$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30068/AWMfoI_1ZMlQELV0bjiiN7bjqHY.roa File: AWMfoI_1ZMlQELV0bjiiN7bjqHY.roa (raw, json) Hash identifier: 0d337jeiSwaBmV8W4L4t7A5BXcMFK7sYi/HJIABg1co= Subject key identifier: 01:63:1F:A0:8F:F5:64:C9:50:10:B5:74:6E:38:A2:37:B6:E3:A8:76 Certificate issuer: /CN=CA02C5C43C00F14E85B5B07599EDD267C5A2B4D2 Certificate serial: 69 Authority key identifier: CA:02:C5:C4:3C:00:F1:4E:85:B5:B0:75:99:ED:D2:67:C5:A2:B4:D2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ygLFxDwA8U6FtbB1me3SZ8WitNI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/AWMfoI_1ZMlQELV0bjiiN7bjqHY.roa Signing time: Fri 31 Jan 2025 01:32:26 +0000 ROA not before: Fri 31 Jan 2025 01:32:26 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9370 IP address blocks: 2406:ce00::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/ygLFxDwA8U6FtbB1me3SZ8WitNI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/ygLFxDwA8U6FtbB1me3SZ8WitNI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ygLFxDwA8U6FtbB1me3SZ8WitNI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA02C5C43C00F14E85B5B07599EDD267C5A2B4D2 Validity Not Before: Jan 31 01:32:26 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=01631FA08FF564C95010B5746E38A237B6E3A876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:83:79:c3:ef:10:e7:19:41:0d:45:b6:e1:d1: 18:65:4c:2a:44:1a:b6:35:dc:08:67:e6:89:ce:dd: d4:74:a1:a5:f3:05:0d:0e:4e:2d:c5:a6:26:04:43: 8f:9e:3d:25:4b:55:f6:0f:cf:d7:0a:b3:8b:24:dd: 90:14:56:a6:87:4f:b9:0b:68:2f:b4:b1:e8:fe:77: 19:b6:fa:a7:a9:e6:79:a2:60:86:82:25:f2:6f:ac: 39:86:11:d5:6c:26:d3:56:9b:3c:3b:01:4e:80:24: 14:10:3b:49:c3:2d:8c:1b:05:f1:2d:99:fd:d0:26: 2e:e0:c4:7e:c3:2a:26:fd:5a:da:69:32:a1:85:d2: bb:65:fa:5a:fd:53:ca:d7:77:ea:e9:4d:bd:e4:ac: 70:8a:13:68:b4:93:aa:6d:6c:08:91:6d:98:95:89: 49:30:0c:1d:74:ad:3c:32:cb:27:ae:9a:fa:9a:80: 4c:1b:f8:71:bc:81:ae:cf:ee:33:5e:7d:a9:38:20: c0:9d:d1:8f:39:e3:ba:2c:c1:ed:ed:fb:cc:43:ca: d2:3e:e9:58:ee:7d:63:60:ec:e8:bc:59:76:f9:d7: 58:5c:c3:ff:bc:b1:40:ed:23:97:6e:69:c9:2c:5a: 5e:14:82:14:87:6b:5a:15:c0:78:6a:cd:f1:1c:be: 5c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:63:1F:A0:8F:F5:64:C9:50:10:B5:74:6E:38:A2:37:B6:E3:A8:76 X509v3 Authority Key Identifier: keyid:CA:02:C5:C4:3C:00:F1:4E:85:B5:B0:75:99:ED:D2:67:C5:A2:B4:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/ygLFxDwA8U6FtbB1me3SZ8WitNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ygLFxDwA8U6FtbB1me3SZ8WitNI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/AWMfoI_1ZMlQELV0bjiiN7bjqHY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:ce00::/29 Signature Algorithm: sha256WithRSAEncryption 9a:27:6a:bf:97:af:0c:67:50:98:26:6f:f5:e3:a7:d9:af:34: ba:44:8d:a3:9b:7c:9d:65:d7:7c:6b:7e:8c:63:3f:19:02:c3: cf:4e:38:b3:6f:b7:af:2f:87:45:cc:44:ca:24:97:30:b3:7e: a2:16:d5:b5:55:f2:52:ad:79:ac:32:5b:83:57:af:bf:6b:3c: 76:91:41:6e:4b:c8:93:08:88:37:e9:36:62:6f:63:1b:18:01: f9:3c:4d:8e:bd:c1:cd:03:fa:ed:0a:c2:4b:7d:f7:66:26:3f: a5:06:93:73:f2:b0:20:64:61:80:5a:45:8c:7b:be:c3:0b:7c: a6:d7:23:0b:6d:e5:32:f7:f5:88:18:6e:99:6f:e4:e6:19:a4: 6a:33:7f:c0:da:1e:6b:eb:d7:81:1f:47:ac:ed:b8:4a:79:b0: 83:72:5a:b0:ef:88:1f:e0:57:4d:f4:8b:65:b5:5c:37:2b:9d: a9:6b:12:ca:d6:96:bd:11:bd:92:43:f1:18:93:cc:8a:6b:71: f1:50:d6:32:24:51:c6:bf:d5:46:58:25:32:7d:a4:e6:52:cd: 03:85:cd:b2:12:70:2c:c8:d3:2b:ed:f8:bd:a1:7c:37:fe:3a: f7:5c:71:9c:6d:1a:54:9a:c6:3f:11:47:3d:6a:5b:a7:2e:0c: 43:44:9d:f1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBaTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQTAy QzVDNDNDMDBGMTRFODVCNUIwNzU5OUVERDI2N0M1QTJCNEQyMB4XDTI1MDEzMTAx MzIyNloXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoMDE2MzFGQTA4RkY1NjRD OTUwMTBCNTc0NkUzOEEyMzdCNkUzQTg3NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOqDecPvEOcZQQ1FtuHRGGVMKkQatjXcCGfmic7d1HShpfMFDQ5O LcWmJgRDj549JUtV9g/P1wqziyTdkBRWpodPuQtoL7Sx6P53Gbb6p6nmeaJghoIl 8m+sOYYR1Wwm01abPDsBToAkFBA7ScMtjBsF8S2Z/dAmLuDEfsMqJv1a2mkyoYXS u2X6Wv1Tytd36ulNveSscIoTaLSTqm1sCJFtmJWJSTAMHXStPDLLJ66a+pqATBv4 cbyBrs/uM159qTggwJ3RjznjuizB7e37zEPK0j7pWO59Y2Ds6LxZdvnXWFzD/7yx QO0jl25pySxaXhSCFIdrWhXAeGrN8Ry+XBUCAwEAAaOCAikwggIlMB0GA1UdDgQW BBQBYx+gj/VkyVAQtXRuOKI3tuOodjAfBgNVHSMEGDAWgBTKAsXEPADxToW1sHWZ 7dJnxaK00jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwNjgveWdMRnhEd0E4VTZGdGJCMW1lM1NaOFdpdE5JLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAveWdMRnhEd0E4VTZGdGJCMW1lM1Na OFdpdE5JLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMDY4L0FXTWZvSV8xWk1sUUVMVjBiamlpTjdianFIWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQMkBs4AMA0GCSqGSIb3DQEBCwUAA4IBAQCaJ2q/l68MZ1CYJm/146fZ rzS6RI2jm3ydZdd8a36MYz8ZAsPPTjizb7evL4dFzETKJJcws36iFtW1VfJSrXms MluDV6+/azx2kUFuS8iTCIg36TZib2MbGAH5PE2OvcHNA/rtCsJLffdmJj+lBpNz 8rAgZGGAWkWMe77DC3ym1yMLbeUy9/WIGG6Zb+TmGaRqM3/A2h5r69eBH0es7bhK ebCDclqw74gf4FdN9ItltVw3K52paxLK1pa9Eb2SQ/EYk8yKa3HxUNYyJFHGv9VG WCUyfaTmUs0Dhc2yEnAsyNMr7fi9oXw3/jr3XHGcbRpUmsY/EUc9alunLgxDRJ3x -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:34 2025 by rpki-client