$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30144/iU4M5_1vVClsIdSo6AKWusrbOeI.roa File: iU4M5_1vVClsIdSo6AKWusrbOeI.roa (raw, json) Hash identifier: 5nWzulpEDokK/w4oeaq8jCheJ1eHHLlVDhSD1Tgk4mk= Subject key identifier: 89:4E:0C:E7:FD:6F:54:29:6C:21:D4:A8:E8:02:96:BA:CA:DB:39:E2 Certificate issuer: /CN=87DAEC20EDF4A2010423DD7B004E1574F113A735 Certificate serial: 30 Authority key identifier: 87:DA:EC:20:ED:F4:A2:01:04:23:DD:7B:00:4E:15:74:F1:13:A7:35 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h9rsIO30ogEEI917AE4VdPETpzU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/iU4M5_1vVClsIdSo6AKWusrbOeI.roa Signing time: Sat 30 Nov 2024 01:29:00 +0000 ROA not before: Sat 30 Nov 2024 01:29:00 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 17676 IP address blocks: 2403:7a00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/h9rsIO30ogEEI917AE4VdPETpzU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/h9rsIO30ogEEI917AE4VdPETpzU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h9rsIO30ogEEI917AE4VdPETpzU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87DAEC20EDF4A2010423DD7B004E1574F113A735 Validity Not Before: Nov 30 01:29:00 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=894E0CE7FD6F54296C21D4A8E80296BACADB39E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fe:3e:49:47:e5:18:92:cb:df:9c:4f:17:ce: 10:c5:df:81:a4:5e:ec:f3:d7:33:a4:ae:ea:9e:23: 7e:df:5a:83:82:63:3a:27:27:12:cf:f5:d8:e3:9f: f2:c6:10:c1:d6:39:9e:ae:fd:dc:42:da:c1:7a:ac: d7:49:b0:2c:a9:da:32:a1:ed:5c:00:ff:c5:b5:ae: b9:14:32:43:69:1a:e3:8d:20:12:7b:3a:96:ad:5c: 23:d3:5b:b1:bc:a0:64:70:2a:a8:d7:b8:24:f2:a9: 1f:08:ab:4c:fe:35:2d:3e:0e:77:62:1a:61:bd:50: d1:b7:19:44:93:63:fb:ff:34:bb:73:a8:30:5a:55: d6:0e:14:a6:84:ab:28:9f:f4:ea:a0:86:65:30:ec: 2f:74:39:94:ed:86:ff:20:d1:a6:1a:97:50:9f:85: 19:48:5e:e2:ac:33:fb:61:c6:7c:24:95:4b:81:0f: 33:27:58:56:c0:30:95:29:49:c9:ea:18:b2:79:a4: c1:25:91:2b:28:89:c1:a1:29:0e:da:da:6e:f8:a1: 31:61:02:4e:93:88:75:f7:c1:e4:f3:a8:5e:44:1b: 8e:05:1c:14:45:57:36:d5:44:14:a6:71:42:99:87: 16:45:ce:08:2a:8b:eb:50:9d:63:23:8a:29:d6:4c: 27:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4E:0C:E7:FD:6F:54:29:6C:21:D4:A8:E8:02:96:BA:CA:DB:39:E2 X509v3 Authority Key Identifier: keyid:87:DA:EC:20:ED:F4:A2:01:04:23:DD:7B:00:4E:15:74:F1:13:A7:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/h9rsIO30ogEEI917AE4VdPETpzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h9rsIO30ogEEI917AE4VdPETpzU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30144/iU4M5_1vVClsIdSo6AKWusrbOeI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:7a00::/32 Signature Algorithm: sha256WithRSAEncryption 23:fa:58:81:72:ab:03:98:13:2d:d5:ac:9a:86:de:05:ef:ca: 92:8a:ee:17:0f:02:cc:bb:15:10:08:0c:bb:61:70:64:6b:b0: aa:83:b2:28:39:db:bd:e6:98:34:55:55:b5:2b:7d:a4:a2:7b: 7c:75:6f:77:c7:a7:b3:8b:0f:7a:80:e1:55:61:ae:cb:04:52: 6c:f0:57:9f:3e:bd:3e:12:d8:d7:c9:0e:29:2e:7c:25:2c:55: 0a:0d:1c:99:ab:0d:be:be:04:4e:3c:49:0c:cb:b6:27:43:1e: 70:da:5d:ed:53:ac:c2:0f:33:f0:4d:14:d4:18:30:73:36:a2: ae:77:f4:18:8c:98:05:2f:89:a2:3f:cf:44:a8:51:5e:68:48: f0:43:2d:eb:28:64:ca:d2:90:a8:4f:7a:f3:dd:f6:c7:e4:b7: ce:8b:5c:23:13:ba:9b:a9:b2:75:fe:d0:05:5d:dd:99:15:30: 49:99:7d:9e:dd:cf:cb:c7:84:e4:17:d6:6f:45:dd:84:a8:fa: 1f:9c:ae:c3:38:1e:21:19:5c:1e:6d:1f:a7:6d:5a:36:5f:99: e8:f7:bb:45:68:39:d9:84:96:52:68:a4:c2:e6:0e:93:6f:9c: 9c:14:e9:51:90:86:7a:0d:6c:73:14:30:b1:8d:48:c4:4d:cc: 29:6b:ab:f8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4N0RB RUMyMEVERjRBMjAxMDQyM0REN0IwMDRFMTU3NEYxMTNBNzM1MB4XDTI0MTEzMDAx MjkwMFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoODk0RTBDRTdGRDZGNTQy OTZDMjFENEE4RTgwMjk2QkFDQURCMzlFMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOX+PklH5RiSy9+cTxfOEMXfgaRe7PPXM6Su6p4jft9ag4JjOicn Es/12OOf8sYQwdY5nq793ELawXqs10mwLKnaMqHtXAD/xbWuuRQyQ2ka440gEns6 lq1cI9NbsbygZHAqqNe4JPKpHwirTP41LT4Od2IaYb1Q0bcZRJNj+/80u3OoMFpV 1g4UpoSrKJ/06qCGZTDsL3Q5lO2G/yDRphqXUJ+FGUhe4qwz+2HGfCSVS4EPMydY VsAwlSlJyeoYsnmkwSWRKyiJwaEpDtrabvihMWECTpOIdffB5POoXkQbjgUcFEVX NtVEFKZxQpmHFkXOCCqL61CdYyOKKdZMJyECAwEAAaOCAikwggIlMB0GA1UdDgQW BBSJTgzn/W9UKWwh1KjoApa6yts54jAfBgNVHSMEGDAWgBSH2uwg7fSiAQQj3XsA ThV08ROnNTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNDQvaDlyc0lPMzBvZ0VFSTkxN0FFNFZkUEVUcHpVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaDlyc0lPMzBvZ0VFSTkxN0FFNFZk UEVUcHpVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTQ0L2lVNE01XzF2VkNsc0lkU282QUtXdXNyYk9lSS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkA3oAMA0GCSqGSIb3DQEBCwUAA4IBAQAj+liBcqsDmBMt1ayaht4F 78qSiu4XDwLMuxUQCAy7YXBka7Cqg7IoOdu95pg0VVW1K32kont8dW93x6eziw96 gOFVYa7LBFJs8FefPr0+EtjXyQ4pLnwlLFUKDRyZqw2+vgROPEkMy7YnQx5w2l3t U6zCDzPwTRTUGDBzNqKud/QYjJgFL4miP89EqFFeaEjwQy3rKGTK0pCoT3rz3fbH 5LfOi1wjE7qbqbJ1/tAFXd2ZFTBJmX2e3c/Lx4TkF9ZvRd2EqPofnK7DOB4hGVwe bR+nbVo2X5no97tFaDnZhJZSaKTC5g6Tb5ycFOlRkIZ6DWxzFDCxjUjETcwpa6v4 -----END CERTIFICATE-----Generated at Wed Feb 19 22:31:45 2025 by rpki-client