$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30349/S6H5EnLWqAyyVU48Tocfh4NO5oM.roa File: S6H5EnLWqAyyVU48Tocfh4NO5oM.roa (raw, json) Hash identifier: Ku5pVKQeEBoZwDk1zst3txFVZzn45rmyd537/2b8FDE= Subject key identifier: 4B:A1:F9:12:72:D6:A8:0C:B2:55:4E:3C:4E:87:1F:87:83:4E:E6:83 Certificate issuer: /CN=5A5A08F9BFE0C541CC8D98027A16497EA5192023 Certificate serial: 08 Authority key identifier: 5A:5A:08:F9:BF:E0:C5:41:CC:8D:98:02:7A:16:49:7E:A5:19:20:23 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WloI-b_gxUHMjZgCehZJfqUZICM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/S6H5EnLWqAyyVU48Tocfh4NO5oM.roa Signing time: Wed 18 Sep 2024 07:16:10 +0000 ROA not before: Wed 18 Sep 2024 07:16:10 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 0 IP address blocks: 2405:25c0:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/WloI-b_gxUHMjZgCehZJfqUZICM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/WloI-b_gxUHMjZgCehZJfqUZICM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WloI-b_gxUHMjZgCehZJfqUZICM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A5A08F9BFE0C541CC8D98027A16497EA5192023 Validity Not Before: Sep 18 07:16:10 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=4BA1F91272D6A80CB2554E3C4E871F87834EE683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:20:79:aa:fa:c7:07:1f:5c:6d:c5:ed:a6:ba: 51:e5:96:eb:70:ef:e9:71:d3:86:67:a4:99:8f:6d: 17:b2:36:a2:eb:1e:da:71:34:ef:87:58:19:a5:83: 51:29:7f:e2:60:83:dc:92:4c:63:a0:32:e3:77:dc: 8a:93:34:9e:49:2e:62:4a:a9:a3:b5:e4:f9:43:c8: db:10:4f:f0:57:bd:72:c7:97:dd:2c:9e:f4:dc:d2: 8e:02:57:19:8c:7a:65:a9:57:77:95:33:76:26:73: 84:07:05:bc:fe:83:86:69:28:e2:5e:88:a6:4b:fa: 54:31:1b:a9:3e:96:48:7c:66:41:c3:29:7a:c7:3d: 01:1f:c7:70:8c:a4:57:e1:73:dd:9d:86:f8:39:30: 92:ba:ae:8b:38:b4:1f:b3:e2:00:c2:34:39:d2:c2: fa:7f:db:e6:e0:30:8d:49:2a:ab:6a:bb:8c:8a:ad: 58:a6:8d:f4:b6:58:ed:d9:f0:a7:c1:31:7e:03:8d: 9c:46:34:8a:86:12:ee:41:1f:9b:ec:d1:de:60:65: c4:04:67:6e:fb:6c:ab:9c:fc:c1:e6:c0:e7:92:bd: f6:ca:81:54:6d:97:9d:56:4b:47:8e:e9:00:48:ab: b2:51:a1:83:30:69:47:27:bf:e5:e0:1f:e3:30:94: 07:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A1:F9:12:72:D6:A8:0C:B2:55:4E:3C:4E:87:1F:87:83:4E:E6:83 X509v3 Authority Key Identifier: keyid:5A:5A:08:F9:BF:E0:C5:41:CC:8D:98:02:7A:16:49:7E:A5:19:20:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/WloI-b_gxUHMjZgCehZJfqUZICM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WloI-b_gxUHMjZgCehZJfqUZICM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/S6H5EnLWqAyyVU48Tocfh4NO5oM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:25c0:5000::/36 Signature Algorithm: sha256WithRSAEncryption 29:97:2d:f5:74:22:b2:ec:a0:59:5f:98:7f:ed:15:cb:d7:6f: 88:09:f7:22:75:d6:5c:a8:28:49:06:05:20:13:2b:05:0e:e3: 5b:d4:db:27:7a:86:3f:b0:04:72:bb:7c:fe:cb:f9:2a:ec:55: 2f:ef:e7:5a:34:58:59:9a:73:b5:8a:c5:d4:d7:e6:5a:bc:ae: 6a:a6:10:60:d4:6d:7a:7f:92:86:60:b0:5d:39:07:92:09:63: cc:fa:67:e9:dc:f3:bf:0c:02:58:ce:4e:1a:91:6c:5a:d4:09: 24:44:83:21:93:1d:3c:78:2e:38:90:b0:58:38:1d:97:cb:f0: 7e:61:a9:c3:ff:dd:b4:7b:48:d8:2f:f2:be:bc:5a:c5:31:46: 2e:c8:32:64:f3:4b:33:cb:4f:8d:c3:c7:68:d5:03:8e:78:ac: 05:71:7d:fa:c7:91:8f:f9:f2:42:cc:c6:51:12:2c:d1:22:0a: a4:4e:59:62:62:f1:76:05:5e:f1:3d:66:0f:8f:2c:4c:09:29: 14:b2:99:99:3d:28:d0:f2:3b:0b:5d:53:22:68:cd:c2:f1:2f: 0c:a7:8f:9f:1b:5f:99:70:a0:64:33:43:c9:39:bc:3b:26:ed: 65:30:6d:e9:43:ef:a6:64:35:9a:98:e0:05:25:af:7f:fa:ae: 84:bd:76:2d -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIBCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1QTVB MDhGOUJGRTBDNTQxQ0M4RDk4MDI3QTE2NDk3RUE1MTkyMDIzMB4XDTI0MDkxODA3 MTYxMFoXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoNEJBMUY5MTI3MkQ2QTgw Q0IyNTU0RTNDNEU4NzFGODc4MzRFRTY4MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM4gear6xwcfXG3F7aa6UeWW63Dv6XHThmekmY9tF7I2ouse2nE0 74dYGaWDUSl/4mCD3JJMY6Ay43fcipM0nkkuYkqpo7Xk+UPI2xBP8Fe9cseX3Sye 9NzSjgJXGYx6ZalXd5UzdiZzhAcFvP6Dhmko4l6Ipkv6VDEbqT6WSHxmQcMpesc9 AR/HcIykV+Fz3Z2G+Dkwkrquizi0H7PiAMI0OdLC+n/b5uAwjUkqq2q7jIqtWKaN 9LZY7dnwp8ExfgONnEY0ioYS7kEfm+zR3mBlxARnbvtsq5z8webA55K99sqBVG2X nVZLR47pAEirslGhgzBpRye/5eAf4zCUB7kCAwEAAaOCAiowggImMB0GA1UdDgQW BBRLofkSctaoDLJVTjxOhx+Hg07mgzAfBgNVHSMEGDAWgBRaWgj5v+DFQcyNmAJ6 Fkl+pRkgIzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzNDkvV2xvSS1iX2d4VUhNalpnQ2VoWkpmcVVaSUNNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvV2xvSS1iX2d4VUhNalpnQ2VoWkpm cVVaSUNNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzQ5L1M2SDVFbkxXcUF5eVZVNDhUb2NmaDROTzVvTS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQkBSXAUDANBgkqhkiG9w0BAQsFAAOCAQEAKZct9XQisuygWV+Yf+0V y9dviAn3InXWXKgoSQYFIBMrBQ7jW9TbJ3qGP7AEcrt8/sv5KuxVL+/nWjRYWZpz tYrF1NfmWryuaqYQYNRten+ShmCwXTkHkgljzPpn6dzzvwwCWM5OGpFsWtQJJESD IZMdPHguOJCwWDgdl8vwfmGpw//dtHtI2C/yvrxaxTFGLsgyZPNLM8tPjcPHaNUD jnisBXF9+seRj/nyQszGURIs0SIKpE5ZYmLxdgVe8T1mD48sTAkpFLKZmT0o0PI7 C11TImjNwvEvDKePnxtfmXCgZDNDyTm8OybtZTBt6UPvpmQ1mpjgBSWvf/quhL12 LQ== -----END CERTIFICATE-----Generated at Tue Oct 22 15:30:39 2024 by rpki-client on console-ams.rpki-client.org