$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/I1iV3XdKZR1QnaKaZBz2L-yUw0A.roa File: I1iV3XdKZR1QnaKaZBz2L-yUw0A.roa (raw, json) Hash identifier: PWARAssoUKBX9NtfRp1HBciKEhlP1kd00BTDZDFOlh0= Subject key identifier: 23:58:95:DD:77:4A:65:1D:50:9D:A2:9A:64:1C:F6:2F:EC:94:C3:40 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0406 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/I1iV3XdKZR1QnaKaZBz2L-yUw0A.roa Signing time: Tue 01 Apr 2025 01:32:15 +0000 ROA not before: Tue 01 Apr 2025 01:32:15 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:2f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1030 (0x406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:32:15 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=235895DD774A651D509DA29A641CF62FEC94C340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cb:41:7b:84:89:9b:ca:e5:2e:0d:7b:0b:18: ed:f7:88:dd:b9:fa:25:d9:42:ca:03:c8:27:ca:f9: 26:2d:41:fb:be:14:9e:20:99:53:8a:9a:07:0e:28: 18:ee:3e:fd:9d:39:56:1b:42:b8:a2:b6:fc:59:26: bb:85:06:d3:1a:0c:04:53:b5:b3:1c:0b:52:f0:f6: 15:66:87:ed:b5:c3:2f:e2:a1:bd:d8:dd:95:fe:e5: 18:69:63:98:a2:c0:14:98:ee:ac:dc:02:6b:d5:5c: f4:07:59:d7:e9:6f:4d:46:88:55:d3:a0:a9:c0:73: df:b4:8c:6f:80:a7:40:c2:03:19:58:81:02:9d:86: b4:3f:18:c9:fa:fa:ec:23:f0:45:0a:85:46:29:85: b9:b0:f8:ac:a8:c3:10:a8:88:94:16:e8:01:a9:6c: 74:b6:23:b0:86:30:0d:cf:1b:17:be:fc:40:e3:55: df:28:0b:95:cf:91:28:bd:f8:23:c9:f8:c0:a2:0d: dc:14:fd:1a:29:23:a7:df:ee:08:fa:cd:4d:5c:a3: 7a:29:2a:b7:30:f6:f7:33:8c:ab:89:ec:a6:d8:ef: 71:85:c4:ea:59:30:c1:e7:5d:00:20:a3:1e:e1:7c: f4:30:a5:b4:92:ba:4a:7f:82:4a:0c:b8:67:8d:47: 09:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:58:95:DD:77:4A:65:1D:50:9D:A2:9A:64:1C:F6:2F:EC:94:C3:40 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/I1iV3XdKZR1QnaKaZBz2L-yUw0A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:2f00::/40 Signature Algorithm: sha256WithRSAEncryption 53:15:d2:e6:42:7c:02:b5:6a:d4:dc:c0:83:9f:22:b2:8b:5b: f1:c5:d4:21:eb:02:78:0d:19:7e:6a:b2:d8:c2:9a:c5:6c:bb: 3b:47:e1:2b:59:23:ef:e5:a7:9b:dd:2a:61:e4:4b:0f:c5:23: 70:6a:77:e0:8e:cf:b6:90:1a:7d:ee:1c:38:eb:1c:fd:32:5e: fb:12:0c:71:9c:b3:8d:43:dd:d4:f2:97:29:e2:5a:e8:b4:6e: 04:4a:c2:0b:f7:cd:db:8f:d4:48:fd:c9:6b:f5:dd:e4:e1:6c: 9b:7d:6c:33:f0:6b:66:02:84:1c:d3:76:f8:0a:08:b4:8d:70: 54:1a:58:ff:1e:e7:02:4e:59:f4:7a:f6:b9:51:79:df:54:da: 3f:ba:18:53:01:28:32:4e:69:1a:58:b1:9d:70:ad:09:81:0a: b9:33:23:3b:b7:89:bc:0b:3f:b7:7c:1d:38:9e:5f:17:5d:46: 01:a0:24:3c:72:8c:c5:18:aa:fa:78:7c:45:f1:20:05:ec:ef: b5:9c:46:52:2b:a9:9a:75:a4:87:1f:25:4f:46:55:a6:d8:76: a4:8c:97:66:50:e9:1f:68:92:70:1b:ed:5e:6a:02:ca:8c:d5: f6:3a:ca:6c:95:54:09:5d:d7:49:6c:b6:68:d6:b6:53:9b:5e: e8:90:fe:67 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBAYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTMyMTVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDIzNTg5NURENzc0QTY1 MUQ1MDlEQTI5QTY0MUNGNjJGRUM5NEMzNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuy0F7hImbyuUuDXsLGO33iN25+iXZQsoDyCfK+SYtQfu+FJ4g mVOKmgcOKBjuPv2dOVYbQriitvxZJruFBtMaDARTtbMcC1Lw9hVmh+21wy/iob3Y 3ZX+5RhpY5iiwBSY7qzcAmvVXPQHWdfpb01GiFXToKnAc9+0jG+Ap0DCAxlYgQKd hrQ/GMn6+uwj8EUKhUYphbmw+KyowxCoiJQW6AGpbHS2I7CGMA3PGxe+/EDjVd8o C5XPkSi9+CPJ+MCiDdwU/RopI6ff7gj6zU1co3opKrcw9vczjKuJ7KbY73GFxOpZ MMHnXQAgox7hfPQwpbSSukp/gkoMuGeNRwk9AgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUI1iV3XdKZR1QnaKaZBz2L+yUw0AwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9JMWlWM1hkS1pSMVFuYUthWkJ6MkwteVV3MEEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAay8wDQYJKoZIhvcNAQELBQADggEBAFMV0uZCfAK1atTcwIOf IrKLW/HF1CHrAngNGX5qstjCmsVsuztH4StZI+/lp5vdKmHkSw/FI3Bqd+COz7aQ Gn3uHDjrHP0yXvsSDHGcs41D3dTylyniWui0bgRKwgv3zduP1Ej9yWv13eThbJt9 bDPwa2YChBzTdvgKCLSNcFQaWP8e5wJOWfR69rlRed9U2j+6GFMBKDJOaRpYsZ1w rQmBCrkzIzu3ibwLP7d8HTieXxddRgGgJDxyjMUYqvp4fEXxIAXs77WcRlIrqZp1 pIcfJU9GVabYdqSMl2ZQ6R9oknAb7V5qAsqM1fY6ymyVVAld10lstmjWtlObXuiQ /mc= -----END CERTIFICATE-----Generated at Mon Apr 7 08:08:53 2025 by rpki-client