$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30379/PNxGVs5D_puIe9UAVyQ7Njk394A.roa File: PNxGVs5D_puIe9UAVyQ7Njk394A.roa (raw, json) Hash identifier: XsWC/pjOnYmlJfOLirySNysrx4FwufFCWlihKyD0g8Y= Subject key identifier: 3C:DC:46:56:CE:43:FE:9B:88:7B:D5:00:57:24:3B:36:39:37:F7:80 Certificate issuer: /CN=9670A0F485AF88A2DF9D8AE62E01EF4F50C71417 Certificate serial: 2B Authority key identifier: 96:70:A0:F4:85:AF:88:A2:DF:9D:8A:E6:2E:01:EF:4F:50:C7:14:17 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lnCg9IWviKLfnYrmLgHvT1DHFBc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30379/PNxGVs5D_puIe9UAVyQ7Njk394A.roa Signing time: Fri 31 May 2024 01:28:33 +0000 ROA not before: Fri 31 May 2024 01:28:33 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 63791 IP address blocks: 2407:a2c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30379/lnCg9IWviKLfnYrmLgHvT1DHFBc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30379/lnCg9IWviKLfnYrmLgHvT1DHFBc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lnCg9IWviKLfnYrmLgHvT1DHFBc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9670A0F485AF88A2DF9D8AE62E01EF4F50C71417 Validity Not Before: May 31 01:28:33 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=3CDC4656CE43FE9B887BD50057243B363937F780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:7f:fa:6b:0f:06:52:57:16:78:2c:ad:e3: 45:d8:72:72:8f:38:23:dc:7b:d9:9c:94:cb:09:dc: ed:19:ce:46:7b:18:41:21:26:dc:c0:4e:55:7d:1f: ef:ed:56:54:35:d5:20:d8:88:64:34:68:5f:e3:83: 03:3b:2d:0b:a9:28:33:81:43:54:aa:54:10:f3:8a: 70:b4:8f:cc:44:16:f4:54:96:e7:9a:59:52:9e:bf: 0c:5e:91:16:94:83:d1:99:df:2c:5f:68:48:f6:8b: c2:51:ad:34:27:47:cd:4a:e9:f8:fa:82:d4:43:5e: 09:74:6d:30:87:bc:2f:e7:c0:19:2b:1a:d8:ad:af: 60:94:e2:54:2e:e9:36:0a:ce:75:71:57:3d:37:3a: ca:ec:7e:ab:dd:84:b4:94:d2:84:df:f6:0d:a9:73: 7c:72:e2:c9:2a:aa:15:78:9e:b8:ec:39:25:3e:16: d5:6c:ac:e7:c0:d0:7d:00:ec:fd:fb:a1:2a:52:16: 3d:1b:b5:0c:46:16:7a:86:fe:85:21:f4:86:94:62: c9:d4:93:29:ea:be:8a:69:67:47:4a:8a:1b:b7:76: fa:16:7c:86:76:f0:21:0a:26:b9:45:a2:2a:1e:f2: af:e3:c5:68:76:dd:cf:c7:e9:56:c4:f7:fd:15:80: f7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DC:46:56:CE:43:FE:9B:88:7B:D5:00:57:24:3B:36:39:37:F7:80 X509v3 Authority Key Identifier: keyid:96:70:A0:F4:85:AF:88:A2:DF:9D:8A:E6:2E:01:EF:4F:50:C7:14:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30379/lnCg9IWviKLfnYrmLgHvT1DHFBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lnCg9IWviKLfnYrmLgHvT1DHFBc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30379/PNxGVs5D_puIe9UAVyQ7Njk394A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:a2c0::/32 Signature Algorithm: sha256WithRSAEncryption 51:b7:fd:63:13:6d:5b:51:51:2d:72:8a:5f:1f:2a:fc:d4:05: c5:cf:13:d5:da:3f:81:95:8f:80:e5:d5:e4:79:8b:80:b2:87: 21:ce:a8:67:8e:12:61:72:2d:aa:72:26:ab:61:73:2e:65:b0: 2d:8e:5d:5f:4b:60:cb:fb:95:4c:ac:27:a7:24:c9:9d:89:7d: e7:00:5c:20:a2:17:c7:14:2d:17:59:62:78:fe:b5:74:15:06: 58:2f:f0:cb:d5:d1:58:74:2c:42:b2:9a:1d:12:14:d1:cc:be: ed:29:78:23:1e:f9:18:40:a6:8a:40:0c:ef:e9:91:db:7e:59: c6:da:ce:8e:f0:c1:85:84:a3:76:f9:e0:1b:70:c7:ba:95:e6: 46:16:7b:0c:ea:f6:1d:94:64:5e:26:17:fb:82:ae:0c:40:a2: 7e:20:9b:40:3e:a2:10:d4:45:43:4e:4f:e2:d0:f3:83:66:42: 25:d3:c9:71:54:0a:1b:34:58:1f:42:cc:be:1c:7c:6a:d1:01: 52:31:5e:b0:0f:01:90:ec:7a:b1:4d:47:29:e9:8a:ac:65:68: ba:12:2d:1f:4e:c1:a8:54:06:67:b2:f4:c1:26:71:56:90:dd: e3:7d:1d:16:1f:cd:a2:0f:26:31:85:c0:ea:48:08:43:3f:d5: bd:83:b0:e1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5Njcw QTBGNDg1QUY4OEEyREY5RDhBRTYyRTAxRUY0RjUwQzcxNDE3MB4XDTI0MDUzMTAx MjgzM1oXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoM0NEQzQ2NTZDRTQzRkU5 Qjg4N0JENTAwNTcyNDNCMzYzOTM3Rjc4MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALScf/prDwZSVxZ4LK3jRdhyco84I9x72ZyUywnc7RnORnsYQSEm 3MBOVX0f7+1WVDXVINiIZDRoX+ODAzstC6koM4FDVKpUEPOKcLSPzEQW9FSW55pZ Up6/DF6RFpSD0ZnfLF9oSPaLwlGtNCdHzUrp+PqC1ENeCXRtMIe8L+fAGSsa2K2v YJTiVC7pNgrOdXFXPTc6yux+q92EtJTShN/2DalzfHLiySqqFXieuOw5JT4W1Wys 58DQfQDs/fuhKlIWPRu1DEYWeob+hSH0hpRiydSTKeq+imlnR0qKG7d2+hZ8hnbw IQomuUWiKh7yr+PFaHbdz8fpVsT3/RWA9yMCAwEAAaOCAikwggIlMB0GA1UdDgQW BBQ83EZWzkP+m4h71QBXJDs2OTf3gDAfBgNVHSMEGDAWgBSWcKD0ha+Iot+diuYu Ae9PUMcUFzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzNzkvbG5DZzlJV3ZpS0xmbllybUxnSHZUMURIRkJjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbG5DZzlJV3ZpS0xmbllybUxnSHZU MURIRkJjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzc5L1BOeEdWczVEX3B1SWU5VUFWeVE3TmprMzk0QS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkB6LAMA0GCSqGSIb3DQEBCwUAA4IBAQBRt/1jE21bUVEtcopfHyr8 1AXFzxPV2j+BlY+A5dXkeYuAsochzqhnjhJhci2qciarYXMuZbAtjl1fS2DL+5VM rCenJMmdiX3nAFwgohfHFC0XWWJ4/rV0FQZYL/DL1dFYdCxCspodEhTRzL7tKXgj HvkYQKaKQAzv6ZHbflnG2s6O8MGFhKN2+eAbcMe6leZGFnsM6vYdlGReJhf7gq4M QKJ+IJtAPqIQ1EVDTk/i0PODZkIl08lxVAobNFgfQsy+HHxq0QFSMV6wDwGQ7Hqx TUcp6YqsZWi6Ei0fTsGoVAZnsvTBJnFWkN3jfR0WH82iDyYxhcDqSAhDP9W9g7Dh -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:32 2024 by rpki-client on console-ams.rpki-client.org