$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/rfLLozBYJaHjdqGWaiBUdl5fvE4.roa File: rfLLozBYJaHjdqGWaiBUdl5fvE4.roa (raw, json) Hash identifier: HWXiyB5rAWoV/JdNc5ibQR1OdeGWy7FPJNnxMwkzBRY= Subject key identifier: AD:F2:CB:A3:30:58:25:A1:E3:76:A1:96:6A:20:54:76:5E:5F:BC:4E Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0297 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/rfLLozBYJaHjdqGWaiBUdl5fvE4.roa Signing time: Tue 30 Apr 2024 01:35:11 +0000 ROA not before: Tue 30 Apr 2024 01:35:11 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:70:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:35:11 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=ADF2CBA3305825A1E376A1966A2054765E5FBC4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6e:02:f7:cb:4d:b6:a8:b3:8c:3f:a9:41:53: 2d:e8:c8:c8:47:b4:f2:e4:46:3a:c8:6c:04:67:9e: 41:01:53:36:0e:01:b7:dc:b3:18:cb:e3:98:27:14: 2d:bd:3f:91:79:e7:dc:a0:0d:e1:d4:f6:93:23:68: 4f:8e:46:76:46:8d:8f:81:3d:1e:31:49:92:99:5b: 57:cc:9d:a0:12:83:34:f0:4d:05:fd:c3:c6:ed:94: 8e:e3:4d:41:f9:14:7d:33:ea:2d:3e:a1:19:a2:82: c1:eb:ed:80:bc:1f:12:af:04:ca:65:0e:f9:b5:9e: 36:aa:f0:19:d0:e2:d8:a2:19:e0:b0:8c:5a:32:76: fc:4b:82:2b:91:31:5a:13:82:8f:7e:d9:de:97:dc: 07:55:47:0a:94:30:82:d3:54:5a:48:51:f4:36:39: 4b:26:07:d7:8c:22:b2:ea:f1:1b:c2:04:cc:7f:e0: da:d1:60:61:e2:f1:c5:3b:88:4e:aa:c4:38:5f:67: eb:eb:6a:8f:ab:77:f5:f9:c9:1e:d7:1d:8e:9b:13: aa:df:a9:f7:d8:33:6c:11:0d:08:70:a9:d4:7f:33: c7:d6:5d:a7:e5:d7:b0:a9:70:1b:01:3f:eb:ae:a3: 10:4b:4f:42:ac:35:93:90:f1:66:06:6a:9a:14:79: c8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F2:CB:A3:30:58:25:A1:E3:76:A1:96:6A:20:54:76:5E:5F:BC:4E X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/rfLLozBYJaHjdqGWaiBUdl5fvE4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:70:1::/48 Signature Algorithm: sha256WithRSAEncryption 7a:f4:f0:2d:03:7b:cc:25:a5:21:5e:12:4e:da:82:e8:3d:f4: 51:26:3c:2a:c7:dd:85:47:c8:e9:c7:70:fa:33:a7:32:8e:01: 1c:24:2d:09:5a:48:95:0f:6f:42:70:74:6d:87:bf:a3:94:98: 56:db:cd:28:d0:88:32:55:72:38:4a:1b:9c:b0:05:27:fa:65: 17:ee:17:61:99:f7:e9:e4:c4:bb:ff:5c:69:de:a6:ba:73:94: 7f:ba:bb:bf:37:d5:be:79:7c:9b:91:a4:74:ee:3a:7b:71:c0: 0a:23:08:61:44:aa:7c:83:0f:fb:c2:ef:27:d3:0e:29:4b:e6: 4c:e6:2a:09:2f:f3:de:3a:1f:53:64:a2:c8:52:48:c1:c9:05: da:4b:a5:e4:ba:01:6e:86:a3:88:25:d0:93:29:0c:b2:b9:89: 5f:b6:83:17:e7:d6:47:65:4c:12:11:80:cb:5c:13:9f:32:64: 3e:9d:d4:49:51:a4:5d:31:d0:d5:2b:40:d5:82:6a:fe:47:d3: 02:90:f8:16:ff:a3:d4:92:22:80:19:8e:cc:49:48:db:01:18: 64:75:9d:46:6a:6e:39:ed:1b:ab:66:0b:69:c1:d6:44:47:df: 55:af:04:a5:d6:6e:93:e2:96:da:96:e0:44:0f:98:eb:3f:2a: 46:68:5d:5d -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgICApcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTM1MTFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFERjJDQkEzMzA1ODI1 QTFFMzc2QTE5NjZBMjA1NDc2NUU1RkJDNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDbgL3y022qLOMP6lBUy3oyMhHtPLkRjrIbARnnkEBUzYOAbfc sxjL45gnFC29P5F559ygDeHU9pMjaE+ORnZGjY+BPR4xSZKZW1fMnaASgzTwTQX9 w8btlI7jTUH5FH0z6i0+oRmigsHr7YC8HxKvBMplDvm1njaq8BnQ4tiiGeCwjFoy dvxLgiuRMVoTgo9+2d6X3AdVRwqUMILTVFpIUfQ2OUsmB9eMIrLq8RvCBMx/4NrR YGHi8cU7iE6qxDhfZ+vrao+rd/X5yR7XHY6bE6rfqffYM2wRDQhwqdR/M8fWXafl 17CpcBsBP+uuoxBLT0KsNZOQ8WYGapoUechhAgMBAAGjggIrMIICJzAdBgNVHQ4E FgQUrfLLozBYJaHjdqGWaiBUdl5fvE4wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9yZkxMb3pCWUphSGpkcUdXYWlCVWRsNWZ2RTQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAoAcAABMA0GCSqGSIb3DQEBCwUAA4IBAQB69PAtA3vMJaUhXhJO 2oLoPfRRJjwqx92FR8jpx3D6M6cyjgEcJC0JWkiVD29CcHRth7+jlJhW280o0Igy VXI4ShucsAUn+mUX7hdhmffp5MS7/1xp3qa6c5R/uru/N9W+eXybkaR07jp7ccAK IwhhRKp8gw/7wu8n0w4pS+ZM5ioJL/PeOh9TZKLIUkjByQXaS6XkugFuhqOIJdCT KQyyuYlftoMX59ZHZUwSEYDLXBOfMmQ+ndRJUaRdMdDVK0DVgmr+R9MCkPgW/6PU kiKAGY7MSUjbARhkdZ1Gam457RurZgtpwdZER99VrwSl1m6T4pbaluBED5jrPypG aF1d -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:28 2025 by rpki-client