$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30175/VJYgHShK24VeQcVp-kIznm0ZUEs.roa File: VJYgHShK24VeQcVp-kIznm0ZUEs.roa (raw, json) Hash identifier: 5co3ADEFEEmhNr8Ev5FSK6VrSEPhVDGnVINhOXREeX4= Subject key identifier: 54:96:20:1D:28:4A:DB:85:5E:41:C5:69:FA:42:33:9E:6D:19:50:4B Certificate issuer: /CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Certificate serial: 27 Authority key identifier: DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/VJYgHShK24VeQcVp-kIznm0ZUEs.roa Signing time: Thu 31 Oct 2024 01:31:40 +0000 ROA not before: Thu 31 Oct 2024 01:31:40 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 37901 IP address blocks: 240b:13::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFBCD3F8BCA91915C4533A2C0A69C3D35B2E688D Validity Not Before: Oct 31 01:31:40 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=5496201D284ADB855E41C569FA42339E6D19504B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d8:29:fa:46:93:0f:27:e0:76:ff:27:e0:6a: 65:e1:21:55:85:7e:09:44:7d:0d:59:db:a7:24:e0: 23:6f:77:d3:86:6a:a4:83:2b:1c:fe:c3:55:8b:0c: 25:c9:f0:8b:17:e9:ea:20:3b:8a:6c:7d:7f:5d:7b: da:59:5e:da:16:bb:ff:28:4b:3b:00:35:c1:9b:04: 4a:3c:bf:3e:27:88:ea:c8:0d:99:e4:1e:7d:c4:b9: f1:fd:2d:e9:bc:bb:d9:fa:f7:bc:ba:39:24:75:de: d8:80:ba:0f:d3:c7:4e:76:18:d0:2e:ed:ac:31:c8: e8:ea:c3:5f:7c:4b:8d:99:72:7a:6a:f1:95:e8:ec: 7a:72:68:d2:d0:20:ce:4e:bd:7c:9c:d0:2c:0a:79: 73:f3:97:01:18:20:0e:a5:aa:8e:95:8f:8c:38:d3: c0:15:0f:a7:2b:02:46:a3:1d:76:62:b3:c4:e7:c1: b7:55:52:19:42:26:b8:6c:f9:6c:27:a2:d9:e2:a3: 0e:dd:0d:3d:88:16:35:3e:ea:f2:db:14:a3:b8:d0: ff:75:1c:79:24:3e:bb:27:4c:82:c6:57:cc:89:f6: 01:e6:c4:1b:6c:72:7d:e3:10:6b:42:37:28:d1:a3: cf:37:49:8a:c5:86:7a:3e:f3:cd:e6:26:bd:1f:39: f3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:96:20:1D:28:4A:DB:85:5E:41:C5:69:FA:42:33:9E:6D:19:50:4B X509v3 Authority Key Identifier: keyid:DF:BC:D3:F8:BC:A9:19:15:C4:53:3A:2C:0A:69:C3:D3:5B:2E:68:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/37zT-LypGRXEUzosCmnD01suaI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/37zT-LypGRXEUzosCmnD01suaI0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30175/VJYgHShK24VeQcVp-kIznm0ZUEs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240b:13::/32 Signature Algorithm: sha256WithRSAEncryption 22:d8:11:be:3b:b5:42:47:7d:0e:64:b1:43:73:e3:d2:3b:02: be:52:ef:a9:a6:ea:fd:d8:b5:ef:3e:51:89:50:3f:12:88:0a: 98:84:5a:32:dc:c4:b7:7b:4d:36:a1:93:e0:aa:1f:ca:4b:f6: 1b:58:d2:67:12:a9:87:29:19:cd:e9:7e:d6:a1:2c:b9:50:e5: 13:b7:8d:c3:99:6d:72:76:36:52:7f:d4:02:a3:67:a8:37:46: bb:5a:12:7b:6f:30:78:ba:95:8f:7b:ba:79:e9:08:2f:19:f8: 1d:2c:bf:3b:0b:e7:44:eb:fe:fa:bb:46:2b:19:de:56:69:ba: d1:10:d6:fa:cb:07:f2:05:77:80:f7:16:2b:18:32:fc:3c:a6: fb:75:8e:77:77:4b:f7:30:60:62:c3:45:ed:46:ef:5a:79:63: 6f:72:d9:58:e2:c8:58:c7:a7:2c:e5:4c:43:20:d1:6f:0d:48: b6:ae:fa:b4:3f:88:e4:cc:18:08:14:c1:17:e9:8e:a1:4a:23: b0:46:bb:f6:9f:a5:c6:cf:73:86:f1:e2:a9:9e:a6:91:06:f0: 07:bc:91:f4:b0:20:0f:92:4a:14:bb:15:53:52:95:55:b6:cc: 90:85:eb:72:a3:b0:f2:84:37:cb:ee:90:67:da:9e:6a:30:a4: 9d:4b:b3:11 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERkJD RDNGOEJDQTkxOTE1QzQ1MzNBMkMwQTY5QzNEMzVCMkU2ODhEMB4XDTI0MTAzMTAx MzE0MFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoNTQ5NjIwMUQyODRBREI4 NTVFNDFDNTY5RkE0MjMzOUU2RDE5NTA0QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKXYKfpGkw8n4Hb/J+BqZeEhVYV+CUR9DVnbpyTgI29304ZqpIMr HP7DVYsMJcnwixfp6iA7imx9f1172lle2ha7/yhLOwA1wZsESjy/PieI6sgNmeQe fcS58f0t6by72fr3vLo5JHXe2IC6D9PHTnYY0C7trDHI6OrDX3xLjZlyemrxlejs enJo0tAgzk69fJzQLAp5c/OXARggDqWqjpWPjDjTwBUPpysCRqMddmKzxOfBt1VS GUImuGz5bCei2eKjDt0NPYgWNT7q8tsUo7jQ/3UceSQ+uydMgsZXzIn2AebEG2xy feMQa0I3KNGjzzdJisWGej7zzeYmvR85888CAwEAAaOCAikwggIlMB0GA1UdDgQW BBRUliAdKErbhV5BxWn6QjOebRlQSzAfBgNVHSMEGDAWgBTfvNP4vKkZFcRTOiwK acPTWy5ojTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNzUvMzd6VC1MeXBHUlhFVXpvc0NtbkQwMXN1YUkwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMzd6VC1MeXBHUlhFVXpvc0NtbkQw MXN1YUkwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTc1L1ZKWWdIU2hLMjRWZVFjVnAta0l6bm0wWlVFcy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkCwATMA0GCSqGSIb3DQEBCwUAA4IBAQAi2BG+O7VCR30OZLFDc+PS OwK+Uu+ppur92LXvPlGJUD8SiAqYhFoy3MS3e002oZPgqh/KS/YbWNJnEqmHKRnN 6X7WoSy5UOUTt43DmW1ydjZSf9QCo2eoN0a7WhJ7bzB4upWPe7p56QgvGfgdLL87 C+dE6/76u0YrGd5WabrRENb6ywfyBXeA9xYrGDL8PKb7dY53d0v3MGBiw0XtRu9a eWNvctlY4shYx6cs5UxDINFvDUi2rvq0P4jkzBgIFMEX6Y6hSiOwRrv2n6XGz3OG 8eKpnqaRBvAHvJH0sCAPkkoUuxVTUpVVtsyQhetyo7DyhDfL7pBn2p5qMKSdS7MR -----END CERTIFICATE-----Generated at Sun Feb 16 22:15:25 2025 by rpki-client