$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30315/af1ewHMtJfWBnsZAbvFwoErZNDg.roa File: af1ewHMtJfWBnsZAbvFwoErZNDg.roa (raw, json) Hash identifier: 6DzSXAP4gaLIc+ItDKeNDfDKToBpPbrO0TTEsqO2fRE= Subject key identifier: 69:FD:5E:C0:73:2D:25:F5:81:9E:C6:40:6E:F1:70:A0:4A:D9:34:38 Certificate issuer: /CN=98035C1EB61ED8EEF153D8F32BDA13BDAD742EC5 Certificate serial: 1B Authority key identifier: 98:03:5C:1E:B6:1E:D8:EE:F1:53:D8:F3:2B:DA:13:BD:AD:74:2E:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mANcHrYe2O7xU9jzK9oTva10LsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30315/af1ewHMtJfWBnsZAbvFwoErZNDg.roa Signing time: Wed 31 Jul 2024 01:31:57 +0000 ROA not before: Wed 31 Jul 2024 01:31:57 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 10011 IP address blocks: 2402:2840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30315/mANcHrYe2O7xU9jzK9oTva10LsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30315/mANcHrYe2O7xU9jzK9oTva10LsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mANcHrYe2O7xU9jzK9oTva10LsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98035C1EB61ED8EEF153D8F32BDA13BDAD742EC5 Validity Not Before: Jul 31 01:31:57 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=69FD5EC0732D25F5819EC6406EF170A04AD93438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f1:f4:8b:f0:7c:b0:bb:b0:30:62:e3:bd:c8: 18:2d:64:c1:34:e2:95:13:8b:76:7c:5e:82:f8:db: 84:7b:8e:10:a5:e5:e6:78:5a:4f:8c:60:e1:68:bf: 65:36:2c:05:67:83:16:e8:0b:c4:69:a5:a5:75:b1: 36:6e:25:69:49:8f:c2:e4:3a:c4:55:24:26:ce:20: ec:90:cb:5d:d5:36:eb:ad:64:fe:ea:4e:cf:d6:ad: 8d:32:ab:34:97:6c:4e:b1:24:33:33:a3:08:6d:04: 28:8e:05:ac:f0:99:87:93:21:3e:75:fd:36:de:61: 07:e5:77:9e:eb:50:b3:63:62:02:fc:05:e6:67:97: a7:92:77:c2:33:5b:03:f5:6f:62:10:27:f7:86:ad: 4f:f8:34:cf:62:ea:91:1c:70:6a:bf:ec:98:02:54: 16:93:98:18:6c:d9:27:f3:ed:28:97:ef:4c:c2:df: 7d:03:56:25:40:bd:ab:7d:24:ad:3c:98:85:22:46: 0f:84:6a:96:3a:98:f5:65:c1:30:1e:21:79:f2:a9: 20:94:df:b4:c8:cd:66:4c:0e:fe:f5:5f:5a:9b:f1: 38:ba:d1:19:f8:9f:97:be:d2:a6:60:7e:f7:70:e1: 75:6b:bc:49:18:30:f8:0c:d5:ea:f0:14:64:da:95: 3a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:FD:5E:C0:73:2D:25:F5:81:9E:C6:40:6E:F1:70:A0:4A:D9:34:38 X509v3 Authority Key Identifier: keyid:98:03:5C:1E:B6:1E:D8:EE:F1:53:D8:F3:2B:DA:13:BD:AD:74:2E:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30315/mANcHrYe2O7xU9jzK9oTva10LsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mANcHrYe2O7xU9jzK9oTva10LsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30315/af1ewHMtJfWBnsZAbvFwoErZNDg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:2840::/32 Signature Algorithm: sha256WithRSAEncryption 0c:09:46:a4:a0:1c:1c:e0:d0:48:1a:e0:bd:53:8d:28:e8:cd: 90:17:9b:57:3d:7a:fc:e0:73:f3:f5:80:24:c7:8e:09:a6:4a: ba:b8:02:ec:9a:56:8a:b0:c0:a7:ca:85:7d:e6:e4:3a:d0:84: 65:f1:02:68:73:bb:ff:1f:86:69:94:fb:7b:8d:98:88:ec:96: 80:2d:ee:71:37:bf:89:a4:10:f6:0a:e1:73:cc:b2:b0:44:12: 46:cd:5b:b9:b5:b1:38:d7:ef:8a:bb:5b:c0:8b:fc:fa:cd:91: c5:be:ff:00:80:39:e6:36:80:d6:2a:17:8b:79:11:28:a2:ca: 34:d6:8f:dc:c0:6d:87:37:6d:3e:37:84:a3:52:04:b7:02:c3: 99:a8:82:1d:53:1a:41:32:83:ae:fa:bf:e5:ec:75:be:e4:3b: d7:fc:e3:e9:f1:3b:83:85:ce:97:67:80:ee:19:13:20:1a:d0: 9a:2f:e0:a3:95:32:43:c5:a7:ab:0d:2a:c7:d8:40:69:57:2c: c4:a5:43:82:33:64:7e:e1:50:63:f1:88:2d:74:89:4b:00:7f: 82:02:bc:78:f6:64:74:06:ef:7d:9e:c8:20:ff:60:fa:e9:96: de:a4:eb:4c:14:b2:88:00:dd:d6:4e:10:53:c7:56:e4:11:68: c8:ac:59:57 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5ODAz NUMxRUI2MUVEOEVFRjE1M0Q4RjMyQkRBMTNCREFENzQyRUM1MB4XDTI0MDczMTAx MzE1N1oXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoNjlGRDVFQzA3MzJEMjVG NTgxOUVDNjQwNkVGMTcwQTA0QUQ5MzQzODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMvx9IvwfLC7sDBi473IGC1kwTTilROLdnxegvjbhHuOEKXl5nha T4xg4Wi/ZTYsBWeDFugLxGmlpXWxNm4laUmPwuQ6xFUkJs4g7JDLXdU2661k/upO z9atjTKrNJdsTrEkMzOjCG0EKI4FrPCZh5MhPnX9Nt5hB+V3nutQs2NiAvwF5meX p5J3wjNbA/VvYhAn94atT/g0z2LqkRxwar/smAJUFpOYGGzZJ/PtKJfvTMLffQNW JUC9q30krTyYhSJGD4RqljqY9WXBMB4hefKpIJTftMjNZkwO/vVfWpvxOLrRGfif l77SpmB+93DhdWu8SRgw+AzV6vAUZNqVOsECAwEAAaOCAikwggIlMB0GA1UdDgQW BBRp/V7Acy0l9YGexkBu8XCgStk0ODAfBgNVHSMEGDAWgBSYA1weth7Y7vFT2PMr 2hO9rXQuxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzMTUvbUFOY0hyWWUyTzd4VTlqeks5b1R2YTEwTHNVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbUFOY0hyWWUyTzd4VTlqeks5b1R2 YTEwTHNVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzE1L2FmMWV3SE10SmZXQm5zWkFidkZ3b0VyWk5EZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAihAMA0GCSqGSIb3DQEBCwUAA4IBAQAMCUakoBwc4NBIGuC9U40o 6M2QF5tXPXr84HPz9YAkx44Jpkq6uALsmlaKsMCnyoV95uQ60IRl8QJoc7v/H4Zp lPt7jZiI7JaALe5xN7+JpBD2CuFzzLKwRBJGzVu5tbE41++Ku1vAi/z6zZHFvv8A gDnmNoDWKheLeREooso01o/cwG2HN20+N4SjUgS3AsOZqIIdUxpBMoOu+r/l7HW+ 5DvX/OPp8TuDhc6XZ4DuGRMgGtCaL+CjlTJDxaerDSrH2EBpVyzEpUOCM2R+4VBj 8YgtdIlLAH+CArx49mR0Bu99nsgg/2D66ZbepOtMFLKIAN3WThBTx1bkEWjIrFlX -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:58 2024 by rpki-client on console-fra.rpki-client.org