$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Yb9anqC8R54G7d9OozKvENFzRSc.roa File: Yb9anqC8R54G7d9OozKvENFzRSc.roa (raw, json) Hash identifier: 4+MKlTGXV43ORi3Q6GL92cegif+xQ4KVFobME6+d81Y= Subject key identifier: 61:BF:5A:9E:A0:BC:47:9E:06:ED:DF:4E:A3:32:AF:10:D1:73:45:27 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0337 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Yb9anqC8R54G7d9OozKvENFzRSc.roa Signing time: Tue 30 Apr 2024 01:53:58 +0000 ROA not before: Tue 30 Apr 2024 01:53:58 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:53:58 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=61BF5A9EA0BC479E06EDDF4EA332AF10D1734527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:6d:c8:05:b7:04:fb:5e:78:81:c1:f2:0e:66: 30:37:6e:b8:1a:4b:ef:b8:a0:1c:3d:40:43:d9:ba: aa:ad:f8:b2:53:f9:2a:4f:52:05:bd:d2:f6:86:9c: b3:05:f4:3d:44:46:15:b8:61:8f:c9:80:42:c8:16: f5:11:76:f2:62:37:3c:98:fb:a5:53:09:9c:35:82: ea:d5:15:ba:6c:7e:b8:d1:78:7c:35:91:b5:51:b9: 08:03:4e:22:d0:88:b8:40:df:4a:9e:b3:32:d1:c2: d0:ea:d4:38:f6:e2:c8:e4:27:b6:8a:85:48:c5:5a: 2e:f7:85:56:fb:03:0f:65:67:f3:13:d0:85:e0:22: ae:c5:7f:f8:d7:6a:c4:cf:c7:a1:20:f4:eb:b8:0d: 0e:f5:3b:4d:fa:a7:e7:ee:66:f3:e7:81:3e:2d:d4: b1:b0:51:8e:15:5f:84:dd:21:53:16:74:3f:8b:91: 48:82:a0:c4:49:28:38:97:4b:28:d7:da:af:1e:05: 0e:cf:43:36:86:c2:35:cd:0c:a6:04:50:c2:ea:15: 25:bb:9f:69:44:15:1c:1b:07:ef:63:74:dc:a1:0e: 09:4a:d8:8f:cf:96:c5:1b:fb:55:2d:7c:ec:fd:b3: 2d:ca:0a:41:a7:fb:42:9f:44:76:1d:41:ea:fa:5a: 5d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BF:5A:9E:A0:BC:47:9E:06:ED:DF:4E:A3:32:AF:10:D1:73:45:27 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/Yb9anqC8R54G7d9OozKvENFzRSc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b::/40 Signature Algorithm: sha256WithRSAEncryption a0:0a:87:52:69:c3:2e:51:36:08:84:d5:50:d8:ca:2b:6b:bb: 35:60:68:39:fb:1e:89:db:8a:59:7a:4f:85:02:2c:33:40:18: 47:54:d6:2c:86:d6:77:be:44:fa:fe:17:59:0c:dc:8a:92:a2: 6b:46:75:04:61:b1:52:0e:d8:9a:da:e4:9c:e4:3f:f1:25:35: 88:20:c6:fd:51:d0:10:c7:14:97:df:12:dd:7a:c1:4d:69:e4: 58:86:7f:95:aa:28:f0:c0:90:34:b2:20:9d:ea:7a:34:c8:bc: 08:38:e1:0b:3f:62:8e:56:11:cb:e1:75:ee:98:cf:12:fd:0d: f7:bd:7e:27:fb:b8:29:31:fa:e4:b9:38:4a:06:70:b6:21:d9: ee:3b:89:20:c2:95:23:d9:b0:7a:b3:e1:26:34:c9:7c:e2:53: 7b:67:cc:0b:c7:45:05:40:12:4e:02:76:b6:2c:b9:fc:d3:8f: a2:c9:52:a9:1f:67:ba:67:a3:99:be:bd:82:1b:24:f1:7d:b4: 36:2f:4d:7c:e9:b0:72:ed:5d:6e:33:3f:5d:ba:0b:37:9c:ce: 70:70:ed:70:49:c7:ba:1a:1c:de:7a:7f:bf:d4:0b:16:67:6b: de:49:15:77:2d:df:42:95:a4:7c:7a:4e:24:69:2c:6e:74:3d: 8d:7a:16:63 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTUzNThaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYxQkY1QTlFQTBCQzQ3 OUUwNkVEREY0RUEzMzJBRjEwRDE3MzQ1MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbbcgFtwT7XniBwfIOZjA3brgaS++4oBw9QEPZuqqt+LJT+SpP UgW90vaGnLMF9D1ERhW4YY/JgELIFvURdvJiNzyY+6VTCZw1gurVFbpsfrjReHw1 kbVRuQgDTiLQiLhA30qeszLRwtDq1Dj24sjkJ7aKhUjFWi73hVb7Aw9lZ/MT0IXg Iq7Ff/jXasTPx6Eg9Ou4DQ71O036p+fuZvPngT4t1LGwUY4VX4TdIVMWdD+LkUiC oMRJKDiXSyjX2q8eBQ7PQzaGwjXNDKYEUMLqFSW7n2lEFRwbB+9jdNyhDglK2I/P lsUb+1UtfOz9sy3KCkGn+0KfRHYdQer6Wl3LAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUYb9anqC8R54G7d9OozKvENFzRScwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9ZYjlhbnFDOFI1NEc3ZDlPb3pLdkVORnpSU2Mu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAawAwDQYJKoZIhvcNAQELBQADggEBAKAKh1Jpwy5RNgiE1VDY yitruzVgaDn7Honbill6T4UCLDNAGEdU1iyG1ne+RPr+F1kM3IqSomtGdQRhsVIO 2Jra5JzkP/ElNYggxv1R0BDHFJffEt16wU1p5FiGf5WqKPDAkDSyIJ3qejTIvAg4 4Qs/Yo5WEcvhde6YzxL9Dfe9fif7uCkx+uS5OEoGcLYh2e47iSDClSPZsHqz4SY0 yXziU3tnzAvHRQVAEk4CdrYsufzTj6LJUqkfZ7pno5m+vYIbJPF9tDYvTXzpsHLt XW4zP126CzecznBw7XBJx7oaHN56f7/UCxZna95JFXct30KVpHx6TiRpLG50PY16 FmM= -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:13 2024 by rpki-client on console-fra.rpki-client.org