$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/WWmtD2kTSznsZ2QLqomzGeRkbSY.roa File: WWmtD2kTSznsZ2QLqomzGeRkbSY.roa (raw, json) Hash identifier: ew4gXZhvDH7BdMhnotNEtVjmNpthYAgN6b7vYekcoEU= Subject key identifier: 59:69:AD:0F:69:13:4B:39:EC:67:64:0B:AA:89:B3:19:E4:64:6D:26 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 03C7 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/WWmtD2kTSznsZ2QLqomzGeRkbSY.roa Signing time: Tue 01 Apr 2025 01:28:48 +0000 ROA not before: Tue 01 Apr 2025 01:28:48 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:df00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:28:48 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5969AD0F69134B39EC67640BAA89B319E4646D26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e9:1a:b1:ab:f1:4c:bb:ee:b4:b9:4c:6a:9b: 3a:84:46:71:06:67:b9:96:3e:58:60:f5:5c:cf:a0: 0c:fd:f5:d1:0f:90:22:c3:39:49:d0:1c:c0:84:df: f5:ea:1e:07:6c:ed:95:b1:cd:d5:05:bc:20:77:1e: 57:4a:36:69:d3:bf:44:19:12:5f:4f:b7:5c:61:e2: f9:92:eb:11:92:f6:a2:ff:90:1e:a3:5c:6e:b8:6b: ba:61:6d:43:08:e9:e3:9c:bf:82:83:3e:c1:5d:1d: ac:8f:9f:a9:8a:72:2f:b4:a6:0e:51:78:d1:09:c9: bc:76:6e:c4:ec:57:87:9f:ec:0b:04:dd:0f:5c:ed: 0e:91:b2:12:68:81:38:6a:1c:2b:06:6f:af:fb:64: 24:1c:59:ed:7e:3b:6a:b1:0a:17:56:a2:1c:a4:e7: 39:d5:71:fe:60:9e:ef:0e:b3:76:47:86:07:d1:6d: cd:07:e7:56:84:71:d2:f4:75:01:79:c3:fd:a2:e4: 70:83:4f:2a:a9:6d:aa:13:3c:54:d1:cf:9b:22:a1: be:97:a3:e5:0e:57:04:dc:e5:b5:6f:30:6d:3b:a1: 15:af:2c:d3:e0:47:c1:2e:c3:76:6f:0f:33:4b:64: 76:00:d6:ba:b4:08:23:11:62:92:a3:03:a8:e2:6b: 68:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:69:AD:0F:69:13:4B:39:EC:67:64:0B:AA:89:B3:19:E4:64:6D:26 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/WWmtD2kTSznsZ2QLqomzGeRkbSY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:df00::/40 Signature Algorithm: sha256WithRSAEncryption 46:75:05:89:68:5d:69:4c:f0:4b:74:2f:1c:30:c8:9d:57:5a: 60:b1:da:aa:cf:cd:1f:75:0a:e5:e1:d6:82:73:6f:5d:cb:f7: 5f:0b:0e:a8:bd:45:6f:e9:73:27:f0:54:79:49:9e:53:f4:3a: ae:2d:3a:d1:a0:31:15:37:87:ac:3a:02:9f:6f:8b:1a:41:f9: da:00:a8:c1:2b:5b:cc:91:77:16:55:cb:fd:19:dd:71:ce:61: df:c3:df:e9:42:16:c0:63:53:e3:58:fe:8d:bb:af:2b:f9:c6: 3c:1f:63:eb:58:31:28:ad:02:57:72:16:b6:9b:d2:ec:c8:e4: 58:35:93:6f:ea:3a:8b:a2:63:9f:03:19:05:5e:cf:35:10:ac: 39:03:8e:76:fc:21:34:b5:8d:c2:41:66:f3:f6:5c:be:00:00: b8:d5:48:2b:85:f3:dc:39:7c:73:8d:f2:ef:a1:15:cd:49:d3: b2:b5:37:e8:48:97:6c:0b:68:a1:70:de:16:83:72:bd:8a:4f: d6:92:91:ad:f6:be:a9:14:cc:81:2e:2c:77:3f:ad:bf:2a:58: 0c:ce:25:a2:23:18:0d:05:a5:f1:91:0c:46:9b:2d:53:a4:e9: 6e:5c:89:04:15:c5:0d:9d:a5:1f:00:09:7b:aa:59:3e:85:0e: d5:8b:89:51 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTI4NDhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU5NjlBRDBGNjkxMzRC MzlFQzY3NjQwQkFBODlCMzE5RTQ2NDZEMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx6Rqxq/FMu+60uUxqmzqERnEGZ7mWPlhg9VzPoAz99dEPkCLD OUnQHMCE3/XqHgds7ZWxzdUFvCB3HldKNmnTv0QZEl9Pt1xh4vmS6xGS9qL/kB6j XG64a7phbUMI6eOcv4KDPsFdHayPn6mKci+0pg5ReNEJybx2bsTsV4ef7AsE3Q9c 7Q6RshJogThqHCsGb6/7ZCQcWe1+O2qxChdWohyk5znVcf5gnu8Os3ZHhgfRbc0H 51aEcdL0dQF5w/2i5HCDTyqpbaoTPFTRz5siob6Xo+UOVwTc5bVvMG07oRWvLNPg R8Euw3ZvDzNLZHYA1rq0CCMRYpKjA6jia2hrAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUWWmtD2kTSznsZ2QLqomzGeRkbSYwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9XV210RDJrVFN6bnNaMlFMcW9tekdlUmtiU1ku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa98wDQYJKoZIhvcNAQELBQADggEBAEZ1BYloXWlM8Et0Lxww yJ1XWmCx2qrPzR91CuXh1oJzb13L918LDqi9RW/pcyfwVHlJnlP0Oq4tOtGgMRU3 h6w6Ap9vixpB+doAqMErW8yRdxZVy/0Z3XHOYd/D3+lCFsBjU+NY/o27ryv5xjwf Y+tYMSitAldyFrab0uzI5Fg1k2/qOouiY58DGQVezzUQrDkDjnb8ITS1jcJBZvP2 XL4AALjVSCuF89w5fHON8u+hFc1J07K1N+hIl2wLaKFw3haDcr2KT9aSka32vqkU zIEuLHc/rb8qWAzOJaIjGA0FpfGRDEabLVOk6W5ciQQVxQ2dpR8ACXuqWT6FDtWL iVE= -----END CERTIFICATE-----Generated at Mon Apr 7 08:00:18 2025 by rpki-client