$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30175/UJEjl2pkQOWD4hUXE3DnLMpQr6s.roa File: UJEjl2pkQOWD4hUXE3DnLMpQr6s.roa (raw, json) Hash identifier: Sx/FFgEvMgSJpjEuZomT7X1PfPllXkoShKjh0SekPbs= Subject key identifier: 50:91:23:97:6A:64:40:E5:83:E2:15:17:13:70:E7:2C:CA:50:AF:AB Certificate issuer: /CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Certificate serial: 24 Authority key identifier: DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/UJEjl2pkQOWD4hUXE3DnLMpQr6s.roa Signing time: Thu 31 Oct 2024 01:31:39 +0000 ROA not before: Thu 31 Oct 2024 01:31:39 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 37901 IP address blocks: 240b:10::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Validity Not Before: Oct 31 01:31:39 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=509123976A6440E583E215171370E72CCA50AFAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:50:b8:60:19:22:29:61:cb:9a:86:5a:ec:32: 76:e6:08:41:fe:2c:02:9a:2f:2c:d3:f5:0e:45:11: 59:6b:c7:0b:99:f8:a6:5d:11:0e:ed:c9:15:32:07: 66:ca:55:2f:5f:ff:5a:22:db:c0:48:26:c6:77:9a: e1:46:aa:bf:5b:94:f7:5b:79:fd:e1:c7:90:b5:f5: 0f:37:c0:d1:f9:03:c5:04:5a:79:0d:90:b7:6a:69: bc:7b:6b:15:49:a2:5d:f5:01:be:c1:03:03:48:9c: c9:dc:df:b2:5d:bc:56:72:f9:d7:8d:0a:85:2c:c7: 0d:cb:8e:a0:f3:41:3a:f6:d8:15:c6:a2:b2:e1:8a: 13:0b:e7:62:fc:fb:fd:de:d4:f9:14:c2:75:70:e2: 07:09:cf:ff:48:9a:92:d9:88:56:fc:54:17:00:b5: 3b:73:75:ff:20:d8:1c:e9:70:a4:12:6d:d1:d1:5f: cf:cf:25:87:90:a6:e9:5a:65:80:9b:f1:5d:10:36: 20:80:2e:a5:61:33:b9:3a:b1:1d:d4:00:65:7c:de: 68:f1:35:1c:42:12:45:86:f1:1b:a4:a6:5e:5a:00: fb:a0:46:b7:8b:03:69:1f:51:98:69:9b:eb:e5:16: 69:a3:3b:46:af:95:1b:37:06:67:f5:75:f7:a8:c4: 10:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:91:23:97:6A:64:40:E5:83:E2:15:17:13:70:E7:2C:CA:50:AF:AB X509v3 Authority Key Identifier: keyid:DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/UJEjl2pkQOWD4hUXE3DnLMpQr6s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240b:10::/32 Signature Algorithm: sha256WithRSAEncryption 3a:d7:66:ac:32:bf:ed:c8:d0:e0:7a:be:ce:f1:12:fc:ec:0d: a7:3e:03:f1:32:be:bd:03:f1:43:e4:95:2c:2c:98:cb:5b:29: 84:f0:52:4c:59:54:02:7a:dd:22:db:b3:99:8c:1c:10:dd:76: 1a:a9:e3:30:bf:c9:ae:25:a7:91:e7:b7:68:3d:ea:f4:1a:85: 33:4d:2f:c3:e2:94:ea:82:f0:73:b0:65:67:f2:fe:e5:49:52: 0a:d9:36:88:b2:35:71:fa:2e:1b:82:b3:08:14:7b:f0:0e:36: 11:21:65:91:03:c8:1c:d9:57:51:f7:6f:ac:40:7a:64:9a:c3: ee:28:9a:6a:6f:2f:25:e9:67:8d:ad:0e:29:5c:59:3c:4e:f6: 26:f2:02:4f:94:2a:07:a0:6f:38:77:0c:2d:d0:4d:66:07:8a: 2b:34:59:01:be:7b:ff:80:e5:c8:ac:42:6e:e7:da:92:72:8a: e6:79:9a:3f:ed:d8:27:56:13:67:ec:87:8c:c2:3a:9b:fe:40: e4:5b:9d:79:3a:0f:fa:a7:29:bb:9c:a3:8f:11:e6:88:77:85: 41:b7:c2:5f:2e:33:58:97:78:db:c5:4c:ce:ff:7d:04:13:68: 85:60:e8:bd:29:1e:6b:ce:61:44:50:8d:67:e2:26:e6:ce:6b: 79:d5:99:fe -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERkJD RDNGOEJDQTkxOTE1QzQ1MzNBMkMwQTY5QzNEMzVCMkU2ODhEMB4XDTI0MTAzMTAx MzEzOVoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoNTA5MTIzOTc2QTY0NDBF NTgzRTIxNTE3MTM3MEU3MkNDQTUwQUZBQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMRQuGAZIilhy5qGWuwyduYIQf4sApovLNP1DkURWWvHC5n4pl0R Du3JFTIHZspVL1//WiLbwEgmxnea4Uaqv1uU91t5/eHHkLX1DzfA0fkDxQRaeQ2Q t2ppvHtrFUmiXfUBvsEDA0icydzfsl28VnL5140KhSzHDcuOoPNBOvbYFcaisuGK EwvnYvz7/d7U+RTCdXDiBwnP/0iaktmIVvxUFwC1O3N1/yDYHOlwpBJt0dFfz88l h5Cm6VplgJvxXRA2IIAupWEzuTqxHdQAZXzeaPE1HEISRYbxG6SmXloA+6BGt4sD aR9RmGmb6+UWaaM7Rq+VGzcGZ/V196jEEGsCAwEAAaOCAikwggIlMB0GA1UdDgQW BBRQkSOXamRA5YPiFRcTcOcsylCvqzAfBgNVHSMEGDAWgBTfvNP4vKkZFcRTOiwK acPTWy5ojTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNzUvMzd6VC1MeXBHUlhFVXpvc0NtbkQwMXN1YUkwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMzd6VC1MeXBHUlhFVXpvc0NtbkQw MXN1YUkwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTc1L1VKRWpsMnBrUU9XRDRoVVhFM0RuTE1wUXI2cy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkCwAQMA0GCSqGSIb3DQEBCwUAA4IBAQA612asMr/tyNDger7O8RL8 7A2nPgPxMr69A/FD5JUsLJjLWymE8FJMWVQCet0i27OZjBwQ3XYaqeMwv8muJaeR 57doPer0GoUzTS/D4pTqgvBzsGVn8v7lSVIK2TaIsjVx+i4bgrMIFHvwDjYRIWWR A8gc2VdR92+sQHpkmsPuKJpqby8l6WeNrQ4pXFk8TvYm8gJPlCoHoG84dwwt0E1m B4orNFkBvnv/gOXIrEJu59qScormeZo/7dgnVhNn7IeMwjqb/kDkW515Og/6pym7 nKOPEeaId4VBt8JfLjNYl3jbxUzO/30EE2iFYOi9KR5rzmFEUI1n4ibmzmt51Zn+ -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:31 2024 by rpki-client on console-ams.rpki-client.org