$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30291/aFu9THmqF0HtDCLolzlfZ5kJTXE.roa File: aFu9THmqF0HtDCLolzlfZ5kJTXE.roa (raw, json) Hash identifier: TVaImSRbhxp2LutoDzAV0kN7EPqviTVjPXRFETJbYks= Subject key identifier: 68:5B:BD:4C:79:AA:17:41:ED:0C:22:E8:97:39:5F:67:99:09:4D:71 Certificate issuer: /CN=1CB60B40A98AEAE054CAEE4C09CB7D9AEADE3E9D Certificate serial: 0C Authority key identifier: 1C:B6:0B:40:A9:8A:EA:E0:54:CA:EE:4C:09:CB:7D:9A:EA:DE:3E:9D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/aFu9THmqF0HtDCLolzlfZ5kJTXE.roa Signing time: Mon 18 Dec 2023 01:40:14 +0000 ROA not before: Mon 18 Dec 2023 01:40:14 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 59125 IP address blocks: 2400:a140::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CB60B40A98AEAE054CAEE4C09CB7D9AEADE3E9D Validity Not Before: Dec 18 01:40:14 2023 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=685BBD4C79AA1741ED0C22E897395F6799094D71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cd:b5:81:0a:de:57:b2:e6:ea:2f:a2:14:55: 3e:18:22:c4:20:89:27:bb:4b:60:ac:eb:35:fd:f9: f4:70:6b:3c:a2:cf:8e:cb:8e:6c:5b:25:d9:1b:39: b8:fd:5c:cf:6e:84:58:5e:9a:bf:c8:84:30:d4:f4: 7e:d1:a7:32:d7:01:8f:75:94:00:b4:78:9b:d4:7c: 9c:11:54:a0:e4:65:9e:42:c4:39:4c:9d:ea:42:c8: 7b:85:6d:94:73:3a:af:17:4a:56:01:a9:b6:71:0b: 24:9a:27:1b:f6:6b:ca:c5:08:b6:50:a0:0b:63:23: 57:02:30:bf:42:c7:89:45:73:e7:7e:86:16:26:a5: 43:08:7c:68:49:46:0c:65:22:01:02:25:37:7e:b0: d6:7f:90:d7:a6:a7:58:4d:3e:eb:81:c9:75:aa:88: 57:e3:f9:80:60:34:9d:2b:92:a0:ce:61:84:6a:06: 7f:07:83:9b:ed:1c:f6:e7:57:aa:17:ca:50:86:9f: fd:c9:e6:94:18:f7:38:ac:05:01:27:f7:d1:32:af: 19:41:22:c2:45:18:63:58:be:b8:07:0b:82:09:54: 61:a8:0e:ab:37:c7:be:a3:70:a6:f2:c4:11:5e:31: 47:0f:d0:b9:5d:b5:e3:1f:2b:e6:21:95:5b:8f:fc: b5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:5B:BD:4C:79:AA:17:41:ED:0C:22:E8:97:39:5F:67:99:09:4D:71 X509v3 Authority Key Identifier: keyid:1C:B6:0B:40:A9:8A:EA:E0:54:CA:EE:4C:09:CB:7D:9A:EA:DE:3E:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/aFu9THmqF0HtDCLolzlfZ5kJTXE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:a140::/32 Signature Algorithm: sha256WithRSAEncryption 20:4a:2f:53:68:95:1c:68:86:e7:c1:be:8e:65:a3:b9:3b:45: 0d:b3:36:9f:f3:ac:86:7d:dd:13:28:13:fb:9d:38:12:b9:a3: 76:bc:0d:df:e6:3b:4d:d8:7b:51:5c:31:84:96:bc:a8:56:9b: 88:11:07:1d:0b:49:9b:87:13:da:63:70:a5:f4:f8:26:fa:9d: 0e:71:5c:71:72:d1:40:a0:a5:a7:f3:06:b1:a1:ac:e0:65:7a: 3b:b0:f9:e0:60:6f:db:ad:89:c6:18:7a:32:97:46:b3:55:07: b1:ea:05:2d:0f:cb:fb:46:d6:1b:09:d2:b5:8b:45:fa:25:a6: 75:af:15:16:4d:35:ee:68:f3:39:fa:77:e8:dd:71:db:7d:4c: da:1d:2c:e1:0e:3a:38:9b:da:57:ad:82:de:8b:71:7b:94:4a: 30:6d:a8:ac:b9:77:93:bb:ff:c5:51:e5:0a:9e:40:18:2d:d0: 1d:db:b7:b4:11:7a:a4:39:5a:50:a2:ee:b5:b6:b0:20:0c:fa: 73:b5:ba:e1:ef:5d:d7:cc:c5:d7:45:b3:13:82:f9:c3:e4:85: 83:89:00:c9:64:f3:a9:ec:e1:36:ee:92:5f:63:4c:a0:44:d3: be:bc:79:45:3a:72:c0:d7:83:5f:00:74:b8:27:d3:e0:e7:30: e7:e0:41:63 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBDDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQ0I2 MEI0MEE5OEFFQUUwNTRDQUVFNEMwOUNCN0Q5QUVBREUzRTlEMB4XDTIzMTIxODAx NDAxNFoXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoNjg1QkJENEM3OUFBMTc0 MUVEMEMyMkU4OTczOTVGNjc5OTA5NEQ3MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANXNtYEK3ley5uovohRVPhgixCCJJ7tLYKzrNf359HBrPKLPjsuO bFsl2Rs5uP1cz26EWF6av8iEMNT0ftGnMtcBj3WUALR4m9R8nBFUoORlnkLEOUyd 6kLIe4VtlHM6rxdKVgGptnELJJonG/ZrysUItlCgC2MjVwIwv0LHiUVz536GFial Qwh8aElGDGUiAQIlN36w1n+Q16anWE0+64HJdaqIV+P5gGA0nSuSoM5hhGoGfweD m+0c9udXqhfKUIaf/cnmlBj3OKwFASf30TKvGUEiwkUYY1i+uAcLgglUYagOqzfH vqNwpvLEEV4xRw/QuV214x8r5iGVW4/8tW8CAwEAAaOCAikwggIlMB0GA1UdDgQW BBRoW71MeaoXQe0MIuiXOV9nmQlNcTAfBgNVHSMEGDAWgBQctgtAqYrq4FTK7kwJ y32a6t4+nTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAyOTEvSExZTFFLbUs2dUJVeXU1TUNjdDltdXJlUHAwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvSExZTFFLbUs2dUJVeXU1TUNjdDlt dXJlUHAwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMjkxL2FGdTlUSG1xRjBIdERDTG9semxmWjVrSlRYRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAKFAMA0GCSqGSIb3DQEBCwUAA4IBAQAgSi9TaJUcaIbnwb6OZaO5 O0UNszaf86yGfd0TKBP7nTgSuaN2vA3f5jtN2HtRXDGElryoVpuIEQcdC0mbhxPa Y3Cl9Pgm+p0OcVxxctFAoKWn8waxoazgZXo7sPngYG/brYnGGHoyl0azVQex6gUt D8v7RtYbCdK1i0X6JaZ1rxUWTTXuaPM5+nfo3XHbfUzaHSzhDjo4m9pXrYLei3F7 lEowbaisuXeTu//FUeUKnkAYLdAd27e0EXqkOVpQou61trAgDPpztbrh713XzMXX RbMTgvnD5IWDiQDJZPOp7OE27pJfY0ygRNO+vHlFOnLA14NfAHS4J9Pg5zDn4EFj -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:34 2024 by rpki-client on console-ams.rpki-client.org