$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/39002/XkBU36LeWngF0kx7W5fPVOVqID0.roa File: XkBU36LeWngF0kx7W5fPVOVqID0.roa (raw, json) Hash identifier: UynJeV0qyh8M3JtW3EC/li8ijKrjy4dRkrAX9TY2fRU= Subject key identifier: 5E:40:54:DF:A2:DE:5A:78:05:D2:4C:7B:5B:97:CF:54:E5:6A:20:3D Certificate issuer: /CN=F974F9EB3E6B6AD8B1EAEA0A461D248D3ACDCDE2 Certificate serial: 1F Authority key identifier: F9:74:F9:EB:3E:6B:6A:D8:B1:EA:EA:0A:46:1D:24:8D:3A:CD:CD:E2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-XT56z5ratix6uoKRh0kjTrNzeI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/XkBU36LeWngF0kx7W5fPVOVqID0.roa Signing time: Wed 31 Jul 2024 01:31:58 +0000 ROA not before: Wed 31 Jul 2024 01:31:58 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 0 IP address blocks: 2001:de8:8::/64 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/-XT56z5ratix6uoKRh0kjTrNzeI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/-XT56z5ratix6uoKRh0kjTrNzeI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-XT56z5ratix6uoKRh0kjTrNzeI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F974F9EB3E6B6AD8B1EAEA0A461D248D3ACDCDE2 Validity Not Before: Jul 31 01:31:58 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=5E4054DFA2DE5A7805D24C7B5B97CF54E56A203D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fb:73:d6:d7:4f:68:7d:58:56:dd:79:e8:ae: f2:97:dd:2d:0f:4e:c5:91:cf:da:40:6d:fa:13:fb: f1:ab:4f:0e:7d:00:5d:63:88:6f:0f:be:9d:16:78: cd:f0:6a:70:8a:cf:33:25:e6:25:37:17:5f:a8:19: c9:bc:bd:b7:26:32:96:97:be:aa:95:39:02:47:df: 55:cf:a0:57:4f:30:08:1e:b6:f1:a2:1a:49:bd:fb: 08:c1:fc:67:5c:8f:e2:bf:ba:13:38:a9:de:52:7e: 88:4a:37:4e:b3:ed:64:81:97:3a:cb:54:15:87:0d: bd:80:13:78:32:fa:33:14:5c:58:74:35:75:81:80: 12:0d:4b:74:07:ab:ed:75:0a:a6:8e:46:05:54:ce: 23:a5:c2:3c:70:e4:f4:3f:02:79:37:fb:6c:fc:5c: da:c9:be:5c:16:6c:7f:54:d1:35:55:b0:4b:a4:07: 81:c3:91:ad:54:37:e6:52:4b:4b:0e:e5:5e:a4:d8: 8b:59:c4:fa:f8:bf:f3:68:1f:dd:ed:ac:7e:54:38: 4e:b6:68:74:78:d8:f4:81:a1:34:4d:d4:88:50:7e: 3d:08:ae:07:e0:8e:f6:f8:c6:63:75:e0:bd:79:24: ea:19:41:ca:cb:a1:ae:d0:74:a0:54:8b:d0:e1:7e: 03:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:40:54:DF:A2:DE:5A:78:05:D2:4C:7B:5B:97:CF:54:E5:6A:20:3D X509v3 Authority Key Identifier: keyid:F9:74:F9:EB:3E:6B:6A:D8:B1:EA:EA:0A:46:1D:24:8D:3A:CD:CD:E2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/-XT56z5ratix6uoKRh0kjTrNzeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-XT56z5ratix6uoKRh0kjTrNzeI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/XkBU36LeWngF0kx7W5fPVOVqID0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:de8:8::/64 Signature Algorithm: sha256WithRSAEncryption 6b:64:2c:1c:86:31:a2:ca:75:da:75:ed:cd:a4:57:e3:33:54: fd:5e:83:6f:c1:ec:96:70:ec:97:72:09:2f:0b:3a:cf:01:c2: ac:d8:90:45:89:13:d5:44:04:17:cd:55:dd:c0:61:c8:49:c9: 99:05:0e:38:41:34:3e:2a:f8:67:88:92:cb:84:3f:18:89:af: b5:21:f9:3e:64:e2:05:fd:ea:49:5d:c2:32:e6:9d:0d:4a:4d: ab:4e:1e:38:b9:ea:75:3d:b2:c9:7b:8b:0e:72:b6:f7:4d:49: bf:01:2b:99:4f:f7:ff:96:50:1b:ed:26:4e:f4:26:52:54:ca: 30:87:ba:d9:c4:94:ee:f7:0c:9a:83:fd:0a:cd:8d:31:4b:ba: 2c:39:af:26:03:9b:e4:9f:4d:3c:60:81:fa:f7:87:00:b8:f6: 45:18:88:4d:11:53:13:c3:ff:31:f9:2c:65:ed:e2:ba:20:d7: 1d:f9:dd:e4:9b:2d:01:d9:d1:1c:1e:4d:cf:2b:df:00:f9:9d: 9b:47:b0:43:3d:d4:80:34:ee:2f:9a:1c:a4:69:5c:43:20:b7: 45:43:95:a1:01:e4:c3:5b:b2:c9:a7:23:f6:94:2e:d5:aa:3c: d8:62:e9:92:ce:c3:c5:8c:ba:d0:86:9d:fc:45:5e:9b:18:ef: f0:aa:ab:c6 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIBHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOTc0 RjlFQjNFNkI2QUQ4QjFFQUVBMEE0NjFEMjQ4RDNBQ0RDREUyMB4XDTI0MDczMTAx MzE1OFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoNUU0MDU0REZBMkRFNUE3 ODA1RDI0QzdCNUI5N0NGNTRFNTZBMjAzRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALj7c9bXT2h9WFbdeeiu8pfdLQ9OxZHP2kBt+hP78atPDn0AXWOI bw++nRZ4zfBqcIrPMyXmJTcXX6gZyby9tyYylpe+qpU5AkffVc+gV08wCB628aIa Sb37CMH8Z1yP4r+6Ezip3lJ+iEo3TrPtZIGXOstUFYcNvYATeDL6MxRcWHQ1dYGA Eg1LdAer7XUKpo5GBVTOI6XCPHDk9D8CeTf7bPxc2sm+XBZsf1TRNVWwS6QHgcOR rVQ35lJLSw7lXqTYi1nE+vi/82gf3e2sflQ4TrZodHjY9IGhNE3UiFB+PQiuB+CO 9vjGY3XgvXkk6hlBysuhrtB0oFSL0OF+AzcCAwEAAaOCAi0wggIpMB0GA1UdDgQW BBReQFTfot5aeAXSTHtbl89U5WogPTAfBgNVHSMEGDAWgBT5dPnrPmtq2LHq6gpG HSSNOs3N4jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzkwMDIvLVhUNTZ6NXJhdGl4NnVvS1JoMGtqVHJOemVJLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLVhUNTZ6NXJhdGl4NnVvS1JoMGtq VHJOemVJLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzM5MDAyL1hrQlUzNkxlV25nRjBreDdXNWZQVk9WcUlEMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8EFTATMBEE AgACMAsDCQAgAQ3oAAgAADANBgkqhkiG9w0BAQsFAAOCAQEAa2QsHIYxosp12nXt zaRX4zNU/V6Db8HslnDsl3IJLws6zwHCrNiQRYkT1UQEF81V3cBhyEnJmQUOOEE0 Pir4Z4iSy4Q/GImvtSH5PmTiBf3qSV3CMuadDUpNq04eOLnqdT2yyXuLDnK2901J vwErmU/3/5ZQG+0mTvQmUlTKMIe62cSU7vcMmoP9Cs2NMUu6LDmvJgOb5J9NPGCB +veHALj2RRiITRFTE8P/MfksZe3iuiDXHfnd5JstAdnRHB5NzyvfAPmdm0ewQz3U gDTuL5ocpGlcQyC3RUOVoQHkw1uyyacj9pQu1ao82GLpks7DxYy60Iad/EVemxjv 8Kqrxg== -----END CERTIFICATE-----Generated at Fri Nov 22 00:23:20 2024 by rpki-client on console-fra.rpki-client.org