$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/pw_ZkoY4xULYxL0xsnTAUCQzMgY.roa File: pw_ZkoY4xULYxL0xsnTAUCQzMgY.roa (raw, json) Hash identifier: 5KPtklEKfo6y6becY/IRPertxAUFB4PAdbmec2kwnyk= Subject key identifier: A7:0F:D9:92:86:38:C5:42:D8:C4:BD:31:B2:74:C0:50:24:33:32:06 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 04A7 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/pw_ZkoY4xULYxL0xsnTAUCQzMgY.roa Signing time: Tue 01 Apr 2025 01:49:26 +0000 ROA not before: Tue 01 Apr 2025 01:49:26 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:1100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1191 (0x4a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:49:26 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A70FD9928638C542D8C4BD31B274C05024333206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2a:dd:02:d5:14:d4:ed:0e:d3:5a:34:3e:7f: 92:40:56:30:4e:1a:ea:40:3d:2c:54:21:d4:f7:53: 8d:a5:09:e3:0d:d9:91:52:db:5d:2e:81:b8:db:9a: f7:e7:c9:60:56:38:27:72:4e:87:45:b2:c0:76:11: b6:76:d5:69:a2:0d:5c:7f:c5:d5:b4:e7:8e:f4:62: 9b:53:96:c7:db:84:7c:94:17:e0:54:4a:dd:48:35: 32:87:f6:02:7b:0b:83:f6:cd:cd:45:2e:f8:3c:cb: 80:b7:fa:1b:df:57:f6:13:6d:37:2b:60:3c:dd:ce: e4:76:18:4d:73:ab:19:d9:76:33:af:2c:f3:b7:d8: 95:1a:fa:9c:79:a1:4c:ff:31:16:69:60:87:1e:3d: a9:87:9b:bc:71:9f:4f:8a:8f:bf:77:15:fc:bf:b4: 12:05:55:d6:f8:1f:42:8b:4b:9f:b1:2a:e4:b8:61: df:e2:04:bc:d3:7d:1d:74:3c:99:3f:9c:57:c8:16: 68:1c:c0:10:f6:1a:fd:e8:b7:67:65:82:8c:d9:be: 66:8d:84:e7:ea:29:a3:7a:4b:bd:4d:76:36:e7:6e: e3:28:36:3e:33:ea:9f:c7:41:cb:f3:cc:70:0d:f1: 4d:be:dd:ef:a6:26:f2:f9:da:b1:84:52:f0:b4:9d: 7d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0F:D9:92:86:38:C5:42:D8:C4:BD:31:B2:74:C0:50:24:33:32:06 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/pw_ZkoY4xULYxL0xsnTAUCQzMgY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:1100::/40 Signature Algorithm: sha256WithRSAEncryption 3e:1d:b7:7c:53:d1:82:6a:aa:b3:94:57:cf:7e:52:19:74:2a: 19:e0:be:f9:42:47:ac:a1:f0:46:7e:a3:e9:b6:ff:5e:7a:47: 8e:77:da:87:9f:41:d5:cd:4f:db:21:f3:8c:17:ba:28:54:ff: d9:4f:e9:0b:3c:3a:46:a6:cf:cc:7f:97:cb:8f:e0:df:07:4b: 25:81:0c:d5:4f:1a:92:d6:37:7c:4d:77:58:6e:8e:fb:b4:cb: 47:08:9a:58:9b:49:b1:37:6f:f7:3d:16:42:24:29:d9:56:39: ee:fd:8e:5e:a7:05:18:6f:49:77:2e:9c:1b:f2:92:39:ce:0a: 93:ef:9d:7d:08:d7:86:2b:2d:01:cf:1c:fb:6d:6d:2d:67:c9: 07:04:5d:7b:07:2f:ee:8d:fd:f2:b5:a6:ca:62:8d:00:f3:ff: 7e:0e:a2:bc:20:f5:61:f7:22:0f:93:75:97:3a:1d:4b:06:b8: 39:05:14:20:f7:b6:dc:5c:84:de:9f:7e:5b:5d:8c:92:2d:30: 43:3f:b4:e6:03:cc:e0:59:17:fe:00:d2:11:17:7a:e1:a0:a1: 43:2d:a7:e0:10:cf:48:fc:bd:89:9e:09:a2:28:5d:25:1f:08: b7:c8:9e:11:cf:e7:56:94:d3:e8:30:9a:da:18:38:d1:77:f6: 5c:84:e7:49 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBKcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTQ5MjZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE3MEZEOTkyODYzOEM1 NDJEOEM0QkQzMUIyNzRDMDUwMjQzMzMyMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdKt0C1RTU7Q7TWjQ+f5JAVjBOGupAPSxUIdT3U42lCeMN2ZFS 210ugbjbmvfnyWBWOCdyTodFssB2EbZ21WmiDVx/xdW05470YptTlsfbhHyUF+BU St1INTKH9gJ7C4P2zc1FLvg8y4C3+hvfV/YTbTcrYDzdzuR2GE1zqxnZdjOvLPO3 2JUa+px5oUz/MRZpYIcePamHm7xxn0+Kj793Ffy/tBIFVdb4H0KLS5+xKuS4Yd/i BLzTfR10PJk/nFfIFmgcwBD2Gv3ot2dlgozZvmaNhOfqKaN6S71NdjbnbuMoNj4z 6p/HQcvzzHAN8U2+3e+mJvL52rGEUvC0nX1bAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUpw/ZkoY4xULYxL0xsnTAUCQzMgYwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9wd19aa29ZNHhVTFl4TDB4c25UQVVDUXpNZ1ku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAaxEwDQYJKoZIhvcNAQELBQADggEBAD4dt3xT0YJqqrOUV89+ Uhl0KhngvvlCR6yh8EZ+o+m2/156R4532oefQdXNT9sh84wXuihU/9lP6Qs8Okam z8x/l8uP4N8HSyWBDNVPGpLWN3xNd1hujvu0y0cImlibSbE3b/c9FkIkKdlWOe79 jl6nBRhvSXcunBvykjnOCpPvnX0I14YrLQHPHPttbS1nyQcEXXsHL+6N/fK1pspi jQDz/34Oorwg9WH3Ig+TdZc6HUsGuDkFFCD3ttxchN6ffltdjJItMEM/tOYDzOBZ F/4A0hEXeuGgoUMtp+AQz0j8vYmeCaIoXSUfCLfInhHP51aU0+gwmtoYONF39lyE 50k= -----END CERTIFICATE-----Generated at Mon Apr 7 07:58:57 2025 by rpki-client