$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/T17wocuxhzy6Z91Yl0Mw1uhe_GI.roa File: T17wocuxhzy6Z91Yl0Mw1uhe_GI.roa (raw, json) Hash identifier: 4KLRy+NT3X9UMLmQUH+dvAo3eARtpaFX8/HurDKDuTI= Subject key identifier: 4F:5E:F0:A1:CB:B1:87:3C:BA:67:DD:58:97:43:30:D6:E8:5E:FC:62 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 03C5 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/T17wocuxhzy6Z91Yl0Mw1uhe_GI.roa Signing time: Tue 01 Apr 2025 01:28:47 +0000 ROA not before: Tue 01 Apr 2025 01:28:47 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:6900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 965 (0x3c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:28:47 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=4F5EF0A1CBB1873CBA67DD58974330D6E85EFC62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:47:ce:4d:6c:a8:dd:5f:31:bf:26:7c:4b:61: 8b:2a:ce:03:a8:22:e2:dd:b9:ac:bd:c0:9e:91:54: 3c:f9:de:8a:8a:b1:61:b7:7c:17:65:43:c2:2b:16: db:f9:dc:7b:38:cd:62:7e:5f:ef:27:5a:55:73:a9: 10:cc:75:16:5e:ea:f0:b0:50:54:27:3b:4c:2b:46: 36:99:66:7c:5c:cd:52:16:5c:33:53:fb:ce:49:1a: bf:2e:b5:b9:d6:ba:da:c2:10:94:fc:03:78:ee:e7: a1:28:bb:9c:13:93:16:25:0f:5d:c7:d2:03:17:7b: 9e:5a:f1:bb:bd:90:fa:20:a3:d8:38:b7:23:af:7a: 4e:31:b4:6a:c6:09:df:99:56:74:7a:ad:bf:9a:40: 9f:4d:ed:7f:d6:9f:7b:70:9e:e5:0b:ba:11:ea:f9: 4d:cf:a5:79:3d:59:9b:5f:b3:e6:55:71:87:5b:ea: 88:01:dd:ac:e8:00:13:58:bc:d7:1e:62:b9:fa:fe: 10:27:d1:c7:cc:e0:cc:0d:07:06:12:46:fe:5c:44: 32:08:f0:a9:50:67:4e:ba:19:0f:0a:64:0f:9b:5e: 94:9b:70:90:67:69:b5:06:af:48:74:7c:48:37:35: 2f:5d:01:ac:56:c5:e8:83:29:54:11:83:e4:42:74: 5f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5E:F0:A1:CB:B1:87:3C:BA:67:DD:58:97:43:30:D6:E8:5E:FC:62 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/T17wocuxhzy6Z91Yl0Mw1uhe_GI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:6900::/40 Signature Algorithm: sha256WithRSAEncryption 38:c2:64:75:95:0e:19:b6:f8:c6:f7:43:6e:2a:7d:d2:bc:3d: 85:39:06:ff:b2:c1:d1:7a:fd:70:50:b7:5a:13:aa:5b:1b:1b: b3:fe:02:94:ec:29:82:c4:15:4e:40:a5:71:f5:dc:7a:a1:ba: de:97:28:bd:3a:8a:9a:0e:e7:dd:92:a3:0f:34:1a:d4:75:9f: 12:31:88:50:e8:ee:27:6b:08:a9:09:2a:c2:89:00:e5:19:22: b8:56:82:69:0b:dd:e9:d1:02:cb:d1:75:25:e1:2f:4e:ce:9b: a3:1f:11:3d:6d:49:b8:73:25:c0:63:6c:1b:23:87:0e:6f:0c: 50:8a:0a:02:6a:79:88:58:f5:cd:b2:4f:e2:4e:01:ce:3a:e9: d5:65:2d:28:0c:48:70:23:a1:80:9d:ce:da:0f:69:90:7e:b5: 49:76:af:f7:68:e6:55:38:1d:00:8f:9f:9d:0f:d1:e0:6b:db: a2:69:99:d3:42:b7:3f:1b:61:de:57:c9:f1:ca:b0:cf:2d:30: f0:ee:68:91:72:3f:29:39:43:11:94:20:6b:18:7f:90:e5:7c: 69:c4:bc:94:8c:ac:65:7c:64:10:97:e2:3f:39:aa:55:54:5d: ad:24:b2:19:7b:ae:2e:3a:ee:fe:d7:12:5f:c1:f2:34:73:e5: 2e:58:9c:a0 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICA8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTI4NDdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDRGNUVGMEExQ0JCMTg3 M0NCQTY3REQ1ODk3NDMzMEQ2RTg1RUZDNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyR85NbKjdXzG/JnxLYYsqzgOoIuLduay9wJ6RVDz53oqKsWG3 fBdlQ8IrFtv53Hs4zWJ+X+8nWlVzqRDMdRZe6vCwUFQnO0wrRjaZZnxczVIWXDNT +85JGr8utbnWutrCEJT8A3ju56Eou5wTkxYlD13H0gMXe55a8bu9kPogo9g4tyOv ek4xtGrGCd+ZVnR6rb+aQJ9N7X/Wn3twnuULuhHq+U3PpXk9WZtfs+ZVcYdb6ogB 3azoABNYvNceYrn6/hAn0cfM4MwNBwYSRv5cRDII8KlQZ066GQ8KZA+bXpSbcJBn abUGr0h0fEg3NS9dAaxWxeiDKVQRg+RCdF/hAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUT17wocuxhzy6Z91Yl0Mw1uhe/GIwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9UMTd3b2N1eGh6eTZaOTFZbDBNdzF1aGVfR0ku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa2kwDQYJKoZIhvcNAQELBQADggEBADjCZHWVDhm2+Mb3Q24q fdK8PYU5Bv+ywdF6/XBQt1oTqlsbG7P+ApTsKYLEFU5ApXH13Hqhut6XKL06ipoO 592Sow80GtR1nxIxiFDo7idrCKkJKsKJAOUZIrhWgmkL3enRAsvRdSXhL07Om6Mf ET1tSbhzJcBjbBsjhw5vDFCKCgJqeYhY9c2yT+JOAc466dVlLSgMSHAjoYCdztoP aZB+tUl2r/do5lU4HQCPn50P0eBr26JpmdNCtz8bYd5XyfHKsM8tMPDuaJFyPyk5 QxGUIGsYf5DlfGnEvJSMrGV8ZBCX4j85qlVUXa0kshl7ri467v7XEl/B8jRz5S5Y nKA= -----END CERTIFICATE-----Generated at Mon Apr 7 08:12:03 2025 by rpki-client