$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30144/XRlYAByVjtPEf0diT90yNw5lP5M.roa File: XRlYAByVjtPEf0diT90yNw5lP5M.roa (raw, json) Hash identifier: fwZS+4+Lh3tzQy+1BL+xlPyZMlV4VYIE8VB9JMuOewA= Subject key identifier: 5D:19:58:00:1C:95:8E:D3:C4:7F:47:62:4F:DD:32:37:0E:65:3F:93 Certificate issuer: /CN=87DAEC20EDF4A2010423DD7B004E1574F113A735 Certificate serial: 21 Authority key identifier: 87:DA:EC:20:ED:F4:A2:01:04:23:DD:7B:00:4E:15:74:F1:13:A7:35 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h9rsIO30ogEEI917AE4VdPETpzU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/XRlYAByVjtPEf0diT90yNw5lP5M.roa Signing time: Mon 01 Jan 2024 01:31:03 +0000 ROA not before: Mon 01 Jan 2024 01:31:03 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 17676 IP address blocks: 2403:9900::/24 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/h9rsIO30ogEEI917AE4VdPETpzU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/h9rsIO30ogEEI917AE4VdPETpzU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h9rsIO30ogEEI917AE4VdPETpzU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 17:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87DAEC20EDF4A2010423DD7B004E1574F113A735 Validity Not Before: Jan 1 01:31:03 2024 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=5D1958001C958ED3C47F47624FDD32370E653F93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9d:3b:d2:ce:a2:7d:fc:a4:fd:5a:6e:29:0f: a8:00:bf:39:57:5d:da:1f:60:48:ec:c2:f7:e9:18: 65:45:eb:e1:5d:6f:8c:48:75:d9:9d:00:fb:13:c2: cf:af:ea:2a:2f:6b:a5:96:c8:b1:79:33:8c:05:fa: ae:e2:f8:54:c7:04:05:31:eb:0a:41:37:7d:32:90: 72:bb:c0:06:90:e3:6a:a0:76:93:11:3a:b0:82:59: d8:55:8e:62:b2:fb:2d:fe:23:c7:2c:ae:4f:8e:8d: 3a:58:97:b6:c4:22:1f:f2:b6:84:a1:11:c1:5b:24: 31:04:73:34:73:d9:b9:df:2c:6a:eb:74:87:f3:e8: 57:73:ab:45:69:3e:47:3e:32:cd:20:06:d7:f3:8e: e8:9f:f8:9c:24:e6:ba:3c:a5:dd:94:3b:4d:a6:05: ce:07:95:cd:82:30:30:e8:b4:57:a3:95:cb:8f:20: 22:47:54:f9:8a:f8:b2:54:0e:b5:34:08:53:2c:22: 2f:78:80:9d:d5:13:06:6a:c2:48:17:36:82:6c:1d: 5d:85:3b:a3:84:44:33:4b:11:63:51:34:a9:3f:4c: 7e:e0:6f:63:ae:62:39:ae:81:47:b0:7d:61:76:61: ec:ee:7a:c5:c6:be:47:a6:88:f8:58:47:8c:71:f1: 77:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:19:58:00:1C:95:8E:D3:C4:7F:47:62:4F:DD:32:37:0E:65:3F:93 X509v3 Authority Key Identifier: keyid:87:DA:EC:20:ED:F4:A2:01:04:23:DD:7B:00:4E:15:74:F1:13:A7:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/h9rsIO30ogEEI917AE4VdPETpzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h9rsIO30ogEEI917AE4VdPETpzU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/XRlYAByVjtPEf0diT90yNw5lP5M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:9900::/24 Signature Algorithm: sha256WithRSAEncryption 56:1f:a9:f0:5e:9d:8d:11:44:23:d0:26:b1:0e:a3:d7:79:f0: 63:6a:d1:65:2e:67:4e:7f:1e:e0:8d:02:90:98:c7:3d:44:84: 4d:df:a6:56:b9:a5:1c:a6:37:e5:47:60:3f:0b:b0:67:fd:6f: ab:1e:da:09:24:a0:90:bb:d6:37:6f:51:92:85:20:f6:a0:e3: bf:a3:e9:aa:a1:3f:91:bf:c0:b0:48:2a:54:d2:50:3a:60:5a: b1:27:00:0f:a4:36:13:51:6e:fe:13:3e:be:11:f8:8d:fa:35: 8c:28:19:32:63:dd:3f:2f:10:fa:67:f7:74:46:8e:47:3a:89: a9:fe:f1:5a:8d:56:14:a0:c8:a8:92:d8:43:10:6e:e0:dd:97: 25:a3:b6:08:c8:13:bf:31:c2:9c:c5:0d:8e:61:2d:c9:0b:c1: 27:8b:bf:71:f6:2d:60:c4:f1:23:90:ac:5e:af:4e:c8:9e:c7: 6e:92:8b:5a:55:95:c0:c2:29:f1:6d:38:6f:b0:63:a4:57:af: 74:86:03:38:79:4b:8c:4c:61:4c:4c:1f:0f:01:34:50:d3:5a: 3e:b3:fd:45:6e:b9:a3:22:68:8a:79:7e:a4:f2:c4:d1:39:4a: aa:1a:3a:fb:19:8c:ca:fc:5c:01:9d:bb:a4:17:58:40:a5:36: db:a6:12:fc -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4N0RB RUMyMEVERjRBMjAxMDQyM0REN0IwMDRFMTU3NEYxMTNBNzM1MB4XDTI0MDEwMTAx MzEwM1oXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoNUQxOTU4MDAxQzk1OEVE M0M0N0Y0NzYyNEZERDMyMzcwRTY1M0Y5MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM+dO9LOon38pP1abikPqAC/OVdd2h9gSOzC9+kYZUXr4V1vjEh1 2Z0A+xPCz6/qKi9rpZbIsXkzjAX6ruL4VMcEBTHrCkE3fTKQcrvABpDjaqB2kxE6 sIJZ2FWOYrL7Lf4jxyyuT46NOliXtsQiH/K2hKERwVskMQRzNHPZud8saut0h/Po V3OrRWk+Rz4yzSAG1/OO6J/4nCTmujyl3ZQ7TaYFzgeVzYIwMOi0V6OVy48gIkdU +Yr4slQOtTQIUywiL3iAndUTBmrCSBc2gmwdXYU7o4REM0sRY1E0qT9MfuBvY65i Oa6BR7B9YXZh7O56xca+R6aI+FhHjHHxd68CAwEAAaOCAigwggIkMB0GA1UdDgQW BBRdGVgAHJWO08R/R2JP3TI3DmU/kzAfBgNVHSMEGDAWgBSH2uwg7fSiAQQj3XsA ThV08ROnNTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNDQvaDlyc0lPMzBvZ0VFSTkxN0FFNFZkUEVUcHpVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaDlyc0lPMzBvZ0VFSTkxN0FFNFZk UEVUcHpVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTQ0L1hSbFlBQnlWanRQRWYwZGlUOTB5Tnc1bFA1TS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgACMAYDBAAkA5kwDQYJKoZIhvcNAQELBQADggEBAFYfqfBenY0RRCPQJrEOo9d5 8GNq0WUuZ05/HuCNApCYxz1EhE3fpla5pRymN+VHYD8LsGf9b6se2gkkoJC71jdv UZKFIPag47+j6aqhP5G/wLBIKlTSUDpgWrEnAA+kNhNRbv4TPr4R+I36NYwoGTJj 3T8vEPpn93RGjkc6ian+8VqNVhSgyKiS2EMQbuDdlyWjtgjIE78xwpzFDY5hLckL wSeLv3H2LWDE8SOQrF6vTsiex26Si1pVlcDCKfFtOG+wY6RXr3SGAzh5S4xMYUxM Hw8BNFDTWj6z/UVuuaMiaIp5fqTyxNE5SqoaOvsZjMr8XAGdu6QXWEClNtumEvw= -----END CERTIFICATE-----Generated at Mon Nov 25 18:44:53 2024 by rpki-client on console-ams.rpki-client.org