$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30438/7GL71wFf0-F-VcKwi-sntdnXZXo.roa File: 7GL71wFf0-F-VcKwi-sntdnXZXo.roa (raw, json) Hash identifier: TijUx0wqX2yFOwjRjQwTZgtzvJpDYd+dlDHp6q2ZYac= Subject key identifier: EC:62:FB:D7:01:5F:D3:E1:7E:55:C2:B0:8B:EB:27:B5:D9:D7:65:7A Certificate issuer: /CN=BF791915BC4356AAB7A6EFCD6393E1930B502728 Certificate serial: 02 Authority key identifier: BF:79:19:15:BC:43:56:AA:B7:A6:EF:CD:63:93:E1:93:0B:50:27:28 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/v3kZFbxDVqq3pu_NY5PhkwtQJyg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30438/7GL71wFf0-F-VcKwi-sntdnXZXo.roa Signing time: Sun 24 Nov 2024 13:49:33 +0000 ROA not before: Sun 24 Nov 2024 13:49:33 +0000 ROA not after: Mon 24 Nov 2025 12:49:32 +0000 asID: 1008 IP address blocks: 2401:a920::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30438/v3kZFbxDVqq3pu_NY5PhkwtQJyg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30438/v3kZFbxDVqq3pu_NY5PhkwtQJyg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/v3kZFbxDVqq3pu_NY5PhkwtQJyg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF791915BC4356AAB7A6EFCD6393E1930B502728 Validity Not Before: Nov 24 13:49:33 2024 GMT Not After : Nov 24 12:49:32 2025 GMT Subject: CN=EC62FBD7015FD3E17E55C2B08BEB27B5D9D7657A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:92:a9:93:90:62:44:86:2e:78:6f:68:93:37: b6:d8:a1:d3:3e:97:be:24:e3:98:31:f9:99:67:b4: 5d:0e:2b:c7:88:2b:e0:ba:a1:aa:97:97:30:bd:be: 1d:56:3c:35:bb:fd:5a:96:93:fb:ab:a9:de:25:b7: 0a:41:e9:5f:48:c3:7a:7d:4e:b3:55:ab:a1:9a:0d: 37:1f:cb:46:da:46:14:d7:4e:99:83:40:c0:85:a7: b2:25:10:2e:53:e6:3d:07:5e:b6:6b:58:9e:92:67: 06:9c:79:86:c6:0b:41:d0:33:31:e2:c8:89:5d:ff: 5b:27:58:d2:64:12:35:6d:69:65:51:e3:f1:61:c7: 60:e9:aa:39:ae:b1:34:67:40:0b:02:a8:52:a7:b5: 1a:16:d4:44:23:98:13:17:a4:a5:ed:b8:25:d7:79: b8:47:72:e4:db:ef:13:2d:e1:d7:df:de:cc:2a:7d: 18:96:66:9d:97:ed:d3:fe:fd:8c:f2:48:20:ac:55: 87:15:10:b6:5f:22:0c:78:d1:4d:0c:62:5c:7e:40: 0f:56:32:28:aa:76:49:d4:83:2a:ca:dd:26:cf:4e: e7:fe:bf:08:a5:0d:ec:2a:16:b9:82:bd:e7:ee:8e: 5b:5d:0a:f1:a9:2d:29:e6:40:36:73:aa:e5:43:0b: 57:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:62:FB:D7:01:5F:D3:E1:7E:55:C2:B0:8B:EB:27:B5:D9:D7:65:7A X509v3 Authority Key Identifier: keyid:BF:79:19:15:BC:43:56:AA:B7:A6:EF:CD:63:93:E1:93:0B:50:27:28 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30438/v3kZFbxDVqq3pu_NY5PhkwtQJyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/v3kZFbxDVqq3pu_NY5PhkwtQJyg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30438/7GL71wFf0-F-VcKwi-sntdnXZXo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a920::/32 Signature Algorithm: sha256WithRSAEncryption 25:24:47:d8:4d:85:f3:22:ec:7e:b5:d2:e9:fe:7e:f0:93:35: 5a:9f:2a:82:3d:ec:36:f3:d7:1a:6f:b4:dd:03:fc:dd:a3:2b: 58:ab:85:b7:59:af:8d:35:d0:3c:77:3d:6f:fc:f9:1f:56:84: 63:38:66:4e:18:84:f5:88:df:6a:ad:9b:b7:9e:74:c2:34:ff: d8:3d:bc:04:33:34:03:53:e7:2d:f6:e1:86:ba:a5:5d:25:41: 11:30:18:88:ac:fa:40:dc:2a:23:6d:2b:14:e3:9f:a6:51:37: 55:e4:a1:9f:e6:b2:8d:de:0a:c2:c7:3d:67:9d:89:94:85:72: cf:d9:52:65:da:f2:38:ca:7e:db:93:b4:88:e5:f6:79:01:2b: cb:27:5f:7f:24:c4:ee:b0:bf:cc:4d:c9:02:58:8a:15:af:cb: 69:25:cb:63:84:1c:1d:08:a8:13:db:98:c0:48:54:71:dc:c2: 61:4e:71:bf:64:79:ca:bb:59:59:96:bb:4c:ff:37:f0:8b:d9: 1c:da:cf:3c:d3:01:d9:23:c7:d7:cb:7d:7e:a1:bc:4a:88:f3: 00:82:7f:f1:c2:f4:c9:09:d1:04:eb:d4:c0:e1:2d:5f:1c:f7: b4:ed:8a:79:c3:64:d5:d3:b2:f4:0c:5a:f5:38:50:99:7c:29: 5f:de:f1:79 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCRjc5 MTkxNUJDNDM1NkFBQjdBNkVGQ0Q2MzkzRTE5MzBCNTAyNzI4MB4XDTI0MTEyNDEz NDkzM1oXDTI1MTEyNDEyNDkzMlowMzExMC8GA1UEAxMoRUM2MkZCRDcwMTVGRDNF MTdFNTVDMkIwOEJFQjI3QjVEOUQ3NjU3QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALCSqZOQYkSGLnhvaJM3ttih0z6XviTjmDH5mWe0XQ4rx4gr4Lqh qpeXML2+HVY8Nbv9WpaT+6up3iW3CkHpX0jDen1Os1WroZoNNx/LRtpGFNdOmYNA wIWnsiUQLlPmPQdetmtYnpJnBpx5hsYLQdAzMeLIiV3/WydY0mQSNW1pZVHj8WHH YOmqOa6xNGdACwKoUqe1GhbURCOYExekpe24Jdd5uEdy5NvvEy3h19/ezCp9GJZm nZft0/79jPJIIKxVhxUQtl8iDHjRTQxiXH5AD1YyKKp2SdSDKsrdJs9O5/6/CKUN 7CoWuYK95+6OW10K8aktKeZANnOq5UMLV78CAwEAAaOCAikwggIlMB0GA1UdDgQW BBTsYvvXAV/T4X5VwrCL6ye12ddlejAfBgNVHSMEGDAWgBS/eRkVvENWqrem781j k+GTC1AnKDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0MzgvdjNrWkZieERWcXEzcHVfTlk1UGhrd3RRSnlnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdjNrWkZieERWcXEzcHVfTlk1UGhr d3RRSnlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDM4LzdHTDcxd0ZmMC1GLVZjS3dpLXNudGRuWFpYby5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAakgMA0GCSqGSIb3DQEBCwUAA4IBAQAlJEfYTYXzIux+tdLp/n7w kzVanyqCPew289cab7TdA/zdoytYq4W3Wa+NNdA8dz1v/PkfVoRjOGZOGIT1iN9q rZu3nnTCNP/YPbwEMzQDU+ct9uGGuqVdJUERMBiIrPpA3CojbSsU45+mUTdV5KGf 5rKN3grCxz1nnYmUhXLP2VJl2vI4yn7bk7SI5fZ5ASvLJ19/JMTusL/MTckCWIoV r8tpJctjhBwdCKgT25jASFRx3MJhTnG/ZHnKu1lZlrtM/zfwi9kc2s880wHZI8fX y31+obxKiPMAgn/xwvTJCdEE69TA4S1fHPe07Yp5w2TV07L0DFr1OFCZfClf3vF5 -----END CERTIFICATE-----Generated at Thu Mar 13 06:42:30 2025 by rpki-client