$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30422/CW6576jsWpMdcTq73LCvgL8I6s4.roa File: CW6576jsWpMdcTq73LCvgL8I6s4.roa (raw, json) Hash identifier: qqJOGo2aK3It9n5kqoH8kgSLshw+XZ7rs8qraJn6tl8= Subject key identifier: 09:6E:B9:EF:A8:EC:5A:93:1D:71:3A:BB:DC:B0:AF:80:BF:08:EA:CE Certificate issuer: /CN=2D9D92F83F5E0CEF5FEADDBE34A8FB908DA18D14 Certificate serial: 10 Authority key identifier: 2D:9D:92:F8:3F:5E:0C:EF:5F:EA:DD:BE:34:A8:FB:90:8D:A1:8D:14 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/CW6576jsWpMdcTq73LCvgL8I6s4.roa Signing time: Thu 05 Sep 2024 13:10:06 +0000 ROA not before: Thu 05 Sep 2024 13:10:06 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 151371 IP address blocks: 2401:c20::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D9D92F83F5E0CEF5FEADDBE34A8FB908DA18D14 Validity Not Before: Sep 5 13:10:06 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=096EB9EFA8EC5A931D713ABBDCB0AF80BF08EACE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c2:5d:b4:3f:f7:ad:f9:85:58:d6:25:ca:f1: 83:82:d6:7f:31:de:aa:b8:e7:27:1c:fa:10:2d:5c: 89:0f:70:a4:d5:53:ff:bf:87:41:61:25:32:49:20: e7:3a:75:cc:3e:f5:d8:ff:1e:22:83:94:53:b3:e9: 62:da:73:1f:a1:44:74:79:c9:81:c0:fe:77:84:94: e0:35:13:e8:33:ab:5e:8c:27:a2:c0:f4:ab:a5:0e: cc:24:13:cf:61:25:75:02:69:9c:ee:11:52:72:c0: 2b:8e:17:60:90:01:5d:8b:b0:fa:a1:0b:fd:49:11: 37:19:66:fa:ff:53:a4:7e:23:c3:d2:9c:3c:92:83: ec:63:7d:8e:99:5a:3e:b0:01:33:8d:f9:b7:58:9f: 1a:2c:f1:0f:4a:d9:e9:3b:fe:3b:92:54:a7:a6:6b: 4d:33:c1:dc:bd:ba:f9:c0:7b:cd:c8:0c:d5:75:44: cb:69:00:45:25:c4:f1:22:b9:5a:4c:fa:79:69:16: e9:db:a7:5c:39:dc:81:8b:8c:5e:fd:14:8b:45:a0: b1:b1:bf:0d:13:ce:41:d0:21:85:b7:c1:c2:79:61: 02:8c:52:61:c8:d6:e9:f3:e5:63:5c:1a:52:ef:f0: af:1e:96:24:cb:56:69:b6:93:97:ad:38:56:a2:e6: 99:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:6E:B9:EF:A8:EC:5A:93:1D:71:3A:BB:DC:B0:AF:80:BF:08:EA:CE X509v3 Authority Key Identifier: keyid:2D:9D:92:F8:3F:5E:0C:EF:5F:EA:DD:BE:34:A8:FB:90:8D:A1:8D:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/LZ2S-D9eDO9f6t2-NKj7kI2hjRQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30422/CW6576jsWpMdcTq73LCvgL8I6s4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:c20::/32 Signature Algorithm: sha256WithRSAEncryption 37:f4:0b:6e:02:f6:59:79:3c:54:77:a9:41:62:47:bd:c0:cc: 72:24:7d:d2:2d:78:4f:2b:0d:54:e0:39:f7:8d:06:09:04:26: 24:e9:c7:06:cf:c4:74:ce:c6:56:45:3f:59:0f:8f:40:c6:ea: e2:3f:95:2e:d4:49:8b:ed:27:16:33:b2:17:99:aa:1b:94:53: a7:59:3b:62:fc:bb:25:be:e6:fc:ac:8f:6b:80:80:78:8f:23: b0:10:1d:64:41:aa:ca:71:c0:ce:e2:8c:67:90:2b:5a:0a:ec: b5:e9:64:f5:0e:e1:b2:c4:df:1b:32:53:4f:3b:8a:7f:e1:71: f0:0a:ec:ad:d3:47:b0:f0:d0:b4:78:77:e1:b6:72:e6:03:a2: 44:0f:06:df:b5:87:5f:aa:df:be:9f:34:99:7a:1e:d6:67:e1: 09:61:1c:2e:15:4c:d3:a4:59:2e:9c:99:bc:2c:2f:01:9a:2b: fd:ea:49:26:75:16:84:af:b0:da:e7:a7:a1:3b:94:95:33:f7: d6:36:df:eb:cd:c0:21:0a:7b:a5:5c:6e:dc:27:5b:d1:41:f0: 7e:7f:57:4f:90:22:2b:fa:6a:a0:97:07:c2:d7:5a:71:f3:af: 36:76:98:74:1d:1e:4e:ed:48:97:00:c3:f8:58:46:01:95:d4: 9f:61:a0:d2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyRDlE OTJGODNGNUUwQ0VGNUZFQUREQkUzNEE4RkI5MDhEQTE4RDE0MB4XDTI0MDkwNTEz MTAwNloXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoMDk2RUI5RUZBOEVDNUE5 MzFENzEzQUJCRENCMEFGODBCRjA4RUFDRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKXCXbQ/9635hVjWJcrxg4LWfzHeqrjnJxz6EC1ciQ9wpNVT/7+H QWElMkkg5zp1zD712P8eIoOUU7PpYtpzH6FEdHnJgcD+d4SU4DUT6DOrXownosD0 q6UOzCQTz2EldQJpnO4RUnLAK44XYJABXYuw+qEL/UkRNxlm+v9TpH4jw9KcPJKD 7GN9jplaPrABM435t1ifGizxD0rZ6Tv+O5JUp6ZrTTPB3L26+cB7zcgM1XVEy2kA RSXE8SK5Wkz6eWkW6dunXDncgYuMXv0Ui0WgsbG/DRPOQdAhhbfBwnlhAoxSYcjW 6fPlY1waUu/wrx6WJMtWabaTl604VqLmmcUCAwEAAaOCAikwggIlMB0GA1UdDgQW BBQJbrnvqOxakx1xOrvcsK+AvwjqzjAfBgNVHSMEGDAWgBQtnZL4P14M71/q3b40 qPuQjaGNFDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MjIvTFoyUy1EOWVETzlmNnQyLU5LajdrSTJoalJRLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTFoyUy1EOWVETzlmNnQyLU5Lajdr STJoalJRLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDIyL0NXNjU3NmpzV3BNZGNUcTczTEN2Z0w4STZzNC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAQwgMA0GCSqGSIb3DQEBCwUAA4IBAQA39AtuAvZZeTxUd6lBYke9 wMxyJH3SLXhPKw1U4Dn3jQYJBCYk6ccGz8R0zsZWRT9ZD49AxuriP5Uu1EmL7ScW M7IXmaoblFOnWTti/Lslvub8rI9rgIB4jyOwEB1kQarKccDO4oxnkCtaCuy16WT1 DuGyxN8bMlNPO4p/4XHwCuyt00ew8NC0eHfhtnLmA6JEDwbftYdfqt++nzSZeh7W Z+EJYRwuFUzTpFkunJm8LC8Bmiv96kkmdRaEr7Da56ehO5SVM/fWNt/rzcAhCnul XG7cJ1vRQfB+f1dPkCIr+mqglwfC11px8682dph0HR5O7UiXAMP4WEYBldSfYaDS -----END CERTIFICATE-----Generated at Sun Feb 16 22:12:04 2025 by rpki-client