$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/sxKlVKs3OK9dDTGrZnWNdf6Xmsg.roa File: sxKlVKs3OK9dDTGrZnWNdf6Xmsg.roa (raw, json) Hash identifier: ixq/xSCNh1yxn5qsP26OdQDZrlhxrMubH3SNTg2Q+qs= Subject key identifier: B3:12:A5:54:AB:37:38:AF:5D:0D:31:AB:66:75:8D:75:FE:97:9A:C8 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 03DA Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/sxKlVKs3OK9dDTGrZnWNdf6Xmsg.roa Signing time: Tue 01 Apr 2025 01:28:56 +0000 ROA not before: Tue 01 Apr 2025 01:28:56 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:60:f01e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:28:56 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B312A554AB3738AF5D0D31AB66758D75FE979AC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0e:65:ea:7c:4e:5b:4f:bc:13:18:67:ea:6e: bf:f2:dc:85:82:f4:18:53:c7:d1:1d:01:63:ca:63: 7d:9b:0d:8b:c1:f4:2a:32:1e:f0:f0:94:3c:5d:79: e3:fd:8a:83:47:db:d8:b0:52:75:12:16:50:0b:c8: 80:ca:66:96:b5:35:e8:c4:01:34:d6:a2:df:de:b9: 48:9a:a7:f9:cd:7d:4e:35:93:dd:9b:8e:01:fa:b7: 67:7d:6c:52:81:b5:43:cf:99:09:3a:a3:23:8b:5c: 53:2a:29:83:c5:e5:6f:93:7e:3c:db:87:4e:df:16: 2f:4c:3b:cc:d7:6d:6c:f7:ea:78:f5:06:a9:b5:00: 13:76:0a:8b:13:55:7d:aa:78:f5:f6:ce:08:f7:ac: 0f:da:3d:77:e3:6c:aa:87:67:06:bc:33:17:20:90: ae:d3:9a:c1:dd:a1:d1:a2:c7:52:b0:90:7a:0e:b1: ba:a4:ca:bb:55:ef:0e:6b:d4:d2:ed:b0:43:20:4d: 86:54:c6:61:ba:65:0f:14:9a:ea:d9:7d:83:28:ec: e6:9d:a8:5a:10:c1:4b:7d:bb:65:30:62:bc:58:95: 7f:26:e8:25:a4:23:7d:e4:c8:d9:ba:1d:b3:ce:7d: 6f:27:bd:15:81:9b:f4:29:ec:80:83:e7:c4:a7:a3: 94:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:12:A5:54:AB:37:38:AF:5D:0D:31:AB:66:75:8D:75:FE:97:9A:C8 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/sxKlVKs3OK9dDTGrZnWNdf6Xmsg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:60:f01e::/48 Signature Algorithm: sha256WithRSAEncryption 7a:af:81:a2:c5:cc:9b:ac:2b:2e:f8:56:dc:33:d4:19:bc:63: d6:6f:76:6e:34:c6:55:9e:5f:90:fe:0c:20:9a:23:a0:ce:b9: 69:3c:9c:a6:5a:00:68:2d:19:11:43:75:77:a1:33:a6:70:e4: 98:8b:01:7c:fa:3b:f8:71:2a:c8:98:14:65:43:db:50:d4:70: 15:91:27:be:c5:21:a4:0b:41:ef:cd:0d:e0:00:84:32:75:c6: 4b:f4:35:64:df:0b:55:b5:ec:5b:68:38:bf:7b:aa:74:49:03: 73:0b:b5:10:48:0a:09:e7:d6:52:91:18:b8:7d:9a:a4:11:88: 28:f2:a5:a9:0e:aa:55:2c:d4:1f:fa:28:d7:f1:3d:d5:ef:66: c9:f7:83:7b:ad:ed:b7:50:a6:5a:db:88:0c:53:cf:70:4b:ae: 11:05:39:75:77:eb:b2:9e:31:76:0a:65:cf:90:5f:4a:a1:ef: 59:7f:09:41:3d:d5:98:43:86:11:a9:be:a8:b9:f0:10:3f:c5: 5c:e4:e0:e7:bb:87:c4:a2:3c:57:85:20:fa:38:22:ff:89:91: 19:45:ee:55:e4:d1:21:9e:d1:9f:88:3c:58:a7:0f:1b:88:2b: 39:29:9a:67:00:18:3b:4d:da:cb:21:5c:91:76:af:ba:33:63: 9d:d6:51:05 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgICA9owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTI4NTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIzMTJBNTU0QUIzNzM4 QUY1RDBEMzFBQjY2NzU4RDc1RkU5NzlBQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDADmXqfE5bT7wTGGfqbr/y3IWC9BhTx9EdAWPKY32bDYvB9Coy HvDwlDxdeeP9ioNH29iwUnUSFlALyIDKZpa1NejEATTWot/euUiap/nNfU41k92b jgH6t2d9bFKBtUPPmQk6oyOLXFMqKYPF5W+Tfjzbh07fFi9MO8zXbWz36nj1Bqm1 ABN2CosTVX2qePX2zgj3rA/aPXfjbKqHZwa8MxcgkK7TmsHdodGix1KwkHoOsbqk yrtV7w5r1NLtsEMgTYZUxmG6ZQ8UmurZfYMo7OadqFoQwUt9u2UwYrxYlX8m6CWk I33kyNm6HbPOfW8nvRWBm/Qp7ICD58Sno5TfAgMBAAGjggIrMIICJzAdBgNVHQ4E FgQUsxKlVKs3OK9dDTGrZnWNdf6XmsgwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9zeEtsVktzM09LOWREVEdyWm5XTmRmNlhtc2cu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAoAYPAeMA0GCSqGSIb3DQEBCwUAA4IBAQB6r4GixcybrCsu+Fbc M9QZvGPWb3ZuNMZVnl+Q/gwgmiOgzrlpPJymWgBoLRkRQ3V3oTOmcOSYiwF8+jv4 cSrImBRlQ9tQ1HAVkSe+xSGkC0HvzQ3gAIQydcZL9DVk3wtVtexbaDi/e6p0SQNz C7UQSAoJ59ZSkRi4fZqkEYgo8qWpDqpVLNQf+ijX8T3V72bJ94N7re23UKZa24gM U89wS64RBTl1d+uynjF2CmXPkF9Koe9ZfwlBPdWYQ4YRqb6oufAQP8Vc5ODnu4fE ojxXhSD6OCL/iZEZRe5V5NEhntGfiDxYpw8biCs5KZpnABg7TdrLIVyRdq+6M2Od 1lEF -----END CERTIFICATE-----Generated at Mon Apr 7 08:00:00 2025 by rpki-client