$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30068/D9yusi-jfjSa0I2SDoKZG3xJxcc.roa File: D9yusi-jfjSa0I2SDoKZG3xJxcc.roa (raw, json) Hash identifier: H/ykZLjgrpoOz9p9vzug67FDUdGVoi3nwRPBS6vSsLU= Subject key identifier: 0F:DC:AE:B2:2F:A3:7E:34:9A:D0:8D:92:0E:82:99:1B:7C:49:C5:C7 Certificate issuer: /CN=CA02C5C43C00F14E85B5B07599EDD267C5A2B4D2 Certificate serial: 65 Authority key identifier: CA:02:C5:C4:3C:00:F1:4E:85:B5:B0:75:99:ED:D2:67:C5:A2:B4:D2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ygLFxDwA8U6FtbB1me3SZ8WitNI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/D9yusi-jfjSa0I2SDoKZG3xJxcc.roa Signing time: Fri 31 Jan 2025 01:32:23 +0000 ROA not before: Fri 31 Jan 2025 01:32:23 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9370 IP address blocks: 2001:e46::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/ygLFxDwA8U6FtbB1me3SZ8WitNI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/ygLFxDwA8U6FtbB1me3SZ8WitNI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ygLFxDwA8U6FtbB1me3SZ8WitNI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA02C5C43C00F14E85B5B07599EDD267C5A2B4D2 Validity Not Before: Jan 31 01:32:23 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=0FDCAEB22FA37E349AD08D920E82991B7C49C5C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c8:65:40:0c:88:9f:df:ce:ad:f6:c3:5a:d2: f5:b9:47:c0:48:e2:ff:22:04:9b:e5:2b:03:46:d9: 98:0c:eb:ad:a9:b1:e9:53:dc:19:ea:14:57:6c:5e: bc:63:26:34:2d:a6:bd:ca:6d:d9:21:b3:ab:7d:ea: 08:f6:41:6e:bb:5e:eb:75:24:89:53:82:ca:bb:73: 08:65:7c:af:8f:7e:b7:9a:ef:ca:fd:16:f7:c5:3f: c5:48:78:06:46:a7:8d:0d:d7:58:fd:d9:87:df:62: a8:64:3f:52:98:4c:d5:c1:85:88:ba:9a:4f:e6:66: 2f:1d:eb:18:40:46:e3:63:af:bb:95:8d:83:9b:ab: 3b:6d:db:52:de:09:dc:34:8e:e4:d9:e3:86:99:8d: e2:af:7e:07:c7:58:c5:3c:3e:c1:29:98:99:5c:d8: 73:d6:84:e9:f5:45:a7:5e:22:46:46:4d:50:ef:5d: ea:9f:56:bd:18:6d:75:4b:78:08:f0:31:8c:f8:b9: ed:b6:c5:59:53:44:f4:93:8a:bc:78:75:e4:b4:90: cb:ab:c6:2c:46:f4:38:a1:a7:0f:b2:1a:50:7e:a5: b0:56:cb:4d:84:8b:9e:20:62:13:1b:91:1a:a8:de: ca:e0:15:3a:fa:0f:7e:70:ca:5c:73:42:08:49:1a: a5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:DC:AE:B2:2F:A3:7E:34:9A:D0:8D:92:0E:82:99:1B:7C:49:C5:C7 X509v3 Authority Key Identifier: keyid:CA:02:C5:C4:3C:00:F1:4E:85:B5:B0:75:99:ED:D2:67:C5:A2:B4:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/ygLFxDwA8U6FtbB1me3SZ8WitNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ygLFxDwA8U6FtbB1me3SZ8WitNI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/D9yusi-jfjSa0I2SDoKZG3xJxcc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:e46::/32 Signature Algorithm: sha256WithRSAEncryption 72:fc:00:bf:cc:38:42:fc:7e:83:40:38:33:e6:21:39:53:96: c9:8d:a0:80:18:24:57:a5:b8:a2:eb:64:52:24:d1:f6:94:17: ef:7a:e8:db:39:3e:66:00:fd:2f:31:21:18:6d:b9:e3:7f:4a: bf:52:58:07:d5:fd:e7:ab:ac:be:36:b1:15:88:fb:68:fa:f3: 08:a4:7a:7b:09:b8:88:b6:d1:78:10:a7:ff:24:f1:0a:47:11: 10:ef:7a:78:28:1e:ef:1d:0c:cd:0b:d2:2f:a0:87:e6:95:ec: 57:c9:b8:3b:36:ab:d9:17:95:ab:3a:92:9f:a0:01:a1:77:22: ac:67:48:40:00:25:81:c5:f1:34:e2:42:33:ff:85:8a:b1:d6: b3:a5:e5:7c:09:e9:be:40:52:4d:7d:c7:67:93:2f:c9:b0:08: 19:65:8a:96:e1:6e:40:5e:62:ae:95:d2:6f:cb:ec:92:54:98: 56:77:5a:5f:c0:9c:f5:c0:9d:a6:88:3f:48:f2:4d:d0:07:2d: 66:af:04:d9:8a:87:68:6c:88:b9:c1:ba:6e:fb:ab:cf:ed:58: 63:c7:0d:69:c4:bb:0f:8d:71:ca:96:27:93:8e:56:83:30:f5: cc:17:43:1e:83:47:5f:f8:4a:d4:98:c3:21:20:2d:22:77:b5: 45:f1:4d:0b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQTAy QzVDNDNDMDBGMTRFODVCNUIwNzU5OUVERDI2N0M1QTJCNEQyMB4XDTI1MDEzMTAx MzIyM1oXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoMEZEQ0FFQjIyRkEzN0Uz NDlBRDA4RDkyMEU4Mjk5MUI3QzQ5QzVDNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALbIZUAMiJ/fzq32w1rS9blHwEji/yIEm+UrA0bZmAzrramx6VPc GeoUV2xevGMmNC2mvcpt2SGzq33qCPZBbrte63UkiVOCyrtzCGV8r49+t5rvyv0W 98U/xUh4BkanjQ3XWP3Zh99iqGQ/UphM1cGFiLqaT+ZmLx3rGEBG42Ovu5WNg5ur O23bUt4J3DSO5NnjhpmN4q9+B8dYxTw+wSmYmVzYc9aE6fVFp14iRkZNUO9d6p9W vRhtdUt4CPAxjPi57bbFWVNE9JOKvHh15LSQy6vGLEb0OKGnD7IaUH6lsFbLTYSL niBiExuRGqjeyuAVOvoPfnDKXHNCCEkapesCAwEAAaOCAikwggIlMB0GA1UdDgQW BBQP3K6yL6N+NJrQjZIOgpkbfEnFxzAfBgNVHSMEGDAWgBTKAsXEPADxToW1sHWZ 7dJnxaK00jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwNjgveWdMRnhEd0E4VTZGdGJCMW1lM1NaOFdpdE5JLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAveWdMRnhEd0E4VTZGdGJCMW1lM1Na OFdpdE5JLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMDY4L0Q5eXVzaS1qZmpTYTBJMlNEb0taRzN4SnhjYy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAgAQ5GMA0GCSqGSIb3DQEBCwUAA4IBAQBy/AC/zDhC/H6DQDgz5iE5 U5bJjaCAGCRXpbii62RSJNH2lBfveujbOT5mAP0vMSEYbbnjf0q/UlgH1f3nq6y+ NrEViPto+vMIpHp7CbiIttF4EKf/JPEKRxEQ73p4KB7vHQzNC9IvoIfmlexXybg7 NqvZF5WrOpKfoAGhdyKsZ0hAACWBxfE04kIz/4WKsdazpeV8Cem+QFJNfcdnky/J sAgZZYqW4W5AXmKuldJvy+ySVJhWd1pfwJz1wJ2miD9I8k3QBy1mrwTZiodobIi5 wbpu+6vP7Vhjxw1pxLsPjXHKlieTjlaDMPXMF0Meg0df+ErUmMMhIC0id7VF8U0L -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:39 2025 by rpki-client