$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/hMPkwTzRAhuE68UN9xXXKaVNPUE.roa File: hMPkwTzRAhuE68UN9xXXKaVNPUE.roa (raw, json) Hash identifier: exC/NDnJaONFhNZG9BTWJ5NGTNPmJNGhWL0rKPHw2VE= Subject key identifier: 84:C3:E4:C1:3C:D1:02:1B:84:EB:C5:0D:F7:15:D7:29:A5:4D:3D:41 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 04DF Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/hMPkwTzRAhuE68UN9xXXKaVNPUE.roa Signing time: Tue 01 Apr 2025 01:55:50 +0000 ROA not before: Tue 01 Apr 2025 01:55:50 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:ed00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1247 (0x4df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:55:50 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=84C3E4C13CD1021B84EBC50DF715D729A54D3D41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:84:11:28:4b:3b:74:26:09:98:2d:89:8e:0e: 66:98:ba:7c:4e:e2:ec:b7:e4:97:ab:73:e0:d6:d6: 7a:3c:96:a4:9d:f9:09:72:c8:b8:2a:32:b8:23:e6: 8c:ea:ba:17:10:0f:7b:71:0f:63:0f:7e:a6:87:40: 36:31:ca:27:9a:28:27:8b:4e:8c:26:cb:57:91:ef: 0a:bf:2a:e2:ea:5d:bb:8e:b6:30:11:73:4c:33:14: 9d:d5:61:ec:47:3b:ae:78:53:47:9f:90:48:a9:6f: 3d:10:1e:8d:06:c7:e7:c3:ba:c1:f4:8c:7f:73:9c: a1:d1:b0:86:bb:b4:c0:fb:b3:3f:fc:ab:3a:92:96: 02:49:d6:7a:d4:74:c6:8e:0a:e5:8c:d4:e1:c4:20: b7:17:e4:12:57:73:90:5d:04:6a:27:f7:bc:43:87: 75:1e:72:a9:46:df:e5:27:82:c3:56:b8:02:da:99: d4:e8:35:2e:da:05:67:60:5b:d0:70:ae:83:0f:a6: 3d:2d:df:67:d6:0a:89:9a:8b:a5:c5:97:24:c4:48: e8:86:c1:db:e3:45:4d:6e:ef:d5:fe:f3:37:10:25: d5:f5:2e:56:cd:49:e9:bb:dc:df:4a:98:c4:20:84: a6:6e:16:59:3e:76:87:18:7c:53:74:82:1d:58:fe: a3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C3:E4:C1:3C:D1:02:1B:84:EB:C5:0D:F7:15:D7:29:A5:4D:3D:41 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/hMPkwTzRAhuE68UN9xXXKaVNPUE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:ed00::/40 Signature Algorithm: sha256WithRSAEncryption bd:f2:a8:3d:fc:35:ee:08:2b:37:65:c3:8d:39:21:ed:40:b7: d8:e3:80:3f:cd:34:31:0e:04:69:ac:97:54:6e:c8:5c:1e:cd: bd:ae:0a:18:ca:7c:29:d8:00:d5:88:fc:3a:f7:21:51:4a:79: 02:59:88:d5:45:b8:2e:e7:79:af:3f:e1:20:3f:d7:9a:d3:9c: d3:93:1c:d0:42:52:a5:91:81:c7:88:c9:30:9b:5d:60:0c:3b: c7:ef:49:60:d0:ac:c4:01:37:fa:f5:45:cc:e5:ff:87:f5:cd: 01:4c:e6:a9:38:30:99:c8:3a:4c:a5:e3:30:ef:94:4c:d0:3d: f1:a0:1c:03:bd:59:57:0b:83:37:7a:b7:bd:24:a2:1a:02:23: ff:ea:d1:08:0f:c9:60:16:39:8d:54:2d:68:57:2e:ee:bc:2b: 45:a3:6b:85:23:07:ee:5a:e5:09:32:65:ae:dd:47:a9:ca:5c: 00:49:bb:46:87:7e:04:80:dd:6d:c6:2a:6a:ab:ea:7e:fd:cd: 75:77:85:86:ba:f3:12:90:d0:93:31:67:4d:0f:1e:27:d5:95: 69:c8:bc:4f:7d:4f:ac:78:00:00:99:53:83:6b:75:cd:4b:72: 9c:68:07:d4:36:79:3f:57:2b:ca:f5:3e:96:bd:54:dd:7b:1b: 22:cb:c0:94 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBN8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTU1NTBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg0QzNFNEMxM0NEMTAy MUI4NEVCQzUwREY3MTVENzI5QTU0RDNENDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmhBEoSzt0JgmYLYmODmaYunxO4uy35Jerc+DW1no8lqSd+Qly yLgqMrgj5ozquhcQD3txD2MPfqaHQDYxyieaKCeLTowmy1eR7wq/KuLqXbuOtjAR c0wzFJ3VYexHO654U0efkEipbz0QHo0Gx+fDusH0jH9znKHRsIa7tMD7sz/8qzqS lgJJ1nrUdMaOCuWM1OHEILcX5BJXc5BdBGon97xDh3UecqlG3+UngsNWuALamdTo NS7aBWdgW9BwroMPpj0t32fWComai6XFlyTESOiGwdvjRU1u79X+8zcQJdX1LlbN Sem73N9KmMQghKZuFlk+docYfFN0gh1Y/qPVAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUhMPkwTzRAhuE68UN9xXXKaVNPUEwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9oTVBrd1R6UkFodUU2OFVOOXhYWEthVk5QVUUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa+0wDQYJKoZIhvcNAQELBQADggEBAL3yqD38Ne4IKzdlw405 Ie1At9jjgD/NNDEOBGmsl1RuyFwezb2uChjKfCnYANWI/Dr3IVFKeQJZiNVFuC7n ea8/4SA/15rTnNOTHNBCUqWRgceIyTCbXWAMO8fvSWDQrMQBN/r1Rczl/4f1zQFM 5qk4MJnIOkyl4zDvlEzQPfGgHAO9WVcLgzd6t70kohoCI//q0QgPyWAWOY1ULWhX Lu68K0Wja4UjB+5a5QkyZa7dR6nKXABJu0aHfgSA3W3GKmqr6n79zXV3hYa68xKQ 0JMxZ00PHifVlWnIvE99T6x4AACZU4Nrdc1LcpxoB9Q2eT9XK8r1Ppa9VN17GyLL wJQ= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:27 2025 by rpki-client on console.sobornost.net