$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/pS3mA1DKkjNxS1sh-Y4Hisnw8u4.roa File: pS3mA1DKkjNxS1sh-Y4Hisnw8u4.roa (raw, json) Hash identifier: 8E+Nzh69MUT9b0wxwhcEmuPGVcO+b0GIBXl5y5txsc8= Subject key identifier: A5:2D:E6:03:50:CA:92:33:71:4B:5B:21:F9:8E:07:8A:C9:F0:F2:EE Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0460 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/pS3mA1DKkjNxS1sh-Y4Hisnw8u4.roa Signing time: Tue 01 Apr 2025 01:42:28 +0000 ROA not before: Tue 01 Apr 2025 01:42:28 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:5c00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1120 (0x460) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:42:28 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A52DE60350CA9233714B5B21F98E078AC9F0F2EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7e:b0:78:79:11:4b:ca:26:27:9d:60:78:a7: d2:c3:36:cb:83:8a:3a:51:63:6e:2d:a6:78:1b:db: 2b:f8:95:81:9a:6c:28:0f:68:87:53:12:80:a2:b3: 63:19:d7:0e:e3:e1:4e:92:b0:50:cf:f7:d0:10:92: e3:bb:6a:2d:f6:71:2c:3a:ee:57:cc:87:80:69:37: 9c:c0:6e:5d:aa:94:a4:b7:ed:5b:a0:a1:d9:40:69: 58:83:55:a6:8a:6e:b6:27:b3:44:7a:98:21:ee:78: 35:99:3c:e0:58:be:55:07:ae:2b:a5:29:2b:68:71: d3:99:00:42:99:ec:18:58:96:e5:28:88:fe:47:93: 3e:16:d1:1a:c7:ab:40:f4:89:9d:33:13:9d:97:ff: be:6e:52:80:d7:c6:d8:0f:ec:7a:fc:55:f5:ee:ad: 34:86:a8:63:e2:ed:ba:9f:97:cb:30:6b:f2:2c:94: 6f:56:73:1c:b9:02:b5:7b:b2:51:bb:c2:b6:60:12: 2f:41:21:ec:8e:d7:2d:da:dd:9a:94:46:a9:30:cc: 7a:a7:99:c3:48:88:0d:de:29:b4:12:85:6b:e2:6a: 6f:f0:90:0a:90:cd:23:a6:01:f6:77:16:87:2f:27: f4:7e:9e:24:6d:cd:dd:b4:86:6a:cc:d2:b8:d5:8e: 1a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2D:E6:03:50:CA:92:33:71:4B:5B:21:F9:8E:07:8A:C9:F0:F2:EE X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/pS3mA1DKkjNxS1sh-Y4Hisnw8u4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:5c00::/40 Signature Algorithm: sha256WithRSAEncryption 57:0b:cf:4d:d8:2b:3f:75:dc:b3:ac:1c:67:69:dc:5a:35:7e: b7:49:3b:93:86:74:96:11:82:b9:d3:03:54:8b:ad:90:5d:9e: 35:69:d2:cb:c6:09:e5:d1:b4:d9:02:b8:d4:3b:20:7e:4f:cf: 71:01:0c:ea:2e:23:fc:27:7d:74:82:c0:e4:cf:84:84:0d:fd: c8:54:75:76:21:c5:66:88:b7:d6:bf:03:68:57:09:c3:8b:51: 3c:dc:89:08:14:35:86:e8:1a:35:22:6f:17:e7:e9:3a:e8:0b: 74:8e:49:f5:a6:25:28:84:ad:7c:1b:ac:8f:f3:6f:06:66:33: c4:f2:24:07:21:48:58:4d:26:74:13:98:ba:34:43:e7:da:c0: df:c3:90:75:82:e3:46:d9:c0:4c:fa:97:77:50:da:aa:bb:1d: fd:f9:3c:5a:e3:54:bd:80:d9:da:f4:98:59:b2:f8:1f:b8:8b: dc:31:7b:fc:15:81:e0:f5:f6:8b:bb:18:2b:1a:58:0f:04:d7: d1:73:f3:78:8d:e7:1d:0f:43:39:e0:7f:34:a2:3a:aa:96:23: 8e:67:98:2e:15:5c:2a:66:1b:69:f0:48:bb:a7:60:59:a3:3a: 10:28:2b:e3:97:73:f8:6a:8c:6b:76:9a:eb:25:0c:71:64:26: 86:f6:43:da -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBGAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTQyMjhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE1MkRFNjAzNTBDQTky MzM3MTRCNUIyMUY5OEUwNzhBQzlGMEYyRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkfrB4eRFLyiYnnWB4p9LDNsuDijpRY24tpngb2yv4lYGabCgP aIdTEoCis2MZ1w7j4U6SsFDP99AQkuO7ai32cSw67lfMh4BpN5zAbl2qlKS37Vug odlAaViDVaaKbrYns0R6mCHueDWZPOBYvlUHriulKStocdOZAEKZ7BhYluUoiP5H kz4W0RrHq0D0iZ0zE52X/75uUoDXxtgP7Hr8VfXurTSGqGPi7bqfl8swa/IslG9W cxy5ArV7slG7wrZgEi9BIeyO1y3a3ZqURqkwzHqnmcNIiA3eKbQShWviam/wkAqQ zSOmAfZ3FocvJ/R+niRtzd20hmrM0rjVjhp5AgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUpS3mA1DKkjNxS1sh+Y4Hisnw8u4wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9wUzNtQTFES2tqTnhTMXNoLVk0SGlzbnc4dTQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa1wwDQYJKoZIhvcNAQELBQADggEBAFcLz03YKz913LOsHGdp 3Fo1frdJO5OGdJYRgrnTA1SLrZBdnjVp0svGCeXRtNkCuNQ7IH5Pz3EBDOouI/wn fXSCwOTPhIQN/chUdXYhxWaIt9a/A2hXCcOLUTzciQgUNYboGjUibxfn6TroC3SO SfWmJSiErXwbrI/zbwZmM8TyJAchSFhNJnQTmLo0Q+fawN/DkHWC40bZwEz6l3dQ 2qq7Hf35PFrjVL2A2dr0mFmy+B+4i9wxe/wVgeD19ou7GCsaWA8E19Fz83iN5x0P QzngfzSiOqqWI45nmC4VXCpmG2nwSLunYFmjOhAoK+OXc/hqjGt2muslDHFkJob2 Q9o= -----END CERTIFICATE-----Generated at Mon Apr 7 08:10:57 2025 by rpki-client