$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XA3Uu30MaFefti6c7Em8CNcr1Z8.roa File: XA3Uu30MaFefti6c7Em8CNcr1Z8.roa (raw, json) Hash identifier: GBfBP3iP/lP8hOSnp8Pbre69n9JNfYiEUTV1kL8bArg= Subject key identifier: 5C:0D:D4:BB:7D:0C:68:57:9F:B6:2E:9C:EC:49:BC:08:D7:2B:D5:9F Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0442 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XA3Uu30MaFefti6c7Em8CNcr1Z8.roa Signing time: Tue 01 Apr 2025 01:39:33 +0000 ROA not before: Tue 01 Apr 2025 01:39:33 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:4c00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1090 (0x442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:39:33 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5C0DD4BB7D0C68579FB62E9CEC49BC08D72BD59F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fd:96:b4:64:69:9d:ae:dc:3f:cd:c4:2a:81: d1:e9:17:76:cf:bf:d9:92:fd:61:8d:9e:24:8c:1c: a1:43:05:e1:73:da:03:d4:8d:ef:41:1a:86:9e:f2: b7:0e:e1:66:6b:f5:6c:47:fd:0d:3c:5f:ee:9a:d3: 19:5f:eb:80:b2:25:0b:23:85:76:1e:7d:ab:a6:49: 8e:cd:90:52:26:27:2d:04:f1:19:e5:92:12:f4:cc: 4e:1c:47:21:91:a1:89:6a:20:26:8e:7b:3c:e7:90: 1e:df:eb:20:7e:37:31:84:b6:0c:80:02:2b:39:c2: c5:94:fd:8c:f3:2a:36:8b:de:f6:30:b0:7a:45:a7: 7a:47:f3:68:df:bb:c0:97:a4:03:cc:e8:44:81:08: 5b:cb:0f:01:b0:dc:f2:34:41:56:42:4e:1d:31:93: 8b:df:14:3a:b2:93:4e:d2:9c:84:f1:01:9e:dc:f3: da:ca:de:80:30:42:b5:46:eb:6f:8c:70:e2:84:ab: c1:91:e8:eb:b2:29:aa:7d:b6:32:c3:79:b1:6b:dc: 0c:af:61:d9:29:96:37:cc:17:26:ad:b6:26:5b:ee: b9:86:16:a3:7e:ac:78:dc:1a:2d:6c:79:2a:50:f9: 6f:ad:0b:06:2b:09:7d:f8:da:c6:38:6a:5a:21:7d: 3a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0D:D4:BB:7D:0C:68:57:9F:B6:2E:9C:EC:49:BC:08:D7:2B:D5:9F X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/XA3Uu30MaFefti6c7Em8CNcr1Z8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:4c00::/40 Signature Algorithm: sha256WithRSAEncryption 47:44:6b:e0:1f:80:86:96:0b:b7:28:c7:73:65:a5:d3:d8:81: be:a3:34:38:52:40:66:5b:2f:cf:a6:be:b3:bc:19:f6:52:89: f9:70:82:c4:99:56:d6:e8:24:a9:ef:05:03:f0:95:af:4c:da: d9:35:4f:b7:ba:da:72:ef:7d:77:3d:5c:51:9e:cc:fe:0c:8a: ff:34:f6:02:ab:0e:dc:4b:31:01:d5:fc:b5:d3:95:45:35:c2: 72:1b:ad:d9:fd:4e:82:62:1a:90:71:35:c1:73:73:16:2d:0a: 7f:20:c1:fc:d6:75:d0:92:bf:a6:b8:5b:e3:f8:66:44:e7:35: d6:d5:2a:75:9e:7f:a6:d8:08:62:15:47:9c:11:3a:2b:44:b0: e4:58:13:43:40:57:25:3b:c9:eb:1c:18:d5:1b:4d:c2:ac:9b: b4:63:bb:04:9e:04:7c:f9:47:7c:9e:25:c3:97:b8:04:40:12: fe:0b:db:ca:68:a7:a1:2d:f0:63:e3:88:87:4c:65:9f:b0:3b: 38:70:5f:5c:37:0c:97:51:08:73:b9:0e:e6:08:a6:50:bb:c1: e6:ae:17:78:28:a6:c0:8e:26:3e:2a:84:7c:53:14:76:6f:59: 57:1e:09:1f:05:1c:15:2b:3e:4c:e2:b2:3d:b8:da:22:59:a2: 9c:69:74:90 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBEIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTM5MzNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVDMERENEJCN0QwQzY4 NTc5RkI2MkU5Q0VDNDlCQzA4RDcyQkQ1OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf/Za0ZGmdrtw/zcQqgdHpF3bPv9mS/WGNniSMHKFDBeFz2gPU je9BGoae8rcO4WZr9WxH/Q08X+6a0xlf64CyJQsjhXYefaumSY7NkFImJy0E8Rnl khL0zE4cRyGRoYlqICaOezznkB7f6yB+NzGEtgyAAis5wsWU/YzzKjaL3vYwsHpF p3pH82jfu8CXpAPM6ESBCFvLDwGw3PI0QVZCTh0xk4vfFDqyk07SnITxAZ7c89rK 3oAwQrVG62+McOKEq8GR6OuyKap9tjLDebFr3AyvYdkpljfMFyattiZb7rmGFqN+ rHjcGi1seSpQ+W+tCwYrCX342sY4alohfToxAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUXA3Uu30MaFefti6c7Em8CNcr1Z8wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9YQTNVdTMwTWFGZWZ0aTZjN0VtOENOY3IxWjgu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa0wwDQYJKoZIhvcNAQELBQADggEBAEdEa+AfgIaWC7cox3Nl pdPYgb6jNDhSQGZbL8+mvrO8GfZSiflwgsSZVtboJKnvBQPwla9M2tk1T7e62nLv fXc9XFGezP4Miv809gKrDtxLMQHV/LXTlUU1wnIbrdn9ToJiGpBxNcFzcxYtCn8g wfzWddCSv6a4W+P4ZkTnNdbVKnWef6bYCGIVR5wROitEsORYE0NAVyU7yescGNUb TcKsm7RjuwSeBHz5R3yeJcOXuARAEv4L28pop6Et8GPjiIdMZZ+wOzhwX1w3DJdR CHO5DuYIplC7weauF3gopsCOJj4qhHxTFHZvWVceCR8FHBUrPkzisj242iJZopxp dJA= -----END CERTIFICATE-----Generated at Mon Apr 7 08:04:39 2025 by rpki-client