$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30427/TNR7XRwtsvQBFirO20evd61zo4M.roa File: TNR7XRwtsvQBFirO20evd61zo4M.roa (raw, json) Hash identifier: bskfy96LILmFf2F43ewt7xCdq41EpmgsbXoFXugVYW8= Subject key identifier: 4C:D4:7B:5D:1C:2D:B2:F4:01:16:2A:CE:DB:47:AF:77:AD:73:A3:83 Certificate issuer: /CN=EB9438A78EABAD9DFF5E2AE21ACDDF5810291CBF Certificate serial: 10 Authority key identifier: EB:94:38:A7:8E:AB:AD:9D:FF:5E:2A:E2:1A:CD:DF:58:10:29:1C:BF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/65Q4p46rrZ3_XiriGs3fWBApHL8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30427/TNR7XRwtsvQBFirO20evd61zo4M.roa Signing time: Wed 02 Oct 2024 18:29:29 +0000 ROA not before: Wed 02 Oct 2024 18:29:29 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 150369 IP address blocks: 2401:2d60::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30427/65Q4p46rrZ3_XiriGs3fWBApHL8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30427/65Q4p46rrZ3_XiriGs3fWBApHL8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/65Q4p46rrZ3_XiriGs3fWBApHL8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB9438A78EABAD9DFF5E2AE21ACDDF5810291CBF Validity Not Before: Oct 2 18:29:29 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=4CD47B5D1C2DB2F401162ACEDB47AF77AD73A383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:30:03:d1:4e:3c:b5:43:42:b7:3a:00:7a:b5: cf:1c:60:95:a2:84:8b:54:fa:e2:7f:24:89:35:e7: 55:d7:5e:22:c3:81:05:c2:43:0d:ce:c3:bf:23:fb: f9:f2:91:1d:14:90:f5:b3:51:57:a9:32:72:e7:d1: 8d:da:f4:2e:44:4d:bd:79:e1:1d:21:74:66:43:8f: 4d:7a:db:0f:f4:f8:3a:06:90:d0:f3:b6:1f:dc:90: 4f:52:0f:19:8a:a4:b3:e5:7f:35:2b:e5:18:62:97: 0b:1c:45:23:37:cf:39:4c:f3:60:d2:83:78:27:05: e9:70:af:89:25:6b:c0:6e:75:44:0c:c2:7d:5a:29: 64:24:ed:c3:9b:92:e2:a5:7b:85:65:02:b4:78:2e: 03:c6:07:37:61:77:88:dc:ae:d3:43:26:53:e2:f4: 2e:da:c4:72:ec:c5:31:51:56:38:8c:1e:24:be:3e: 10:8c:76:15:44:7b:ab:f6:92:97:fb:c5:45:34:cc: b3:3d:7c:15:ad:05:15:3f:fc:1c:9d:44:c9:bd:d0: b9:a7:6f:8f:ba:9f:66:95:87:ed:cd:d5:44:91:41: 90:0e:e8:ec:be:57:fc:8c:40:7a:fa:46:5a:ae:f7: 09:c8:fb:85:9b:e6:1d:35:04:05:65:50:2a:fa:f8: 90:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D4:7B:5D:1C:2D:B2:F4:01:16:2A:CE:DB:47:AF:77:AD:73:A3:83 X509v3 Authority Key Identifier: keyid:EB:94:38:A7:8E:AB:AD:9D:FF:5E:2A:E2:1A:CD:DF:58:10:29:1C:BF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30427/65Q4p46rrZ3_XiriGs3fWBApHL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/65Q4p46rrZ3_XiriGs3fWBApHL8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30427/TNR7XRwtsvQBFirO20evd61zo4M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:2d60::/32 Signature Algorithm: sha256WithRSAEncryption 44:ed:55:f0:37:ff:00:69:ca:25:26:d5:4f:ad:ed:e0:bc:02: bf:7e:fc:c3:73:f4:fe:94:ac:30:3e:e8:a2:e3:b9:e8:0f:2d: c1:b7:a5:6d:a0:b9:3d:e0:9f:ac:03:72:8a:30:bc:eb:21:76: 1d:ae:4a:3c:f1:b6:19:45:af:1b:08:be:70:75:0e:80:b5:5a: 49:f3:ee:02:ad:b8:70:20:c5:dc:41:8f:32:dc:a8:e6:44:ab: 95:56:78:08:63:1b:b7:15:c3:26:de:8f:ee:d6:ac:98:25:d1: 3c:5c:03:6b:80:58:01:f2:70:ca:b0:d2:77:eb:4f:6c:31:e7: ad:98:b2:56:11:3b:1c:45:37:4b:3e:46:5f:49:62:8e:dc:87: 20:a9:c6:1d:36:26:df:18:93:3d:38:ec:ac:b1:28:14:89:5e: c0:8a:b7:15:13:ca:6d:39:17:b0:5c:6f:cc:d0:13:e9:53:83: b5:16:b8:b2:5a:fa:4b:f6:d7:50:9e:e3:4f:80:15:61:1b:6d: a6:61:8f:9c:b2:92:b6:d7:62:44:10:cf:f2:a2:98:72:e2:b9: e2:f8:85:63:00:7e:a8:fb:cb:64:0c:ec:71:6d:4f:d5:77:c3: 42:5c:77:66:25:30:a3:cf:0a:09:40:82:12:ee:c2:20:6e:46: a5:9a:b4:cc -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFQjk0 MzhBNzhFQUJBRDlERkY1RTJBRTIxQUNEREY1ODEwMjkxQ0JGMB4XDTI0MTAwMjE4 MjkyOVoXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoNENENDdCNUQxQzJEQjJG NDAxMTYyQUNFREI0N0FGNzdBRDczQTM4MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALkwA9FOPLVDQrc6AHq1zxxglaKEi1T64n8kiTXnVddeIsOBBcJD Dc7DvyP7+fKRHRSQ9bNRV6kycufRjdr0LkRNvXnhHSF0ZkOPTXrbD/T4OgaQ0PO2 H9yQT1IPGYqks+V/NSvlGGKXCxxFIzfPOUzzYNKDeCcF6XCviSVrwG51RAzCfVop ZCTtw5uS4qV7hWUCtHguA8YHN2F3iNyu00MmU+L0LtrEcuzFMVFWOIweJL4+EIx2 FUR7q/aSl/vFRTTMsz18Fa0FFT/8HJ1Eyb3Quadvj7qfZpWH7c3VRJFBkA7o7L5X /IxAevpGWq73Ccj7hZvmHTUEBWVQKvr4kO8CAwEAAaOCAikwggIlMB0GA1UdDgQW BBRM1HtdHC2y9AEWKs7bR693rXOjgzAfBgNVHSMEGDAWgBTrlDinjqutnf9eKuIa zd9YECkcvzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MjcvNjVRNHA0NnJyWjNfWGlyaUdzM2ZXQkFwSEw4LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvNjVRNHA0NnJyWjNfWGlyaUdzM2ZX QkFwSEw4LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDI3L1ROUjdYUnd0c3ZRQkZpck8yMGV2ZDYxem80TS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAS1gMA0GCSqGSIb3DQEBCwUAA4IBAQBE7VXwN/8AacolJtVPre3g vAK/fvzDc/T+lKwwPuii47noDy3Bt6VtoLk94J+sA3KKMLzrIXYdrko88bYZRa8b CL5wdQ6AtVpJ8+4CrbhwIMXcQY8y3KjmRKuVVngIYxu3FcMm3o/u1qyYJdE8XANr gFgB8nDKsNJ3609sMeetmLJWETscRTdLPkZfSWKO3IcgqcYdNibfGJM9OOyssSgU iV7AircVE8ptORewXG/M0BPpU4O1FriyWvpL9tdQnuNPgBVhG22mYY+cspK212JE EM/yophy4rni+IVjAH6o+8tkDOxxbU/Vd8NCXHdmJTCjzwoJQIIS7sIgbkalmrTM -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:15 2024 by rpki-client on console-fra.rpki-client.org