$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XRSg5qKCryonaAsy_Kf0V8WSC40.roa File: XRSg5qKCryonaAsy_Kf0V8WSC40.roa (raw, json) Hash identifier: psovfY9ANzciKq5jMIfju2WlZgLpWCnSjOc5xv1MpA4= Subject key identifier: 5D:14:A0:E6:A2:82:AF:2A:27:68:0B:32:FC:A7:F4:57:C5:92:0B:8D Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0288 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XRSg5qKCryonaAsy_Kf0V8WSC40.roa Signing time: Tue 30 Apr 2024 01:32:20 +0000 ROA not before: Tue 30 Apr 2024 01:32:20 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:3700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 648 (0x288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:32:20 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=5D14A0E6A282AF2A27680B32FCA7F457C5920B8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:13:8f:df:1c:3e:ac:a9:39:fa:c7:ca:d6: 54:fd:81:eb:83:99:e3:a5:c2:6a:46:4d:77:4f:fb: 3f:3c:24:de:07:f1:c1:b8:19:ea:c2:53:7f:b6:df: 4a:c2:4e:ab:90:93:46:3b:dc:f4:01:eb:61:0b:ca: 42:2d:23:a5:2c:55:cb:72:c4:11:b2:34:e4:a7:9c: f7:b5:7a:43:d8:01:99:64:da:4c:48:f2:7a:c4:15: 9c:6c:d8:98:32:4c:3f:90:b5:4e:9d:d2:13:50:bc: ab:1a:02:8c:db:bd:17:0e:95:18:e2:92:1f:7d:50: 52:48:10:97:ab:5f:51:07:d1:9e:d8:b9:20:a5:e3: 8c:ee:06:00:5d:6e:1c:87:bb:1c:67:f1:88:be:0b: 7b:1a:f6:55:24:05:19:6b:ed:bf:0d:46:9f:81:ed: 6c:bc:0f:f3:38:7c:3c:fb:c2:12:12:b5:2a:9b:3a: c4:83:1a:96:a0:ea:88:17:89:d0:fe:32:f3:89:ed: 74:87:b1:9a:c2:73:61:07:0b:4e:40:59:96:11:f2: e6:88:ad:b1:e7:b1:31:f3:58:14:ca:ce:f2:3d:8c: cf:67:23:5a:ad:8b:a7:bc:51:aa:4d:b1:c0:1c:f5: 1c:c9:98:fb:a0:02:66:18:da:f6:0e:99:ef:ae:88: 14:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:14:A0:E6:A2:82:AF:2A:27:68:0B:32:FC:A7:F4:57:C5:92:0B:8D X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XRSg5qKCryonaAsy_Kf0V8WSC40.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:3700::/40 Signature Algorithm: sha256WithRSAEncryption 3d:34:e5:63:4e:4c:70:1d:84:5c:3a:10:96:ee:f0:d7:fe:62: 8b:de:12:cd:5b:11:9f:86:a1:48:31:e3:ad:94:5c:1b:8a:04: b3:30:78:a5:e7:11:0d:9e:55:ed:d0:86:6e:85:d6:a3:fd:3e: e7:6b:36:89:ea:b7:f8:79:7a:df:1f:12:56:fa:78:ff:b5:f4: 63:ba:d0:ef:0c:61:7b:17:9e:80:cb:24:ef:82:af:b2:81:25: 76:79:3e:a6:e2:7f:20:ad:ff:5d:e4:db:8d:8c:62:52:2b:93: 67:75:ba:8a:a4:e9:62:d7:62:9a:6e:88:b0:af:f0:db:c1:85: ae:fd:e1:f6:e4:df:b0:a2:72:db:d2:8d:ed:47:fc:0b:bc:bc: 51:a2:21:21:4d:fe:f1:c4:a1:3c:51:23:28:d4:d8:42:89:3a: d7:ce:f1:85:c5:9d:54:7b:e6:06:4d:61:da:fe:89:21:ac:59: 4f:3f:29:3f:00:9d:f7:04:24:a8:be:f4:5e:3f:b8:30:e8:74: 63:a9:b4:0f:a0:d9:6c:1d:fc:6b:13:00:95:d7:90:ca:4b:3b: 7b:aa:86:67:aa:b4:55:b1:2f:cf:fb:00:d7:cb:8b:0a:f7:04: e4:a0:5d:52:3a:19:8d:55:89:b4:9d:79:7b:5d:0e:74:79:7b: c3:df:79:a3 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAogwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTMyMjBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVEMTRBMEU2QTI4MkFG MkEyNzY4MEIzMkZDQTdGNDU3QzU5MjBCOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4DhOP3xw+rKk5+sfK1lT9geuDmeOlwmpGTXdP+z88JN4H8cG4 GerCU3+230rCTquQk0Y73PQB62ELykItI6UsVctyxBGyNOSnnPe1ekPYAZlk2kxI 8nrEFZxs2JgyTD+QtU6d0hNQvKsaAozbvRcOlRjikh99UFJIEJerX1EH0Z7YuSCl 44zuBgBdbhyHuxxn8Yi+C3sa9lUkBRlr7b8NRp+B7Wy8D/M4fDz7whIStSqbOsSD Gpag6ogXidD+MvOJ7XSHsZrCc2EHC05AWZYR8uaIrbHnsTHzWBTKzvI9jM9nI1qt i6e8UapNscAc9RzJmPugAmYY2vYOme+uiBQvAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUXRSg5qKCryonaAsy/Kf0V8WSC40wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9YUlNnNXFLQ3J5b25hQXN5X0tmMFY4V1NDNDAu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAazcwDQYJKoZIhvcNAQELBQADggEBAD005WNOTHAdhFw6EJbu 8Nf+YoveEs1bEZ+GoUgx462UXBuKBLMweKXnEQ2eVe3Qhm6F1qP9PudrNonqt/h5 et8fElb6eP+19GO60O8MYXsXnoDLJO+Cr7KBJXZ5PqbifyCt/13k242MYlIrk2d1 uoqk6WLXYppuiLCv8NvBha794fbk37CictvSje1H/Au8vFGiISFN/vHEoTxRIyjU 2EKJOtfO8YXFnVR75gZNYdr+iSGsWU8/KT8AnfcEJKi+9F4/uDDodGOptA+g2Wwd /GsTAJXXkMpLO3uqhmeqtFWxL8/7ANfLiwr3BOSgXVI6GY1VibSdeXtdDnR5e8Pf eaM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:25:44 2025 by rpki-client