$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/cA08o1YmYo6M67_yAMu0wlLSD1o.roa File: cA08o1YmYo6M67_yAMu0wlLSD1o.roa (raw, json) Hash identifier: nS6RtZKyLR5ZXfEaKJ2iByuYXJdQR0nULLgUtWWHUZg= Subject key identifier: 70:0D:3C:A3:56:26:62:8E:8C:EB:BF:F2:00:CB:B4:C2:52:D2:0F:5A Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 028A Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/cA08o1YmYo6M67_yAMu0wlLSD1o.roa Signing time: Tue 30 Apr 2024 01:32:21 +0000 ROA not before: Tue 30 Apr 2024 01:32:21 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:e400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 650 (0x28a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:32:21 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=700D3CA35626628E8CEBBFF200CBB4C252D20F5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6e:c7:3f:a5:31:1a:e1:2b:1e:59:b4:be:11: 6a:3d:27:bf:98:57:40:a2:69:b1:0e:73:87:3c:c7: bd:46:52:26:ff:fc:98:61:ab:60:11:1c:0a:3d:3d: b3:95:10:e0:f4:c6:de:69:8b:88:9b:8d:01:cf:89: b9:7c:de:70:ed:85:fa:75:f3:7d:27:4f:77:4d:60: 85:a1:f3:4e:9b:92:cc:bc:5c:dc:8c:54:5f:12:e2: d4:a9:10:34:58:0b:32:4a:1a:9f:b9:48:f3:d7:c8: c5:6a:b8:c7:7c:46:02:2b:de:cf:28:69:a2:b5:f7: b9:a6:16:de:5e:af:3d:b2:7c:69:62:93:9b:04:03: bd:4b:5e:0a:b4:75:b3:79:0c:ee:11:db:b4:36:d5: d9:c2:2b:71:b6:dd:dd:3e:a4:9b:35:aa:24:e7:9f: e0:fc:be:57:5d:de:8f:98:67:df:4f:fa:2b:dd:41: c7:9d:49:51:ca:2f:25:1d:a5:2c:48:cf:04:a5:75: 83:4f:be:f9:59:70:df:b1:de:d7:15:84:c2:0c:ef: 8d:7c:f2:bb:46:b9:99:de:2a:f3:97:77:83:7d:8f: fc:75:7c:ec:15:3b:d6:c6:1d:a0:a1:34:db:7d:6d: ff:a4:7b:a6:01:38:22:8f:6a:76:e3:3f:f1:ea:85: a7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0D:3C:A3:56:26:62:8E:8C:EB:BF:F2:00:CB:B4:C2:52:D2:0F:5A X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/cA08o1YmYo6M67_yAMu0wlLSD1o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:e400::/40 Signature Algorithm: sha256WithRSAEncryption 69:2b:fc:1a:c8:37:aa:81:e5:42:60:b8:c6:1a:19:45:67:41: 2c:29:b7:68:22:eb:f1:ae:c4:34:bf:69:e8:9c:eb:98:f0:c0: 26:6d:53:53:34:64:e2:c2:29:a1:c9:0d:49:44:8e:a1:fd:ea: 2f:2a:f7:64:d2:3e:48:2f:e1:8a:49:8f:c4:10:4b:54:f7:e2: 57:59:ac:dc:03:98:67:8e:0c:c3:b4:02:f5:a2:dd:a6:12:c4: 44:fc:8d:85:d8:f1:77:00:c6:04:27:ad:09:0c:18:a1:aa:da: c1:a3:76:f2:6b:cd:87:48:15:24:d1:95:52:b9:9b:0b:ac:91: 53:05:61:6f:3d:66:8a:4b:b6:44:79:99:24:bf:8e:a5:49:d4: 88:bf:a3:14:1b:45:32:b4:9a:07:ef:83:ce:96:cd:4d:93:20: 8a:10:82:a8:ed:c4:c0:2c:ec:f5:fb:7d:8b:b5:74:ac:66:70: a2:02:af:0f:46:60:1a:c4:ac:03:8b:fe:f6:08:55:ae:02:5c: 3c:d1:e1:5f:1f:fe:75:6d:a2:2f:75:04:65:c9:7d:ce:62:fc: c6:67:57:e3:ca:64:34:1d:0a:c1:34:02:b8:b8:0d:36:32:95: 1c:f6:0b:5a:05:c3:c6:21:25:ab:dd:93:b2:25:f9:91:43:69: 17:61:4c:3a -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAoowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTMyMjFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcwMEQzQ0EzNTYyNjYy OEU4Q0VCQkZGMjAwQ0JCNEMyNTJEMjBGNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/bsc/pTEa4SseWbS+EWo9J7+YV0CiabEOc4c8x71GUib//Jhh q2ARHAo9PbOVEOD0xt5pi4ibjQHPibl83nDthfp1830nT3dNYIWh806bksy8XNyM VF8S4tSpEDRYCzJKGp+5SPPXyMVquMd8RgIr3s8oaaK197mmFt5erz2yfGlik5sE A71LXgq0dbN5DO4R27Q21dnCK3G23d0+pJs1qiTnn+D8vldd3o+YZ99P+ivdQced SVHKLyUdpSxIzwSldYNPvvlZcN+x3tcVhMIM74188rtGuZneKvOXd4N9j/x1fOwV O9bGHaChNNt9bf+ke6YBOCKPanbjP/HqhaefAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUcA08o1YmYo6M67/yAMu0wlLSD1owHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9jQTA4bzFZbVlvNk02N195QU11MHdsTFNEMW8u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa+QwDQYJKoZIhvcNAQELBQADggEBAGkr/BrIN6qB5UJguMYa GUVnQSwpt2gi6/GuxDS/aeic65jwwCZtU1M0ZOLCKaHJDUlEjqH96i8q92TSPkgv 4YpJj8QQS1T34ldZrNwDmGeODMO0AvWi3aYSxET8jYXY8XcAxgQnrQkMGKGq2sGj dvJrzYdIFSTRlVK5mwuskVMFYW89ZopLtkR5mSS/jqVJ1Ii/oxQbRTK0mgfvg86W zU2TIIoQgqjtxMAs7PX7fYu1dKxmcKICrw9GYBrErAOL/vYIVa4CXDzR4V8f/nVt oi91BGXJfc5i/MZnV+PKZDQdCsE0Ari4DTYylRz2C1oFw8YhJavdk7Il+ZFDaRdh TDo= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:17 2024 by rpki-client on console-ams.rpki-client.org