$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30247/HfhrT1yLjC7SRqpchI6dUuxrOLs.roa File: HfhrT1yLjC7SRqpchI6dUuxrOLs.roa (raw, json) Hash identifier: 2LxrX26NiTg2ffMzKkDcNogE3qR6L9LuVQo4URhOG8Y= Subject key identifier: 1D:F8:6B:4F:5C:8B:8C:2E:D2:46:AA:5C:84:8E:9D:52:EC:6B:38:BB Certificate issuer: /CN=D441672C555CFF0A58A8CF9AEEE7803264BF2D28 Certificate serial: 50 Authority key identifier: D4:41:67:2C:55:5C:FF:0A:58:A8:CF:9A:EE:E7:80:32:64:BF:2D:28 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1EFnLFVc_wpYqM-a7ueAMmS_LSg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30247/HfhrT1yLjC7SRqpchI6dUuxrOLs.roa Signing time: Fri 31 May 2024 01:30:30 +0000 ROA not before: Fri 31 May 2024 01:30:30 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 9607 IP address blocks: 2001:370:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30247/1EFnLFVc_wpYqM-a7ueAMmS_LSg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30247/1EFnLFVc_wpYqM-a7ueAMmS_LSg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1EFnLFVc_wpYqM-a7ueAMmS_LSg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D441672C555CFF0A58A8CF9AEEE7803264BF2D28 Validity Not Before: May 31 01:30:30 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=1DF86B4F5C8B8C2ED246AA5C848E9D52EC6B38BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a2:f8:47:a6:2d:84:f4:91:a4:1f:67:24:78: f7:3d:97:3c:bb:02:76:be:26:34:c0:57:bd:a4:82: 7d:7a:7d:c3:f9:9b:29:fe:ee:24:a0:15:18:6d:34: 9d:df:2e:53:d9:6f:3a:d2:6a:13:f0:eb:04:a8:8b: 69:f9:1e:14:85:85:f0:6e:a7:11:af:8d:f3:a6:6e: 64:3d:84:31:9f:1f:3a:36:93:22:66:36:01:d6:1c: c9:6e:5d:e2:be:9a:96:98:c7:1a:65:8f:42:04:a4: d4:ab:bf:3a:7d:18:26:ea:29:2b:86:71:4a:b2:6e: 05:6d:b7:b0:0f:6a:e4:94:d7:55:c6:5f:2f:c4:b8: 8c:96:99:21:73:d7:da:f1:e1:f5:a1:8b:c7:bf:60: 9f:8b:1c:0c:21:38:e4:08:10:b4:5f:bc:a6:90:5a: 79:65:79:e2:d6:d2:3e:0f:be:95:8d:a6:98:88:61: f5:56:be:0a:e9:4c:59:19:6e:75:b0:62:82:ed:85: 9b:ef:e3:ce:a5:55:19:60:69:0a:2b:ae:29:10:be: bf:bf:99:15:ce:e5:d4:84:4a:9f:67:4b:d4:2f:fd: 0e:3e:3a:bd:a0:c0:3d:96:27:d0:fc:a0:e5:43:8d: 34:de:60:b1:72:e3:d3:11:a8:3e:34:b2:5e:27:83: db:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F8:6B:4F:5C:8B:8C:2E:D2:46:AA:5C:84:8E:9D:52:EC:6B:38:BB X509v3 Authority Key Identifier: keyid:D4:41:67:2C:55:5C:FF:0A:58:A8:CF:9A:EE:E7:80:32:64:BF:2D:28 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30247/1EFnLFVc_wpYqM-a7ueAMmS_LSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1EFnLFVc_wpYqM-a7ueAMmS_LSg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30247/HfhrT1yLjC7SRqpchI6dUuxrOLs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:370:a::/48 Signature Algorithm: sha256WithRSAEncryption 74:52:25:9b:f9:fc:20:aa:4a:4e:bc:e8:da:77:02:a7:85:4f: 92:51:2d:f1:5a:ac:8e:d2:62:df:42:51:31:3d:9f:af:2a:59: aa:8d:2a:98:76:da:ae:49:fa:72:87:62:b6:04:81:8a:9b:95: ce:ec:87:67:98:12:82:37:72:36:0d:c9:c6:28:6a:15:17:8d: 91:08:80:ae:c5:55:01:34:cc:2a:ab:03:ee:b8:50:b3:21:16: 64:95:98:5a:a4:2f:14:1f:65:af:da:75:aa:e4:94:9a:85:15: 65:dd:3d:0b:cf:5e:97:cc:9b:fd:ff:50:47:5a:4c:45:61:8a: 22:20:7b:24:98:5f:52:84:0d:a7:8a:10:34:b5:05:66:bc:ca: da:63:9f:13:20:56:d9:da:3a:b8:42:6c:fa:73:bd:c8:c0:86: b4:dc:fe:a6:bd:6a:6c:32:16:21:85:c4:3c:4b:55:f6:81:e2: ef:ae:aa:2a:3b:fe:58:2f:14:cd:f3:5b:ea:42:e4:56:f6:71: 84:8d:79:71:e8:9b:46:92:64:ef:ac:a4:7a:fc:1f:3a:3c:52: 25:ce:c5:ea:78:b7:37:6f:73:a6:a3:8f:e9:7d:b7:d2:8a:6c: ad:eb:d3:ee:8d:29:d7:82:ca:59:f9:6b:3a:0e:23:67:c2:4a: f3:25:c6:75 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBUDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENDQx NjcyQzU1NUNGRjBBNThBOENGOUFFRUU3ODAzMjY0QkYyRDI4MB4XDTI0MDUzMTAx MzAzMFoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoMURGODZCNEY1QzhCOEMy RUQyNDZBQTVDODQ4RTlENTJFQzZCMzhCQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKqi+EemLYT0kaQfZyR49z2XPLsCdr4mNMBXvaSCfXp9w/mbKf7u JKAVGG00nd8uU9lvOtJqE/DrBKiLafkeFIWF8G6nEa+N86ZuZD2EMZ8fOjaTImY2 AdYcyW5d4r6alpjHGmWPQgSk1Ku/On0YJuopK4ZxSrJuBW23sA9q5JTXVcZfL8S4 jJaZIXPX2vHh9aGLx79gn4scDCE45AgQtF+8ppBaeWV54tbSPg++lY2mmIhh9Va+ CulMWRludbBigu2Fm+/jzqVVGWBpCiuuKRC+v7+ZFc7l1IRKn2dL1C/9Dj46vaDA PZYn0Pyg5UONNN5gsXLj0xGoPjSyXieD22MCAwEAAaOCAiswggInMB0GA1UdDgQW BBQd+GtPXIuMLtJGqlyEjp1S7Gs4uzAfBgNVHSMEGDAWgBTUQWcsVVz/Clioz5ru 54AyZL8tKDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAyNDcvMUVGbkxGVmNfd3BZcU0tYTd1ZUFNbVNfTFNnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMUVGbkxGVmNfd3BZcU0tYTd1ZUFN bVNfTFNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMjQ3L0hmaHJUMXlMakM3U1JxcGNoSTZkVXV4ck9Mcy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQNwAAowDQYJKoZIhvcNAQELBQADggEBAHRSJZv5/CCqSk686Np3 AqeFT5JRLfFarI7SYt9CUTE9n68qWaqNKph22q5J+nKHYrYEgYqblc7sh2eYEoI3 cjYNycYoahUXjZEIgK7FVQE0zCqrA+64ULMhFmSVmFqkLxQfZa/adarklJqFFWXd PQvPXpfMm/3/UEdaTEVhiiIgeySYX1KEDaeKEDS1BWa8ytpjnxMgVtnaOrhCbPpz vcjAhrTc/qa9amwyFiGFxDxLVfaB4u+uqio7/lgvFM3zW+pC5Fb2cYSNeXHom0aS ZO+spHr8Hzo8UiXOxep4tzdvc6ajj+l9t9KKbK3r0+6NKdeCyln5azoOI2fCSvMl xnU= -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:57 2024 by rpki-client on console-fra.rpki-client.org