$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/QbEwOHcKO-5k7lSGQYzhPp4NqWw.roa File: QbEwOHcKO-5k7lSGQYzhPp4NqWw.roa (raw, json) Hash identifier: fuXK4icxH14H/DDndjwptV2RhK33uCl5WtiGLXPyUXs= Subject key identifier: 41:B1:30:38:77:0A:3B:EE:64:EE:54:86:41:8C:E1:3E:9E:0D:A9:6C Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 03C0 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/QbEwOHcKO-5k7lSGQYzhPp4NqWw.roa Signing time: Thu 06 Mar 2025 06:46:23 +0000 ROA not before: Thu 06 Mar 2025 06:46:23 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:7f:c002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 960 (0x3c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Mar 6 06:46:23 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=41B13038770A3BEE64EE5486418CE13E9E0DA96C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4c:5c:9a:8e:25:84:59:64:fe:1b:3d:b5:1d: 03:14:37:b6:e0:6c:b3:ea:f6:49:99:b4:0b:30:bf: a7:81:bb:d2:6f:12:9e:fb:7c:cd:af:da:25:4f:57: ca:e7:35:c1:7b:aa:f8:90:1f:3e:58:05:b1:a0:5f: db:26:35:ca:64:1c:4f:c3:40:f0:01:27:5d:91:fd: 0c:a6:f6:bd:ea:68:9e:95:d5:51:85:da:a9:d6:ea: 9a:b2:be:71:78:d6:32:2b:b1:5f:42:6a:d9:69:f3: 44:a9:21:6a:1c:f5:2e:d2:02:0e:6e:8d:8b:47:05: 65:a9:5e:08:fb:a7:c3:a7:41:2e:5b:1e:d3:4b:08: 90:4e:99:1c:c2:9b:aa:80:9d:98:87:a0:14:94:29: 80:56:f7:15:73:0f:98:42:29:64:4d:93:21:91:0e: 81:86:55:20:ea:60:14:ae:f4:fa:e6:15:3c:28:74: f9:35:f6:31:6b:18:6a:6e:60:b4:04:9b:60:8b:a0: a5:47:3e:37:48:e3:9e:4e:d7:a9:3f:ac:30:fd:33: b7:1d:18:de:c1:d7:0a:59:7d:a5:85:41:77:25:d8: 73:3c:4b:a4:66:d3:71:8a:53:8c:91:e1:51:99:37: a5:2d:d3:4c:9f:96:11:b0:b1:80:bd:81:54:7f:64: 4e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B1:30:38:77:0A:3B:EE:64:EE:54:86:41:8C:E1:3E:9E:0D:A9:6C X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/QbEwOHcKO-5k7lSGQYzhPp4NqWw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:7f:c002::/48 Signature Algorithm: sha256WithRSAEncryption 7c:47:c0:03:e2:99:7a:71:6b:93:3f:8b:22:eb:c5:0a:73:80: 8f:3e:a9:53:59:67:3f:ca:ac:fb:e3:8c:c2:bd:0d:b2:a0:e4: 44:ef:6b:a3:3f:da:28:e3:76:8c:c5:c1:fd:2d:8c:5c:98:b2: 4d:97:12:21:c5:c5:0c:35:11:d4:79:04:b2:10:32:9a:d2:46: c1:b3:e4:36:6e:56:fc:70:2f:04:93:4b:16:fd:eb:87:b2:11: 4d:48:2c:aa:79:a0:5c:ee:42:4f:6c:bb:32:6e:1c:b2:bf:44: 00:a2:bd:7c:a0:62:79:fc:d8:6c:2b:95:d0:c9:d6:81:83:59: 0b:70:a5:50:12:bd:9d:c3:2f:06:6d:7a:36:ea:c5:e7:75:52: 83:45:3d:a6:ba:a3:98:b2:3e:24:a1:78:fc:d0:c0:2a:de:b9: ba:a6:80:1a:f4:76:d6:10:18:9a:a9:68:e5:7e:5f:43:44:bf: db:03:ef:b6:df:21:f8:ac:56:c3:5d:43:21:ca:c3:7c:23:25: 4c:e1:19:12:79:05:42:4a:be:18:93:e8:59:7f:0b:bb:88:99: ca:f2:fe:74:56:b7:16:b0:0e:ca:f3:82:3f:56:4f:ae:e1:29: fd:a4:b8:4d:43:d7:b3:8a:80:65:d1:79:f4:e8:00:0f:e0:b9: 58:4b:78:b8 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgICA8AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTAzMDYw NjQ2MjNaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQxQjEzMDM4NzcwQTNC RUU2NEVFNTQ4NjQxOENFMTNFOUUwREE5NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaTFyajiWEWWT+Gz21HQMUN7bgbLPq9kmZtAswv6eBu9JvEp77 fM2v2iVPV8rnNcF7qviQHz5YBbGgX9smNcpkHE/DQPABJ12R/Qym9r3qaJ6V1VGF 2qnW6pqyvnF41jIrsV9Catlp80SpIWoc9S7SAg5ujYtHBWWpXgj7p8OnQS5bHtNL CJBOmRzCm6qAnZiHoBSUKYBW9xVzD5hCKWRNkyGRDoGGVSDqYBSu9PrmFTwodPk1 9jFrGGpuYLQEm2CLoKVHPjdI455O16k/rDD9M7cdGN7B1wpZfaWFQXcl2HM8S6Rm 03GKU4yR4VGZN6Ut00yflhGwsYC9gVR/ZE4/AgMBAAGjggIrMIICJzAdBgNVHQ4E FgQUQbEwOHcKO+5k7lSGQYzhPp4NqWwwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9RYkV3T0hjS08tNWs3bFNHUVl6aFBwNE5xV3cu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAoAf8ACMA0GCSqGSIb3DQEBCwUAA4IBAQB8R8AD4pl6cWuTP4si 68UKc4CPPqlTWWc/yqz744zCvQ2yoORE72ujP9oo43aMxcH9LYxcmLJNlxIhxcUM NRHUeQSyEDKa0kbBs+Q2blb8cC8Ek0sW/euHshFNSCyqeaBc7kJPbLsybhyyv0QA or18oGJ5/NhsK5XQydaBg1kLcKVQEr2dwy8GbXo26sXndVKDRT2muqOYsj4koXj8 0MAq3rm6poAa9HbWEBiaqWjlfl9DRL/bA++23yH4rFbDXUMhysN8IyVM4RkSeQVC Sr4Yk+hZfwu7iJnK8v50VrcWsA7K84I/Vk+u4Sn9pLhNQ9ezioBl0Xn06AAP4LlY S3i4 -----END CERTIFICATE-----Generated at Sat Apr 5 17:41:43 2025 by rpki-client