$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ZoU9fJGiq4j9zOKCb3YUN0G0JTE.roa File: ZoU9fJGiq4j9zOKCb3YUN0G0JTE.roa (raw, json) Hash identifier: 1D5mp+H9nDHdVog+Zbneo2Ws8FGpZdDZuNBEaoVcfTo= Subject key identifier: 66:85:3D:7C:91:A2:AB:88:FD:CC:E2:82:6F:76:14:37:41:B4:25:31 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 02FF Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ZoU9fJGiq4j9zOKCb3YUN0G0JTE.roa Signing time: Tue 30 Apr 2024 01:48:10 +0000 ROA not before: Tue 30 Apr 2024 01:48:10 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:3900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:48:10 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=66853D7C91A2AB88FDCCE2826F76143741B42531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:17:72:07:99:66:4d:22:31:61:9f:f4:d9:32: 95:6c:a8:d3:f8:36:86:f2:fb:13:2d:1d:8c:49:20: e7:a5:6c:1a:cc:bf:a2:7f:45:35:6b:9f:62:a4:1d: bf:85:f9:01:98:75:48:8b:4f:2b:6d:43:80:5f:7e: 3e:42:f2:e0:98:b7:98:02:49:13:25:b2:9f:af:5f: 53:4a:8c:5b:a0:6f:7c:2f:ea:36:a2:ac:da:29:e5: f5:b4:d2:2a:e5:0a:bc:7f:3a:e4:a0:be:23:17:da: 2a:17:b8:8a:e4:55:09:4d:2f:24:92:c3:63:ab:12: d8:58:a2:69:b9:f2:aa:65:a7:85:d8:2e:95:3f:86: 9a:8d:80:c8:34:0d:0a:91:1d:87:f0:f0:3c:13:7a: 0b:a7:c1:e5:89:d4:db:ca:7b:29:98:c3:2c:9a:7f: 29:dd:a6:45:5f:cf:b8:51:c1:a2:ac:cc:cd:14:3e: 02:ff:06:2d:34:ae:30:bb:a9:22:7f:61:c3:d6:66: 50:85:eb:e9:25:6d:0c:f6:eb:1c:e2:0a:b2:ab:cc: d7:92:32:f9:f4:1d:f8:9d:6a:54:a3:6e:78:66:5d: 32:40:94:f1:30:69:4e:cc:ca:45:89:88:55:e6:75: 6a:eb:d6:eb:52:15:ae:86:2e:da:d9:e5:56:e1:3c: 4b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:85:3D:7C:91:A2:AB:88:FD:CC:E2:82:6F:76:14:37:41:B4:25:31 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ZoU9fJGiq4j9zOKCb3YUN0G0JTE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:3900::/40 Signature Algorithm: sha256WithRSAEncryption 17:72:fc:3e:b2:45:84:3a:40:96:5a:b0:9a:1a:8d:1a:c9:bb: 79:8d:93:06:c8:0f:6e:a2:73:ce:ac:eb:22:09:25:9f:0b:fb: 57:27:11:2b:7a:32:d1:b9:ca:8a:eb:0f:53:c2:75:0d:8e:6f: bc:1b:08:7c:b4:48:b1:a1:2e:bb:31:f4:b2:c2:98:5f:53:64: 14:74:e8:60:f0:48:b7:11:d4:08:0e:b4:8e:c7:b3:61:0f:53: 36:d5:07:90:16:0e:5f:1b:d6:54:4b:7d:74:ff:4f:7f:ab:2f: 2d:23:84:38:cf:19:e3:6f:49:5a:11:8a:49:fe:ed:76:5e:03: ef:b9:6f:f8:d5:37:ce:6c:66:db:2e:f8:96:f5:c3:85:25:89: 8a:99:12:d5:fa:50:fb:9d:d1:4c:69:dc:8e:d5:0d:fe:f2:88: c3:38:60:45:0d:5e:48:ed:47:5c:ed:c9:fa:c4:21:df:df:ee: 48:03:9c:9e:ba:69:13:60:57:59:c3:b7:fa:90:39:36:18:f2: b2:71:55:02:5e:5b:ab:95:85:d1:e6:70:2e:5d:09:ff:2d:4b: a3:58:92:56:6f:38:50:34:e6:1e:2c:f0:70:7b:51:5a:c9:be: 34:86:93:ba:32:6e:da:4e:8e:44:03:eb:98:f4:c9:b2:9b:7e: c1:d6:0f:11 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTQ4MTBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDY2ODUzRDdDOTFBMkFC ODhGRENDRTI4MjZGNzYxNDM3NDFCNDI1MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuF3IHmWZNIjFhn/TZMpVsqNP4Noby+xMtHYxJIOelbBrMv6J/ RTVrn2KkHb+F+QGYdUiLTyttQ4Bffj5C8uCYt5gCSRMlsp+vX1NKjFugb3wv6jai rNop5fW00irlCrx/OuSgviMX2ioXuIrkVQlNLySSw2OrEthYomm58qplp4XYLpU/ hpqNgMg0DQqRHYfw8DwTegunweWJ1NvKeymYwyyafyndpkVfz7hRwaKszM0UPgL/ Bi00rjC7qSJ/YcPWZlCF6+klbQz26xziCrKrzNeSMvn0HfidalSjbnhmXTJAlPEw aU7MykWJiFXmdWrr1utSFa6GLtrZ5VbhPEu7AgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUZoU9fJGiq4j9zOKCb3YUN0G0JTEwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9ab1U5ZkpHaXE0ajl6T0tDYjNZVU4wRzBKVEUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAazkwDQYJKoZIhvcNAQELBQADggEBABdy/D6yRYQ6QJZasJoa jRrJu3mNkwbID26ic86s6yIJJZ8L+1cnESt6MtG5yorrD1PCdQ2Ob7wbCHy0SLGh Lrsx9LLCmF9TZBR06GDwSLcR1AgOtI7Hs2EPUzbVB5AWDl8b1lRLfXT/T3+rLy0j hDjPGeNvSVoRikn+7XZeA++5b/jVN85sZtsu+Jb1w4UliYqZEtX6UPud0Uxp3I7V Df7yiMM4YEUNXkjtR1ztyfrEId/f7kgDnJ66aRNgV1nDt/qQOTYY8rJxVQJeW6uV hdHmcC5dCf8tS6NYklZvOFA05h4s8HB7UVrJvjSGk7oybtpOjkQD65j0ybKbfsHW DxE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:33:28 2025 by rpki-client