$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30375/hZxopz4r_zH5P_6bhELDbDpK84s.roa File: hZxopz4r_zH5P_6bhELDbDpK84s.roa (raw, json) Hash identifier: QaBsGkwMPAmOp5V6x2uyjktV7iyGrQtDiAZGBS483BI= Subject key identifier: 85:9C:68:A7:3E:2B:FF:31:F9:3F:FE:9B:84:42:C3:6C:3A:4A:F3:8B Certificate issuer: /CN=574DBC2ACDCD6986DC737FB2D5C810394C4C074D Certificate serial: 02 Authority key identifier: 57:4D:BC:2A:CD:CD:69:86:DC:73:7F:B2:D5:C8:10:39:4C:4C:07:4D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/V028Ks3NaYbcc3-y1cgQOUxMB00.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30375/hZxopz4r_zH5P_6bhELDbDpK84s.roa Signing time: Wed 04 Sep 2024 14:06:08 +0000 ROA not before: Wed 04 Sep 2024 14:06:08 +0000 ROA not after: Thu 04 Sep 2025 13:58:01 +0000 asID: 131986 IP address blocks: 2407:61c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30375/V028Ks3NaYbcc3-y1cgQOUxMB00.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30375/V028Ks3NaYbcc3-y1cgQOUxMB00.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/V028Ks3NaYbcc3-y1cgQOUxMB00.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=574DBC2ACDCD6986DC737FB2D5C810394C4C074D Validity Not Before: Sep 4 14:06:08 2024 GMT Not After : Sep 4 13:58:01 2025 GMT Subject: CN=859C68A73E2BFF31F93FFE9B8442C36C3A4AF38B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6f:1c:3d:73:2a:54:0a:a5:54:75:17:44:de: eb:a6:6c:1e:21:00:5a:99:db:d7:8e:1a:ef:b6:a8: 86:f9:b8:d6:f7:a6:5a:5a:76:26:de:f6:44:72:03: 11:5f:a7:08:1c:dc:59:27:21:1e:3f:82:8c:fe:0b: 5c:70:26:7a:03:e5:80:cc:86:96:9f:7a:49:92:41: 71:c9:7a:b1:c1:10:54:8f:33:54:7a:3c:76:52:f8: 94:2d:ff:46:4f:33:19:81:f3:44:41:ce:6e:5a:bc: 4a:d5:53:24:8b:95:e4:4e:fe:cc:7c:67:e9:52:fa: c6:8b:25:a4:09:9d:af:a4:f4:80:3d:3b:c4:aa:21: 9d:17:cc:75:7e:ea:9f:ee:1c:6c:9d:0c:4a:ae:65: 5f:76:e3:3e:03:9c:d0:d3:9c:99:90:fd:94:06:06: 39:8a:c2:c6:de:3b:fb:50:97:c4:15:4f:87:30:28: 1e:68:18:a8:d1:2c:f3:85:19:29:91:c0:e6:c2:5f: 68:92:e9:e2:68:27:b7:6b:c2:e4:a0:47:4b:a8:5f: a7:1f:e0:21:f3:05:96:2c:30:b2:8d:50:04:97:60: e8:77:47:80:08:4d:c9:0e:aa:93:ac:68:c7:5c:b9: 82:25:7d:f0:1c:0c:2d:c1:82:a9:f9:1c:e9:27:ff: b1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9C:68:A7:3E:2B:FF:31:F9:3F:FE:9B:84:42:C3:6C:3A:4A:F3:8B X509v3 Authority Key Identifier: keyid:57:4D:BC:2A:CD:CD:69:86:DC:73:7F:B2:D5:C8:10:39:4C:4C:07:4D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30375/V028Ks3NaYbcc3-y1cgQOUxMB00.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/V028Ks3NaYbcc3-y1cgQOUxMB00.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30375/hZxopz4r_zH5P_6bhELDbDpK84s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:61c0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:23:16:f6:27:b9:c2:38:fa:05:68:7f:54:0d:bc:bb:f4:2e: 10:c6:4a:9a:27:b8:ed:6d:69:d6:3e:67:e8:7c:46:c3:d8:36: 87:dc:79:54:4b:a1:5c:ab:8e:12:17:c6:b6:fa:aa:47:e3:ea: b1:ae:79:9a:ec:99:26:cc:c7:59:2c:89:00:0b:b0:f0:8b:93: 24:14:48:71:64:3b:8d:34:01:81:eb:c1:75:cb:31:a0:92:ed: a8:f2:2c:79:b7:81:24:24:f4:3b:fd:90:3d:94:1e:2c:e5:48: c5:e7:36:e6:27:17:50:c4:9e:1a:c6:3c:f9:33:b9:ca:54:e4: 48:25:09:59:f7:8b:af:6f:42:2e:46:11:9b:d7:43:84:4e:a6: dd:ec:58:13:3d:5a:e7:e9:4e:c0:f1:74:81:0d:3b:74:fe:93: 3d:a9:cf:89:8a:25:e5:88:e8:87:b5:e3:b1:f1:4a:6e:14:91: 3e:60:32:e2:c7:d3:db:27:9f:5a:52:b8:1e:3e:74:b8:ed:58: ba:c5:0a:ae:3e:ac:3b:6f:b7:b5:09:32:ef:1b:f4:22:38:13: 5a:27:72:23:0b:c9:9a:46:0d:b4:bd:f6:59:6b:1d:31:d2:b6: 81:bd:60:b6:c3:7a:ae:6a:61:05:4e:4f:af:53:28:68:8b:ad: 27:e4:37:35 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1NzRE QkMyQUNEQ0Q2OTg2REM3MzdGQjJENUM4MTAzOTRDNEMwNzREMB4XDTI0MDkwNDE0 MDYwOFoXDTI1MDkwNDEzNTgwMVowMzExMC8GA1UEAxMoODU5QzY4QTczRTJCRkYz MUY5M0ZGRTlCODQ0MkMzNkMzQTRBRjM4QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAORvHD1zKlQKpVR1F0Te66ZsHiEAWpnb144a77aohvm41vemWlp2 Jt72RHIDEV+nCBzcWSchHj+CjP4LXHAmegPlgMyGlp96SZJBccl6scEQVI8zVHo8 dlL4lC3/Rk8zGYHzREHOblq8StVTJIuV5E7+zHxn6VL6xoslpAmdr6T0gD07xKoh nRfMdX7qn+4cbJ0MSq5lX3bjPgOc0NOcmZD9lAYGOYrCxt47+1CXxBVPhzAoHmgY qNEs84UZKZHA5sJfaJLp4mgnt2vC5KBHS6hfpx/gIfMFliwwso1QBJdg6HdHgAhN yQ6qk6xox1y5giV98BwMLcGCqfkc6Sf/sZ8CAwEAAaOCAikwggIlMB0GA1UdDgQW BBSFnGinPiv/Mfk//puEQsNsOkrzizAfBgNVHSMEGDAWgBRXTbwqzc1phtxzf7LV yBA5TEwHTTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzNzUvVjAyOEtzM05hWWJjYzMteTFjZ1FPVXhNQjAwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVjAyOEtzM05hWWJjYzMteTFjZ1FP VXhNQjAwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzc1L2haeG9wejRyX3pINVBfNmJoRUxEYkRwSzg0cy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkB2HAMA0GCSqGSIb3DQEBCwUAA4IBAQBaIxb2J7nCOPoFaH9UDby7 9C4QxkqaJ7jtbWnWPmfofEbD2DaH3HlUS6Fcq44SF8a2+qpH4+qxrnma7JkmzMdZ LIkAC7Dwi5MkFEhxZDuNNAGB68F1yzGgku2o8ix5t4EkJPQ7/ZA9lB4s5UjF5zbm JxdQxJ4axjz5M7nKVORIJQlZ94uvb0IuRhGb10OETqbd7FgTPVrn6U7A8XSBDTt0 /pM9qc+JiiXliOiHteOx8UpuFJE+YDLix9PbJ59aUrgePnS47Vi6xQquPqw7b7e1 CTLvG/QiOBNaJ3IjC8maRg20vfZZax0x0raBvWC2w3quamEFTk+vUyhoi60n5Dc1 -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:35 2024 by rpki-client on console-ams.rpki-client.org