$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30349/aONV7B9QEqzUiOhrkQBw0iRzdDY.roa File: aONV7B9QEqzUiOhrkQBw0iRzdDY.roa (raw, json) Hash identifier: 0OZacyXfUF8MIVY2geMtA4mfvperJc6Bd5oT+FJsz34= Subject key identifier: 68:E3:55:EC:1F:50:12:AC:D4:88:E8:6B:91:00:70:D2:24:73:74:36 Certificate issuer: /CN=5A5A08F9BFE0C541CC8D98027A16497EA5192023 Certificate serial: 0B Authority key identifier: 5A:5A:08:F9:BF:E0:C5:41:CC:8D:98:02:7A:16:49:7E:A5:19:20:23 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WloI-b_gxUHMjZgCehZJfqUZICM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/aONV7B9QEqzUiOhrkQBw0iRzdDY.roa Signing time: Wed 18 Sep 2024 07:16:11 +0000 ROA not before: Wed 18 Sep 2024 07:16:11 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 0 IP address blocks: 2405:25c0:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/WloI-b_gxUHMjZgCehZJfqUZICM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/WloI-b_gxUHMjZgCehZJfqUZICM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WloI-b_gxUHMjZgCehZJfqUZICM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A5A08F9BFE0C541CC8D98027A16497EA5192023 Validity Not Before: Sep 18 07:16:11 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=68E355EC1F5012ACD488E86B910070D224737436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d1:ea:ff:cc:49:18:41:5f:7a:ea:69:f3:99: 71:0c:8b:35:87:b2:25:fc:8b:86:f0:c7:b3:21:ad: b0:69:d2:5c:10:96:85:57:83:fe:8f:85:88:f6:d0: ac:24:02:09:bd:6e:5c:de:2c:5b:a6:b1:2c:1e:3c: a5:68:a5:5a:40:64:89:10:01:b5:ad:65:7a:ad:27: a9:2d:75:5b:ac:38:3d:83:fe:a6:aa:82:0f:e7:84: 34:ed:6b:60:02:39:62:40:b8:e9:72:11:76:e2:59: 59:aa:9b:09:6a:58:35:54:74:64:76:e7:cf:f9:05: de:da:ba:ac:fc:ad:3d:73:a1:b0:50:8c:b6:a8:d2: c8:de:90:4f:3f:fb:79:0e:60:a7:e2:15:ec:33:ba: 34:e1:07:80:0e:76:69:69:d0:19:0a:2f:92:84:06: 2e:fc:b5:03:ec:24:62:3d:a6:15:cd:a6:6e:86:75: 7b:11:2a:30:c9:8f:81:7f:e9:e5:8f:c0:55:d8:c2: f5:39:a2:f9:8b:04:74:3b:55:c4:55:fd:57:68:f9: 94:ea:4d:6b:74:60:80:d4:37:dd:4b:f4:79:0e:69: f0:00:b0:2a:8b:b9:26:e4:41:1a:28:f0:6a:c0:b7: 36:1b:33:f2:15:4e:16:6c:50:b9:1f:96:9c:74:b6: 98:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E3:55:EC:1F:50:12:AC:D4:88:E8:6B:91:00:70:D2:24:73:74:36 X509v3 Authority Key Identifier: keyid:5A:5A:08:F9:BF:E0:C5:41:CC:8D:98:02:7A:16:49:7E:A5:19:20:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/WloI-b_gxUHMjZgCehZJfqUZICM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WloI-b_gxUHMjZgCehZJfqUZICM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30349/aONV7B9QEqzUiOhrkQBw0iRzdDY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:25c0:8000::/36 Signature Algorithm: sha256WithRSAEncryption 69:20:36:88:6e:1a:a7:af:26:ca:34:b5:77:c0:f1:9f:1e:72: b8:dc:e2:84:14:3a:0d:85:a6:e6:b6:c0:b5:b9:5b:5d:22:4a: a8:ff:82:59:09:f3:e0:c5:6a:15:cd:79:7c:08:d3:c1:0b:d3: 91:78:53:35:c4:3d:74:36:e4:24:90:41:ff:d2:4d:fd:8f:88: 99:a2:24:44:bb:8f:08:15:7a:c5:0d:49:c8:d3:38:ec:12:c8: 34:f2:f3:68:8d:d8:f0:a5:49:81:20:fa:81:b5:67:96:75:67: 23:8e:60:3a:0a:0a:40:7b:c4:a8:57:39:e1:f9:32:8a:e6:14: 9b:de:e1:93:26:e9:eb:8f:df:4a:68:1e:3f:81:a1:05:9e:23: 0b:ec:77:db:f9:b6:58:ab:27:55:df:63:e6:b5:e1:c0:2d:22: 11:cf:81:02:f5:d9:bf:84:be:c6:14:1e:18:84:14:af:03:11: e1:3a:77:ea:d7:01:93:60:53:c1:e6:bd:a0:79:7c:52:5d:99: f4:bc:5e:15:2a:15:3c:d0:a9:c5:27:12:96:c0:93:8f:d1:16: 64:21:11:fb:e7:6c:f6:93:11:da:44:e1:5e:a8:31:a3:6b:79: 3c:02:39:da:d9:97:55:98:56:1f:06:d7:eb:40:07:83:24:a8: 33:8a:88:05 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIBCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1QTVB MDhGOUJGRTBDNTQxQ0M4RDk4MDI3QTE2NDk3RUE1MTkyMDIzMB4XDTI0MDkxODA3 MTYxMVoXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoNjhFMzU1RUMxRjUwMTJB Q0Q0ODhFODZCOTEwMDcwRDIyNDczNzQzNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOTR6v/MSRhBX3rqafOZcQyLNYeyJfyLhvDHsyGtsGnSXBCWhVeD /o+FiPbQrCQCCb1uXN4sW6axLB48pWilWkBkiRABta1leq0nqS11W6w4PYP+pqqC D+eENO1rYAI5YkC46XIRduJZWaqbCWpYNVR0ZHbnz/kF3tq6rPytPXOhsFCMtqjS yN6QTz/7eQ5gp+IV7DO6NOEHgA52aWnQGQovkoQGLvy1A+wkYj2mFc2mboZ1exEq MMmPgX/p5Y/AVdjC9Tmi+YsEdDtVxFX9V2j5lOpNa3RggNQ33Uv0eQ5p8ACwKou5 JuRBGijwasC3Nhsz8hVOFmxQuR+WnHS2mOUCAwEAAaOCAiowggImMB0GA1UdDgQW BBRo41XsH1ASrNSI6GuRAHDSJHN0NjAfBgNVHSMEGDAWgBRaWgj5v+DFQcyNmAJ6 Fkl+pRkgIzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzNDkvV2xvSS1iX2d4VUhNalpnQ2VoWkpmcVVaSUNNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvV2xvSS1iX2d4VUhNalpnQ2VoWkpm cVVaSUNNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzQ5L2FPTlY3QjlRRXF6VWlPaHJrUUJ3MGlSemREWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQkBSXAgDANBgkqhkiG9w0BAQsFAAOCAQEAaSA2iG4ap68myjS1d8Dx nx5yuNzihBQ6DYWm5rbAtblbXSJKqP+CWQnz4MVqFc15fAjTwQvTkXhTNcQ9dDbk JJBB/9JN/Y+ImaIkRLuPCBV6xQ1JyNM47BLINPLzaI3Y8KVJgSD6gbVnlnVnI45g OgoKQHvEqFc54fkyiuYUm97hkybp64/fSmgeP4GhBZ4jC+x32/m2WKsnVd9j5rXh wC0iEc+BAvXZv4S+xhQeGIQUrwMR4Tp36tcBk2BTwea9oHl8Ul2Z9LxeFSoVPNCp xScSlsCTj9EWZCER++ds9pMR2kThXqgxo2t5PAI52tmXVZhWHwbX60AHgySoM4qI BQ== -----END CERTIFICATE-----Generated at Tue Oct 22 15:30:39 2024 by rpki-client on console-ams.rpki-client.org