$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/KHjO7xBd3Mz9NtfkYwnPvUqWZNA.roa File: KHjO7xBd3Mz9NtfkYwnPvUqWZNA.roa (raw, json) Hash identifier: V0NHtFzV7RIGMe/an5zwp+erAjZA+XEHmiPhe3TZGfY= Subject key identifier: 28:78:CE:EF:10:5D:DC:CC:FD:36:D7:E4:63:09:CF:BD:4A:96:64:D0 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0277 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/KHjO7xBd3Mz9NtfkYwnPvUqWZNA.roa Signing time: Tue 30 Apr 2024 01:32:14 +0000 ROA not before: Tue 30 Apr 2024 01:32:14 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:4a00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 20:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:32:14 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=2878CEEF105DDCCCFD36D7E46309CFBD4A9664D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:61:e4:83:e1:f5:37:68:83:00:cb:ad:fe:2c: a7:0e:d8:c0:ba:77:b5:91:58:49:e2:b7:00:e6:06: e8:bb:68:44:b7:19:b3:53:1d:d3:b1:63:0f:f0:47: 02:ff:c8:56:f9:ef:6c:af:2d:db:4e:8e:65:a7:ac: 54:6a:29:13:60:b8:c5:08:4d:c8:07:58:29:2a:49: 02:79:35:98:c7:6e:6b:10:65:fd:92:3b:4b:c4:5f: e7:55:53:1d:db:cf:ac:d0:7b:14:c2:9c:16:b9:89: cb:ed:09:67:08:2d:c4:a2:69:56:57:7d:d7:a9:ef: b1:9b:0b:14:09:e5:cd:18:d0:5a:5d:35:df:a8:2e: a4:d9:cb:64:0f:16:f3:59:ca:40:cf:fd:83:97:6b: 4a:0a:ea:d8:4c:0f:05:66:f4:3b:d8:39:01:3a:99: 7e:54:a5:7d:8b:89:44:9c:ea:07:43:59:58:04:11: db:6b:ff:45:b7:44:4d:ff:37:ea:08:2a:2c:ea:c1: 9f:83:c4:f2:dd:4e:43:f1:9c:1e:21:72:71:c6:72: a1:17:81:b8:6a:fa:30:fd:a6:f8:71:a2:5b:e7:e9: 02:c2:c3:a8:7a:ca:70:32:a0:dc:dc:d4:13:03:15: 6a:84:12:17:44:2f:97:a8:dd:34:cd:e4:01:12:ad: c4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:78:CE:EF:10:5D:DC:CC:FD:36:D7:E4:63:09:CF:BD:4A:96:64:D0 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/KHjO7xBd3Mz9NtfkYwnPvUqWZNA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:4a00::/40 Signature Algorithm: sha256WithRSAEncryption c2:2d:02:03:7d:fd:7d:bf:ae:d0:07:ae:ba:fb:f1:fc:ad:3b: 8f:92:1b:19:45:ac:74:55:6d:2c:46:2d:f4:6e:f5:7e:19:20: 27:66:54:a7:dd:ea:71:e2:c2:48:b8:f6:16:6e:36:dc:57:70: 51:e0:ee:47:99:bc:2e:2b:7e:ae:85:86:74:4b:ff:63:f2:3b: 91:4e:d9:fb:1a:cb:5f:78:ba:9c:a9:1a:a9:d0:f9:92:e3:68: cc:bc:5e:b6:04:a6:78:09:32:28:90:04:0f:fa:d3:cd:08:21: 2f:38:48:52:98:a4:f4:bb:e6:6e:12:ce:09:15:23:31:9e:c3: 99:17:ce:97:8d:6b:12:23:f9:d4:4a:6a:c6:ce:89:07:b8:88: 47:1e:9f:3d:84:ad:6c:69:86:d7:20:b0:74:fb:7a:7a:34:e8: e5:3e:c6:64:ca:36:08:29:51:97:35:fd:33:68:e0:12:ae:e0: b2:94:d1:4f:90:bc:53:2a:4e:4b:76:86:5c:76:48:00:c2:ec: 25:e6:dd:2d:3e:e1:34:5d:21:0c:64:2c:84:b3:de:20:bb:c1: 2b:bf:86:dd:a6:fc:2f:fd:b6:5f:8d:56:45:45:e2:f6:24:39: 32:da:50:17:94:70:23:a1:54:a6:c2:89:a2:03:c4:d2:b1:62: 54:a2:3e:2e -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAncwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTMyMTRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI4NzhDRUVGMTA1RERD Q0NGRDM2RDdFNDYzMDlDRkJENEE5NjY0RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+YeSD4fU3aIMAy63+LKcO2MC6d7WRWEnitwDmBui7aES3GbNT HdOxYw/wRwL/yFb572yvLdtOjmWnrFRqKRNguMUITcgHWCkqSQJ5NZjHbmsQZf2S O0vEX+dVUx3bz6zQexTCnBa5icvtCWcILcSiaVZXfdep77GbCxQJ5c0Y0FpdNd+o LqTZy2QPFvNZykDP/YOXa0oK6thMDwVm9DvYOQE6mX5UpX2LiUSc6gdDWVgEEdtr /0W3RE3/N+oIKizqwZ+DxPLdTkPxnB4hcnHGcqEXgbhq+jD9pvhxolvn6QLCw6h6 ynAyoNzc1BMDFWqEEhdEL5eo3TTN5AESrcRLAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUKHjO7xBd3Mz9NtfkYwnPvUqWZNAwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9LSGpPN3hCZDNNejlOdGZrWXduUHZVcVdaTkEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa0owDQYJKoZIhvcNAQELBQADggEBAMItAgN9/X2/rtAHrrr7 8fytO4+SGxlFrHRVbSxGLfRu9X4ZICdmVKfd6nHiwki49hZuNtxXcFHg7keZvC4r fq6FhnRL/2PyO5FO2fsay194upypGqnQ+ZLjaMy8XrYEpngJMiiQBA/6080IIS84 SFKYpPS75m4SzgkVIzGew5kXzpeNaxIj+dRKasbOiQe4iEcenz2ErWxphtcgsHT7 eno06OU+xmTKNggpUZc1/TNo4BKu4LKU0U+QvFMqTkt2hlx2SADC7CXm3S0+4TRd IQxkLISz3iC7wSu/ht2m/C/9tl+NVkVF4vYkOTLaUBeUcCOhVKbCiaIDxNKxYlSi Pi4= -----END CERTIFICATE-----Generated at Thu Jun 6 21:52:33 2024 by rpki-client on console-fra.rpki-client.org