$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ib_hJ-SCw0A7lgTFy0FamsQlsp0.roa File: ib_hJ-SCw0A7lgTFy0FamsQlsp0.roa (raw, json) Hash identifier: WszaWFK5JA3C1U+9U2LUbRIdY8shr0sNBulF1L5aPg4= Subject key identifier: 89:BF:E1:27:E4:82:C3:40:3B:96:04:C5:CB:41:5A:9A:C4:25:B2:9D Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 04A0 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ib_hJ-SCw0A7lgTFy0FamsQlsp0.roa Signing time: Tue 01 Apr 2025 01:49:23 +0000 ROA not before: Tue 01 Apr 2025 01:49:23 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:da00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:49:23 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=89BFE127E482C3403B9604C5CB415A9AC425B29D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e7:3e:db:24:83:00:0f:76:e1:f4:0e:c3:13: cb:6c:71:11:24:34:3a:aa:5a:26:ec:86:f0:bb:51: 41:9b:ce:5d:26:78:4e:95:bd:a6:23:7b:e2:7b:30: eb:c5:9e:5c:55:1a:54:40:a0:17:1a:63:74:f5:ab: bf:67:bc:eb:72:ff:85:dd:bb:08:bc:f1:1a:6c:a5: 3a:bb:9f:e0:58:40:48:1c:1f:80:87:de:f5:21:4c: ec:1d:c5:f9:33:dc:aa:64:53:06:9c:87:17:79:92: 8e:d4:c8:02:e7:f4:a8:24:c3:68:b9:cb:64:fb:1f: 9f:41:48:f1:58:78:a1:4f:34:63:8f:0a:ba:b0:4e: 00:e9:b0:a2:6e:3d:59:36:13:9f:e1:a5:3c:0d:01: 90:76:62:64:f4:45:96:75:4b:01:13:59:26:ea:12: ff:03:f6:f3:02:e4:40:bf:70:1c:14:bc:c7:04:83: b3:34:56:c1:20:02:02:42:24:00:9c:ab:e7:b8:66: c6:b1:0b:fe:49:88:a6:f4:b1:90:b2:7d:5e:b5:89: 6b:c2:fe:d9:5f:92:27:25:7d:f1:ea:a0:b6:98:e4: 47:56:f5:b3:f9:6c:76:ec:f7:7d:1c:d4:5e:90:20: cb:1b:20:3b:45:0a:5d:18:c1:83:20:0b:ab:6c:af: 2a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BF:E1:27:E4:82:C3:40:3B:96:04:C5:CB:41:5A:9A:C4:25:B2:9D X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/ib_hJ-SCw0A7lgTFy0FamsQlsp0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:da00::/40 Signature Algorithm: sha256WithRSAEncryption 48:28:4f:b8:33:6c:1b:71:3b:7d:48:39:d0:77:fd:9d:4c:57: b1:c3:3c:34:23:cf:ec:b5:13:3f:52:8d:2f:24:58:8c:78:77: 36:e5:23:08:71:26:e9:5c:21:c8:b9:4d:30:c1:b3:84:93:d0: 44:4c:ec:ef:c5:82:77:17:1b:3c:5a:a0:7e:e7:b4:14:bc:ba: b2:f5:2e:61:01:b9:ef:fa:9d:f4:42:77:24:89:58:6d:d8:75: 35:fb:90:1c:2f:f4:55:d8:01:96:71:8e:27:b2:61:cc:12:27: f3:ea:cc:ba:bb:10:36:52:3e:41:dc:75:e4:59:dc:4d:10:27: ca:04:a3:85:39:87:87:3c:d0:4d:32:ea:fe:0b:36:41:ef:ef: ff:34:a4:25:88:c4:84:7e:01:32:b9:fe:1e:b3:8e:4a:32:73: 92:8b:4c:c9:df:f0:ed:c2:0d:e3:64:4b:80:e5:b1:f7:14:f5: c5:77:40:13:ce:e2:1d:be:46:66:7b:4c:1c:66:67:2c:02:d1: e8:40:5f:4b:4c:01:3e:df:01:0e:63:a5:61:b7:d1:82:68:2d: 30:f3:8f:89:64:20:f7:cc:d9:14:45:ed:31:02:d5:72:43:fe: b8:91:c6:c9:48:f8:96:f5:19:cd:39:9d:bf:57:62:d3:61:9e: d9:56:5f:e1 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTQ5MjNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg5QkZFMTI3RTQ4MkMz NDAzQjk2MDRDNUNCNDE1QTlBQzQyNUIyOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC45z7bJIMAD3bh9A7DE8tscREkNDqqWibshvC7UUGbzl0meE6V vaYje+J7MOvFnlxVGlRAoBcaY3T1q79nvOty/4Xduwi88RpspTq7n+BYQEgcH4CH 3vUhTOwdxfkz3KpkUwachxd5ko7UyALn9Kgkw2i5y2T7H59BSPFYeKFPNGOPCrqw TgDpsKJuPVk2E5/hpTwNAZB2YmT0RZZ1SwETWSbqEv8D9vMC5EC/cBwUvMcEg7M0 VsEgAgJCJACcq+e4ZsaxC/5JiKb0sZCyfV61iWvC/tlfkiclffHqoLaY5EdW9bP5 bHbs930c1F6QIMsbIDtFCl0YwYMgC6tsryrLAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUib/hJ+SCw0A7lgTFy0FamsQlsp0wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9pYl9oSi1TQ3cwQTdsZ1RGeTBGYW1zUWxzcDAu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa9owDQYJKoZIhvcNAQELBQADggEBAEgoT7gzbBtxO31IOdB3 /Z1MV7HDPDQjz+y1Ez9SjS8kWIx4dzblIwhxJulcIci5TTDBs4ST0ERM7O/FgncX GzxaoH7ntBS8urL1LmEBue/6nfRCdySJWG3YdTX7kBwv9FXYAZZxjieyYcwSJ/Pq zLq7EDZSPkHcdeRZ3E0QJ8oEo4U5h4c80E0y6v4LNkHv7/80pCWIxIR+ATK5/h6z jkoyc5KLTMnf8O3CDeNkS4DlsfcU9cV3QBPO4h2+RmZ7TBxmZywC0ehAX0tMAT7f AQ5jpWG30YJoLTDzj4lkIPfM2RRF7TEC1XJD/riRxslI+Jb1Gc05nb9XYtNhntlW X+E= -----END CERTIFICATE-----Generated at Mon Apr 7 08:05:18 2025 by rpki-client