$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30342/IdHeR9c-A7kTn-BsvnK2wGxfWHg.roa File: IdHeR9c-A7kTn-BsvnK2wGxfWHg.roa (raw, json) Hash identifier: 40652UwzAQlziSEySOCv34BcFHzXXND5lXSPyFQ5uIo= Subject key identifier: 21:D1:DE:47:D7:3E:03:B9:13:9F:E0:6C:BE:72:B6:C0:6C:5F:58:78 Certificate issuer: /CN=7C70BE8FBA8F780A316C0A77865B87F03639E3CF Certificate serial: 02 Authority key identifier: 7C:70:BE:8F:BA:8F:78:0A:31:6C:0A:77:86:5B:87:F0:36:39:E3:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fHC-j7qPeAoxbAp3hluH8DY5488.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30342/IdHeR9c-A7kTn-BsvnK2wGxfWHg.roa Signing time: Tue 04 Jun 2024 01:23:09 +0000 ROA not before: Tue 04 Jun 2024 01:23:09 +0000 ROA not after: Tue 03 Jun 2025 07:47:09 +0000 asID: 131949 IP address blocks: 2404:e840::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30342/fHC-j7qPeAoxbAp3hluH8DY5488.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30342/fHC-j7qPeAoxbAp3hluH8DY5488.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fHC-j7qPeAoxbAp3hluH8DY5488.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C70BE8FBA8F780A316C0A77865B87F03639E3CF Validity Not Before: Jun 4 01:23:09 2024 GMT Not After : Jun 3 07:47:09 2025 GMT Subject: CN=21D1DE47D73E03B9139FE06CBE72B6C06C5F5878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cf:4b:89:fb:44:bb:08:d0:01:82:5c:da:52: 8d:8e:aa:65:98:25:c9:20:a3:fb:c3:87:20:21:e4: be:9d:21:a8:d5:31:ea:dc:6f:a8:09:c8:dc:ca:f8: 25:a0:fd:e0:8e:4d:d3:51:12:53:53:be:ad:d3:af: 41:64:81:76:ea:00:fd:ee:67:8f:2c:3c:cb:08:e0: 89:b5:79:c7:90:7e:89:8c:08:8a:4e:6d:fb:02:ea: 63:0b:54:b2:cc:97:c2:e1:c2:9e:84:b6:e3:0a:86: 93:d2:f6:81:3a:6f:58:e1:71:8b:5d:80:32:a4:e3: 45:36:41:67:26:03:10:1e:9f:ba:e3:27:87:17:6f: a4:ef:3b:47:44:51:39:4a:6b:19:cf:da:58:ea:79: 9b:7c:f9:b9:84:f3:15:a7:22:2f:05:ac:48:8e:53: f3:d0:17:e6:32:c9:0a:6e:07:71:d4:e7:b4:d4:69: 8a:5d:07:b0:39:d2:d4:2c:49:2b:4a:eb:b3:12:73: 4c:5c:5d:8b:aa:51:2c:9f:35:02:c3:b3:ec:fe:33: 82:e4:32:be:1c:ca:eb:a4:b3:49:4d:cf:ba:a3:f7: 49:b0:19:e5:d9:d7:ad:d0:8d:7f:f2:c0:5c:1b:a2: 40:24:b5:44:8e:69:86:e0:25:0b:e5:8a:0a:f3:e9: 54:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D1:DE:47:D7:3E:03:B9:13:9F:E0:6C:BE:72:B6:C0:6C:5F:58:78 X509v3 Authority Key Identifier: keyid:7C:70:BE:8F:BA:8F:78:0A:31:6C:0A:77:86:5B:87:F0:36:39:E3:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30342/fHC-j7qPeAoxbAp3hluH8DY5488.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fHC-j7qPeAoxbAp3hluH8DY5488.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30342/IdHeR9c-A7kTn-BsvnK2wGxfWHg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:e840::/32 Signature Algorithm: sha256WithRSAEncryption 58:1b:43:c2:30:2f:d7:5b:9d:2b:9e:e9:b2:35:d1:00:bc:17: 8a:26:ac:2b:26:5d:2f:47:bd:07:8c:b5:74:1c:b4:a3:60:53: 17:cc:81:4a:54:43:27:a0:82:b3:24:18:01:86:63:3a:43:87: a6:c6:08:44:63:0a:d4:de:37:1b:25:30:05:61:f4:79:43:41: 1d:22:8d:f2:b1:8a:68:f9:7f:68:c5:f0:cf:47:4f:71:49:2c: 3d:ae:2e:32:2c:e3:11:81:50:a6:28:44:f0:55:66:38:42:19: ae:20:b0:65:8b:f4:af:dd:d7:3e:18:07:bb:06:17:3a:18:ae: 1a:64:55:73:cf:80:56:4d:86:15:3f:09:69:50:d5:67:3f:cf: 8b:eb:b3:28:21:84:73:8f:93:bf:c8:56:b2:c3:18:2f:d8:72: 6e:20:6f:f1:31:57:38:35:dd:57:89:df:48:da:71:42:98:81: b0:ba:f0:0e:14:df:84:0a:ce:24:fc:84:25:02:93:58:b1:c5: 3a:ce:b6:c7:f8:94:d1:69:c6:60:3d:c6:5b:b6:1d:b9:c1:ef: bc:1b:bc:7d:3f:88:7c:16:a5:51:8a:82:1e:c6:62:ae:cd:cf: 4b:96:3c:8d:30:25:9c:b6:d2:db:09:9c:e6:28:33:c8:03:c4: 42:5e:67:40 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3Qzcw QkU4RkJBOEY3ODBBMzE2QzBBNzc4NjVCODdGMDM2MzlFM0NGMB4XDTI0MDYwNDAx MjMwOVoXDTI1MDYwMzA3NDcwOVowMzExMC8GA1UEAxMoMjFEMURFNDdENzNFMDNC OTEzOUZFMDZDQkU3MkI2QzA2QzVGNTg3ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKjPS4n7RLsI0AGCXNpSjY6qZZglySCj+8OHICHkvp0hqNUx6txv qAnI3Mr4JaD94I5N01ESU1O+rdOvQWSBduoA/e5njyw8ywjgibV5x5B+iYwIik5t +wLqYwtUssyXwuHCnoS24wqGk9L2gTpvWOFxi12AMqTjRTZBZyYDEB6fuuMnhxdv pO87R0RROUprGc/aWOp5m3z5uYTzFaciLwWsSI5T89AX5jLJCm4HcdTntNRpil0H sDnS1CxJK0rrsxJzTFxdi6pRLJ81AsOz7P4zguQyvhzK66SzSU3PuqP3SbAZ5dnX rdCNf/LAXBuiQCS1RI5phuAlC+WKCvPpVE0CAwEAAaOCAikwggIlMB0GA1UdDgQW BBQh0d5H1z4DuROf4Gy+crbAbF9YeDAfBgNVHSMEGDAWgBR8cL6Puo94CjFsCneG W4fwNjnjzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzNDIvZkhDLWo3cVBlQW94YkFwM2hsdUg4RFk1NDg4LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvZkhDLWo3cVBlQW94YkFwM2hsdUg4 RFk1NDg4LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzQyL0lkSGVSOWMtQTdrVG4tQnN2bksyd0d4ZldIZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkBOhAMA0GCSqGSIb3DQEBCwUAA4IBAQBYG0PCMC/XW50rnumyNdEA vBeKJqwrJl0vR70HjLV0HLSjYFMXzIFKVEMnoIKzJBgBhmM6Q4emxghEYwrU3jcb JTAFYfR5Q0EdIo3ysYpo+X9oxfDPR09xSSw9ri4yLOMRgVCmKETwVWY4QhmuILBl i/Sv3dc+GAe7Bhc6GK4aZFVzz4BWTYYVPwlpUNVnP8+L67MoIYRzj5O/yFaywxgv 2HJuIG/xMVc4Nd1Xid9I2nFCmIGwuvAOFN+ECs4k/IQlApNYscU6zrbH+JTRacZg PcZbth25we+8G7x9P4h8FqVRioIexmKuzc9LljyNMCWcttLbCZzmKDPIA8RCXmdA -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:15 2024 by rpki-client on console-fra.rpki-client.org