$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/h5lgWhfZ1uQhy02oIsj7pjizDNY.roa File: h5lgWhfZ1uQhy02oIsj7pjizDNY.roa (raw, json) Hash identifier: 6tVYIEAIWvx0KTSQo7LYrs0ZxAjN8K73tXs7C4O1yDQ= Subject key identifier: 87:99:60:5A:17:D9:D6:E4:21:CB:4D:A8:22:C8:FB:A6:38:B3:0C:D6 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0259 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/h5lgWhfZ1uQhy02oIsj7pjizDNY.roa Signing time: Thu 27 Jul 2023 17:23:37 +0000 ROA not before: Thu 27 Jul 2023 17:23:37 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 240a:0:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Jul 27 17:23:37 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=8799605A17D9D6E421CB4DA822C8FBA638B30CD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:54:a2:7f:2a:78:d5:00:7b:93:cf:04:da:18: 27:e7:20:95:a5:f7:21:18:28:e9:73:e1:1b:94:43: 94:91:42:44:bf:3d:af:db:f5:46:69:de:20:3e:05: ea:4b:f8:4f:b6:8f:ea:fa:da:a9:57:f8:cc:c9:bd: 63:58:bd:a2:4e:e9:56:55:5f:7d:4d:d6:01:bd:51: 2f:00:f3:76:51:31:73:4a:61:32:4c:56:55:da:cc: 82:0e:7b:9a:f0:00:97:4d:cb:09:18:65:3f:76:6e: 0b:b8:70:dd:5c:47:d2:66:21:0b:c0:c9:e4:50:cf: 3e:18:a7:cc:af:a8:d0:12:82:ba:05:b4:dc:8e:be: 87:7f:f9:d6:a6:72:5d:bf:1b:08:6e:30:fd:0e:39: 2d:a5:5d:52:fe:e7:62:80:4f:e1:36:de:4d:6a:15: 5b:4b:a7:db:bf:6d:17:d0:28:98:a8:92:2f:a4:b0: de:d7:5e:fa:bb:1d:7b:e3:a6:87:db:59:3a:58:5d: d8:fb:e1:05:e3:1a:78:9a:7f:64:f4:22:02:13:cf: 36:89:78:d7:b0:09:63:8f:ca:e0:db:f7:73:e6:05: 55:e4:34:c4:ba:7e:7d:07:c5:c5:7b:5c:de:2d:14: 31:55:27:ab:d2:f6:1e:92:2b:11:61:7f:3e:20:98: 1e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:99:60:5A:17:D9:D6:E4:21:CB:4D:A8:22:C8:FB:A6:38:B3:0C:D6 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/h5lgWhfZ1uQhy02oIsj7pjizDNY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:0:800::/40 Signature Algorithm: sha256WithRSAEncryption c9:30:58:56:49:cb:65:dc:8a:8d:9b:be:3d:51:bc:4b:cd:11: e1:22:05:f5:14:da:8a:26:a4:10:79:74:4f:05:ea:a1:57:93: c6:60:38:ca:e8:5e:f2:f5:25:84:60:a2:f6:93:86:25:e4:16: 2e:a6:bc:5c:ed:9d:bc:8c:a4:29:d7:9a:3c:1d:61:6e:5b:7e: 51:0d:b1:80:33:b1:05:18:cf:3d:fb:12:ca:f8:13:2d:ed:88: 7d:94:b3:58:7f:24:75:eb:79:e4:60:da:3b:98:17:17:13:87: 2c:6d:6c:cf:59:30:6d:c8:f6:ec:6b:e1:19:2c:31:18:47:52: de:4c:e6:29:79:3a:33:a6:79:39:1e:f3:48:59:31:de:a7:eb: b5:07:c6:c6:d2:cf:2c:23:44:85:85:88:99:97:bb:20:fe:c7: 0a:5b:61:4e:a3:67:e9:12:2a:3f:d1:e9:ac:37:2a:74:a6:c6: f3:ad:b1:82:b9:c0:c1:9f:c2:fb:39:22:57:76:27:d6:b0:0b: 8c:10:e9:2a:3d:1c:32:5d:04:08:4b:82:c9:0d:0e:31:38:5b: 94:03:ba:10:37:ed:4f:04:35:69:ec:ea:0e:18:da:4f:1c:8c: 1c:d6:ef:45:91:d9:c4:74:06:84:86:96:b7:70:ed:d1:de:ea: d1:d1:0c:2f -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yMzA3Mjcx NzIzMzdaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDg3OTk2MDVBMTdEOUQ2 RTQyMUNCNERBODIyQzhGQkE2MzhCMzBDRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBVKJ/KnjVAHuTzwTaGCfnIJWl9yEYKOlz4RuUQ5SRQkS/Pa/b 9UZp3iA+BepL+E+2j+r62qlX+MzJvWNYvaJO6VZVX31N1gG9US8A83ZRMXNKYTJM VlXazIIOe5rwAJdNywkYZT92bgu4cN1cR9JmIQvAyeRQzz4Yp8yvqNASgroFtNyO vod/+damcl2/GwhuMP0OOS2lXVL+52KAT+E23k1qFVtLp9u/bRfQKJioki+ksN7X Xvq7HXvjpofbWTpYXdj74QXjGniaf2T0IgITzzaJeNewCWOPyuDb93PmBVXkNMS6 fn0HxcV7XN4tFDFVJ6vS9h6SKxFhfz4gmB6TAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUh5lgWhfZ1uQhy02oIsj7pjizDNYwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9oNWxnV2hmWjF1UWh5MDJvSXNqN3BqaXpETlku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAAAgwDQYJKoZIhvcNAQELBQADggEBAMkwWFZJy2Xcio2bvj1R vEvNEeEiBfUU2oompBB5dE8F6qFXk8ZgOMroXvL1JYRgovaThiXkFi6mvFztnbyM pCnXmjwdYW5bflENsYAzsQUYzz37Esr4Ey3tiH2Us1h/JHXreeRg2juYFxcThyxt bM9ZMG3I9uxr4RksMRhHUt5M5il5OjOmeTke80hZMd6n67UHxsbSzywjRIWFiJmX uyD+xwpbYU6jZ+kSKj/R6aw3KnSmxvOtsYK5wMGfwvs5Ild2J9awC4wQ6So9HDJd BAhLgskNDjE4W5QDuhA37U8ENWns6g4Y2k8cjBzW70WR2cR0BoSGlrdw7dHe6tHR DC8= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:20 2024 by rpki-client on console-ams.rpki-client.org