$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/xTsU0RzgAEscaOMh_NooSr860pw.roa File: xTsU0RzgAEscaOMh_NooSr860pw.roa (raw, json) Hash identifier: tBcTAFFnCCdZekxV6bfuknEUDSXLN7DC6VS3ZSPHV6w= Subject key identifier: C5:3B:14:D1:1C:E0:00:4B:1C:68:E3:21:FC:DA:28:4A:BF:3A:D2:9C Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 028C Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/xTsU0RzgAEscaOMh_NooSr860pw.roa Signing time: Tue 30 Apr 2024 01:32:23 +0000 ROA not before: Tue 30 Apr 2024 01:32:23 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 240a:6b:9600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 22:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 30 01:32:23 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=C53B14D11CE0004B1C68E321FCDA284ABF3AD29C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d5:6b:86:2f:55:8d:3c:97:d0:55:e9:4f:b1: 9b:63:f7:60:43:ff:74:1f:81:0f:d6:e3:2d:87:3e: ac:59:3f:c3:70:1c:2e:de:98:98:db:c7:1f:33:65: 04:55:1c:83:5a:bd:26:90:45:71:70:9d:d2:9d:be: df:80:b9:b9:e3:a7:49:5f:2c:88:f5:6c:8f:04:d2: ed:db:a6:20:08:41:09:74:30:9e:64:91:06:29:70: 0f:2b:18:0f:50:d5:56:20:17:98:c0:44:09:33:f7: 21:17:06:9d:b6:91:d1:b2:13:f9:36:c9:87:8a:0a: b6:b7:3a:f3:ce:c9:9b:f5:eb:a9:91:fa:1d:25:91: e7:38:13:fe:5d:94:4e:90:d8:0f:7a:b2:0b:14:50: 9e:74:32:93:f8:db:a4:f7:f8:62:12:13:51:bd:7a: aa:05:63:72:a1:b2:36:4f:b9:40:67:e0:b9:fa:c6: 29:71:7a:0e:b0:84:02:6a:f0:83:80:36:df:b9:d6: a0:46:5a:1c:c0:be:86:17:44:2d:11:4d:25:8c:ec: 54:da:08:70:de:11:b7:34:cb:b0:25:88:84:82:41: c7:47:af:5a:10:7d:50:16:91:49:25:dc:d0:40:b4: df:8e:fa:21:be:0b:9e:2e:31:90:7f:7b:f3:54:62: 29:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3B:14:D1:1C:E0:00:4B:1C:68:E3:21:FC:DA:28:4A:BF:3A:D2:9C X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/xTsU0RzgAEscaOMh_NooSr860pw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:9600::/40 Signature Algorithm: sha256WithRSAEncryption 62:0b:d7:7a:0b:d9:5e:ed:10:e6:41:69:00:7b:53:03:77:94: 1c:9a:4d:f6:c0:85:e3:94:4e:fc:42:af:1e:00:9b:d8:e5:b4: af:a9:4b:9b:5a:54:cf:ba:54:05:8f:db:3f:8d:5c:33:5d:5a: b1:26:2f:15:6a:0b:25:9b:9f:57:a2:d6:cf:d0:c4:13:75:98: 8a:38:ed:8a:7d:28:63:09:43:43:73:41:39:af:75:a3:9a:3c: c4:f2:f8:f7:2d:b6:0f:78:21:b9:c6:dd:6e:7a:ca:c8:ac:64: af:b9:5d:2c:59:58:d5:95:fd:60:4c:6e:60:34:b4:8e:bc:ce: 1c:55:c3:38:d0:53:bf:28:f4:27:d3:c2:92:f9:2d:87:ab:7e: 2b:95:40:3b:c9:2b:fb:15:bd:7f:fd:7d:21:7d:21:54:23:a8: 18:e6:02:fe:87:80:3e:80:88:35:b1:fc:3f:d3:8a:c1:e1:d9: 07:fc:82:db:32:63:6e:29:6c:cc:f6:88:b5:dd:db:60:a1:6b: 59:98:df:40:26:3d:24:98:f5:e3:18:ec:43:fe:60:cc:89:60: 3b:b6:52:bf:4f:65:a3:bd:a6:db:43:c7:9e:45:f9:14:a3:00: 36:78:82:26:54:cd:ff:20:cb:4e:24:57:99:8c:b2:2c:a1:c9: 30:b0:80:8b -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICAowwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNDA0MzAw MTMyMjNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM1M0IxNEQxMUNFMDAw NEIxQzY4RTMyMUZDREEyODRBQkYzQUQyOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm1WuGL1WNPJfQVelPsZtj92BD/3QfgQ/W4y2HPqxZP8NwHC7e mJjbxx8zZQRVHINavSaQRXFwndKdvt+Aubnjp0lfLIj1bI8E0u3bpiAIQQl0MJ5k kQYpcA8rGA9Q1VYgF5jARAkz9yEXBp22kdGyE/k2yYeKCra3OvPOyZv166mR+h0l kec4E/5dlE6Q2A96sgsUUJ50MpP426T3+GISE1G9eqoFY3KhsjZPuUBn4Ln6xilx eg6whAJq8IOANt+51qBGWhzAvoYXRC0RTSWM7FTaCHDeEbc0y7AliISCQcdHr1oQ fVAWkUkl3NBAtN+O+iG+C54uMZB/e/NUYikDAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUxTsU0RzgAEscaOMh/NooSr860pwwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS94VHNVMFJ6Z0FFc2NhT01oX05vb1NyODYwcHcu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa5YwDQYJKoZIhvcNAQELBQADggEBAGIL13oL2V7tEOZBaQB7 UwN3lByaTfbAheOUTvxCrx4Am9jltK+pS5taVM+6VAWP2z+NXDNdWrEmLxVqCyWb n1ei1s/QxBN1mIo47Yp9KGMJQ0NzQTmvdaOaPMTy+Pcttg94IbnG3W56ysisZK+5 XSxZWNWV/WBMbmA0tI68zhxVwzjQU78o9CfTwpL5LYerfiuVQDvJK/sVvX/9fSF9 IVQjqBjmAv6HgD6AiDWx/D/TisHh2Qf8gtsyY24pbMz2iLXd22Cha1mY30AmPSSY 9eMY7EP+YMyJYDu2Ur9PZaO9pttDx55F+RSjADZ4giZUzf8gy04kV5mMsiyhyTCw gIs= -----END CERTIFICATE-----Generated at Fri Jun 7 00:11:43 2024 by rpki-client on console-ams.rpki-client.org