$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30140/kI63gFkCo_i3jpmeBNqwZObnJVQ.roa File: kI63gFkCo_i3jpmeBNqwZObnJVQ.roa (raw, json) Hash identifier: Dc18JVPLKVFsPGYjMDpxRzEE7DDbq72QYXZIpR31FCU= Subject key identifier: 90:8E:B7:80:59:02:A3:F8:B7:8E:99:9E:04:DA:B0:64:E6:E7:25:54 Certificate issuer: /CN=A68ECA29D06CB4C00611BA4AD8526F0490CC6E7D Certificate serial: 38 Authority key identifier: A6:8E:CA:29:D0:6C:B4:C0:06:11:BA:4A:D8:52:6F:04:90:CC:6E:7D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/po7KKdBstMAGEbpK2FJvBJDMbn0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30140/kI63gFkCo_i3jpmeBNqwZObnJVQ.roa Signing time: Sun 30 Jun 2024 01:31:43 +0000 ROA not before: Sun 30 Jun 2024 01:31:43 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 17948 IP address blocks: 2402:d600::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30140/po7KKdBstMAGEbpK2FJvBJDMbn0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30140/po7KKdBstMAGEbpK2FJvBJDMbn0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/po7KKdBstMAGEbpK2FJvBJDMbn0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A68ECA29D06CB4C00611BA4AD8526F0490CC6E7D Validity Not Before: Jun 30 01:31:43 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=908EB7805902A3F8B78E999E04DAB064E6E72554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e4:e0:7e:44:85:e3:3f:0b:6b:37:ef:63:a0: 34:6f:6c:6d:32:d0:15:3c:32:df:f9:a8:42:f6:47: 58:82:31:eb:9a:5d:48:37:5c:79:8f:ae:c1:25:5f: ce:51:24:01:75:f8:64:e6:e0:0f:ed:e5:c4:a9:8e: db:15:6a:2b:51:fd:6a:46:46:ab:ed:ae:e4:00:b9: 4e:51:69:d9:e1:44:90:84:c2:76:8c:3a:b8:ef:5a: 7d:93:f9:1c:d8:c2:b4:10:83:46:ab:e6:8c:e9:65: 91:81:fc:10:19:df:03:cb:04:2f:f5:c6:e2:e4:23: bd:bf:d0:b5:f6:ea:51:d6:71:d8:9f:5d:eb:c8:f4: 04:ce:87:f8:3a:82:3a:ec:f0:14:a7:a8:5e:f0:b5: e4:ac:3b:13:4d:4d:55:3d:33:f9:3e:52:b6:e5:b3: fd:3b:97:bb:f6:fe:69:43:a1:21:5c:cc:a9:4e:e9: a5:0b:2c:42:a9:5e:93:0a:87:7c:33:61:02:31:e9: 15:66:5a:c5:e3:cd:83:dd:32:c6:db:2c:a1:ae:e7: 3b:65:7a:d0:ab:44:b2:c8:d5:7d:e6:8f:d9:89:52: cd:13:31:5e:e1:e5:bd:45:5e:60:36:9b:e4:c4:ba: fe:d5:f9:75:90:be:5a:24:f8:59:2e:bb:42:d3:6c: 52:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:8E:B7:80:59:02:A3:F8:B7:8E:99:9E:04:DA:B0:64:E6:E7:25:54 X509v3 Authority Key Identifier: keyid:A6:8E:CA:29:D0:6C:B4:C0:06:11:BA:4A:D8:52:6F:04:90:CC:6E:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30140/po7KKdBstMAGEbpK2FJvBJDMbn0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/po7KKdBstMAGEbpK2FJvBJDMbn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30140/kI63gFkCo_i3jpmeBNqwZObnJVQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:d600::/32 Signature Algorithm: sha256WithRSAEncryption 28:03:a3:c6:42:8e:5b:eb:ad:6b:5d:cf:40:00:15:ed:1e:17: c6:a5:1f:75:57:13:3d:3a:7a:e3:37:70:8e:e2:36:16:8c:e8: 4c:2e:f9:77:37:75:cf:90:34:af:49:6b:c8:87:ae:08:6e:03: 75:ca:a4:7a:f4:dd:b1:be:06:ec:77:5c:2f:f2:26:49:5c:90: 7b:79:64:91:61:23:4f:98:2b:ed:3a:20:75:98:fc:fe:f6:cc: d3:68:27:36:1d:6a:a7:a5:c3:fc:2f:98:0c:c1:54:aa:24:fd: a2:4b:1e:d2:db:14:cd:10:81:5c:c1:8b:59:fc:76:bf:e2:91: 90:d8:51:e7:ee:62:82:cd:fa:56:69:db:0c:ed:57:4b:8b:d6: bd:8d:36:ec:03:66:2f:62:d7:b6:07:5c:86:8c:e1:39:0e:8a: 85:01:03:83:37:7a:ee:98:2c:6b:19:0f:ea:91:06:2e:69:e1: e1:bc:e3:3a:3e:23:08:12:e8:6e:f8:24:45:80:0c:37:14:87: fc:22:da:e5:30:bf:de:3c:48:ab:9e:8b:ff:99:80:67:13:26: c6:e9:f9:59:39:88:82:84:7a:cc:a4:24:e3:2a:8d:02:06:fc: 6a:fe:bc:36:83:b6:72:70:df:c5:7a:e7:67:f5:db:47:aa:d4: 8e:9e:85:e8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBNjhF Q0EyOUQwNkNCNEMwMDYxMUJBNEFEODUyNkYwNDkwQ0M2RTdEMB4XDTI0MDYzMDAx MzE0M1oXDTI1MDYyNDEwNDY0NVowMzExMC8GA1UEAxMoOTA4RUI3ODA1OTAyQTNG OEI3OEU5OTlFMDREQUIwNjRFNkU3MjU1NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJzk4H5EheM/C2s372OgNG9sbTLQFTwy3/moQvZHWIIx65pdSDdc eY+uwSVfzlEkAXX4ZObgD+3lxKmO2xVqK1H9akZGq+2u5AC5TlFp2eFEkITCdow6 uO9afZP5HNjCtBCDRqvmjOllkYH8EBnfA8sEL/XG4uQjvb/QtfbqUdZx2J9d68j0 BM6H+DqCOuzwFKeoXvC15Kw7E01NVT0z+T5StuWz/TuXu/b+aUOhIVzMqU7ppQss QqlekwqHfDNhAjHpFWZaxePNg90yxtssoa7nO2V60KtEssjVfeaP2YlSzRMxXuHl vUVeYDab5MS6/tX5dZC+WiT4WS67QtNsUtECAwEAAaOCAikwggIlMB0GA1UdDgQW BBSQjreAWQKj+LeOmZ4E2rBk5uclVDAfBgNVHSMEGDAWgBSmjsop0Gy0wAYRukrY Um8EkMxufTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNDAvcG83S0tkQnN0TUFHRWJwSzJGSnZCSkRNYm4wLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvcG83S0tkQnN0TUFHRWJwSzJGSnZC SkRNYm4wLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTQwL2tJNjNnRmtDb19pM2pwbWVCTnF3Wk9ibkpWUS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAtYAMA0GCSqGSIb3DQEBCwUAA4IBAQAoA6PGQo5b661rXc9AABXt HhfGpR91VxM9OnrjN3CO4jYWjOhMLvl3N3XPkDSvSWvIh64IbgN1yqR69N2xvgbs d1wv8iZJXJB7eWSRYSNPmCvtOiB1mPz+9szTaCc2HWqnpcP8L5gMwVSqJP2iSx7S 2xTNEIFcwYtZ/Ha/4pGQ2FHn7mKCzfpWadsM7VdLi9a9jTbsA2YvYte2B1yGjOE5 DoqFAQODN3rumCxrGQ/qkQYuaeHhvOM6PiMIEuhu+CRFgAw3FIf8ItrlML/ePEir nov/mYBnEybG6flZOYiChHrMpCTjKo0CBvxq/rw2g7ZycN/Feudn9dtHqtSOnoXo -----END CERTIFICATE-----Generated at Sun Feb 16 22:19:28 2025 by rpki-client