$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/rlpgIvRYoU1-xKWM_--KhbKwiTg.roa File: rlpgIvRYoU1-xKWM_--KhbKwiTg.roa (raw, json) Hash identifier: 5/7b5qgxNvrn0V7hoLH7fstj1JluxXu0CE6EOzkNHtc= Subject key identifier: AE:5A:60:22:F4:58:A1:4D:7E:C4:A5:8C:FF:EF:8A:85:B2:B0:89:38 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0490 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/rlpgIvRYoU1-xKWM_--KhbKwiTg.roa Signing time: Tue 01 Apr 2025 01:45:43 +0000 ROA not before: Tue 01 Apr 2025 01:45:43 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:d100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1168 (0x490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:45:43 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=AE5A6022F458A14D7EC4A58CFFEF8A85B2B08938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:86:70:10:1c:3e:2f:af:db:35:09:0c:84:a8: 72:a0:64:64:a5:d2:c7:27:d6:0f:c4:e9:62:34:9f: b5:ca:52:f4:6a:54:41:a1:ba:14:44:62:8e:93:8a: d6:97:dd:29:f7:ce:2f:01:51:e6:94:c8:de:c0:1b: 1a:13:72:22:6d:31:cc:28:a8:45:86:5b:16:17:24: f0:52:5e:86:f2:14:cd:1e:30:5d:ab:23:0c:17:89: a0:d1:00:86:f1:46:6b:97:93:3a:5c:e1:e6:73:c2: c5:f5:4c:33:31:87:6a:96:8b:4f:e1:e5:06:17:89: 58:ea:07:1f:1d:7b:4d:ac:7c:cb:fe:9a:04:09:22: 0d:62:82:09:7b:d5:a5:46:df:f0:31:f5:a5:28:f9: ed:69:a2:c4:4b:6a:fb:90:ea:04:4f:72:12:85:16: a0:57:c7:8e:6d:89:41:15:99:01:47:ce:44:10:ee: 55:db:a9:11:15:2f:0e:f8:57:d9:d2:ee:31:70:05: 3e:ac:04:95:be:b8:59:be:11:4e:07:5f:47:14:6d: f5:7b:a3:7c:df:65:63:3f:05:f7:60:83:33:67:70: 1a:bb:9f:f0:90:69:8f:64:27:ce:81:fa:e8:90:bd: e0:98:c1:26:4a:ed:6d:60:ea:b7:7d:5a:de:86:14: b0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:5A:60:22:F4:58:A1:4D:7E:C4:A5:8C:FF:EF:8A:85:B2:B0:89:38 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/rlpgIvRYoU1-xKWM_--KhbKwiTg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:d100::/40 Signature Algorithm: sha256WithRSAEncryption 6d:ba:e4:52:ba:ff:75:48:95:4a:18:af:6b:d5:53:8d:25:76: f1:5b:63:47:a6:8d:01:59:09:8a:1b:25:b3:02:7c:b8:1a:3b: 6d:fb:7d:dc:b3:b1:92:50:6f:cc:8c:d8:47:73:3f:e4:55:b3: 8f:18:a0:45:f4:47:69:d1:27:ae:7d:06:04:05:74:bc:cb:44: 6e:ae:ff:8b:09:7d:d8:43:05:cc:cf:9b:5d:16:d6:86:49:51: 0c:09:73:26:12:89:9a:3d:9b:8e:0f:c6:3a:2d:a8:2b:01:58: 23:b3:a7:ab:cd:4e:c5:57:ff:a8:a2:7f:cd:cb:60:e9:26:6c: e2:79:4a:15:57:e5:fa:1e:f6:93:3d:70:a5:5c:a8:84:01:69: 00:8b:49:f1:48:7e:41:93:fb:4a:74:0a:34:7b:ec:bc:db:e4: 06:e2:ca:e1:03:a1:90:53:9d:10:f0:de:06:2e:23:82:a7:57: fc:58:77:e9:6a:f4:fa:52:73:5d:4e:95:b8:ce:e0:90:d7:4e: e7:f5:c0:8d:46:58:40:49:42:ab:b0:5a:51:c4:4a:d7:1e:2d: 27:83:10:54:21:35:ee:b2:c1:9e:59:8a:e2:9c:59:36:3a:5a: dd:ff:7e:60:58:29:77:d5:20:16:a1:77:26:80:7c:08:4d:31: 71:4b:b1:24 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTQ1NDNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFFNUE2MDIyRjQ1OEEx NEQ3RUM0QTU4Q0ZGRUY4QTg1QjJCMDg5MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD6hnAQHD4vr9s1CQyEqHKgZGSl0scn1g/E6WI0n7XKUvRqVEGh uhREYo6TitaX3Sn3zi8BUeaUyN7AGxoTciJtMcwoqEWGWxYXJPBSXobyFM0eMF2r IwwXiaDRAIbxRmuXkzpc4eZzwsX1TDMxh2qWi0/h5QYXiVjqBx8de02sfMv+mgQJ Ig1iggl71aVG3/Ax9aUo+e1posRLavuQ6gRPchKFFqBXx45tiUEVmQFHzkQQ7lXb qREVLw74V9nS7jFwBT6sBJW+uFm+EU4HX0cUbfV7o3zfZWM/BfdggzNncBq7n/CQ aY9kJ86B+uiQveCYwSZK7W1g6rd9Wt6GFLC3AgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUrlpgIvRYoU1+xKWM/++KhbKwiTgwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9ybHBnSXZSWW9VMS14S1dNXy0tS2hiS3dpVGcu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa9EwDQYJKoZIhvcNAQELBQADggEBAG265FK6/3VIlUoYr2vV U40ldvFbY0emjQFZCYobJbMCfLgaO237fdyzsZJQb8yM2EdzP+RVs48YoEX0R2nR J659BgQFdLzLRG6u/4sJfdhDBczPm10W1oZJUQwJcyYSiZo9m44PxjotqCsBWCOz p6vNTsVX/6iif83LYOkmbOJ5ShVX5foe9pM9cKVcqIQBaQCLSfFIfkGT+0p0CjR7 7Lzb5AbiyuEDoZBTnRDw3gYuI4KnV/xYd+lq9PpSc11OlbjO4JDXTuf1wI1GWEBJ QquwWlHEStceLSeDEFQhNe6ywZ5ZiuKcWTY6Wt3/fmBYKXfVIBahdyaAfAhNMXFL sSQ= -----END CERTIFICATE-----Generated at Mon Apr 7 07:59:05 2025 by rpki-client