$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30201/TPomyRo8N2u3Gwmo2p4IdNCu-VA.roa File: TPomyRo8N2u3Gwmo2p4IdNCu-VA.roa (raw, json) Hash identifier: GkM39D3yBU0iw8g2RMA8WXJJcpc6Wkpw1LXsaBuwsKA= Subject key identifier: 4C:FA:26:C9:1A:3C:37:6B:B7:1B:09:A8:DA:9E:08:74:D0:AE:F9:50 Certificate issuer: /CN=F02CCAFADD1DB0D57751B20D7729CA4DA8F4D202 Certificate serial: 2E Authority key identifier: F0:2C:CA:FA:DD:1D:B0:D5:77:51:B2:0D:77:29:CA:4D:A8:F4:D2:02 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8CzK-t0dsNV3UbINdynKTaj00gI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30201/TPomyRo8N2u3Gwmo2p4IdNCu-VA.roa Signing time: Fri 31 Jan 2025 01:29:03 +0000 ROA not before: Fri 31 Jan 2025 01:29:03 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 17530 IP address blocks: 2401:bf00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30201/8CzK-t0dsNV3UbINdynKTaj00gI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30201/8CzK-t0dsNV3UbINdynKTaj00gI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8CzK-t0dsNV3UbINdynKTaj00gI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F02CCAFADD1DB0D57751B20D7729CA4DA8F4D202 Validity Not Before: Jan 31 01:29:03 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=4CFA26C91A3C376BB71B09A8DA9E0874D0AEF950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:db:eb:94:26:69:fe:44:f5:f2:e9:6b:57:67: d1:18:58:14:1b:9b:56:8e:15:c1:58:9a:91:b4:a9: 9a:27:9b:1b:2a:f6:f8:82:04:82:94:74:af:d6:ce: 05:bb:a6:4d:54:bd:a0:cc:a2:e9:66:ef:08:2d:73: f6:37:d9:ab:a4:99:cd:22:9c:25:09:cb:5e:15:59: 25:1c:00:d3:b6:e1:e5:5b:9f:8e:e3:1f:8a:31:23: 72:47:a8:dc:a6:d7:b9:52:70:b2:64:77:8a:23:3a: 3d:2c:4d:da:c1:64:d3:90:b7:e0:59:de:23:1d:cd: 7f:91:a7:a9:6d:d0:b6:72:ca:e4:7b:e9:b2:2d:cf: fe:33:40:0b:15:68:17:ef:b9:d6:79:f6:a1:5e:66: c0:a3:9a:11:07:be:07:14:79:31:c9:be:29:3c:00: 58:1b:db:72:78:22:3a:0a:57:b8:2d:6c:68:a0:52: fd:57:04:18:27:8d:b0:33:0d:9f:c9:ef:53:4c:21: dc:d1:f0:63:03:5f:ba:39:30:4f:73:59:b7:9a:78: ec:6e:10:9e:9c:51:79:22:41:b0:c4:b5:0b:fe:30: bb:4b:d3:c1:ec:67:6d:39:30:91:5d:13:97:d6:11: 20:b5:05:ed:04:81:1e:bc:48:f4:d5:df:2d:38:52: 38:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:FA:26:C9:1A:3C:37:6B:B7:1B:09:A8:DA:9E:08:74:D0:AE:F9:50 X509v3 Authority Key Identifier: keyid:F0:2C:CA:FA:DD:1D:B0:D5:77:51:B2:0D:77:29:CA:4D:A8:F4:D2:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30201/8CzK-t0dsNV3UbINdynKTaj00gI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8CzK-t0dsNV3UbINdynKTaj00gI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30201/TPomyRo8N2u3Gwmo2p4IdNCu-VA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bf00::/32 Signature Algorithm: sha256WithRSAEncryption 59:72:8e:c0:a7:a6:96:89:08:58:d4:1a:65:c6:ee:99:fa:21: 85:ed:9a:16:2b:58:77:f7:75:ad:35:6f:99:d1:1f:ae:27:df: bc:28:bf:27:95:69:a4:d2:52:a3:66:95:e1:34:54:dc:98:ae: c8:5b:41:6f:1e:b4:b5:dd:18:a7:69:3b:ac:87:fa:86:27:5a: 54:ea:62:55:e7:1e:bc:9c:01:ae:2a:98:3f:87:2f:7b:46:32: 05:d9:c5:20:7f:50:de:25:0c:6f:a5:a9:19:4e:ec:7d:b5:fc: ba:5a:29:4d:34:79:eb:5b:06:61:df:cb:84:fd:4e:20:25:c5: 1f:c2:b1:c8:46:b3:80:37:7e:38:d8:cf:e5:c1:1a:e7:79:a0: 3b:90:b1:cf:fe:86:3d:31:10:5c:dc:42:17:c2:df:05:5e:57: f6:a7:bc:ed:43:14:a7:da:b5:ff:7b:76:69:17:fb:82:04:fd: bc:4f:66:c8:56:26:8c:1a:2b:be:81:ea:de:9a:7a:c5:e5:9e: 7d:10:f9:29:a5:74:df:c2:48:c0:29:e6:79:4d:7b:f5:5b:af: a4:d1:e6:bf:6e:73:d7:ee:f0:7e:05:dc:6a:d0:40:27:ef:1f: e7:f7:8b:fb:ba:d9:28:a1:dd:84:ad:62:79:74:43:22:a7:69: 98:a6:2a:0d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMDJD Q0FGQUREMURCMEQ1Nzc1MUIyMEQ3NzI5Q0E0REE4RjREMjAyMB4XDTI1MDEzMTAx MjkwM1oXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoNENGQTI2QzkxQTNDMzc2 QkI3MUIwOUE4REE5RTA4NzREMEFFRjk1MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK7b65Qmaf5E9fLpa1dn0RhYFBubVo4VwViakbSpmiebGyr2+IIE gpR0r9bOBbumTVS9oMyi6WbvCC1z9jfZq6SZzSKcJQnLXhVZJRwA07bh5VufjuMf ijEjckeo3KbXuVJwsmR3iiM6PSxN2sFk05C34FneIx3Nf5GnqW3QtnLK5Hvpsi3P /jNACxVoF++51nn2oV5mwKOaEQe+BxR5Mcm+KTwAWBvbcngiOgpXuC1saKBS/VcE GCeNsDMNn8nvU0wh3NHwYwNfujkwT3NZt5p47G4QnpxReSJBsMS1C/4wu0vTwexn bTkwkV0Tl9YRILUF7QSBHrxI9NXfLThSOKsCAwEAAaOCAikwggIlMB0GA1UdDgQW BBRM+ibJGjw3a7cbCajangh00K75UDAfBgNVHSMEGDAWgBTwLMr63R2w1XdRsg13 KcpNqPTSAjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAyMDEvOEN6Sy10MGRzTlYzVWJJTmR5bktUYWowMGdJLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvOEN6Sy10MGRzTlYzVWJJTmR5bktU YWowMGdJLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMjAxL1RQb215Um84TjJ1M0d3bW8ycDRJZE5DdS1WQS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAb8AMA0GCSqGSIb3DQEBCwUAA4IBAQBZco7Ap6aWiQhY1Bplxu6Z +iGF7ZoWK1h393WtNW+Z0R+uJ9+8KL8nlWmk0lKjZpXhNFTcmK7IW0FvHrS13Rin aTush/qGJ1pU6mJV5x68nAGuKpg/hy97RjIF2cUgf1DeJQxvpakZTux9tfy6WilN NHnrWwZh38uE/U4gJcUfwrHIRrOAN3442M/lwRrneaA7kLHP/oY9MRBc3EIXwt8F Xlf2p7ztQxSn2rX/e3ZpF/uCBP28T2bIViaMGiu+geremnrF5Z59EPkppXTfwkjA KeZ5TXv1W6+k0ea/bnPX7vB+Bdxq0EAn7x/n94v7utkood2ErWJ5dEMip2mYpioN -----END CERTIFICATE-----Generated at Wed Feb 19 22:29:58 2025 by rpki-client