$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/Gy9d8iFsiPHwCyCENk9roHmDw_k.roa File: Gy9d8iFsiPHwCyCENk9roHmDw_k.roa (raw, json) Hash identifier: yjCFvdtQSb4mUM2zkfZH/vX5PAuo/yRuf7JV+25eyEg= Subject key identifier: 1B:2F:5D:F2:21:6C:88:F1:F0:0B:20:84:36:4F:6B:A0:79:83:C3:F9 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 35 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/Gy9d8iFsiPHwCyCENk9roHmDw_k.roa Signing time: Sat 01 Mar 2025 01:29:38 +0000 ROA not before: Sat 01 Mar 2025 01:29:38 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 17698 IP address blocks: 49.128.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 1 01:29:38 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=1B2F5DF2216C88F1F00B2084364F6BA07983C3F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:df:0e:bf:64:36:9e:ec:34:86:ce:a8:b5:33: 36:4d:ea:5a:42:64:0d:df:9b:f7:49:40:e2:16:9a: b8:57:1a:b1:12:cc:e3:4e:a3:52:58:4d:45:60:60: 95:56:b6:3f:a0:16:ec:60:fa:77:5c:76:64:f6:b2: 38:55:8a:87:00:51:61:9a:e4:22:4c:e9:7c:52:b9: 9a:61:40:09:94:7c:ba:18:7c:bc:92:a4:a9:8d:5d: 47:57:cf:47:c4:cd:30:dc:3e:f4:5f:83:7f:1c:ce: cc:ea:27:d1:e6:35:38:97:d6:c2:ee:41:49:6b:5b: 78:ac:95:6a:8b:52:82:30:ff:1b:09:ec:c3:be:54: 89:ba:68:73:74:12:5c:e9:8c:b8:01:84:71:e8:01: 46:ac:ab:cd:dd:55:a6:82:1b:ea:b1:2e:67:c3:ed: 9f:34:f1:88:16:a9:11:02:72:ae:15:e5:6a:ff:5e: 4e:ec:ec:44:cf:1a:5b:84:cb:10:cf:3a:93:ec:54: 8a:f5:60:46:c3:f6:26:97:24:05:d2:b2:f8:9c:1e: 58:19:76:c2:8d:ff:5b:36:2b:12:5f:50:08:1a:d0: 48:a1:f5:ae:0f:11:14:1b:a0:5b:c8:84:c4:d4:e6: e7:fe:87:9e:13:2f:4a:d2:34:cd:16:80:30:fb:5a: 81:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2F:5D:F2:21:6C:88:F1:F0:0B:20:84:36:4F:6B:A0:79:83:C3:F9 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/Gy9d8iFsiPHwCyCENk9roHmDw_k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.128.16.0/21 Signature Algorithm: sha256WithRSAEncryption a1:5c:24:ae:67:a7:2d:75:c7:6a:f5:2e:02:61:2f:fc:23:cc: d6:ac:d8:4d:97:0f:1c:88:98:4f:05:76:2e:f3:9c:e6:57:59: 8e:1d:1f:16:49:22:a7:d8:7f:0f:fb:5a:ff:05:7a:fe:db:3b: 03:1c:92:99:f0:b5:32:16:2d:04:30:a5:17:69:ec:a6:08:9e: 1a:65:40:87:65:30:62:90:72:6d:ea:48:5e:a1:60:e6:96:1e: 2a:18:cf:b8:44:c3:b6:a9:91:ac:3e:ad:11:97:8b:5e:f2:b4: 4f:3f:96:19:03:e4:e5:15:da:6c:65:b6:2b:1f:51:dd:ee:7b: 1d:00:09:da:6a:80:0e:a0:19:39:63:cf:04:66:7a:52:ea:57: c5:9d:71:e8:fb:f8:f1:ad:33:c6:6f:01:27:c1:c4:86:1e:1e: 80:d5:d0:54:18:fb:00:54:99:b7:4f:55:7a:61:66:57:d4:eb: 92:79:65:6c:5b:98:d7:e9:52:67:5f:6f:a9:db:bd:98:3c:95: f9:52:ca:c3:c5:c8:51:19:1a:f5:db:81:33:a6:25:b0:9d:7a: 3c:40:c5:8c:99:24:bf:a9:05:79:69:89:bd:67:d1:33:df:cd: e1:ae:41:e5:4a:48:c4:b0:cf:91:45:71:22:2a:4e:9e:ae:b5: 55:7a:59:79 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBNTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI1MDMwMTAx MjkzOFoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMUIyRjVERjIyMTZDODhG MUYwMEIyMDg0MzY0RjZCQTA3OTgzQzNGOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL/fDr9kNp7sNIbOqLUzNk3qWkJkDd+b90lA4haauFcasRLM406j UlhNRWBglVa2P6AW7GD6d1x2ZPayOFWKhwBRYZrkIkzpfFK5mmFACZR8uhh8vJKk qY1dR1fPR8TNMNw+9F+DfxzOzOon0eY1OJfWwu5BSWtbeKyVaotSgjD/Gwnsw75U ibpoc3QSXOmMuAGEcegBRqyrzd1VpoIb6rEuZ8PtnzTxiBapEQJyrhXlav9eTuzs RM8aW4TLEM86k+xUivVgRsP2JpckBdKy+JweWBl2wo3/WzYrEl9QCBrQSKH1rg8R FBugW8iExNTm5/6HnhMvStI0zRaAMPtagRcCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQbL13yIWyI8fALIIQ2T2ugeYPD+TAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL0d5OWQ4aUZzaVBId0N5Q0VOazlyb0htRHdfay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAMxgBAwDQYJKoZIhvcNAQELBQADggEBAKFcJK5npy11x2r1LgJhL/wj zNas2E2XDxyImE8Fdi7znOZXWY4dHxZJIqfYfw/7Wv8Fev7bOwMckpnwtTIWLQQw pRdp7KYInhplQIdlMGKQcm3qSF6hYOaWHioYz7hEw7apkaw+rRGXi17ytE8/lhkD 5OUV2mxltisfUd3uex0ACdpqgA6gGTljzwRmelLqV8Wdcej7+PGtM8ZvASfBxIYe HoDV0FQY+wBUmbdPVXphZlfU65J5ZWxbmNfpUmdfb6nbvZg8lflSysPFyFEZGvXb gTOmJbCdejxAxYyZJL+pBXlpib1n0TPfzeGuQeVKSMSwz5FFcSIqTp6utVV6WXk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:18:31 2025 by rpki-client