$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30408/QEZ7uYi9Y2NLgezM8A3Eeo8tyCg.roa File: QEZ7uYi9Y2NLgezM8A3Eeo8tyCg.roa (raw, json) Hash identifier: BOFc2n2jxRr/XIPs3QubsuAaCNYKQU98SFor4AhEZC0= Subject key identifier: 40:46:7B:B9:88:BD:63:63:4B:81:EC:CC:F0:0D:C4:7A:8F:2D:C8:28 Certificate issuer: /CN=1343A98AD27CB18981B8F3FD18A4D573A82ED78B Certificate serial: 0E Authority key identifier: 13:43:A9:8A:D2:7C:B1:89:81:B8:F3:FD:18:A4:D5:73:A8:2E:D7:8B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/E0OpitJ8sYmBuPP9GKTVc6gu14s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30408/QEZ7uYi9Y2NLgezM8A3Eeo8tyCg.roa Signing time: Fri 22 Mar 2024 00:39:28 +0000 ROA not before: Fri 22 Mar 2024 00:39:28 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 131965 IP address blocks: 2400:b1a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30408/E0OpitJ8sYmBuPP9GKTVc6gu14s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30408/E0OpitJ8sYmBuPP9GKTVc6gu14s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/E0OpitJ8sYmBuPP9GKTVc6gu14s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1343A98AD27CB18981B8F3FD18A4D573A82ED78B Validity Not Before: Mar 22 00:39:28 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=40467BB988BD63634B81ECCCF00DC47A8F2DC828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:71:c2:6c:35:16:af:74:5a:af:fb:93:91:ee: 3b:cc:cc:91:aa:e5:32:56:35:11:86:a5:62:b7:92: ab:f3:20:fa:86:10:d6:5e:1a:e7:85:d9:23:8c:cc: 7f:e9:d5:74:b0:9c:8e:5e:67:94:b2:af:42:97:9a: 5c:ef:92:ee:9a:5e:f2:85:6f:6b:0a:a2:76:24:b9: 4e:78:88:fc:5d:52:bc:a3:0b:f3:f4:13:ef:bc:1c: b4:d2:83:95:1c:1d:96:d3:b6:2a:70:fd:c9:6e:76: d6:53:a5:45:0e:a6:7a:99:b4:82:5b:81:cd:a8:7a: 57:af:b8:20:d3:1a:55:67:b1:8d:0e:89:70:c2:01: 5b:49:7d:5e:c9:0a:2d:9d:69:02:5a:ce:1a:25:5d: 93:92:2b:51:58:0d:df:30:da:ec:f8:9a:f5:3a:c9: a6:32:16:f0:f3:4a:14:c3:45:79:2c:4c:ea:9d:4e: 11:ac:62:dc:54:7b:2e:34:5d:66:17:19:03:70:ad: 97:b3:fc:8f:1b:15:35:fc:41:39:56:ba:0a:7a:05: bf:e8:fd:c2:0a:55:8c:6c:cf:bf:3e:8d:d4:18:51: 7e:06:8c:c9:94:8f:00:84:73:91:b5:84:09:e1:cf: 17:02:59:1c:76:b2:c1:d6:46:34:d9:11:29:e8:1e: 8e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:46:7B:B9:88:BD:63:63:4B:81:EC:CC:F0:0D:C4:7A:8F:2D:C8:28 X509v3 Authority Key Identifier: keyid:13:43:A9:8A:D2:7C:B1:89:81:B8:F3:FD:18:A4:D5:73:A8:2E:D7:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30408/E0OpitJ8sYmBuPP9GKTVc6gu14s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/E0OpitJ8sYmBuPP9GKTVc6gu14s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30408/QEZ7uYi9Y2NLgezM8A3Eeo8tyCg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:b1a0::/32 Signature Algorithm: sha256WithRSAEncryption c0:4c:0b:a1:78:40:f9:f2:e4:7e:c0:61:57:79:d9:66:34:cf: d5:22:eb:6a:f0:88:00:bb:b6:23:41:67:0b:c2:52:55:08:b7: 1b:7c:d9:a6:6d:b8:5f:d3:db:72:ab:d5:c6:40:bc:ce:c0:3a: 43:65:e2:73:af:67:34:1a:55:b6:44:30:c1:f6:db:50:d8:28: b8:76:0e:39:38:a0:33:e8:0f:fc:fc:e8:b3:18:19:fa:f3:6b: 98:03:9b:d3:e3:d9:be:72:07:19:10:18:db:82:36:a8:25:a0: fc:16:9b:09:65:68:0a:26:96:98:cf:cf:36:42:6c:55:85:48: 20:dd:71:0e:b1:05:ef:02:f8:e3:f8:03:8b:d2:8e:3d:0d:ab: 39:46:3c:b6:04:e5:3f:10:1b:9e:ec:86:7b:f8:bc:ce:6b:a7: 13:62:71:dc:ec:0a:fd:de:bb:f2:cb:60:73:cc:85:92:96:89: 7f:b2:4f:aa:d4:0e:de:ab:91:41:84:41:80:d0:82:80:70:a7: 4d:67:06:9d:d2:b0:e2:50:26:3f:fa:b3:e2:39:b2:38:54:c2: 11:2a:7c:fb:39:22:7f:28:d0:ca:41:05:72:c5:f4:28:19:ff: 42:74:54:7c:0c:9d:64:13:0d:df:33:38:92:6b:51:61:3d:e6: 55:5b:62:3b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxMzQz QTk4QUQyN0NCMTg5ODFCOEYzRkQxOEE0RDU3M0E4MkVENzhCMB4XDTI0MDMyMjAw MzkyOFoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNDA0NjdCQjk4OEJENjM2 MzRCODFFQ0NDRjAwREM0N0E4RjJEQzgyODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANFxwmw1Fq90Wq/7k5HuO8zMkarlMlY1EYalYreSq/Mg+oYQ1l4a 54XZI4zMf+nVdLCcjl5nlLKvQpeaXO+S7ppe8oVvawqidiS5TniI/F1SvKML8/QT 77wctNKDlRwdltO2KnD9yW521lOlRQ6mepm0gluBzah6V6+4INMaVWexjQ6JcMIB W0l9XskKLZ1pAlrOGiVdk5IrUVgN3zDa7Pia9TrJpjIW8PNKFMNFeSxM6p1OEaxi 3FR7LjRdZhcZA3Ctl7P8jxsVNfxBOVa6CnoFv+j9wgpVjGzPvz6N1BhRfgaMyZSP AIRzkbWECeHPFwJZHHaywdZGNNkRKegejtsCAwEAAaOCAikwggIlMB0GA1UdDgQW BBRARnu5iL1jY0uB7MzwDcR6jy3IKDAfBgNVHSMEGDAWgBQTQ6mK0nyxiYG48/0Y pNVzqC7XizAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MDgvRTBPcGl0SjhzWW1CdVBQOUdLVFZjNmd1MTRzLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvRTBPcGl0SjhzWW1CdVBQOUdLVFZj Nmd1MTRzLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDA4L1FFWjd1WWk5WTJOTGdlek04QTNFZW84dHlDZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkALGgMA0GCSqGSIb3DQEBCwUAA4IBAQDATAuheED58uR+wGFXedlm NM/VIutq8IgAu7YjQWcLwlJVCLcbfNmmbbhf09tyq9XGQLzOwDpDZeJzr2c0GlW2 RDDB9ttQ2Ci4dg45OKAz6A/8/OizGBn682uYA5vT49m+cgcZEBjbgjaoJaD8FpsJ ZWgKJpaYz882QmxVhUgg3XEOsQXvAvjj+AOL0o49Das5Rjy2BOU/EBue7IZ7+LzO a6cTYnHc7Ar93rvyy2BzzIWSlol/sk+q1A7eq5FBhEGA0IKAcKdNZwad0rDiUCY/ +rPiObI4VMIRKnz7OSJ/KNDKQQVyxfQoGf9CdFR8DJ1kEw3fMziSa1FhPeZVW2I7 -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:54 2025 by rpki-client