$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30310/2zzXnsQj8Wod1XpTEwjOoBRHbn0.roa File: 2zzXnsQj8Wod1XpTEwjOoBRHbn0.roa (raw, json) Hash identifier: of1w7PIcc7dtv+JO0SoTTCfkLfVwfUzleA0dgzYPLVc= Subject key identifier: DB:3C:D7:9E:C4:23:F1:6A:1D:D5:7A:53:13:08:CE:A0:14:47:6E:7D Certificate issuer: /CN=9DDC7377517D53593BF1AC966C3B71AF6F5C09CA Certificate serial: 36 Authority key identifier: 9D:DC:73:77:51:7D:53:59:3B:F1:AC:96:6C:3B:71:AF:6F:5C:09:CA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ndxzd1F9U1k78ayWbDtxr29cCco.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/2zzXnsQj8Wod1XpTEwjOoBRHbn0.roa Signing time: Tue 30 Apr 2024 01:29:03 +0000 ROA not before: Tue 30 Apr 2024 01:29:03 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 23778 IP address blocks: 2401:cbc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/ndxzd1F9U1k78ayWbDtxr29cCco.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/ndxzd1F9U1k78ayWbDtxr29cCco.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ndxzd1F9U1k78ayWbDtxr29cCco.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DDC7377517D53593BF1AC966C3B71AF6F5C09CA Validity Not Before: Apr 30 01:29:03 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=DB3CD79EC423F16A1DD57A531308CEA014476E7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:95:f7:b0:61:ee:a3:cc:fa:5b:ec:ef:4b:26: a4:77:5e:a6:fc:cc:cc:2a:6b:72:fc:25:87:55:4f: 8e:cd:95:57:c2:91:46:bf:68:f6:c2:23:52:1c:ab: 50:fd:f4:12:c4:94:28:6f:f3:6e:85:43:bf:93:47: f2:58:47:97:52:93:c2:18:6c:41:8a:8a:27:e4:74: e4:bc:b6:2e:62:da:0f:1b:c4:e4:49:cc:0c:27:bb: 7f:50:d1:bb:34:0b:06:76:0f:9e:3e:4c:b6:1b:96: e9:52:18:37:6c:25:98:b9:38:37:f2:b0:41:ff:34: 3b:bd:2a:00:aa:d6:9e:a9:f2:71:15:a6:c9:7a:f4: 7e:2e:7f:0e:30:a7:cf:4b:0b:af:10:18:72:32:6a: c8:ed:2f:1b:62:be:ed:6f:40:e0:cd:44:9b:95:71: 87:fd:d4:d7:e5:8f:4d:79:a4:12:45:01:b5:7b:31: f2:ee:18:06:73:8e:89:8a:fe:ae:f4:f8:dd:1a:6b: 3d:e0:1c:4d:f8:be:e7:b9:38:48:f1:14:5f:ef:44: bc:9b:c3:1f:bb:88:53:d7:da:3d:ac:4e:72:d9:a7: 66:20:58:af:2b:3b:84:23:6e:20:69:e6:18:ce:9a: 97:b5:63:b4:b4:e7:56:37:9a:ca:d4:c5:6b:5e:c8: a3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3C:D7:9E:C4:23:F1:6A:1D:D5:7A:53:13:08:CE:A0:14:47:6E:7D X509v3 Authority Key Identifier: keyid:9D:DC:73:77:51:7D:53:59:3B:F1:AC:96:6C:3B:71:AF:6F:5C:09:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/ndxzd1F9U1k78ayWbDtxr29cCco.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ndxzd1F9U1k78ayWbDtxr29cCco.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/2zzXnsQj8Wod1XpTEwjOoBRHbn0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:cbc0::/32 Signature Algorithm: sha256WithRSAEncryption ea:eb:00:48:18:68:f4:69:14:e1:47:65:02:5e:18:72:35:ef: 5d:17:fd:1c:77:2a:a0:0d:96:f6:c9:79:fd:a8:7d:37:43:b7: 27:04:3e:d4:f3:a4:f1:c2:05:ec:45:02:01:65:8f:4b:08:2e: 17:02:e3:fc:66:59:57:82:58:d2:53:05:99:13:7b:92:4c:26: 86:ec:b2:c9:cc:67:e5:2a:c0:d4:a5:61:da:29:f7:14:f4:1f: 2c:a2:8a:0f:79:2b:41:36:cb:37:ff:73:31:22:9f:b3:25:9d: 82:42:03:01:4e:41:3e:e4:e7:c4:88:cf:52:fa:32:d5:60:66: 47:61:08:c6:27:79:cb:df:3d:81:3a:31:4d:3f:01:a8:af:8d: cb:ba:98:1d:ef:d1:f4:3a:9d:e3:91:f5:8e:34:0d:ca:d8:50: 36:ba:f8:fc:52:66:d7:03:bd:ea:f2:b6:93:fe:36:aa:59:0b: b7:73:25:32:e3:35:24:31:8e:68:c0:ed:fe:80:6b:6e:86:20: ac:ca:e7:db:5d:2d:4a:69:d0:23:82:c3:c6:70:2e:95:e4:46: 1c:da:9d:69:ce:ed:17:5e:50:c8:3e:ad:3c:ca:a8:1f:83:6b: f3:d6:40:08:0c:1c:cf:a5:ad:1e:de:19:23:ef:b7:ad:46:a5: d8:4c:8f:da -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5RERD NzM3NzUxN0Q1MzU5M0JGMUFDOTY2QzNCNzFBRjZGNUMwOUNBMB4XDTI0MDQzMDAx MjkwM1oXDTI1MDQxNTAxMzAwMlowMzExMC8GA1UEAxMoREIzQ0Q3OUVDNDIzRjE2 QTFERDU3QTUzMTMwOENFQTAxNDQ3NkU3RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL6V97Bh7qPM+lvs70smpHdepvzMzCprcvwlh1VPjs2VV8KRRr9o 9sIjUhyrUP30EsSUKG/zboVDv5NH8lhHl1KTwhhsQYqKJ+R05Ly2LmLaDxvE5EnM DCe7f1DRuzQLBnYPnj5MthuW6VIYN2wlmLk4N/KwQf80O70qAKrWnqnycRWmyXr0 fi5/DjCnz0sLrxAYcjJqyO0vG2K+7W9A4M1Em5Vxh/3U1+WPTXmkEkUBtXsx8u4Y BnOOiYr+rvT43RprPeAcTfi+57k4SPEUX+9EvJvDH7uIU9faPaxOctmnZiBYrys7 hCNuIGnmGM6al7VjtLTnVjeaytTFa17Io3MCAwEAAaOCAikwggIlMB0GA1UdDgQW BBTbPNeexCPxah3VelMTCM6gFEdufTAfBgNVHSMEGDAWgBSd3HN3UX1TWTvxrJZs O3Gvb1wJyjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzMTAvbmR4emQxRjlVMWs3OGF5V2JEdHhyMjljQ2NvLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbmR4emQxRjlVMWs3OGF5V2JEdHhy MjljQ2NvLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzEwLzJ6elhuc1FqOFdvZDFYcFRFd2pPb0JSSGJuMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAcvAMA0GCSqGSIb3DQEBCwUAA4IBAQDq6wBIGGj0aRThR2UCXhhy Ne9dF/0cdyqgDZb2yXn9qH03Q7cnBD7U86TxwgXsRQIBZY9LCC4XAuP8ZllXgljS UwWZE3uSTCaG7LLJzGflKsDUpWHaKfcU9B8soooPeStBNss3/3MxIp+zJZ2CQgMB TkE+5OfEiM9S+jLVYGZHYQjGJ3nL3z2BOjFNPwGor43Lupgd79H0Op3jkfWONA3K 2FA2uvj8UmbXA73q8raT/jaqWQu3cyUy4zUkMY5owO3+gGtuhiCsyufbXS1KadAj gsPGcC6V5EYc2p1pzu0XXlDIPq08yqgfg2vz1kAIDBzPpa0e3hkj77etRqXYTI/a -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:58 2024 by rpki-client on console-fra.rpki-client.org