$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30194/hzQt4bTLAS1PFp1xJh-elMffP2k.roa File: hzQt4bTLAS1PFp1xJh-elMffP2k.roa (raw, json) Hash identifier: vFNQo2wLIiijHLasLBYbHwnrRK1HXvMWQJhqkPrcS40= Subject key identifier: 87:34:2D:E1:B4:CB:01:2D:4F:16:9D:71:26:1F:9E:94:C7:DF:3F:69 Certificate issuer: /CN=88AC5827EA5086C58535538005B12A51FCD1F0F0 Certificate serial: 43 Authority key identifier: 88:AC:58:27:EA:50:86:C5:85:35:53:80:05:B1:2A:51:FC:D1:F0:F0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/iKxYJ-pQhsWFNVOABbEqUfzR8PA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30194/hzQt4bTLAS1PFp1xJh-elMffP2k.roa Signing time: Thu 29 Feb 2024 01:30:23 +0000 ROA not before: Thu 29 Feb 2024 01:30:23 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 45680 IP address blocks: 2401:5300::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30194/iKxYJ-pQhsWFNVOABbEqUfzR8PA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30194/iKxYJ-pQhsWFNVOABbEqUfzR8PA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/iKxYJ-pQhsWFNVOABbEqUfzR8PA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 00:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88AC5827EA5086C58535538005B12A51FCD1F0F0 Validity Not Before: Feb 29 01:30:23 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=87342DE1B4CB012D4F169D71261F9E94C7DF3F69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0e:78:c1:89:eb:85:28:e2:70:39:57:ce:99: dc:19:f3:df:91:c8:0d:97:c7:1b:4c:39:a1:08:7c: 9f:69:9f:12:aa:e8:9a:7f:42:e5:4a:95:37:88:c9: 00:e0:76:20:e7:2e:39:66:09:a6:ab:c9:2c:9c:7f: 75:bc:10:32:c5:4f:5b:35:e6:c8:e7:37:76:5d:58: b2:2b:30:f6:c3:81:8d:ad:48:29:9e:f4:cf:9c:c7: 82:6f:ed:e7:0f:50:dd:5a:fa:a8:e5:49:45:04:c7: 9b:82:44:d4:04:68:0f:2e:ea:d8:d9:c4:bb:81:c5: 74:4a:1c:09:25:2f:5e:29:76:da:47:66:34:18:11: 48:f3:7a:8e:7a:43:36:28:c3:f1:1e:0c:65:c8:6c: e3:b2:f0:d7:01:8c:6f:fa:e3:b5:8c:73:9a:9e:fe: a5:38:01:34:2b:9a:f6:7e:9a:a5:ed:92:c6:6f:f7: bc:c2:27:6a:00:73:dc:9d:6f:b7:7a:d5:2a:8a:3c: 40:85:75:da:84:82:36:e4:62:b3:ea:be:8b:af:60: 2b:61:9d:ae:4f:c8:57:7f:f8:19:64:0b:09:eb:29: ce:52:39:56:09:45:d9:b1:09:dc:1d:84:59:04:d7: fd:bd:3c:24:0a:4e:cf:1b:48:fb:8e:e0:b7:7f:06: ba:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:34:2D:E1:B4:CB:01:2D:4F:16:9D:71:26:1F:9E:94:C7:DF:3F:69 X509v3 Authority Key Identifier: keyid:88:AC:58:27:EA:50:86:C5:85:35:53:80:05:B1:2A:51:FC:D1:F0:F0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30194/iKxYJ-pQhsWFNVOABbEqUfzR8PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/iKxYJ-pQhsWFNVOABbEqUfzR8PA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30194/hzQt4bTLAS1PFp1xJh-elMffP2k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:5300::/32 Signature Algorithm: sha256WithRSAEncryption a7:b6:14:c9:e9:29:e2:9c:01:38:82:a1:8e:a6:a5:41:e6:18: 07:06:69:20:fc:84:f6:79:3e:e5:41:e6:8a:63:e3:cf:70:bd: a7:38:5f:bd:a3:76:5f:2b:12:de:5e:5d:3a:09:89:09:8e:39: 47:0d:a0:b1:76:8c:c5:da:96:09:c2:b3:90:bf:61:62:ef:9c: b6:34:0e:ee:08:72:fb:5e:31:fa:06:77:ae:1e:15:06:45:c6: aa:62:93:31:01:a1:d3:57:ad:78:be:9a:2f:ff:76:28:b3:82: 75:d1:53:70:65:df:ba:90:6e:a7:ce:21:e4:e9:a2:3e:09:04: c2:ee:5e:04:08:2a:4c:51:d8:71:65:bc:9b:8d:c3:da:1b:cd: d0:bd:20:09:e7:d5:8e:a0:69:86:15:af:56:fa:3f:e8:b2:a1: 97:69:0f:55:95:c6:03:6f:fa:1f:de:bb:41:cc:a0:a2:06:d3: ab:2d:ea:3d:87:db:f5:78:e0:66:82:81:39:9a:68:77:a7:26: 0b:70:9a:26:ae:53:7c:dd:7d:11:d2:36:39:8c:72:da:3b:71: 88:5e:32:3c:c9:6f:17:ad:04:7f:e3:f8:b0:bd:b3:16:50:c2: 1e:66:d2:73:5b:94:3e:ec:a5:b4:74:bb:1c:fa:67:40:d2:e0: b5:19:fe:85 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4OEFD NTgyN0VBNTA4NkM1ODUzNTUzODAwNUIxMkE1MUZDRDFGMEYwMB4XDTI0MDIyOTAx MzAyM1oXDTI1MDIxNDAxMzAwM1owMzExMC8GA1UEAxMoODczNDJERTFCNENCMDEy RDRGMTY5RDcxMjYxRjlFOTRDN0RGM0Y2OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMcOeMGJ64Uo4nA5V86Z3Bnz35HIDZfHG0w5oQh8n2mfEqromn9C 5UqVN4jJAOB2IOcuOWYJpqvJLJx/dbwQMsVPWzXmyOc3dl1Ysisw9sOBja1IKZ70 z5zHgm/t5w9Q3Vr6qOVJRQTHm4JE1ARoDy7q2NnEu4HFdEocCSUvXil22kdmNBgR SPN6jnpDNijD8R4MZchs47Lw1wGMb/rjtYxzmp7+pTgBNCua9n6ape2Sxm/3vMIn agBz3J1vt3rVKoo8QIV12oSCNuRis+q+i69gK2Gdrk/IV3/4GWQLCespzlI5VglF 2bEJ3B2EWQTX/b08JApOzxtI+47gt38GusECAwEAAaOCAikwggIlMB0GA1UdDgQW BBSHNC3htMsBLU8WnXEmH56Ux98/aTAfBgNVHSMEGDAWgBSIrFgn6lCGxYU1U4AF sSpR/NHw8DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxOTQvaUt4WUotcFFoc1dGTlZPQUJiRXFVZnpSOFBBLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaUt4WUotcFFoc1dGTlZPQUJiRXFV ZnpSOFBBLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTk0L2h6UXQ0YlRMQVMxUEZwMXhKaC1lbE1mZlAyay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAVMAMA0GCSqGSIb3DQEBCwUAA4IBAQCnthTJ6SninAE4gqGOpqVB 5hgHBmkg/IT2eT7lQeaKY+PPcL2nOF+9o3ZfKxLeXl06CYkJjjlHDaCxdozF2pYJ wrOQv2Fi75y2NA7uCHL7XjH6BneuHhUGRcaqYpMxAaHTV614vpov/3Yos4J10VNw Zd+6kG6nziHk6aI+CQTC7l4ECCpMUdhxZbybjcPaG83QvSAJ59WOoGmGFa9W+j/o sqGXaQ9VlcYDb/of3rtBzKCiBtOrLeo9h9v1eOBmgoE5mmh3pyYLcJomrlN83X0R 0jY5jHLaO3GIXjI8yW8XrQR/4/iwvbMWUMIeZtJzW5Q+7KW0dLsc+mdA0uC1Gf6F -----END CERTIFICATE-----Generated at Tue Nov 26 02:27:05 2024 by rpki-client on console-ams.rpki-client.org