$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30423/3O4FEcZuAV8crtAqGgkBmAu5QQY.roa File: 3O4FEcZuAV8crtAqGgkBmAu5QQY.roa (raw, json) Hash identifier: AIviidSLbVTPwLps67Aq3plA7Ph9SBm+MiwnpJnxeUo= Subject key identifier: DC:EE:05:11:C6:6E:01:5F:1C:AE:D0:2A:1A:09:01:98:0B:B9:41:06 Certificate issuer: /CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Certificate serial: 27 Authority key identifier: B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/3O4FEcZuAV8crtAqGgkBmAu5QQY.roa Signing time: Sat 19 Oct 2024 16:53:42 +0000 ROA not before: Sat 19 Oct 2024 16:53:42 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 63800 IP address blocks: 2401:d20::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B910BD9437967C7AFDD374E1EA6EBED7FA6F96B5 Validity Not Before: Oct 19 16:53:42 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=DCEE0511C66E015F1CAED02A1A0901980BB94106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:88:14:4c:a1:56:72:07:5c:3f:b1:e4:3f:7a: 87:6b:84:3e:b8:b0:23:ed:86:e5:c9:6f:27:93:31: 4c:39:70:29:cd:39:6a:6e:0c:26:3a:67:06:c5:2c: 08:e4:8f:48:eb:e3:4e:ad:7c:33:e9:72:0b:88:15: e6:de:87:f8:02:7f:ad:bf:18:fb:06:73:92:9f:a8: a0:17:58:c3:93:ce:53:95:5e:13:fc:fc:a0:3a:c8: 3c:a7:23:2e:bf:be:90:c6:89:2e:70:1e:11:31:41: de:e6:62:dc:0e:32:59:98:a4:57:15:fe:a0:27:fa: a2:9a:22:21:2a:60:10:89:b7:4c:ff:bd:ab:2b:8a: 16:e4:2a:61:e6:b8:0e:fe:ca:e3:78:52:8b:03:35: f0:81:70:e7:47:1e:f5:15:0e:23:5f:9d:e4:c3:c2: 4f:fb:86:41:0b:aa:a1:59:da:fa:40:ed:47:f7:48: 8b:80:20:7e:66:c0:87:6c:d0:ec:4c:dc:50:07:57: cf:02:2e:99:e5:ca:46:e0:51:f4:90:f0:3b:a5:c3: 4b:ac:b7:f4:9b:e5:27:45:7e:f8:30:ce:15:6a:c6: 45:1d:a0:01:98:75:e1:b1:23:6a:0b:11:86:7a:ee: 3d:c4:fd:17:1c:e5:0b:ee:27:4d:d2:9d:38:cb:4a: 1c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EE:05:11:C6:6E:01:5F:1C:AE:D0:2A:1A:09:01:98:0B:B9:41:06 X509v3 Authority Key Identifier: keyid:B9:10:BD:94:37:96:7C:7A:FD:D3:74:E1:EA:6E:BE:D7:FA:6F:96:B5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/uRC9lDeWfHr903Th6m6-1_pvlrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uRC9lDeWfHr903Th6m6-1_pvlrU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30423/3O4FEcZuAV8crtAqGgkBmAu5QQY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d20::/36 Signature Algorithm: sha256WithRSAEncryption 99:83:e9:d3:95:22:65:46:73:11:6d:79:60:47:70:8f:45:ed: 2e:38:f8:10:7e:92:f5:f0:c9:cb:63:5a:1f:78:57:22:8d:4f: 96:36:b6:05:dc:85:1f:fa:57:83:e0:28:5b:8d:3e:f4:75:ca: 4e:a8:f2:d2:31:11:6f:91:1c:b3:2c:51:05:d1:24:9d:de:b2: 0b:fc:9a:e3:c3:79:27:13:aa:14:47:33:c9:2b:aa:34:71:74: 45:8d:ca:23:a7:c0:b3:1e:87:48:fb:1a:51:a4:3e:af:bf:f1: 60:9f:0b:56:ae:cb:8b:32:ed:c1:4b:b4:85:78:b5:83:ac:45: ad:d3:54:97:c6:2b:27:4d:a2:75:7d:5f:7c:49:63:16:1a:51: 73:26:08:b5:7f:a5:fc:35:52:34:8c:15:e5:e0:32:1c:5e:1a: c5:f5:db:00:3c:44:b6:43:5e:17:ee:2f:3b:88:bd:9e:fd:3a: 65:74:9a:32:39:fc:9b:c2:10:b8:ef:2f:59:fb:a7:22:e1:33: e9:a7:dd:49:d2:14:10:4b:c9:ab:f2:58:0c:a9:0b:64:2d:d5: b7:4b:0b:ed:9d:95:36:55:8a:66:04:0f:91:55:2a:fb:f8:c4: 22:92:15:7b:03:af:c4:9b:f9:cd:45:35:e7:0b:53:7d:c6:01: 98:d5:73:dc -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIBJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTEw QkQ5NDM3OTY3QzdBRkREMzc0RTFFQTZFQkVEN0ZBNkY5NkI1MB4XDTI0MTAxOTE2 NTM0MloXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoRENFRTA1MTFDNjZFMDE1 RjFDQUVEMDJBMUEwOTAxOTgwQkI5NDEwNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALeIFEyhVnIHXD+x5D96h2uEPriwI+2G5clvJ5MxTDlwKc05am4M JjpnBsUsCOSPSOvjTq18M+lyC4gV5t6H+AJ/rb8Y+wZzkp+ooBdYw5POU5VeE/z8 oDrIPKcjLr++kMaJLnAeETFB3uZi3A4yWZikVxX+oCf6opoiISpgEIm3TP+9qyuK FuQqYea4Dv7K43hSiwM18IFw50ce9RUOI1+d5MPCT/uGQQuqoVna+kDtR/dIi4Ag fmbAh2zQ7EzcUAdXzwIumeXKRuBR9JDwO6XDS6y39JvlJ0V++DDOFWrGRR2gAZh1 4bEjagsRhnruPcT9FxzlC+4nTdKdOMtKHDMCAwEAAaOCAiowggImMB0GA1UdDgQW BBTc7gURxm4BXxyu0CoaCQGYC7lBBjAfBgNVHSMEGDAWgBS5EL2UN5Z8ev3TdOHq br7X+m+WtTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MjMvdVJDOWxEZVdmSHI5MDNUaDZtNi0xX3B2bHJVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdVJDOWxEZVdmSHI5MDNUaDZtNi0x X3B2bHJVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDIzLzNPNEZFY1p1QVY4Y3J0QXFHZ2tCbUF1NVFRWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQkAQ0gADANBgkqhkiG9w0BAQsFAAOCAQEAmYPp05UiZUZzEW15YEdw j0XtLjj4EH6S9fDJy2NaH3hXIo1Plja2BdyFH/pXg+AoW40+9HXKTqjy0jERb5Ec syxRBdEknd6yC/ya48N5JxOqFEczySuqNHF0RY3KI6fAsx6HSPsaUaQ+r7/xYJ8L Vq7LizLtwUu0hXi1g6xFrdNUl8YrJ02idX1ffEljFhpRcyYItX+l/DVSNIwV5eAy HF4axfXbADxEtkNeF+4vO4i9nv06ZXSaMjn8m8IQuO8vWfunIuEz6afdSdIUEEvJ q/JYDKkLZC3Vt0sL7Z2VNlWKZgQPkVUq+/jEIpIVewOvxJv5zUU15wtTfcYBmNVz 3A== -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:08 2024 by rpki-client on console-fra.rpki-client.org