$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/oTURJHORCgpUGeD_z2ChXd0SC_c.roa File: oTURJHORCgpUGeD_z2ChXd0SC_c.roa (raw, json) Hash identifier: YPgVsDWUkdS7ko3e5/Js8IHfv0JuQ0TRxQn2DykYQrU= Subject key identifier: A1:35:11:24:73:91:0A:0A:54:19:E0:FF:CF:60:A1:5D:DD:12:0B:F7 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0478 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/oTURJHORCgpUGeD_z2ChXd0SC_c.roa Signing time: Tue 01 Apr 2025 01:45:33 +0000 ROA not before: Tue 01 Apr 2025 01:45:33 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:6300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 07:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:45:33 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A135112473910A0A5419E0FFCF60A15DDD120BF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4a:66:b9:97:a4:41:24:a7:f2:7d:11:bd:71: 88:b8:aa:60:9a:17:d5:6f:f2:e7:4d:b2:02:fc:8d: 16:dd:50:98:d8:d1:d2:45:ef:fc:cb:c8:29:5a:e6: 82:e6:53:73:a6:a4:06:54:cb:a5:f0:f8:ba:ab:11: 39:e0:be:ef:bf:0a:9b:53:59:a4:16:8c:83:4f:b0: fb:0d:e3:41:17:52:86:68:7b:f7:71:b3:35:5e:ca: ee:96:18:9c:21:19:1e:a7:0f:18:b9:90:77:2c:07: ce:37:bc:76:48:b2:6b:3b:28:b5:7a:9f:3e:c2:d7: ce:93:70:c7:a0:3e:15:31:64:d3:fb:5c:77:a5:f9: fe:c3:09:b8:b4:8b:22:30:91:1a:dc:1b:20:0b:9d: 16:83:3a:23:f0:c7:3d:d9:91:16:a7:53:9e:da:fc: 7c:d7:a3:29:3d:b8:ae:12:c1:18:ba:60:00:e7:b6: 9d:64:87:9c:90:a8:4f:95:b5:4d:41:df:e3:2d:03: db:33:c9:56:b8:2c:10:9c:42:0e:c5:a5:fd:20:d3: df:14:96:2b:59:eb:aa:9f:18:ed:a3:c3:a6:3c:b8: c8:f9:48:60:1b:f2:4f:93:1b:e4:9b:15:97:d3:e3: 21:20:68:ca:04:2f:a0:82:8c:54:fb:66:8f:41:27: a8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:35:11:24:73:91:0A:0A:54:19:E0:FF:CF:60:A1:5D:DD:12:0B:F7 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/oTURJHORCgpUGeD_z2ChXd0SC_c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:6300::/40 Signature Algorithm: sha256WithRSAEncryption 3e:ea:68:c2:66:62:07:d9:50:86:44:17:5c:85:78:9c:7b:ae: c3:6a:5c:0f:45:7e:92:58:b7:d3:df:eb:fa:fa:86:e8:67:f5: 4f:47:49:e5:f0:f8:56:ca:74:c1:94:00:de:4a:7b:44:11:45: 72:eb:30:8e:88:34:3a:ac:48:09:07:6a:9e:d9:59:20:38:88: 51:a9:d1:5a:1f:f0:2d:54:00:48:20:f4:71:32:97:36:2f:e1: 13:4f:2c:6c:06:88:f3:54:d5:5b:a9:72:05:14:86:9f:97:df: 26:e6:d6:60:09:5f:c6:32:da:62:80:e3:9e:3a:c2:a1:cd:46: ea:e2:eb:7c:4b:62:b6:eb:0a:58:21:ba:e0:26:c7:7b:cc:86: 9a:1b:a3:7e:69:b0:3b:dd:6e:11:1d:f4:40:b7:05:66:f2:a5: eb:d7:bb:11:11:24:79:6f:66:02:dc:17:7c:96:d2:91:fc:d7: 46:36:8b:d5:c4:e7:2f:84:1c:b3:79:19:89:22:7b:45:50:bd: e3:7e:5b:cc:3f:9a:61:df:b5:79:30:de:29:7f:8e:bb:87:b6: b1:b8:a8:ce:b5:47:bb:0c:19:8d:fc:26:e3:f2:9f:fa:5f:73: 4d:04:7c:f8:26:d3:e5:89:0b:01:13:6e:5b:18:6d:8d:27:8e: b4:08:d8:51 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTQ1MzNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEExMzUxMTI0NzM5MTBB MEE1NDE5RTBGRkNGNjBBMTVEREQxMjBCRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbSma5l6RBJKfyfRG9cYi4qmCaF9Vv8udNsgL8jRbdUJjY0dJF 7/zLyCla5oLmU3OmpAZUy6Xw+LqrETngvu+/CptTWaQWjINPsPsN40EXUoZoe/dx szVeyu6WGJwhGR6nDxi5kHcsB843vHZIsms7KLV6nz7C186TcMegPhUxZNP7XHel +f7DCbi0iyIwkRrcGyALnRaDOiPwxz3ZkRanU57a/HzXoyk9uK4SwRi6YADntp1k h5yQqE+VtU1B3+MtA9szyVa4LBCcQg7Fpf0g098UlitZ66qfGO2jw6Y8uMj5SGAb 8k+TG+SbFZfT4yEgaMoEL6CCjFT7Zo9BJ6gbAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUoTURJHORCgpUGeD/z2ChXd0SC/cwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9vVFVSSkhPUkNncFVHZURfejJDaFhkMFNDX2Mu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa2MwDQYJKoZIhvcNAQELBQADggEBAD7qaMJmYgfZUIZEF1yF eJx7rsNqXA9FfpJYt9Pf6/r6huhn9U9HSeXw+FbKdMGUAN5Ke0QRRXLrMI6INDqs SAkHap7ZWSA4iFGp0Vof8C1UAEgg9HEylzYv4RNPLGwGiPNU1VupcgUUhp+X3ybm 1mAJX8Yy2mKA4546wqHNRuri63xLYrbrClghuuAmx3vMhpobo35psDvdbhEd9EC3 BWbypevXuxERJHlvZgLcF3yW0pH810Y2i9XE5y+EHLN5GYkie0VQveN+W8w/mmHf tXkw3il/jruHtrG4qM61R7sMGY38JuPyn/pfc00EfPgm0+WJCwETblsYbY0njrQI 2FE= -----END CERTIFICATE-----Generated at Mon Apr 7 11:01:18 2025 by rpki-client