$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/4s6tz-LHVGR7nnHo4CVz9oyM6tQ.roa File: 4s6tz-LHVGR7nnHo4CVz9oyM6tQ.roa (raw, json) Hash identifier: FKrdKTxj+9hpKQYcm/w8cA7CXHsy9/H2SVWPTkNy79k= Subject key identifier: E2:CE:AD:CF:E2:C7:54:64:7B:9E:71:E8:E0:25:73:F6:8C:8C:EA:D4 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0440 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/4s6tz-LHVGR7nnHo4CVz9oyM6tQ.roa Signing time: Tue 01 Apr 2025 01:39:31 +0000 ROA not before: Tue 01 Apr 2025 01:39:31 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:9500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:39:31 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E2CEADCFE2C754647B9E71E8E02573F68C8CEAD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:5f:ba:3d:73:ab:a1:ee:ed:cf:ba:b4:5a: 26:6a:e5:39:e5:ee:8b:14:e9:89:d3:97:b1:5c:26: db:98:1c:29:64:b2:7f:30:9a:4a:b9:f8:e8:be:4d: a2:68:9b:32:76:1b:0e:ae:22:e3:99:3e:c1:46:48: b3:eb:0b:cf:ea:68:c4:df:19:73:db:4a:d7:9f:c3: 17:6f:58:38:60:67:36:33:a9:fd:9f:49:b5:0f:23: b8:18:00:b5:6c:76:f8:7d:5a:23:fa:13:66:6a:ba: 1b:f4:7b:6d:8a:54:53:e2:0b:14:e5:0e:d3:ee:8f: 8d:d1:f2:f9:24:4f:3f:71:3a:3b:9e:32:ec:e7:23: 42:ba:67:c4:8e:5d:a3:a1:40:21:01:38:44:3e:4e: 59:68:1e:0c:f2:f3:10:50:b3:82:d5:06:c2:57:06: 57:38:72:6f:90:b5:f9:7a:97:66:5c:06:3c:e4:e3: 00:49:0f:62:a4:ac:49:90:43:4d:aa:76:e4:ee:11: 55:77:0b:7c:20:30:33:59:a6:27:c7:1d:5d:7b:8f: bd:94:0f:95:9b:f0:e8:d3:6b:73:f5:d8:f3:ee:cc: f2:64:e6:71:e5:0c:80:c7:28:c5:d8:70:a9:88:96: f7:62:d4:86:94:21:a0:3e:ed:2a:70:e8:1f:92:3c: df:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CE:AD:CF:E2:C7:54:64:7B:9E:71:E8:E0:25:73:F6:8C:8C:EA:D4 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/4s6tz-LHVGR7nnHo4CVz9oyM6tQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:9500::/40 Signature Algorithm: sha256WithRSAEncryption 5e:fd:e1:60:32:14:23:2e:d6:10:7f:59:39:ee:09:6e:29:17: 1c:f3:cb:11:d2:7b:66:bd:10:78:0c:8e:6e:0c:40:83:c2:1b: fb:f5:9f:ff:a5:87:80:24:89:1b:53:be:9d:44:56:b9:d6:16: 77:5c:65:5e:88:06:0c:a1:ea:ee:41:f7:bc:0c:37:b0:e1:56: 63:36:ca:d0:19:bc:f3:13:8d:50:aa:35:8c:bc:aa:ba:5b:6a: c6:64:0a:f8:6e:81:83:c1:cc:a2:17:94:bf:a0:e9:09:12:e4: 2a:79:a2:b3:85:a9:38:13:91:6b:76:b9:5c:60:86:19:37:5b: 32:36:30:e7:9d:5c:47:7d:01:3d:48:34:ff:df:5b:27:a4:0f: 3c:23:9a:3d:51:83:d6:1a:c2:fc:5d:9d:37:af:55:54:b9:a7: 71:02:a4:78:8c:e1:40:d9:11:da:2a:21:0c:0f:cd:db:2f:f8: 2a:52:01:95:79:02:5a:65:58:33:a2:3a:88:3a:ec:39:46:0a: 56:ab:84:69:46:02:8a:b8:7a:fd:78:cc:79:21:0a:1e:6e:e9: bc:c2:40:f9:aa:5f:16:fb:33:ed:a0:ce:d5:73:62:9d:5b:66: 1e:59:4c:3f:d5:2f:b4:62:76:03:5f:48:a1:c2:92:86:4e:eb: c8:98:c9:25 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTM5MzFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUyQ0VBRENGRTJDNzU0 NjQ3QjlFNzFFOEUwMjU3M0Y2OEM4Q0VBRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6KV+6PXOroe7tz7q0WiZq5Tnl7osU6YnTl7FcJtuYHClksn8w mkq5+Oi+TaJomzJ2Gw6uIuOZPsFGSLPrC8/qaMTfGXPbStefwxdvWDhgZzYzqf2f SbUPI7gYALVsdvh9WiP6E2Zquhv0e22KVFPiCxTlDtPuj43R8vkkTz9xOjueMuzn I0K6Z8SOXaOhQCEBOEQ+TlloHgzy8xBQs4LVBsJXBlc4cm+Qtfl6l2ZcBjzk4wBJ D2KkrEmQQ02qduTuEVV3C3wgMDNZpifHHV17j72UD5Wb8OjTa3P12PPuzPJk5nHl DIDHKMXYcKmIlvdi1IaUIaA+7Spw6B+SPN+9AgMBAAGjggIqMIICJjAdBgNVHQ4E FgQU4s6tz+LHVGR7nnHo4CVz9oyM6tQwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS80czZ0ei1MSFZHUjdubkhvNENWejlveU02dFEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa5UwDQYJKoZIhvcNAQELBQADggEBAF794WAyFCMu1hB/WTnu CW4pFxzzyxHSe2a9EHgMjm4MQIPCG/v1n/+lh4AkiRtTvp1EVrnWFndcZV6IBgyh 6u5B97wMN7DhVmM2ytAZvPMTjVCqNYy8qrpbasZkCvhugYPBzKIXlL+g6QkS5Cp5 orOFqTgTkWt2uVxghhk3WzI2MOedXEd9AT1INP/fWyekDzwjmj1Rg9YawvxdnTev VVS5p3ECpHiM4UDZEdoqIQwPzdsv+CpSAZV5AlplWDOiOog67DlGClarhGlGAoq4 ev14zHkhCh5u6bzCQPmqXxb7M+2gztVzYp1bZh5ZTD/VL7RidgNfSKHCkoZO68iY ySU= -----END CERTIFICATE-----Generated at Mon Apr 7 08:11:43 2025 by rpki-client