$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XxM7q-i72i3Bm7wEYxc2WQlzp70.roa File: XxM7q-i72i3Bm7wEYxc2WQlzp70.roa (raw, json) Hash identifier: ug1mpn0r0eOY641kq52vL6QyQlQ2FZD+e+6jIBwBg6Y= Subject key identifier: 5F:13:3B:AB:E8:BB:DA:2D:C1:9B:BC:04:63:17:36:59:09:73:A7:BD Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 033E Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XxM7q-i72i3Bm7wEYxc2WQlzp70.roa Signing time: Tue 30 Apr 2024 01:54:02 +0000 ROA not before: Tue 30 Apr 2024 01:54:02 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:6700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 830 (0x33e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:54:02 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=5F133BABE8BBDA2DC19BBC04631736590973A7BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:7c:1d:03:94:13:2a:26:fa:57:99:ec:7d:fe: 16:ee:f8:3e:8f:3b:63:1d:48:fe:e8:82:57:f3:98: 2e:26:82:db:07:7a:73:a9:72:e7:e3:0f:89:5c:7a: df:ac:58:8f:56:0b:0b:d6:70:83:34:1f:26:e2:8d: 10:3d:38:a9:77:5f:cc:16:57:49:cd:e7:d5:df:79: 51:41:8b:a0:52:d1:b6:cc:d7:50:fb:ae:5d:c3:e0: 01:4a:09:22:3e:f5:71:f4:a0:b4:9d:0d:76:c0:91: 01:70:b2:c7:25:db:60:31:e5:3e:26:05:0b:f0:00: 46:88:ef:88:91:ce:53:73:e6:7f:78:13:6c:37:ac: bc:bc:ae:95:53:80:20:8b:ff:7d:ac:0d:d7:21:93: 1e:b9:6d:aa:17:09:78:03:26:09:02:76:b1:20:5e: 99:49:57:47:39:59:f4:0d:65:64:c6:f7:77:85:dc: 0e:5b:bd:72:a2:a9:30:f2:29:89:69:18:60:61:37: 75:66:e8:93:68:e9:f9:f5:c8:b8:df:b7:74:b7:52: 45:b5:99:01:c8:5d:6b:e0:19:b4:05:0d:c9:08:19: 93:a2:57:0e:fc:ec:7b:7f:f2:5a:05:56:00:be:ee: ad:22:fb:52:fd:60:a8:bc:37:0f:34:15:04:85:1d: ae:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:13:3B:AB:E8:BB:DA:2D:C1:9B:BC:04:63:17:36:59:09:73:A7:BD X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XxM7q-i72i3Bm7wEYxc2WQlzp70.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:6700::/40 Signature Algorithm: sha256WithRSAEncryption 22:59:2e:4c:32:7f:e4:64:2f:3e:b2:c4:31:00:d1:f0:3d:98: 3e:fc:6a:41:08:c4:16:d9:e7:f8:7f:25:31:dd:5f:15:c0:36: 8e:61:d5:1f:9d:10:df:b2:51:a3:56:7e:a7:84:30:dd:f5:f5: f6:2c:ac:24:82:88:f9:fc:05:34:2d:6e:13:ee:e4:61:89:56: e2:5a:b7:b0:04:ae:a3:9b:1f:87:cf:15:20:25:69:10:b8:0c: 0a:5e:f4:99:a5:f0:a2:6a:59:4d:ea:e8:c4:3e:0b:85:99:53: 91:37:2c:d7:c2:c2:0e:38:ce:7a:70:1e:c8:66:a4:44:9e:d1: 23:08:d7:48:65:dc:33:46:2f:8d:d2:7e:f1:be:9e:90:8f:40: 82:df:41:f1:ff:be:45:73:f5:85:f7:e7:4b:f9:0f:ff:e4:41: af:6f:f0:2b:f8:a6:5f:0a:2c:4d:f1:ec:42:3e:2a:5a:ef:be: ab:3a:8e:fa:05:ce:b7:5a:fb:b3:50:1c:14:a5:37:5d:1f:e8: 0a:22:a4:b1:8a:39:5c:de:06:58:21:e5:c0:ea:23:77:bb:32: 66:33:42:8f:8e:9b:5b:1f:8b:a9:66:01:10:da:da:a0:ac:aa: 9a:32:1a:d7:0e:4a:34:1e:bf:5d:be:40:52:5e:73:a4:91:66: 79:d9:d4:0b -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAz4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTU0MDJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVGMTMzQkFCRThCQkRB MkRDMTlCQkMwNDYzMTczNjU5MDk3M0E3QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtfB0DlBMqJvpXmex9/hbu+D6PO2MdSP7oglfzmC4mgtsHenOp cufjD4lcet+sWI9WCwvWcIM0HybijRA9OKl3X8wWV0nN59XfeVFBi6BS0bbM11D7 rl3D4AFKCSI+9XH0oLSdDXbAkQFwsscl22Ax5T4mBQvwAEaI74iRzlNz5n94E2w3 rLy8rpVTgCCL/32sDdchkx65baoXCXgDJgkCdrEgXplJV0c5WfQNZWTG93eF3A5b vXKiqTDyKYlpGGBhN3Vm6JNo6fn1yLjft3S3UkW1mQHIXWvgGbQFDckIGZOiVw78 7Ht/8loFVgC+7q0i+1L9YKi8Nw80FQSFHa6DAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUXxM7q+i72i3Bm7wEYxc2WQlzp70wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9YeE03cS1pNzJpM0JtN3dFWXhjMldRbHpwNzAu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa2cwDQYJKoZIhvcNAQELBQADggEBACJZLkwyf+RkLz6yxDEA 0fA9mD78akEIxBbZ5/h/JTHdXxXANo5h1R+dEN+yUaNWfqeEMN319fYsrCSCiPn8 BTQtbhPu5GGJVuJat7AErqObH4fPFSAlaRC4DApe9Jml8KJqWU3q6MQ+C4WZU5E3 LNfCwg44znpwHshmpESe0SMI10hl3DNGL43SfvG+npCPQILfQfH/vkVz9YX350v5 D//kQa9v8Cv4pl8KLE3x7EI+Klrvvqs6jvoFzrda+7NQHBSlN10f6AoipLGKOVze Blgh5cDqI3e7MmYzQo+Om1sfi6lmARDa2qCsqpoyGtcOSjQev12+QFJec6SRZnnZ 1As= -----END CERTIFICATE-----Generated at Sun Feb 16 22:33:00 2025 by rpki-client