$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ZfWstGefqh0_d6fw31f4uEttngk.roa File: ZfWstGefqh0_d6fw31f4uEttngk.roa (raw, json) Hash identifier: Lw1B/EYlHf0gfuIlnR1cJryH2328WgGULkF15U0P1Xo= Subject key identifier: 65:F5:AC:B4:67:9F:AA:1D:3F:77:A7:F0:DF:57:F8:B8:4B:6D:9E:09 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 02C3 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ZfWstGefqh0_d6fw31f4uEttngk.roa Signing time: Tue 30 Apr 2024 01:39:35 +0000 ROA not before: Tue 30 Apr 2024 01:39:35 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:1600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:39:35 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=65F5ACB4679FAA1D3F77A7F0DF57F8B84B6D9E09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f5:4f:bb:2b:d0:b3:e2:13:85:49:ae:d3:c5: d7:73:7c:85:46:08:27:10:be:e1:de:34:3a:bc:7f: 95:43:3c:2d:7c:af:56:9c:d1:80:e8:2a:1a:08:61: a5:a7:da:57:f0:b1:e9:89:d5:00:e3:1f:c9:bc:0c: 01:ca:9f:c0:29:d1:bf:97:52:a1:b7:3c:79:b4:8a: fd:19:98:c8:e8:96:53:7b:b5:ea:6c:17:6d:28:a7: e4:93:84:60:5b:9e:0f:c8:cf:03:fb:d5:43:56:df: 8a:be:2d:71:5b:9d:ac:26:45:17:4a:18:e9:52:62: 9d:8c:4b:23:23:54:ad:50:ef:11:d9:8d:69:1c:7a: 45:91:7e:5e:33:9a:f4:d7:ed:e8:43:f6:33:34:f4: 2a:9f:4b:7b:fb:4a:11:fd:b9:ae:2b:b2:ac:31:39: 9a:ce:08:38:41:55:f7:0d:82:32:a4:a4:52:9a:7a: bb:f1:5e:7c:0c:30:86:3c:8a:e3:4e:a7:66:bd:1e: 3d:c6:d2:98:93:c8:f7:2f:90:07:ea:a8:e5:31:2d: 32:7a:95:71:f5:d1:57:6d:b2:15:f2:e5:d7:ee:80: 2f:b3:83:b0:57:8c:9e:08:0a:1a:10:0f:ca:f7:55: ce:ac:b9:66:84:18:e4:c6:b7:b0:4a:55:93:dc:3a: 5c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F5:AC:B4:67:9F:AA:1D:3F:77:A7:F0:DF:57:F8:B8:4B:6D:9E:09 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ZfWstGefqh0_d6fw31f4uEttngk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:1600::/40 Signature Algorithm: sha256WithRSAEncryption 54:17:f3:98:8e:16:3f:f7:54:94:b7:ef:91:65:27:15:47:46: da:d5:56:2b:c2:53:e5:e8:d3:d5:8d:2e:86:24:bd:29:60:62: 31:13:61:71:06:d7:75:a8:3c:f0:95:c5:1c:ec:97:75:b1:aa: d6:31:78:23:f2:b8:72:18:22:a4:38:c4:4a:30:28:c0:d0:6e: 25:35:62:e1:a7:9d:85:d9:54:64:dc:61:da:19:fb:ec:0b:41: f1:ea:fb:d2:22:d3:ed:76:5e:a8:c4:7f:8a:9a:64:c8:ab:fc: e7:1d:23:ab:b4:fb:3c:75:15:48:8a:d8:d6:cd:5c:f2:64:94: 15:95:45:d3:cd:22:72:2d:76:26:b2:f6:70:ce:b9:da:ad:5f: 45:61:9d:a1:5b:01:71:43:85:34:e2:fc:91:88:00:d7:39:96: cd:e6:73:51:9b:cc:2f:04:66:20:14:cf:e1:70:81:19:d8:36: 46:3f:48:26:a2:af:bc:bb:57:c0:eb:8b:2c:39:76:df:2c:e0: ab:fb:5a:a4:5c:3c:7f:79:52:37:09:da:e6:0c:f0:74:b8:46: 1b:41:e7:76:f8:16:ff:23:22:fc:21:a7:9d:fc:f7:9d:0a:e0: 90:1b:8c:2f:ce:b8:6a:b1:e9:b5:64:a3:48:da:0b:e9:26:63: 66:9b:09:ac -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTM5MzVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY1RjVBQ0I0Njc5RkFB MUQzRjc3QTdGMERGNTdGOEI4NEI2RDlFMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM9U+7K9Cz4hOFSa7TxddzfIVGCCcQvuHeNDq8f5VDPC18r1ac 0YDoKhoIYaWn2lfwsemJ1QDjH8m8DAHKn8Ap0b+XUqG3PHm0iv0ZmMjollN7teps F20op+SThGBbng/IzwP71UNW34q+LXFbnawmRRdKGOlSYp2MSyMjVK1Q7xHZjWkc ekWRfl4zmvTX7ehD9jM09CqfS3v7ShH9ua4rsqwxOZrOCDhBVfcNgjKkpFKaervx XnwMMIY8iuNOp2a9Hj3G0piTyPcvkAfqqOUxLTJ6lXH10VdtshXy5dfugC+zg7BX jJ4IChoQD8r3Vc6suWaEGOTGt7BKVZPcOlyzAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUZfWstGefqh0/d6fw31f4uEttngkwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9aZldzdEdlZnFoMF9kNmZ3MzFmNHVFdHRuZ2su cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAaxYwDQYJKoZIhvcNAQELBQADggEBAFQX85iOFj/3VJS375Fl JxVHRtrVVivCU+Xo09WNLoYkvSlgYjETYXEG13WoPPCVxRzsl3WxqtYxeCPyuHIY IqQ4xEowKMDQbiU1YuGnnYXZVGTcYdoZ++wLQfHq+9Ii0+12XqjEf4qaZMir/Ocd I6u0+zx1FUiK2NbNXPJklBWVRdPNInItdiay9nDOudqtX0VhnaFbAXFDhTTi/JGI ANc5ls3mc1GbzC8EZiAUz+FwgRnYNkY/SCair7y7V8Driyw5dt8s4Kv7WqRcPH95 UjcJ2uYM8HS4RhtB53b4Fv8jIvwhp538950K4JAbjC/OuGqx6bVko0jaC+kmY2ab Caw= -----END CERTIFICATE-----Generated at Sun Feb 16 22:21:07 2025 by rpki-client