$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/zJw3AX6Ph5zfS4HAvWrnhtYro7Q.roa File: zJw3AX6Ph5zfS4HAvWrnhtYro7Q.roa (raw, json) Hash identifier: xm00zpBDr08m/cKv3fivaySAVUqidtYxv6XTSAr+l8s= Subject key identifier: CC:9C:37:01:7E:8F:87:9C:DF:4B:81:C0:BD:6A:E7:86:D6:2B:A3:B4 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 04DC Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/zJw3AX6Ph5zfS4HAvWrnhtYro7Q.roa Signing time: Tue 01 Apr 2025 01:55:49 +0000 ROA not before: Tue 01 Apr 2025 01:55:49 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:70::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1244 (0x4dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:55:49 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CC9C37017E8F879CDF4B81C0BD6AE786D62BA3B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:03:19:7d:47:28:3a:ab:10:17:7e:3e:03:7d: 2f:67:69:04:b5:79:98:b7:f4:c1:0e:43:ab:ba:9b: a3:cf:d6:e0:94:80:5d:46:95:cb:60:ba:05:4c:cf: 18:fd:f9:8f:38:ec:13:10:75:b5:e7:97:9e:a5:61: 12:72:c7:ae:b8:a6:0b:a6:46:6c:73:45:0b:ef:ed: a7:26:ec:93:7e:13:40:db:64:80:24:eb:e4:e6:2c: 31:d7:6f:6a:7b:13:bd:d6:2c:6f:cc:be:10:b0:be: fa:0b:14:d8:e2:5f:75:af:52:82:0e:5c:0f:02:e7: 53:c7:af:67:6b:5e:21:08:ad:72:c3:ff:ef:3c:4d: 10:f4:1b:37:36:f8:c6:21:5b:d4:71:bb:da:18:c1: 4b:1f:2b:b7:d4:5c:1c:ea:82:48:fa:b7:5b:18:00: 41:dc:ee:17:5d:6c:48:b4:a4:37:29:af:3a:94:8d: 0f:61:e7:5b:76:f4:6c:b1:22:85:e2:72:f9:83:97: 5c:4b:b7:3d:94:2b:0d:61:07:af:70:e1:11:f1:ad: 7a:af:02:71:bb:02:ee:cc:2d:d7:84:44:8d:79:4f: 9e:b8:2c:53:46:36:4b:28:68:e1:70:2a:aa:e5:f7: b7:5b:1f:3d:6a:41:e5:1b:0c:48:19:46:85:60:bc: db:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:9C:37:01:7E:8F:87:9C:DF:4B:81:C0:BD:6A:E7:86:D6:2B:A3:B4 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/zJw3AX6Ph5zfS4HAvWrnhtYro7Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:70::/48 Signature Algorithm: sha256WithRSAEncryption 27:d8:b0:70:cc:7f:74:ff:5a:f7:a7:07:58:b8:80:52:47:dd: 93:03:bb:79:f5:16:ed:31:1e:3d:ad:79:75:9a:1a:73:58:04: bd:c9:8e:03:ea:5c:89:50:03:16:9d:68:f1:0a:6e:7a:3d:0c: 1d:dd:ca:9f:05:a1:f4:21:07:a2:f0:11:6d:5d:c5:97:2f:ec: 0a:6a:c9:8b:4a:a3:b0:cd:b1:d2:93:55:78:25:fa:3b:a9:b2: fb:66:1b:3c:36:e9:96:f8:40:9b:80:ac:a0:21:a5:c2:a7:5d: b4:e1:4b:1f:cc:60:ab:df:43:fd:f0:ff:37:9a:35:d7:53:b6: 50:be:33:eb:fc:6a:48:49:37:84:3a:41:93:82:20:58:32:0f: 99:03:dd:d0:33:7e:fd:74:13:b9:b2:da:c5:e8:1a:ee:c4:0e: a8:e1:03:a2:db:8d:18:1c:8a:2b:44:3c:02:56:46:71:04:54: 04:00:59:7f:e5:1d:fb:b8:6a:76:33:60:57:e7:7e:d2:ee:7f: 15:bf:d4:50:55:d9:24:5a:84:1c:ce:d6:bf:be:10:51:b1:3a: d2:43:c2:bc:78:9d:fa:23:4d:13:a1:c0:b2:0a:e2:46:a6:57: 1c:3e:29:c9:b5:e3:76:27:fc:85:de:0c:98:93:48:98:3f:65: 06:03:37:2d -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgICBNwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTU1NDlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENDOUMzNzAxN0U4Rjg3 OUNERjRCODFDMEJENkFFNzg2RDYyQkEzQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRAxl9Ryg6qxAXfj4DfS9naQS1eZi39MEOQ6u6m6PP1uCUgF1G lctgugVMzxj9+Y847BMQdbXnl56lYRJyx664pgumRmxzRQvv7acm7JN+E0DbZIAk 6+TmLDHXb2p7E73WLG/MvhCwvvoLFNjiX3WvUoIOXA8C51PHr2drXiEIrXLD/+88 TRD0Gzc2+MYhW9Rxu9oYwUsfK7fUXBzqgkj6t1sYAEHc7hddbEi0pDcprzqUjQ9h 51t29GyxIoXicvmDl1xLtz2UKw1hB69w4RHxrXqvAnG7Au7MLdeERI15T564LFNG NksoaOFwKqrl97dbHz1qQeUbDEgZRoVgvNv1AgMBAAGjggIrMIICJzAdBgNVHQ4E FgQUzJw3AX6Ph5zfS4HAvWrnhtYro7QwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS96SnczQVg2UGg1emZTNEhBdldybmh0WXJvN1Eu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAoAcAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAn2LBwzH90/1r3pwdY uIBSR92TA7t59RbtMR49rXl1mhpzWAS9yY4D6lyJUAMWnWjxCm56PQwd3cqfBaH0 IQei8BFtXcWXL+wKasmLSqOwzbHSk1V4Jfo7qbL7Zhs8NumW+ECbgKygIaXCp120 4UsfzGCr30P98P83mjXXU7ZQvjPr/GpISTeEOkGTgiBYMg+ZA93QM379dBO5strF 6BruxA6o4QOi240YHIorRDwCVkZxBFQEAFl/5R37uGp2M2BX537S7n8Vv9RQVdkk WoQczta/vhBRsTrSQ8K8eJ36I00TocCyCuJGplccPinJteN2J/yF3gyYk0iYP2UG Azct -----END CERTIFICATE-----Generated at Mon Apr 7 07:59:40 2025 by rpki-client