$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/cwKvnyOAE8PQM8xHNBt0UpoJFq0.roa File: cwKvnyOAE8PQM8xHNBt0UpoJFq0.roa (raw, json) Hash identifier: d/NtQ8Z50EWVuRV98hjy3zuSCHUlwNqwg3UwPNpC3Y4= Subject key identifier: 73:02:AF:9F:23:80:13:C3:D0:33:CC:47:34:1B:74:52:9A:09:16:AD Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 03F5 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/cwKvnyOAE8PQM8xHNBt0UpoJFq0.roa Signing time: Tue 01 Apr 2025 01:32:08 +0000 ROA not before: Tue 01 Apr 2025 01:32:08 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:d300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:32:08 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=7302AF9F238013C3D033CC47341B74529A0916AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:3e:d5:f0:3f:92:aa:52:3a:1d:b0:0d:df: 1a:07:1f:76:4e:ed:d9:1c:38:aa:8b:86:b8:11:1b: a8:bf:37:d1:ee:5b:ba:b9:d3:75:24:9b:9c:f2:30: fd:47:88:f7:5d:ee:83:61:f0:d2:d6:11:70:c5:d6: c5:1c:7b:22:5d:a1:89:a8:dc:54:9e:e9:c9:7e:2c: a8:bf:ab:e1:0d:fa:76:c0:4f:41:09:e2:af:b8:be: 83:1b:9a:2c:1e:4e:7c:7e:4d:88:92:39:4d:b0:0d: 6c:de:f2:de:e6:a3:8b:1f:92:cd:57:1d:07:88:dd: 39:74:08:d1:6d:27:7b:c9:a6:40:a7:07:03:3a:e4: 3f:34:87:cc:26:5f:0a:86:72:b3:b2:1a:11:78:13: 92:36:66:fe:2a:01:fd:7a:b9:78:bb:69:73:fe:95: 7a:61:42:e8:cd:35:bf:b0:4a:44:e7:ba:a0:34:13: ba:5d:c0:a4:04:b9:f2:27:22:71:aa:19:32:77:42: fc:ee:08:fa:36:05:3c:b9:ed:8a:25:ee:e9:f4:4d: bb:93:67:01:fe:16:33:dc:52:38:75:40:8e:b4:15: 8f:e5:b0:33:a3:89:4e:d2:fc:5c:d2:88:53:3e:70: 12:df:ac:88:65:3d:1a:83:8c:16:7d:d7:39:d5:9a: ed:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:02:AF:9F:23:80:13:C3:D0:33:CC:47:34:1B:74:52:9A:09:16:AD X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/cwKvnyOAE8PQM8xHNBt0UpoJFq0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:d300::/40 Signature Algorithm: sha256WithRSAEncryption a2:b2:a4:fd:59:ad:84:0a:70:db:fb:76:a6:4c:e9:d5:1e:f7: 37:12:ae:ff:38:4f:75:7e:39:16:a7:4b:29:fe:f6:91:0b:cb: 48:eb:a1:3d:69:1f:5c:d6:c8:42:55:da:4c:e3:0b:8f:f0:4d: cf:7d:49:f2:b3:8a:f9:4a:89:18:58:55:5e:02:be:06:27:b2: 72:4e:50:78:1c:18:82:2d:a1:e1:c0:85:07:b5:eb:e1:c4:6b: 6e:18:a0:8c:29:50:c4:9f:53:d2:f3:2f:86:f5:d9:aa:52:8c: cc:fc:70:49:17:c8:be:21:0e:4c:1a:dd:78:42:91:9a:30:54: 94:7a:3d:45:0e:b6:a8:08:25:af:2d:ef:da:c6:78:2a:97:38: fa:76:90:2c:32:8a:fd:33:70:a9:34:fd:60:b8:8f:5b:71:57: e1:1e:db:a4:6c:05:ee:76:02:a4:d6:2d:ee:a2:2f:28:3e:27: d1:05:fd:92:fe:ec:aa:a7:93:42:45:b7:04:f5:87:91:83:92: 3e:50:04:61:6f:07:9f:9b:3b:5f:ff:64:17:40:df:89:a7:94: f8:ec:4c:83:c0:c1:24:88:76:9b:11:ed:3b:65:2e:b2:64:c1: 6c:c5:cc:0f:79:07:30:05:a2:0f:e3:a3:e1:4a:d6:3d:ee:db: 18:c1:00:6b -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTMyMDhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDczMDJBRjlGMjM4MDEz QzNEMDMzQ0M0NzM0MUI3NDUyOUEwOTE2QUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5YT7V8D+SqlI6HbAN3xoHH3ZO7dkcOKqLhrgRG6i/N9HuW7q5 03Ukm5zyMP1HiPdd7oNh8NLWEXDF1sUceyJdoYmo3FSe6cl+LKi/q+EN+nbAT0EJ 4q+4voMbmiweTnx+TYiSOU2wDWze8t7mo4sfks1XHQeI3Tl0CNFtJ3vJpkCnBwM6 5D80h8wmXwqGcrOyGhF4E5I2Zv4qAf16uXi7aXP+lXphQujNNb+wSkTnuqA0E7pd wKQEufInInGqGTJ3QvzuCPo2BTy57Yol7un0TbuTZwH+FjPcUjh1QI60FY/lsDOj iU7S/FzSiFM+cBLfrIhlPRqDjBZ91znVmu09AgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUcwKvnyOAE8PQM8xHNBt0UpoJFq0wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9jd0t2bnlPQUU4UFFNOHhITkJ0MFVwb0pGcTAu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa9MwDQYJKoZIhvcNAQELBQADggEBAKKypP1ZrYQKcNv7dqZM 6dUe9zcSrv84T3V+ORanSyn+9pELy0jroT1pH1zWyEJV2kzjC4/wTc99SfKzivlK iRhYVV4CvgYnsnJOUHgcGIItoeHAhQe16+HEa24YoIwpUMSfU9LzL4b12apSjMz8 cEkXyL4hDkwa3XhCkZowVJR6PUUOtqgIJa8t79rGeCqXOPp2kCwyiv0zcKk0/WC4 j1txV+Ee26RsBe52AqTWLe6iLyg+J9EF/ZL+7Kqnk0JFtwT1h5GDkj5QBGFvB5+b O1//ZBdA34mnlPjsTIPAwSSIdpsR7TtlLrJkwWzFzA95BzAFog/jo+FK1j3u2xjB AGs= -----END CERTIFICATE-----Generated at Mon Apr 7 08:02:31 2025 by rpki-client