f8:01:cc:b4:37:7b:ec:5b:d6:c5:e0: 39:72:70:90:d2:77:33:26:7c:aa:ee:d0:61:d1:5e: 9e:57:b5:8b:83:40:d1:2c:c0:24:12:cf:cb:d1:d5: 28:c5:c0:04:33:18:cf:87:c3:5a:f7:f9:8f:0c:8d: 5b:6a:d3:31:70:19:9b:db:58:90:78:4f:fc:fc:a0: 1c:37:88:4c:79:ce:ec:21:a3:86:a9:d9:14:2b:0d: b1:da:94:ea:65:6c:d0:81:ae:91:36:1a:8c:53:53: ed:f5:51:e3:1e:0f:46:42:52:5d:4d:9c:f3:56:a9: 26:8d:ec:05:fb:f8:88:e9:91:ad:ba:c7:9c:41:4d: 2c:51:05:34:0c:c2:4e:0f:72:ca:4a:25:a1:44:81: 19:8f:78:a8:76:fe:9e:a9:5e:e2:d0:d1:0a:b4:8d: e6:1d:98:ea:95:f5:d8:c1:f9:60:e0:3e:3c:d5:a2: 74:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B1:54:0F:D9:5E:9A:65:DF:C5:B0:DE:1B:83:BB:54:F2:03:7D:13 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/BLFUD9lemmXfxbDeG4O7VPIDfRM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:d700::/40 Signature Algorithm: sha256WithRSAEncryption 00:6b:13:cb:38:f0:ad:5d:f8:85:84:c1:fe:5f:d2:e9:40:a6: 79:69:e7:45:f7:47:53:7e:84:ac:b6:74:a1:4d:51:8b:86:9b: 3a:19:a3:a7:86:32:15:0a:cc:56:c0:7a:9f:a8:4a:09:33:06: ec:e7:85:d0:3d:3c:54:61:3e:da:ca:d8:4d:b8:2c:75:f3:8f: 1e:92:e9:44:02:aa:99:c5:c7:54:4f:b4:17:8a:df:05:5c:99: 0d:af:6d:9d:a9:a5:87:c7:31:89:f2:85:3a:00:d2:5b:31:48: 18:e7:b2:3c:73:fd:6e:97:0c:1d:0f:35:53:29:aa:69:bf:7c: 06:04:ce:c1:4c:39:1a:46:f9:12:8c:dc:28:4e:07:a6:c7:91: 18:6b:0a:27:db:b0:04:ab:ad:f6:73:50:07:90:8a:54:2b:a4: 8a:c7:50:dd:2a:a5:b5:26:53:a6:07:be:cc:2f:ff:6a:03:3f: f0:a4:7b:18:67:e2:9c:ce:59:10:af:d3:ba:5e:04:62:5d:59: c6:ab:9a:27:29:b6:01:d7:0d:5b:0d:44:b5:44:bb:cf:dd:60: 4b:88:1f:07:a6:8a:28:a0:1d:44:52:80:7c:0c:dc:40:4f:75: 77:03:0f:6f:6a:72:d1:27:d7:78:1f:4a:90:59:2d:e1:2a:71: 86:1b:6e:73 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTU0MDNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA0QjE1NDBGRDk1RTlB NjVERkM1QjBERTFCODNCQjU0RjIwMzdEMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBDUA1Az3ExeSoshHu02UaqBz6paGykbhJNr30ft9J46v4ailr 2WIJlaEAYe3CUFZjYbHpMQm9JFYLI2E5mVh4VQfXxgb1yMpYMA7bOLL4Acy0N3vs W9bF4DlycJDSdzMmfKru0GHRXp5XtYuDQNEswCQSz8vR1SjFwAQzGM+Hw1r3+Y8M jVtq0zFwGZvbWJB4T/z8oBw3iEx5zuwho4ap2RQrDbHalOplbNCBrpE2GoxTU+31 UeMeD0ZCUl1NnPNWqSaN7AX7+Ijpka26x5xBTSxRBTQMwk4PcspKJaFEgRmPeKh2 /p6pXuLQ0Qq0jeYdmOqV9djB+WDgPjzVonQbAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUBLFUD9lemmXfxbDeG4O7VPIDfRMwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9CTEZVRDlsZW1tWGZ4YkRlRzRPN1ZQSURmUk0u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa9cwDQYJKoZIhvcNAQELBQADggEBAABrE8s48K1d+IWEwf5f 0ulApnlp50X3R1N+hKy2dKFNUYuGmzoZo6eGMhUKzFbAep+oSgkzBuznhdA9PFRh PtrK2E24LHXzjx6S6UQCqpnFx1RPtBeK3wVcmQ2vbZ2ppYfHMYnyhToA0lsxSBjn sjxz/W6XDB0PNVMpqmm/fAYEzsFMORpG+RKM3ChOB6bHkRhrCifbsASrrfZzUAeQ ilQrpIrHUN0qpbUmU6YHvswv/2oDP/Ckexhn4pzOWRCv07peBGJdWcarmicptgHX DVsNRLVEu8/dYEuIHwemiiigHURSgHwM3EBPdXcDD29qctEn13gfSpBZLeEqcYYb bnM= -----END CERTIFICATE-----Generated at Thu Jun 6 21:52:33 2024 by rpki-client on console-fra.rpki-client.org