$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/CkWdefNhFPDG46oa-eerTSpOQPc.roa File: CkWdefNhFPDG46oa-eerTSpOQPc.roa (raw, json) Hash identifier: N4QaAShtj05AwPGbkWsFYImOUecFhqnjVpA7pDtVU/0= Subject key identifier: 0A:45:9D:79:F3:61:14:F0:C6:E3:AA:1A:F9:E7:AB:4D:2A:4E:40:F7 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0464 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/CkWdefNhFPDG46oa-eerTSpOQPc.roa Signing time: Tue 01 Apr 2025 01:42:30 +0000 ROA not before: Tue 01 Apr 2025 01:42:30 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:14:e90::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:42:30 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=0A459D79F36114F0C6E3AA1AF9E7AB4D2A4E40F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:bd:9b:f6:dc:b4:ef:79:9f:51:ac:3b:1a: 15:f3:56:63:27:d4:c7:82:53:c2:89:c2:4a:82:63: cb:c1:b6:38:7a:65:5b:ff:4a:e8:37:a5:dd:ee:b0: c2:77:35:2a:10:f3:5f:69:c1:7a:60:f8:b4:91:38: 77:8d:71:f8:c1:71:70:3f:bb:cb:df:cd:0b:0c:85: 6d:5d:2d:8e:63:55:ea:9f:e4:4f:1a:3d:04:73:db: 2a:f1:b3:8a:89:1d:12:c9:54:92:81:b7:37:9a:06: 20:6c:68:37:65:64:da:89:17:71:c1:71:8d:70:4d: 3f:ea:c4:b4:b1:77:60:d3:4d:e5:42:6d:0b:f6:a7: 8b:f3:43:72:bd:ce:cc:2b:f5:c3:4d:55:c6:5b:61: 39:b8:ab:24:85:21:89:4d:5a:30:77:4d:35:c7:fc: c8:df:53:63:9f:46:8f:05:95:f7:88:9f:d1:71:c6: a1:30:71:d4:df:41:e0:b4:82:24:dc:df:ee:7c:ec: 71:1f:2a:66:08:23:69:68:8d:12:1c:2b:50:6e:ea: a8:9d:f1:41:e9:99:ef:c0:ee:21:e7:ce:47:6b:55: 5d:1b:a1:0d:d3:82:b2:5a:18:36:f2:a4:b3:fc:91: b9:7a:08:1f:64:b1:95:34:37:69:c5:12:5c:60:7c: 90:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:45:9D:79:F3:61:14:F0:C6:E3:AA:1A:F9:E7:AB:4D:2A:4E:40:F7 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/CkWdefNhFPDG46oa-eerTSpOQPc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:14:e90::/44 Signature Algorithm: sha256WithRSAEncryption c6:73:0e:c4:b1:1d:f8:6f:83:2e:95:31:9c:36:8f:ab:60:06: 3e:a1:f0:fb:71:4e:61:6d:7e:da:62:be:e5:f9:de:49:9a:49: 0e:d0:98:9c:79:bb:db:35:49:57:ae:c6:ea:57:d8:f0:4d:c6: 9b:1e:06:cb:45:8b:54:c1:8b:83:b5:f3:8b:68:4b:cd:ae:4d: 71:38:06:c2:bb:20:e4:cc:06:d3:ce:fc:29:72:3f:9c:f3:5a: 5b:fb:f2:bc:47:ed:2a:87:df:9b:26:a9:37:2e:bf:f0:38:25: 51:83:a6:ec:eb:06:ef:1e:13:29:07:93:af:10:f9:6c:91:6b: 89:92:98:3e:bd:1e:ca:a4:c4:d6:7d:fd:b0:70:21:89:42:e7: 57:7b:37:c2:5c:f4:51:8f:0a:f7:04:c3:58:e7:c0:0b:38:d7: f6:85:db:11:e8:2a:56:41:8d:32:44:a4:c4:a1:e1:38:5f:95: 04:9f:f8:90:be:97:55:d0:e6:f6:47:26:0c:c4:92:2f:28:e4: c4:e9:4f:52:f7:d5:ad:e9:a8:d6:04:85:61:fd:e3:e7:98:14: fc:aa:7c:73:b3:10:cc:7a:2e:3e:30:72:c7:d5:d2:71:45:56: 00:c6:72:9f:57:90:28:1c:02:ec:86:a8:fc:9e:9a:d5:28:d4: b5:48:b1:1c -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTQyMzBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBBNDU5RDc5RjM2MTE0 RjBDNkUzQUExQUY5RTdBQjREMkE0RTQwRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4072b9ty073mfUaw7GhXzVmMn1MeCU8KJwkqCY8vBtjh6ZVv/ Sug3pd3usMJ3NSoQ819pwXpg+LSROHeNcfjBcXA/u8vfzQsMhW1dLY5jVeqf5E8a PQRz2yrxs4qJHRLJVJKBtzeaBiBsaDdlZNqJF3HBcY1wTT/qxLSxd2DTTeVCbQv2 p4vzQ3K9zswr9cNNVcZbYTm4qySFIYlNWjB3TTXH/MjfU2OfRo8FlfeIn9FxxqEw cdTfQeC0giTc3+587HEfKmYII2lojRIcK1Bu6qid8UHpme/A7iHnzkdrVV0boQ3T grJaGDbypLP8kbl6CB9ksZU0N2nFElxgfJD5AgMBAAGjggIrMIICJzAdBgNVHQ4E FgQUCkWdefNhFPDG46oa+eerTSpOQPcwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9Da1dkZWZOaEZQREc0Nm9hLWVlclRTcE9RUGMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAoAFA6QMA0GCSqGSIb3DQEBCwUAA4IBAQDGcw7EsR34b4MulTGc No+rYAY+ofD7cU5hbX7aYr7l+d5JmkkO0JicebvbNUlXrsbqV9jwTcabHgbLRYtU wYuDtfOLaEvNrk1xOAbCuyDkzAbTzvwpcj+c81pb+/K8R+0qh9+bJqk3Lr/wOCVR g6bs6wbvHhMpB5OvEPlskWuJkpg+vR7KpMTWff2wcCGJQudXezfCXPRRjwr3BMNY 58ALONf2hdsR6CpWQY0yRKTEoeE4X5UEn/iQvpdV0Ob2RyYMxJIvKOTE6U9S99Wt 6ajWBIVh/ePnmBT8qnxzsxDMei4+MHLH1dJxRVYAxnKfV5AoHALshqj8nprVKNS1 SLEc -----END CERTIFICATE-----Generated at Mon Apr 7 07:59:56 2025 by rpki-client