$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30299/pkgpLyJFRT5R6TC3LEU1mRT7YmE.roa File: pkgpLyJFRT5R6TC3LEU1mRT7YmE.roa (raw, json) Hash identifier: kB40l0poQhszSsu6959tKvkY+XSP9y4sn3brOd/dnHE= Subject key identifier: A6:48:29:2F:22:45:45:3E:51:E9:30:B7:2C:45:35:99:14:FB:62:61 Certificate issuer: /CN=C441193AC56882F9FD638B6CA5F07811C61F16E0 Certificate serial: 0F Authority key identifier: C4:41:19:3A:C5:68:82:F9:FD:63:8B:6C:A5:F0:78:11:C6:1F:16:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xEEZOsVogvn9Y4tspfB4EcYfFuA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30299/pkgpLyJFRT5R6TC3LEU1mRT7YmE.roa Signing time: Mon 15 Jan 2024 05:15:52 +0000 ROA not before: Mon 15 Jan 2024 05:15:52 +0000 ROA not after: Tue 14 Jan 2025 01:30:02 +0000 asID: 131923 IP address blocks: 2401:5ac0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30299/xEEZOsVogvn9Y4tspfB4EcYfFuA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30299/xEEZOsVogvn9Y4tspfB4EcYfFuA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xEEZOsVogvn9Y4tspfB4EcYfFuA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C441193AC56882F9FD638B6CA5F07811C61F16E0 Validity Not Before: Jan 15 05:15:52 2024 GMT Not After : Jan 14 01:30:02 2025 GMT Subject: CN=A648292F2245453E51E930B72C45359914FB6261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1b:ff:3a:f2:a2:5f:8d:10:23:ac:ec:ba:0a: 9d:d1:f8:1d:5c:60:07:3e:4a:1e:8d:7a:b8:cf:06: e9:48:01:63:df:ea:17:7b:0d:a2:a5:ff:36:1d:95: d8:4a:40:78:e6:a4:bd:07:27:29:37:af:f3:1d:e3: e2:e8:eb:cc:82:e7:a8:d8:a5:c7:f0:5b:a3:79:47: bb:3f:53:3a:30:89:b9:ac:48:61:1f:37:59:32:3d: 7e:bd:98:a3:1f:92:df:fb:0d:14:45:2b:bb:4d:5a: 05:08:10:a3:9f:b7:d7:b7:4d:0f:ad:10:38:e1:37: 02:09:90:28:c0:1f:d4:33:6d:ec:21:b9:6f:a3:dc: 19:8e:cd:9f:4c:17:fd:bb:bb:c8:e5:08:34:e2:06: d9:1c:6d:69:ce:b4:b8:7e:2c:35:db:1d:fb:01:07: ad:95:09:3c:3a:dd:ff:b1:48:23:76:76:26:d8:ca: 4f:68:02:1e:09:ec:9e:78:aa:06:4c:61:64:e2:11: 2c:7a:0b:15:01:cb:02:b0:1d:63:8c:8d:ff:7e:ab: 7e:c4:83:a9:62:31:51:08:a6:bc:d1:b6:c2:02:a0: ef:ae:78:9d:7d:fa:41:7f:e1:db:7f:64:af:5d:f3: e1:d1:13:d9:5b:e7:e9:4e:91:05:b9:b3:d4:b8:89: 54:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:48:29:2F:22:45:45:3E:51:E9:30:B7:2C:45:35:99:14:FB:62:61 X509v3 Authority Key Identifier: keyid:C4:41:19:3A:C5:68:82:F9:FD:63:8B:6C:A5:F0:78:11:C6:1F:16:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30299/xEEZOsVogvn9Y4tspfB4EcYfFuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xEEZOsVogvn9Y4tspfB4EcYfFuA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30299/pkgpLyJFRT5R6TC3LEU1mRT7YmE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:5ac0::/32 Signature Algorithm: sha256WithRSAEncryption 8e:0f:15:74:f9:5d:51:dd:33:ce:cf:af:06:47:cf:4e:7c:fb: 62:e2:60:d8:d8:d4:9b:ab:a2:20:01:e9:b2:51:f5:1e:02:4d: 8b:3f:1a:5d:e1:bf:94:79:82:75:a5:6a:1c:d5:80:42:fa:ce: 1e:e8:1e:bc:eb:dd:a2:9b:ee:e8:a1:f7:b2:b8:2d:b8:ef:cf: 76:8b:6a:ec:51:0a:d9:35:a0:23:60:f6:0a:1b:36:23:81:62: 96:74:89:35:c4:ea:cd:a1:53:b5:7a:e7:5d:1a:7c:c1:84:a0: 32:27:fb:a1:5c:f9:9f:af:74:0d:25:ec:59:97:04:74:e4:d0: 6a:16:29:85:44:52:0e:7d:05:a4:e4:c2:17:fc:87:c8:1f:5a: 0a:9d:1d:38:21:b6:70:1f:15:16:bb:41:2c:a9:aa:01:47:f0: 2a:6e:2c:c7:c2:7a:eb:db:57:03:e2:00:d1:c7:20:ab:e1:ce: 16:03:dc:f9:c0:3e:f0:62:ca:a6:54:8f:31:2f:11:75:3e:85: 4a:4c:5a:c2:28:7f:c2:f2:bb:24:ee:ca:52:16:c4:e4:f9:83: f6:62:09:b3:36:22:d3:db:e7:72:7d:6b:df:9b:fc:71:20:36: 4a:4c:53:02:d6:4e:72:4d:54:3a:e3:d8:85:0b:ac:dd:6f:e8: 85:4c:5f:d2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNDQx MTkzQUM1Njg4MkY5RkQ2MzhCNkNBNUYwNzgxMUM2MUYxNkUwMB4XDTI0MDExNTA1 MTU1MloXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoQTY0ODI5MkYyMjQ1NDUz RTUxRTkzMEI3MkM0NTM1OTkxNEZCNjI2MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM8b/zryol+NECOs7LoKndH4HVxgBz5KHo16uM8G6UgBY9/qF3sN oqX/Nh2V2EpAeOakvQcnKTev8x3j4ujrzILnqNilx/Bbo3lHuz9TOjCJuaxIYR83 WTI9fr2Yox+S3/sNFEUru01aBQgQo5+317dND60QOOE3AgmQKMAf1DNt7CG5b6Pc GY7Nn0wX/bu7yOUINOIG2Rxtac60uH4sNdsd+wEHrZUJPDrd/7FII3Z2JtjKT2gC HgnsnniqBkxhZOIRLHoLFQHLArAdY4yN/36rfsSDqWIxUQimvNG2wgKg7654nX36 QX/h239kr13z4dET2Vvn6U6RBbmz1LiJVL8CAwEAAaOCAikwggIlMB0GA1UdDgQW BBSmSCkvIkVFPlHpMLcsRTWZFPtiYTAfBgNVHSMEGDAWgBTEQRk6xWiC+f1ji2yl 8HgRxh8W4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAyOTkveEVFWk9zVm9ndm45WTR0c3BmQjRFY1lmRnVBLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAveEVFWk9zVm9ndm45WTR0c3BmQjRF Y1lmRnVBLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMjk5L3BrZ3BMeUpGUlQ1UjZUQzNMRVUxbVJUN1ltRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAVrAMA0GCSqGSIb3DQEBCwUAA4IBAQCODxV0+V1R3TPOz68GR89O fPti4mDY2NSbq6IgAemyUfUeAk2LPxpd4b+UeYJ1pWoc1YBC+s4e6B68692im+7o ofeyuC247892i2rsUQrZNaAjYPYKGzYjgWKWdIk1xOrNoVO1euddGnzBhKAyJ/uh XPmfr3QNJexZlwR05NBqFimFRFIOfQWk5MIX/IfIH1oKnR04IbZwHxUWu0EsqaoB R/AqbizHwnrr21cD4gDRxyCr4c4WA9z5wD7wYsqmVI8xLxF1PoVKTFrCKH/C8rsk 7spSFsTk+YP2YgmzNiLT2+dyfWvfm/xxIDZKTFMC1k5yTVQ649iFC6zdb+iFTF/S -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:45 2024 by rpki-client on console-fra.rpki-client.org