$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XbBDLYHJEccbjhEwn7LYXKqYgI4.roa File: XbBDLYHJEccbjhEwn7LYXKqYgI4.roa (raw, json) Hash identifier: fgU5kQvcrZ06aDMIFJNBr5IbkyF1VGn0s7qbEoX6QP8= Subject key identifier: 5D:B0:43:2D:81:C9:11:C7:1B:8E:11:30:9F:B2:D8:5C:AA:98:80:8E Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 04BF Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XbBDLYHJEccbjhEwn7LYXKqYgI4.roa Signing time: Tue 01 Apr 2025 01:52:52 +0000 ROA not before: Tue 01 Apr 2025 01:52:52 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:70:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1215 (0x4bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:52:52 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5DB0432D81C911C71B8E11309FB2D85CAA98808E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:80:62:4b:13:96:13:94:6b:af:c1:7b:1e:92: a2:3b:2e:00:1d:d3:75:ce:7b:a6:bd:c4:85:f6:a0: 60:8f:0c:d1:65:2c:2f:e9:cc:e6:b8:ac:8d:4e:ea: 76:6a:df:09:75:67:4f:41:b4:2a:cf:1d:20:cb:53: f9:15:86:c1:e3:7e:3d:85:94:e6:9e:b8:a3:3b:89: a5:07:e6:af:00:5c:45:33:96:c3:6e:8d:60:e0:e5: 35:8a:ea:75:d6:aa:3e:f3:9d:29:b7:fb:e2:38:13: 98:01:0b:ef:d0:74:d1:71:ff:08:f5:76:ad:fc:5e: 85:1b:4b:39:b6:a1:2f:61:56:6d:6f:af:45:29:e6: 2d:ea:92:73:dc:2b:7a:b9:b1:da:f8:39:38:22:5c: fa:f6:88:8f:81:02:08:04:76:54:e0:6f:17:45:76: 05:cf:aa:ab:0d:de:0c:5d:8b:62:ca:31:3b:ba:55: cf:d0:0d:3b:e7:05:bd:00:0f:60:06:8c:cb:05:e2: 11:b9:67:da:b5:5c:23:56:73:65:e2:aa:e5:eb:06: 34:38:04:84:09:f0:92:61:00:15:fa:0f:03:3d:81: b4:20:09:7e:a9:ee:7f:99:3d:dc:6f:0d:b6:9c:1a: 9a:7f:34:c0:a6:48:2a:2e:96:35:0f:87:38:88:b6: 0e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B0:43:2D:81:C9:11:C7:1B:8E:11:30:9F:B2:D8:5C:AA:98:80:8E X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XbBDLYHJEccbjhEwn7LYXKqYgI4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:70:8::/48 Signature Algorithm: sha256WithRSAEncryption 89:cc:f1:1d:33:b7:7d:19:d0:0d:8a:fd:83:db:9d:ef:ca:8a: da:25:c3:6f:8f:4b:00:39:43:c3:f0:40:ec:5a:95:56:78:c3: e5:89:18:00:0f:d5:5f:9f:c6:08:e1:47:f8:9a:c5:b2:04:42: 2d:6f:9f:4f:5d:7e:83:f6:2e:27:75:3f:6a:37:ba:0e:43:3d: b3:a9:5f:26:1f:b1:38:a1:04:50:8c:16:f2:75:44:71:56:23: 2c:45:e0:77:d7:96:38:53:9a:2c:41:55:8e:88:c8:c0:75:06: a2:09:2f:b4:a5:2a:30:b8:ea:3f:f9:39:bb:95:28:43:d2:6c: 1e:89:5c:78:df:8f:b3:25:c4:fb:9e:6d:88:a4:68:55:ea:32: 67:70:6b:30:c7:08:94:c0:25:23:cc:9e:8b:e1:ce:04:c7:0c: 9b:c4:8e:ac:b0:ef:cd:df:42:fd:0e:76:f4:73:32:53:17:69: ba:15:8f:c5:24:98:a3:c1:4b:ef:7b:59:94:00:98:fb:dd:dc: dd:67:74:6d:85:90:ef:46:45:17:54:0d:60:08:c2:35:02:da: f4:1a:c1:1b:34:ff:77:08:61:43:16:f2:4d:e8:1c:54:0b:0e: bf:a6:2f:ca:40:14:0e:10:1a:57:54:0d:51:6f:9e:e9:de:ce: 15:71:62:df -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTUyNTJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVEQjA0MzJEODFDOTEx QzcxQjhFMTEzMDlGQjJEODVDQUE5ODgwOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTgGJLE5YTlGuvwXsekqI7LgAd03XOe6a9xIX2oGCPDNFlLC/p zOa4rI1O6nZq3wl1Z09BtCrPHSDLU/kVhsHjfj2FlOaeuKM7iaUH5q8AXEUzlsNu jWDg5TWK6nXWqj7znSm3++I4E5gBC+/QdNFx/wj1dq38XoUbSzm2oS9hVm1vr0Up 5i3qknPcK3q5sdr4OTgiXPr2iI+BAggEdlTgbxdFdgXPqqsN3gxdi2LKMTu6Vc/Q DTvnBb0AD2AGjMsF4hG5Z9q1XCNWc2XiquXrBjQ4BIQJ8JJhABX6DwM9gbQgCX6p 7n+ZPdxvDbacGpp/NMCmSCouljUPhziItg5XAgMBAAGjggIrMIICJzAdBgNVHQ4E FgQUXbBDLYHJEccbjhEwn7LYXKqYgI4wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9YYkJETFlISkVjY2JqaEV3bjdMWVhLcVlnSTQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAoAcAAIMA0GCSqGSIb3DQEBCwUAA4IBAQCJzPEdM7d9GdANiv2D 253vyoraJcNvj0sAOUPD8EDsWpVWeMPliRgAD9Vfn8YI4Uf4msWyBEItb59PXX6D 9i4ndT9qN7oOQz2zqV8mH7E4oQRQjBbydURxViMsReB315Y4U5osQVWOiMjAdQai CS+0pSowuOo/+Tm7lShD0mweiVx434+zJcT7nm2IpGhV6jJncGswxwiUwCUjzJ6L 4c4ExwybxI6ssO/N30L9Dnb0czJTF2m6FY/FJJijwUvve1mUAJj73dzdZ3RthZDv RkUXVA1gCMI1Atr0GsEbNP93CGFDFvJN6BxUCw6/pi/KQBQOEBpXVA1Rb57p3s4V cWLf -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:26 2025 by rpki-client on console.sobornost.net