$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/HVaBnWH7OUy6OGQdpQU3aRNDRvg.roa File: HVaBnWH7OUy6OGQdpQU3aRNDRvg.roa (raw, json) Hash identifier: GD4RxQeBgYEONjORaMSC6rQhzZV2L1FWnEH1NJarYks= Subject key identifier: 1D:56:81:9D:61:FB:39:4C:BA:38:64:1D:A5:05:37:69:13:43:46:F8 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 02B8 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/HVaBnWH7OUy6OGQdpQU3aRNDRvg.roa Signing time: Tue 30 Apr 2024 01:39:30 +0000 ROA not before: Tue 30 Apr 2024 01:39:30 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:8200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 696 (0x2b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:39:30 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=1D56819D61FB394CBA38641DA5053769134346F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e6:12:38:06:9a:c1:52:a4:55:6c:bc:91:cb: 88:64:41:19:bc:d1:52:95:83:3d:f3:14:96:6a:0d: ff:83:51:bd:f1:b3:4c:fc:4d:57:0c:c4:6a:5a:dd: 2a:97:27:43:d9:4e:d7:c3:2e:e6:04:ef:1d:06:d8: bf:7e:43:a4:d6:60:5e:a5:58:6e:b9:70:44:7b:4f: af:44:a8:f7:61:bd:f2:2c:28:d9:5e:c5:ef:95:b7: 9b:1f:41:c2:ef:5b:ce:8a:9b:8a:df:0d:72:98:13: 06:ba:75:c6:07:b3:eb:1f:cd:49:ae:8b:e8:bb:ab: 1e:43:a4:ce:68:53:4a:54:6c:a2:68:8b:62:02:15: 03:d2:aa:9b:d2:a1:12:f3:12:0a:2b:ea:10:5e:ae: c0:7a:42:ea:69:b1:d7:01:c4:81:c8:bf:c9:29:64: 64:f1:22:29:20:17:82:11:82:f5:26:b7:80:93:94: e5:76:74:31:2d:a7:1e:0b:e8:cd:31:b4:ed:22:db: 6c:4d:76:cf:0f:ae:d4:a2:9d:3d:71:63:2c:cd:05: d0:ab:40:66:54:10:17:94:4e:f8:4d:d7:f6:c8:0a: 4d:6f:23:50:c0:80:91:6c:3f:57:82:d1:e7:cf:3b: 45:02:de:9f:dd:01:18:c8:04:83:58:aa:92:74:6b: 0d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:56:81:9D:61:FB:39:4C:BA:38:64:1D:A5:05:37:69:13:43:46:F8 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/HVaBnWH7OUy6OGQdpQU3aRNDRvg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:8200::/40 Signature Algorithm: sha256WithRSAEncryption 9b:67:4a:87:cb:60:b7:8b:9d:38:44:17:4a:db:16:8c:a2:18: 89:5e:de:d1:06:6d:d4:93:8f:0d:f4:99:38:98:48:51:b3:15: d5:3a:ff:71:14:59:a8:7f:b8:3a:02:97:4f:a7:06:93:1c:b7: b2:ba:50:58:d2:0f:65:89:2c:a6:34:e7:e7:e9:a7:fe:fc:7a: 5a:21:80:4f:57:57:bb:7e:e8:2b:62:20:f9:da:4f:23:f4:76: f3:43:11:f9:0f:39:69:28:70:82:d0:e8:5c:40:55:9a:8b:1e: a7:67:ff:9d:3d:99:a1:c7:af:b0:52:72:be:11:69:6a:8f:6c: 55:5f:25:0f:e4:2d:e4:84:fe:0c:ab:d3:5e:6a:0c:5c:d7:a6: c8:a6:35:ae:84:55:9e:49:b5:a5:b6:bd:2d:41:66:39:40:c6: 75:ae:70:57:b8:0e:f7:69:ca:1a:92:35:c3:cb:9e:da:1a:a6: 95:4f:d7:db:4c:62:60:d5:33:a9:a8:f8:01:dd:d5:e8:81:d4: 5c:4c:91:ec:41:8c:75:33:e6:45:65:84:ea:b8:88:a7:44:ad: 06:11:7d:90:99:49:32:2b:5d:3c:9b:f6:b3:99:c1:d5:a4:8e: e6:55:92:ba:5c:76:9f:00:b7:b0:26:0e:3f:a7:7f:a6:9b:a2: 86:99:80:50 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICArgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTM5MzBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFENTY4MTlENjFGQjM5 NENCQTM4NjQxREE1MDUzNzY5MTM0MzQ2RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDx5hI4BprBUqRVbLyRy4hkQRm80VKVgz3zFJZqDf+DUb3xs0z8 TVcMxGpa3SqXJ0PZTtfDLuYE7x0G2L9+Q6TWYF6lWG65cER7T69EqPdhvfIsKNle xe+Vt5sfQcLvW86Km4rfDXKYEwa6dcYHs+sfzUmui+i7qx5DpM5oU0pUbKJoi2IC FQPSqpvSoRLzEgor6hBersB6QuppsdcBxIHIv8kpZGTxIikgF4IRgvUmt4CTlOV2 dDEtpx4L6M0xtO0i22xNds8PrtSinT1xYyzNBdCrQGZUEBeUTvhN1/bICk1vI1DA gJFsP1eC0efPO0UC3p/dARjIBINYqpJ0aw0pAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUHVaBnWH7OUy6OGQdpQU3aRNDRvgwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9IVmFCbldIN09VeTZPR1FkcFFVM2FSTkRSdmcu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa4IwDQYJKoZIhvcNAQELBQADggEBAJtnSofLYLeLnThEF0rb FoyiGIle3tEGbdSTjw30mTiYSFGzFdU6/3EUWah/uDoCl0+nBpMct7K6UFjSD2WJ LKY05+fpp/78elohgE9XV7t+6CtiIPnaTyP0dvNDEfkPOWkocILQ6FxAVZqLHqdn /509maHHr7BScr4RaWqPbFVfJQ/kLeSE/gyr015qDFzXpsimNa6EVZ5JtaW2vS1B ZjlAxnWucFe4DvdpyhqSNcPLntoappVP19tMYmDVM6mo+AHd1eiB1FxMkexBjHUz 5kVlhOq4iKdErQYRfZCZSTIrXTyb9rOZwdWkjuZVkrpcdp8At7AmDj+nf6abooaZ gFA= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:47 2025 by rpki-client