$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/OlzwYScI35VcW9y-lvhghrILZqI.roa File: OlzwYScI35VcW9y-lvhghrILZqI.roa (raw, json) Hash identifier: Xd8Wv/CSvS24pjhhSLsbbHZu7wROKXlNDuAfrITe5fU= Subject key identifier: 3A:5C:F0:61:27:08:DF:95:5C:5B:DC:BE:96:F8:60:86:B2:0B:66:A2 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 03D1 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/OlzwYScI35VcW9y-lvhghrILZqI.roa Signing time: Tue 01 Apr 2025 01:28:51 +0000 ROA not before: Tue 01 Apr 2025 01:28:51 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:ea00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 977 (0x3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:28:51 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=3A5CF0612708DF955C5BDCBE96F86086B20B66A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5a:cc:28:03:95:79:7f:64:83:5c:f6:57:05: 44:7e:9a:ca:b4:cd:c1:5a:a0:43:75:51:0d:9e:1c: 89:20:99:de:f7:76:7f:2b:ba:2e:99:62:c6:50:06: 03:12:ed:dc:ed:29:1b:a2:10:58:55:dc:21:62:65: 66:77:df:91:2a:4f:6e:80:7a:45:39:bc:9b:a8:10: 07:b7:e1:c4:e5:54:51:b9:e7:75:47:12:12:89:83: e1:fe:bd:28:26:01:b1:74:d4:96:75:78:ad:79:85: 9f:20:ea:fc:94:94:2b:a6:eb:c3:a4:f6:e3:45:8b: 47:e2:92:b9:5e:ae:9d:4d:e3:b5:fa:f6:e9:60:f3: 36:c1:f9:1d:43:5a:34:42:48:79:7a:59:fd:7f:32: 03:bd:d2:a4:71:a8:f0:a4:3b:d9:26:6b:23:f4:7a: db:0f:3c:c3:a3:ab:30:81:33:2b:f1:d7:38:1e:e9: 68:54:0f:5b:aa:27:24:34:57:b1:53:17:6b:d0:d5: ec:48:6d:10:04:19:2f:e7:1e:40:b6:0e:f2:0a:4c: 27:ae:60:43:a5:ce:2e:40:df:15:fd:53:ff:66:39: 86:22:ff:8c:44:de:eb:c7:c0:db:b3:63:6d:81:bd: cf:41:83:73:5b:cf:2a:8f:40:65:8e:81:47:d2:ac: 7a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:5C:F0:61:27:08:DF:95:5C:5B:DC:BE:96:F8:60:86:B2:0B:66:A2 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/OlzwYScI35VcW9y-lvhghrILZqI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 43:31:2f:97:cf:a5:5e:f8:55:da:22:45:2d:11:54:49:ae:20: 40:0b:e2:5b:30:c9:62:02:db:89:34:bf:2f:30:c8:3a:65:0c: 49:4a:ae:b7:97:36:66:33:2c:1a:19:d2:54:97:03:4d:8f:6a: 58:5c:62:4b:de:99:dd:ec:26:c1:e2:73:41:60:47:21:bb:88: 73:8e:88:38:ec:22:7d:29:fc:cf:ec:64:38:26:d7:a7:97:e6: f5:99:dc:32:7b:b1:a0:ec:dc:8e:e3:bc:60:a0:f8:f1:10:ae: ec:1b:5c:df:ac:cd:aa:98:ee:fa:e4:6a:1d:86:f0:06:47:30: 82:07:88:80:4e:86:de:ce:0a:db:56:43:42:32:4b:66:47:5c: d3:c1:9b:55:a9:9c:9c:c6:4c:3d:1c:2e:7f:c8:c3:5a:0f:d0: d1:37:45:9a:db:2c:71:77:b5:2d:d9:b7:7d:c8:56:63:02:1d: 97:51:45:5c:b9:ce:26:28:7b:dd:03:df:f8:45:3c:ad:31:93: 87:24:da:5f:b6:b3:51:68:38:88:e7:c5:08:ca:2a:17:c4:91: 84:bb:cd:d3:07:14:5e:e2:61:24:f2:ea:93:60:eb:57:b5:dd: cb:62:e7:a9:1d:ee:6a:8b:9e:4c:7f:b8:a0:1e:90:fb:f1:49: 59:66:e2:a2 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICA9EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTI4NTFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNBNUNGMDYxMjcwOERG OTU1QzVCRENCRTk2Rjg2MDg2QjIwQjY2QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdWswoA5V5f2SDXPZXBUR+msq0zcFaoEN1UQ2eHIkgmd73dn8r ui6ZYsZQBgMS7dztKRuiEFhV3CFiZWZ335EqT26AekU5vJuoEAe34cTlVFG553VH EhKJg+H+vSgmAbF01JZ1eK15hZ8g6vyUlCum68Ok9uNFi0fikrlerp1N47X69ulg 8zbB+R1DWjRCSHl6Wf1/MgO90qRxqPCkO9kmayP0etsPPMOjqzCBMyvx1zge6WhU D1uqJyQ0V7FTF2vQ1exIbRAEGS/nHkC2DvIKTCeuYEOlzi5A3xX9U/9mOYYi/4xE 3uvHwNuzY22Bvc9Bg3NbzyqPQGWOgUfSrHobAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUOlzwYScI35VcW9y+lvhghrILZqIwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9PbHp3WVNjSTM1VmNXOXktbHZoZ2hySUxacUku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa+owDQYJKoZIhvcNAQELBQADggEBAEMxL5fPpV74VdoiRS0R VEmuIEAL4lswyWIC24k0vy8wyDplDElKrreXNmYzLBoZ0lSXA02PalhcYkvemd3s JsHic0FgRyG7iHOOiDjsIn0p/M/sZDgm16eX5vWZ3DJ7saDs3I7jvGCg+PEQruwb XN+szaqY7vrkah2G8AZHMIIHiIBOht7OCttWQ0IyS2ZHXNPBm1WpnJzGTD0cLn/I w1oP0NE3RZrbLHF3tS3Zt33IVmMCHZdRRVy5ziYoe90D3/hFPK0xk4ck2l+2s1Fo OIjnxQjKKhfEkYS7zdMHFF7iYSTy6pNg61e13cti56kd7mqLnkx/uKAekPvxSVlm 4qI= -----END CERTIFICATE-----Generated at Mon Apr 7 08:08:41 2025 by rpki-client