$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30193/znzCm3P00v85cVdj42zm4pZzXac.roa File: znzCm3P00v85cVdj42zm4pZzXac.roa (raw, json) Hash identifier: kGJGH/l75xq79MTrkO2/oVqGe1gqOEse1g1feXHAwrA= Subject key identifier: CE:7C:C2:9B:73:F4:D2:FF:39:71:57:63:E3:6C:E6:E2:96:73:5D:A7 Certificate issuer: /CN=59D1C2E49F90761EB302F05A991871CC5B1CDB07 Certificate serial: 52 Authority key identifier: 59:D1:C2:E4:9F:90:76:1E:B3:02:F0:5A:99:18:71:CC:5B:1C:DB:07 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WdHC5J-Qdh6zAvBamRhxzFsc2wc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30193/znzCm3P00v85cVdj42zm4pZzXac.roa Signing time: Fri 31 Jan 2025 01:31:31 +0000 ROA not before: Fri 31 Jan 2025 01:31:31 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9363 IP address blocks: 2401:3b00::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30193/WdHC5J-Qdh6zAvBamRhxzFsc2wc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30193/WdHC5J-Qdh6zAvBamRhxzFsc2wc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WdHC5J-Qdh6zAvBamRhxzFsc2wc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59D1C2E49F90761EB302F05A991871CC5B1CDB07 Validity Not Before: Jan 31 01:31:31 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=CE7CC29B73F4D2FF39715763E36CE6E296735DA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8d:28:95:4b:43:00:97:b5:df:57:a3:8f:59: 2b:27:77:67:0a:eb:4a:a1:84:df:af:b6:8a:f3:b5: e7:b7:9a:39:0e:03:8c:99:22:ba:52:e3:27:f6:25: 1b:58:f6:cf:a9:48:d4:58:0d:7d:d2:6d:05:6f:a3: b0:13:b4:5b:6b:7d:c9:c0:c1:ec:25:de:d3:80:2f: cd:ec:26:5f:56:2a:0c:11:36:8d:98:d4:95:57:72: c8:30:c6:0e:92:3a:8f:6c:76:7b:eb:78:0d:17:cf: 3b:3d:57:22:34:d6:f1:25:fe:5b:dd:d0:bf:1c:c9: 31:fb:9e:9f:04:41:44:c5:75:27:61:7c:7c:54:da: 7d:7d:2f:8f:cd:99:a5:31:f5:f6:d2:4b:c5:eb:d8: 49:4d:f1:a5:33:40:3e:9a:d4:a7:83:ad:17:07:83: f4:f9:d1:55:fe:e8:8b:99:45:e2:47:09:23:d7:64: 8c:98:02:4c:d7:69:21:0d:b4:2b:81:d9:f3:46:55: 7d:09:eb:8d:c6:3d:f5:8e:47:d7:49:21:41:0b:ae: bf:78:7e:2b:1c:b5:81:2f:af:02:0b:c6:76:e9:81: d9:20:eb:e9:26:7e:61:e0:1e:5e:5f:f3:0d:9d:8b: 39:5c:30:da:68:0a:54:47:e8:9d:6a:40:a0:1c:b8: 03:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7C:C2:9B:73:F4:D2:FF:39:71:57:63:E3:6C:E6:E2:96:73:5D:A7 X509v3 Authority Key Identifier: keyid:59:D1:C2:E4:9F:90:76:1E:B3:02:F0:5A:99:18:71:CC:5B:1C:DB:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30193/WdHC5J-Qdh6zAvBamRhxzFsc2wc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WdHC5J-Qdh6zAvBamRhxzFsc2wc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30193/znzCm3P00v85cVdj42zm4pZzXac.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:3b00::/32 Signature Algorithm: sha256WithRSAEncryption 03:27:24:f0:73:07:55:fb:2f:e0:a4:e6:65:d9:52:f6:12:8a: e0:af:45:1e:36:98:f7:5b:ce:2b:ab:32:a7:09:fd:f2:93:bf: 21:3b:40:0b:55:34:a3:db:28:0c:d4:02:7c:b5:24:9a:c0:75: 71:f2:4b:88:7d:0e:09:c5:ff:3c:59:40:3a:e3:3b:b0:62:97: ff:a8:ca:50:98:18:54:0f:50:95:dc:bf:b1:50:27:f8:f0:b1: 17:a4:72:06:26:15:df:7d:5d:55:58:61:0f:a3:72:fd:6f:76: 02:bc:80:b6:f4:fa:d3:43:04:61:6d:8a:3f:bd:b0:75:3d:95: 83:94:f1:04:93:3a:dc:47:86:cf:db:35:11:a8:33:79:2c:02: 4f:05:19:61:78:c7:a4:22:dd:b1:cb:e0:ee:07:5f:17:8a:c8: 88:ca:c6:65:ab:cb:df:fa:b2:66:01:8c:1c:4c:64:18:a7:73: c9:22:ca:2b:c4:e1:fc:f2:31:c2:cd:98:e2:2e:22:38:c0:b1: 1d:fa:49:8a:12:97:d4:4e:1d:cf:b8:e8:92:93:36:9a:01:e3: 8c:7a:29:ab:96:04:5b:0f:29:95:f2:ea:54:0e:2e:26:30:78: bb:f8:75:34:a3:4b:b1:87:be:27:f1:de:f1:3b:f5:20:d8:13: b6:0e:66:9e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OUQx QzJFNDlGOTA3NjFFQjMwMkYwNUE5OTE4NzFDQzVCMUNEQjA3MB4XDTI1MDEzMTAx MzEzMVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoQ0U3Q0MyOUI3M0Y0RDJG RjM5NzE1NzYzRTM2Q0U2RTI5NjczNURBNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJqNKJVLQwCXtd9Xo49ZKyd3ZwrrSqGE36+2ivO157eaOQ4DjJki ulLjJ/YlG1j2z6lI1FgNfdJtBW+jsBO0W2t9ycDB7CXe04AvzewmX1YqDBE2jZjU lVdyyDDGDpI6j2x2e+t4DRfPOz1XIjTW8SX+W93QvxzJMfuenwRBRMV1J2F8fFTa fX0vj82ZpTH19tJLxevYSU3xpTNAPprUp4OtFweD9PnRVf7oi5lF4kcJI9dkjJgC TNdpIQ20K4HZ80ZVfQnrjcY99Y5H10khQQuuv3h+Kxy1gS+vAgvGdumB2SDr6SZ+ YeAeXl/zDZ2LOVww2mgKVEfonWpAoBy4A+0CAwEAAaOCAikwggIlMB0GA1UdDgQW BBTOfMKbc/TS/zlxV2PjbObilnNdpzAfBgNVHSMEGDAWgBRZ0cLkn5B2HrMC8FqZ GHHMWxzbBzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxOTMvV2RIQzVKLVFkaDZ6QXZCYW1SaHh6RnNjMndjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvV2RIQzVKLVFkaDZ6QXZCYW1SaHh6 RnNjMndjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTkzL3puekNtM1AwMHY4NWNWZGo0MnptNHBaelhhYy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkATsAMA0GCSqGSIb3DQEBCwUAA4IBAQADJyTwcwdV+y/gpOZl2VL2 Eorgr0UeNpj3W84rqzKnCf3yk78hO0ALVTSj2ygM1AJ8tSSawHVx8kuIfQ4Jxf88 WUA64zuwYpf/qMpQmBhUD1CV3L+xUCf48LEXpHIGJhXffV1VWGEPo3L9b3YCvIC2 9PrTQwRhbYo/vbB1PZWDlPEEkzrcR4bP2zURqDN5LAJPBRlheMekIt2xy+DuB18X isiIysZlq8vf+rJmAYwcTGQYp3PJIsorxOH88jHCzZjiLiI4wLEd+kmKEpfUTh3P uOiSkzaaAeOMeimrlgRbDymV8upUDi4mMHi7+HU0o0uxh74n8d7xO/Ug2BO2Dmae -----END CERTIFICATE-----Generated at Wed Feb 19 22:44:13 2025 by rpki-client