$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/jQKi7au94ftOWQArbiknvILTxhc.roa File: jQKi7au94ftOWQArbiknvILTxhc.roa (raw, json) Hash identifier: d+J3Dhy9EkfRd65eOcbs3utTN8CZjE3YIT5BggBkG/M= Subject key identifier: 8D:02:A2:ED:AB:BD:E1:FB:4E:59:00:2B:6E:29:27:BC:82:D3:C6:17 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0427 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/jQKi7au94ftOWQArbiknvILTxhc.roa Signing time: Tue 01 Apr 2025 01:35:41 +0000 ROA not before: Tue 01 Apr 2025 01:35:41 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:2900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1063 (0x427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:35:41 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=8D02A2EDABBDE1FB4E59002B6E2927BC82D3C617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:44:ce:c0:8d:39:8f:5e:7e:72:46:8e:9a: dc:ba:83:38:68:3e:7d:9a:58:6f:eb:e1:cb:9b:94: 0a:0b:4e:97:93:b2:f3:45:b7:33:e3:e5:d4:6b:52: 8d:13:68:54:a1:99:fd:6f:96:d2:51:23:92:b1:64: ef:09:41:cb:16:5f:1e:ae:53:a4:48:7f:64:cd:cb: 81:56:9b:fa:65:4c:fa:4d:e9:6f:15:a3:7a:4e:ae: 6b:84:f6:9f:a6:95:22:7c:51:bd:1e:fc:07:03:ab: 16:81:72:4d:99:8b:3d:b4:92:5b:c5:e8:c8:2b:99: 86:d0:b2:29:ad:40:7a:64:83:c3:2f:4c:14:e9:11: e1:b9:ff:e6:82:fa:3b:54:8b:1b:61:ac:5c:51:7b: ee:ce:2a:5c:c2:30:7e:c7:6a:f7:61:8e:a6:42:0d: ce:e1:35:4c:45:40:08:b6:a6:21:55:e7:fe:f2:54: 5e:f9:4c:a1:aa:16:76:e7:d5:a3:0a:45:0b:1a:93: 69:8e:be:76:20:a2:64:a3:32:20:50:4d:e5:64:5b: c0:58:23:9b:eb:85:2d:fc:a5:af:fb:f9:7a:47:36: 31:25:5f:65:c1:b1:95:e5:f9:c8:a6:6d:a2:dd:fe: 22:ea:7f:e9:ae:ce:20:a5:f9:57:b3:71:8d:31:74: a0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:02:A2:ED:AB:BD:E1:FB:4E:59:00:2B:6E:29:27:BC:82:D3:C6:17 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/jQKi7au94ftOWQArbiknvILTxhc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:2900::/40 Signature Algorithm: sha256WithRSAEncryption 61:88:db:2d:0d:0b:78:46:71:a7:b6:4d:40:4b:45:07:21:3f: 71:e7:c7:c8:70:9c:cf:52:34:c6:b9:95:14:10:03:09:c2:4f: b9:45:c2:1e:e8:f4:03:90:62:f5:ff:87:e4:40:e6:27:ff:3d: c9:2c:47:9a:4d:52:df:85:b5:3b:a2:9f:2b:5c:0f:c9:e1:78: 45:29:13:c7:5f:50:e0:b1:d1:99:de:f0:36:48:e3:7e:a1:61: 6d:bd:f8:52:04:d6:f1:03:de:8b:90:3f:ba:0a:e3:37:d9:74: 97:23:19:30:ed:e8:e5:05:5e:11:6d:63:ba:f9:b5:d8:8d:37: 18:b9:70:af:ce:65:e0:28:72:dd:84:26:2b:34:61:a9:ff:90: fe:55:28:9f:88:7b:66:a4:85:37:28:3e:44:3b:a8:8e:01:33: 15:be:79:94:fb:ff:c7:97:0e:c0:04:ad:2f:6b:e8:20:84:6f: e2:ba:a3:2a:84:a5:5d:72:9f:20:69:40:64:a5:ae:d7:63:aa: 17:c8:4c:a1:d6:c1:40:0b:f5:11:71:e3:e2:78:22:0c:32:c0: b1:a6:59:30:46:3d:1d:1a:ce:0b:75:fe:97:b4:86:f4:03:85: 9b:41:9d:2f:bc:20:58:be:49:c0:20:2b:0e:90:ed:e8:ad:f5: e9:30:c3:c5 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTM1NDFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDhEMDJBMkVEQUJCREUx RkI0RTU5MDAyQjZFMjkyN0JDODJEM0M2MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxo0TOwI05j15+ckaOmty6gzhoPn2aWG/r4cublAoLTpeTsvNF tzPj5dRrUo0TaFShmf1vltJRI5KxZO8JQcsWXx6uU6RIf2TNy4FWm/plTPpN6W8V o3pOrmuE9p+mlSJ8Ub0e/AcDqxaBck2Ziz20klvF6MgrmYbQsimtQHpkg8MvTBTp EeG5/+aC+jtUixthrFxRe+7OKlzCMH7HavdhjqZCDc7hNUxFQAi2piFV5/7yVF75 TKGqFnbn1aMKRQsak2mOvnYgomSjMiBQTeVkW8BYI5vrhS38pa/7+XpHNjElX2XB sZXl+cimbaLd/iLqf+muziCl+VezcY0xdKDzAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUjQKi7au94ftOWQArbiknvILTxhcwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9qUUtpN2F1OTRmdE9XUUFyYmlrbnZJTFR4aGMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAaykwDQYJKoZIhvcNAQELBQADggEBAGGI2y0NC3hGcae2TUBL RQchP3Hnx8hwnM9SNMa5lRQQAwnCT7lFwh7o9AOQYvX/h+RA5if/PcksR5pNUt+F tTuinytcD8nheEUpE8dfUOCx0Zne8DZI436hYW29+FIE1vED3ouQP7oK4zfZdJcj GTDt6OUFXhFtY7r5tdiNNxi5cK/OZeAoct2EJis0Yan/kP5VKJ+Ie2akhTcoPkQ7 qI4BMxW+eZT7/8eXDsAErS9r6CCEb+K6oyqEpV1ynyBpQGSlrtdjqhfITKHWwUAL 9RFx4+J4IgwywLGmWTBGPR0azgt1/pe0hvQDhZtBnS+8IFi+ScAgKw6Q7eit9ekw w8U= -----END CERTIFICATE-----Generated at Mon Apr 7 08:04:34 2025 by rpki-client