$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/CAIQObgxlFhCwMFnwMeNG0w24as.roa File: CAIQObgxlFhCwMFnwMeNG0w24as.roa (raw, json) Hash identifier: M7Vn8r7YauapqX4bliEALLEQ30Q2NtMAFLxjnnxjAJ8= Subject key identifier: 08:02:10:39:B8:31:94:58:42:C0:C1:67:C0:C7:8D:1B:4C:36:E1:AB Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0286 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/CAIQObgxlFhCwMFnwMeNG0w24as.roa Signing time: Tue 30 Apr 2024 01:32:20 +0000 ROA not before: Tue 30 Apr 2024 01:32:20 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 646 (0x286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:32:20 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=08021039B831945842C0C167C0C78D1B4C36E1AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:75:f4:9a:ff:85:f8:0a:20:eb:2d:7b:08:a1: 66:6e:a7:7b:4a:d1:b2:e8:30:0b:c1:ee:1e:ca:bb: f7:70:8d:8d:ca:3f:b6:4b:1f:20:4d:28:d7:de:9d: 47:3c:de:7d:05:3b:4b:01:1e:74:53:69:03:e7:b0: 7e:27:c7:e5:22:ee:99:09:7f:5f:52:cd:9d:9e:5c: ed:87:14:4e:6b:34:04:ef:5a:3d:c6:37:cb:a6:cc: 02:6c:87:14:f3:c7:b7:d8:48:d5:39:bd:0f:7c:02: 12:df:06:49:02:9f:f0:25:0c:1c:ee:32:bf:c5:89: 92:2f:78:7a:4f:c2:8a:df:d5:11:e5:59:04:cd:41: 70:92:83:09:f1:c8:24:cb:f5:e8:05:40:cc:d6:c2: 0c:db:96:1a:8a:5e:d9:fb:d3:d9:ea:ea:09:2c:22: 02:36:db:61:82:08:42:e7:71:6b:d5:7d:df:73:0f: 0c:33:24:8b:80:6f:3c:73:a3:11:85:a1:84:8e:1b: 0e:4d:3b:89:6c:91:27:af:33:3f:f1:b6:4e:35:e7: d1:25:c5:d6:e5:a8:41:23:d3:dd:bc:d0:4b:aa:45: 50:92:76:1f:11:de:21:5e:f8:27:33:97:48:e2:9c: a6:84:8d:be:11:53:a7:f1:d9:2c:9a:7b:87:a6:75: 37:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:02:10:39:B8:31:94:58:42:C0:C1:67:C0:C7:8D:1B:4C:36:E1:AB X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/CAIQObgxlFhCwMFnwMeNG0w24as.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 64:10:b2:a4:46:c3:09:46:73:e2:41:c4:6b:39:99:89:e5:01: f6:10:52:2c:d1:89:e0:10:ec:57:0d:07:c6:b4:87:71:72:a7: 43:4a:b3:aa:f2:02:3f:de:82:0b:ad:4f:9a:8f:5e:41:85:a4: 9c:67:6b:25:9b:8e:5e:69:89:4d:50:e8:30:8b:73:87:1c:91: 00:3f:57:6e:1b:61:6f:7a:5b:5f:e4:a4:ce:40:98:0d:3e:27: 6e:26:3f:55:cb:4b:8c:a1:d1:0b:61:5d:8b:f4:87:83:4b:09: 24:6d:d9:67:b5:04:16:6f:19:a8:d2:20:f7:25:ef:66:e1:30: b6:27:70:5a:e3:77:fe:ec:9e:d9:a4:e6:93:89:b0:37:5c:e8: 2b:14:b0:a6:4e:4d:9a:2f:b4:79:5c:55:22:9c:1c:45:e0:1d: 6a:22:7e:a3:c9:c4:0b:6d:d4:74:30:4d:d1:6c:3b:36:51:1b: eb:7c:70:df:28:01:ee:ce:19:0f:27:9a:de:5a:03:d3:43:88: 77:34:de:76:19:2f:95:6b:a7:85:5b:5e:4a:88:b3:70:75:74: 31:c2:fb:dc:8a:80:7c:c0:b9:a4:8c:b0:d7:68:9f:d0:2b:c5: 00:9a:6c:f0:80:70:96:e8:68:65:d7:38:cd:66:08:01:10:1a: 6e:c9:56:85 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTMyMjBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA4MDIxMDM5QjgzMTk0 NTg0MkMwQzE2N0MwQzc4RDFCNEMzNkUxQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcdfSa/4X4CiDrLXsIoWZup3tK0bLoMAvB7h7Ku/dwjY3KP7ZL HyBNKNfenUc83n0FO0sBHnRTaQPnsH4nx+Ui7pkJf19SzZ2eXO2HFE5rNATvWj3G N8umzAJshxTzx7fYSNU5vQ98AhLfBkkCn/AlDBzuMr/FiZIveHpPworf1RHlWQTN QXCSgwnxyCTL9egFQMzWwgzblhqKXtn709nq6gksIgI222GCCELncWvVfd9zDwwz JIuAbzxzoxGFoYSOGw5NO4lskSevMz/xtk4159ElxdblqEEj09280EuqRVCSdh8R 3iFe+Cczl0jinKaEjb4RU6fx2Syae4emdTenAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUCAIQObgxlFhCwMFnwMeNG0w24aswHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9DQUlRT2JneGxGaEN3TUZud01lTkcwdzI0YXMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa+wwDQYJKoZIhvcNAQELBQADggEBAGQQsqRGwwlGc+JBxGs5 mYnlAfYQUizRieAQ7FcNB8a0h3Fyp0NKs6ryAj/eggutT5qPXkGFpJxnayWbjl5p iU1Q6DCLc4cckQA/V24bYW96W1/kpM5AmA0+J24mP1XLS4yh0QthXYv0h4NLCSRt 2We1BBZvGajSIPcl72bhMLYncFrjd/7sntmk5pOJsDdc6CsUsKZOTZovtHlcVSKc HEXgHWoifqPJxAtt1HQwTdFsOzZRG+t8cN8oAe7OGQ8nmt5aA9NDiHc03nYZL5Vr p4VbXkqIs3B1dDHC+9yKgHzAuaSMsNdon9ArxQCabPCAcJboaGXXOM1mCAEQGm7J VoU= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:44 2024 by rpki-client on console-fra.rpki-client.org