$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/39002/D8hYxBjut65YyYSGiEmURjbEpgw.roa File: D8hYxBjut65YyYSGiEmURjbEpgw.roa (raw, json) Hash identifier: INidlUamtD8xFyBWww7ATgiXiDYiKLS69iEaxt/trBQ= Subject key identifier: 0F:C8:58:C4:18:EE:B7:AE:58:C9:84:86:88:49:94:46:36:C4:A6:0C Certificate issuer: /CN=F974F9EB3E6B6AD8B1EAEA0A461D248D3ACDCDE2 Certificate serial: 24 Authority key identifier: F9:74:F9:EB:3E:6B:6A:D8:B1:EA:EA:0A:46:1D:24:8D:3A:CD:CD:E2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-XT56z5ratix6uoKRh0kjTrNzeI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/D8hYxBjut65YyYSGiEmURjbEpgw.roa Signing time: Mon 30 Sep 2024 01:28:45 +0000 ROA not before: Mon 30 Sep 2024 01:28:45 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 0 IP address blocks: 2001:de8:8:9::/64 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/-XT56z5ratix6uoKRh0kjTrNzeI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/-XT56z5ratix6uoKRh0kjTrNzeI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-XT56z5ratix6uoKRh0kjTrNzeI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F974F9EB3E6B6AD8B1EAEA0A461D248D3ACDCDE2 Validity Not Before: Sep 30 01:28:45 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=0FC858C418EEB7AE58C984868849944636C4A60C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:56:fc:b0:30:ca:59:96:06:57:08:4b:61:63: 09:e9:90:6a:5e:ad:64:05:4d:f8:01:e4:ce:77:84: 70:d7:47:12:89:dc:bd:5f:87:c4:b6:62:d7:71:89: 7c:ae:44:27:81:b2:8c:4a:ed:cd:58:44:2b:7e:c0: 68:92:78:45:ba:ac:a4:05:ff:00:91:1f:30:20:d5: ec:6f:10:4b:11:e0:76:15:bc:ea:fe:f4:20:9d:1b: 32:23:06:69:1b:dc:da:cc:d1:53:8d:4d:95:f6:c3: 3e:47:90:ae:fb:73:d3:f2:42:b2:ac:01:5b:00:96: 13:64:2a:08:47:c4:4d:f2:e2:d7:9f:bf:26:7f:24: 23:fa:50:7d:95:da:7d:a2:0e:09:45:47:7d:cd:9f: 74:1a:1e:cd:d8:8c:fc:52:9e:a9:6e:cd:8d:51:91: d5:67:ab:ff:96:b9:e7:ea:8e:90:45:86:51:29:e6: 5b:db:c1:7d:ec:31:6e:20:27:62:ab:dd:0e:8f:82: 6d:58:46:a6:de:f5:6d:7b:89:e3:30:fc:3b:f5:a1: bf:3e:8c:58:e6:4d:75:e0:e3:17:24:61:aa:a2:69: e3:03:58:5f:52:97:78:fc:a6:e2:25:41:02:25:84: 31:9a:06:01:bc:0c:89:6d:a6:b4:00:b2:25:8c:5b: 78:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C8:58:C4:18:EE:B7:AE:58:C9:84:86:88:49:94:46:36:C4:A6:0C X509v3 Authority Key Identifier: keyid:F9:74:F9:EB:3E:6B:6A:D8:B1:EA:EA:0A:46:1D:24:8D:3A:CD:CD:E2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/-XT56z5ratix6uoKRh0kjTrNzeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-XT56z5ratix6uoKRh0kjTrNzeI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/D8hYxBjut65YyYSGiEmURjbEpgw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:de8:8:9::/64 Signature Algorithm: sha256WithRSAEncryption 86:53:7a:4f:b0:73:a2:6e:16:ea:79:21:43:64:83:81:f1:a9: b3:9c:47:5f:3b:ad:c5:d3:34:67:70:5a:a2:8d:6a:00:0c:2a: 0a:d5:b1:32:86:5c:46:8a:29:ec:50:a6:57:89:b9:a2:3b:65: 73:42:ea:2b:38:3a:ba:43:9e:24:e5:73:dd:c6:30:eb:68:89: ce:b0:c1:44:4c:16:c9:e6:cc:cf:bf:b8:0d:d2:58:1a:f2:f1: 5b:60:c9:de:b5:1c:99:f6:27:df:4d:74:31:07:50:17:eb:52: f3:32:ee:5f:b2:85:4b:c7:bc:bc:48:61:ed:a2:da:8b:18:3f: 14:99:95:f0:5b:06:ce:ae:86:e4:14:57:fe:27:a1:e2:9b:51: 22:26:fd:bb:c4:0e:dd:35:83:4e:54:8b:d6:ff:98:f5:83:c4: 7a:b2:27:32:21:b9:36:05:75:f9:40:b7:40:13:9f:65:ae:ed: 4f:8f:f9:f9:04:f9:17:4d:ab:3b:b6:14:80:d1:8e:d6:63:d5: f0:c3:e3:14:a4:ba:d3:ef:f1:e7:94:ea:af:89:94:a1:ad:c2: 32:44:98:7a:cd:ee:db:82:14:e8:93:1e:84:37:62:e7:ba:c3: 27:8d:4e:37:44:5a:dc:2e:d8:2b:0b:3f:08:9d:ca:0f:b0:48: 64:b2:c3:e4 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOTc0 RjlFQjNFNkI2QUQ4QjFFQUVBMEE0NjFEMjQ4RDNBQ0RDREUyMB4XDTI0MDkzMDAx Mjg0NVoXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoMEZDODU4QzQxOEVFQjdB RTU4Qzk4NDg2ODg0OTk0NDYzNkM0QTYwQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKRW/LAwylmWBlcIS2FjCemQal6tZAVN+AHkzneEcNdHEoncvV+H xLZi13GJfK5EJ4GyjErtzVhEK37AaJJ4RbqspAX/AJEfMCDV7G8QSxHgdhW86v70 IJ0bMiMGaRvc2szRU41NlfbDPkeQrvtz0/JCsqwBWwCWE2QqCEfETfLi15+/Jn8k I/pQfZXafaIOCUVHfc2fdBoezdiM/FKeqW7NjVGR1Wer/5a55+qOkEWGUSnmW9vB fewxbiAnYqvdDo+CbVhGpt71bXuJ4zD8O/Whvz6MWOZNdeDjFyRhqqJp4wNYX1KX ePym4iVBAiWEMZoGAbwMiW2mtACyJYxbeFkCAwEAAaOCAi0wggIpMB0GA1UdDgQW BBQPyFjEGO63rljJhIaISZRGNsSmDDAfBgNVHSMEGDAWgBT5dPnrPmtq2LHq6gpG HSSNOs3N4jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzkwMDIvLVhUNTZ6NXJhdGl4NnVvS1JoMGtqVHJOemVJLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLVhUNTZ6NXJhdGl4NnVvS1JoMGtq VHJOemVJLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzM5MDAyL0Q4aFl4Qmp1dDY1WXlZU0dpRW1VUmpiRXBndy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8EFTATMBEE AgACMAsDCQAgAQ3oAAgACTANBgkqhkiG9w0BAQsFAAOCAQEAhlN6T7Bzom4W6nkh Q2SDgfGps5xHXzutxdM0Z3Baoo1qAAwqCtWxMoZcRoop7FCmV4m5ojtlc0LqKzg6 ukOeJOVz3cYw62iJzrDBREwWyebMz7+4DdJYGvLxW2DJ3rUcmfYn3010MQdQF+tS 8zLuX7KFS8e8vEhh7aLaixg/FJmV8FsGzq6G5BRX/ieh4ptRIib9u8QO3TWDTlSL 1v+Y9YPEerInMiG5NgV1+UC3QBOfZa7tT4/5+QT5F02rO7YUgNGO1mPV8MPjFKS6 0+/x55Tqr4mUoa3CMkSYes3u24IU6JMehDdi57rDJ41ON0Ra3C7YKws/CJ3KD7BI ZLLD5A== -----END CERTIFICATE-----Generated at Tue Oct 22 15:00:10 2024 by rpki-client on console-fra.rpki-client.org