$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/r_9jIMeiFiyNf6vJ7zuiFDKGpaM.roa File: r_9jIMeiFiyNf6vJ7zuiFDKGpaM.roa (raw, json) Hash identifier: 2Dtm4bH4pT942hsvnNhdqJTf/oNOIrKb6Eol+TTxEqU= Subject key identifier: AF:FF:63:20:C7:A2:16:2C:8D:7F:AB:C9:EF:3B:A2:14:32:86:A5:A3 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 04A9 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/r_9jIMeiFiyNf6vJ7zuiFDKGpaM.roa Signing time: Tue 01 Apr 2025 01:49:27 +0000 ROA not before: Tue 01 Apr 2025 01:49:27 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:a700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 07:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1193 (0x4a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:49:27 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=AFFF6320C7A2162C8D7FABC9EF3BA2143286A5A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7b:1b:4e:56:22:50:fb:b7:52:36:96:18:78: f9:20:1b:f4:9f:e5:ee:1f:61:e6:46:4f:ad:94:e7: 37:28:b7:a6:e5:f3:d9:41:b0:9d:bc:cd:8c:09:18: ef:64:c8:cd:3c:8a:67:2e:32:2a:96:d1:e3:90:bc: e5:01:2f:d4:d5:d2:7a:fd:97:ac:d3:67:f3:78:f9: 0c:75:a7:58:a8:67:aa:47:82:76:35:14:f9:93:00: 93:6b:00:a0:60:17:e6:1a:0e:0b:5e:42:a8:f2:3d: 8f:b7:45:ab:f8:00:4b:2b:26:42:ab:ca:23:76:b3: e8:99:21:3e:fe:b5:a9:5f:2e:a4:46:bf:ab:4a:b5: aa:71:62:d0:2b:31:21:0f:02:3a:71:ab:6b:e8:01: 40:0b:b5:6c:ea:ae:1e:d4:cb:c9:d6:d7:70:24:b0: d5:06:73:09:ae:0e:67:5c:70:cf:6d:0e:52:d9:6e: 80:ff:15:13:a2:3d:6e:0e:a0:0f:cd:b2:ed:e5:80: 63:96:40:07:2e:6f:62:27:1f:7b:be:b6:d0:a1:3a: 52:ed:ba:5e:dd:9b:ff:6a:56:b2:98:cf:38:d4:38: 70:ae:54:94:9a:ad:9a:b1:25:1e:33:12:bc:ac:fd: 28:b2:1b:27:91:aa:a7:c1:de:4a:44:63:cd:61:b8: 0b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FF:63:20:C7:A2:16:2C:8D:7F:AB:C9:EF:3B:A2:14:32:86:A5:A3 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/r_9jIMeiFiyNf6vJ7zuiFDKGpaM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:a700::/40 Signature Algorithm: sha256WithRSAEncryption 61:fb:31:6f:0c:f1:a9:1d:3d:d7:4e:ad:69:c7:1d:b4:0d:9f: 4f:76:e4:b1:42:a4:6c:af:5c:b6:50:a4:b2:64:ba:fc:25:fd: 20:bc:50:38:9b:19:80:22:68:d8:0a:b3:86:9f:c6:7c:75:56: 37:cd:02:7a:b4:ef:f7:e0:fe:e6:87:fb:c2:21:9f:8d:34:ff: 99:36:c8:be:d3:0e:4f:1d:dc:ac:b3:a7:d0:56:0f:9c:1a:15: 00:53:8b:28:8d:11:a7:77:e4:40:28:ff:48:90:1c:0f:0b:79: 07:ed:24:60:a8:60:50:39:ce:8d:f1:84:a9:74:08:c6:d3:0a: 88:21:64:c6:36:d1:1e:26:16:f8:32:88:b9:4c:b1:5d:8d:e5: e4:99:ca:55:6d:e9:a0:f8:4f:e6:1d:a2:82:e5:38:f5:f7:1c: 3d:d5:56:b1:12:ed:08:81:8f:fc:c6:ef:b7:30:9f:a7:40:77: 03:f2:9a:a3:fc:ee:90:ea:4c:27:6f:6c:85:b3:80:37:45:e4: cc:69:9d:cf:8f:62:58:92:df:a9:63:49:64:ec:9a:b1:55:8b: ef:1f:f5:8d:33:a5:26:c4:dc:ca:2d:72:e0:e1:31:12:90:23: ee:a0:32:6e:d9:74:da:e6:d5:9f:df:20:c2:11:b8:f4:65:e7: b2:95:3b:74 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBKkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTQ5MjdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFGRkY2MzIwQzdBMjE2 MkM4RDdGQUJDOUVGM0JBMjE0MzI4NkE1QTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlextOViJQ+7dSNpYYePkgG/Sf5e4fYeZGT62U5zcot6bl89lB sJ28zYwJGO9kyM08imcuMiqW0eOQvOUBL9TV0nr9l6zTZ/N4+Qx1p1ioZ6pHgnY1 FPmTAJNrAKBgF+YaDgteQqjyPY+3Rav4AEsrJkKryiN2s+iZIT7+talfLqRGv6tK tapxYtArMSEPAjpxq2voAUALtWzqrh7Uy8nW13AksNUGcwmuDmdccM9tDlLZboD/ FROiPW4OoA/Nsu3lgGOWQAcub2InH3u+ttChOlLtul7dm/9qVrKYzzjUOHCuVJSa rZqxJR4zErys/SiyGyeRqqfB3kpEY81huAvvAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUr/9jIMeiFiyNf6vJ7zuiFDKGpaMwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9yXzlqSU1laUZpeU5mNnZKN3p1aUZES0dwYU0u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa6cwDQYJKoZIhvcNAQELBQADggEBAGH7MW8M8akdPddOrWnH HbQNn0925LFCpGyvXLZQpLJkuvwl/SC8UDibGYAiaNgKs4afxnx1VjfNAnq07/fg /uaH+8Ihn400/5k2yL7TDk8d3Kyzp9BWD5waFQBTiyiNEad35EAo/0iQHA8LeQft JGCoYFA5zo3xhKl0CMbTCoghZMY20R4mFvgyiLlMsV2N5eSZylVt6aD4T+YdooLl OPX3HD3VVrES7QiBj/zG77cwn6dAdwPymqP87pDqTCdvbIWzgDdF5Mxpnc+PYliS 36ljSWTsmrFVi+8f9Y0zpSbE3MotcuDhMRKQI+6gMm7ZdNrm1Z/fIMIRuPRl57KV O3Q= -----END CERTIFICATE-----Generated at Mon Apr 7 11:33:49 2025 by rpki-client