$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30267/nGuAs1FQoC1hX8326_By1meZlWY.roa File: nGuAs1FQoC1hX8326_By1meZlWY.roa (raw, json) Hash identifier: wTdJMc4eqW1n/c7I8+quP+7xnGWFCPjtjLXhCG6VJzo= Subject key identifier: 9C:6B:80:B3:51:50:A0:2D:61:5F:CD:F6:EB:F0:72:D6:67:99:95:66 Certificate issuer: /CN=AB99FE69A832191F847C33B243442E9D68AD1433 Certificate serial: 59 Authority key identifier: AB:99:FE:69:A8:32:19:1F:84:7C:33:B2:43:44:2E:9D:68:AD:14:33 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/q5n-aagyGR-EfDOyQ0QunWitFDM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30267/nGuAs1FQoC1hX8326_By1meZlWY.roa Signing time: Sat 01 Mar 2025 01:28:16 +0000 ROA not before: Sat 01 Mar 2025 01:28:16 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 59103 IP address blocks: 2401:af80:9011::/56 maxlen: 56 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30267/q5n-aagyGR-EfDOyQ0QunWitFDM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30267/q5n-aagyGR-EfDOyQ0QunWitFDM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/q5n-aagyGR-EfDOyQ0QunWitFDM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AB99FE69A832191F847C33B243442E9D68AD1433 Validity Not Before: Mar 1 01:28:16 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=9C6B80B35150A02D615FCDF6EBF072D667999566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:66:a5:22:bd:71:e4:c5:6c:9a:34:ca:15:71: b7:ef:96:ac:e3:03:d8:cf:3a:2d:7b:2f:c3:e5:5d: 11:75:49:9d:8d:7d:b8:8b:70:b0:0c:b2:dd:be:2d: 53:bc:aa:7b:af:56:a3:6a:b7:32:9b:38:c8:a9:8e: c2:48:8c:1e:ff:91:96:30:eb:0a:e3:14:3c:e4:91: 84:ad:a1:ca:a7:9a:69:36:47:26:35:06:56:63:85: 55:24:ed:87:ea:ff:dc:e2:e5:9e:aa:93:25:09:23: 16:42:2c:6a:24:01:da:07:8a:2f:74:f9:99:8b:62: 52:41:a4:e1:73:8d:c1:bc:f4:fd:28:f8:f5:7d:a1: 8b:e5:41:b3:8e:a9:8a:6c:fc:fc:23:fa:84:a8:55: 71:4e:4b:2d:fc:55:43:98:d1:d5:0f:05:b4:80:2d: ea:18:1f:cb:d2:20:c2:3f:88:57:16:67:fc:92:1d: bf:da:b8:9c:cd:b5:c2:44:0b:ee:f3:7a:0b:8f:f2: 3f:6f:e9:16:3f:e1:30:60:fc:d4:88:a8:f7:c6:0d: 6f:f2:64:a2:60:87:e0:fb:5d:64:e6:63:38:84:5f: cb:9b:ba:d0:d6:fc:38:3e:4e:5e:26:87:bd:1c:9e: b6:7d:ff:88:d1:33:10:f5:7f:4c:3d:94:a1:9a:de: 4f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:6B:80:B3:51:50:A0:2D:61:5F:CD:F6:EB:F0:72:D6:67:99:95:66 X509v3 Authority Key Identifier: keyid:AB:99:FE:69:A8:32:19:1F:84:7C:33:B2:43:44:2E:9D:68:AD:14:33 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30267/q5n-aagyGR-EfDOyQ0QunWitFDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/q5n-aagyGR-EfDOyQ0QunWitFDM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30267/nGuAs1FQoC1hX8326_By1meZlWY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:af80:9011::/56 Signature Algorithm: sha256WithRSAEncryption 69:e1:68:83:b5:1b:c1:a1:18:8d:99:70:33:84:ad:d0:5d:bd: 40:38:10:83:e7:15:ff:95:36:81:84:54:a9:44:e8:ff:99:54: 71:e4:af:24:41:9a:f7:d0:aa:04:59:5e:d7:05:b0:4a:45:f9: af:2a:4f:9b:4c:13:29:7e:c9:22:2f:7d:8b:3f:aa:ec:b0:31: 68:2c:14:b3:db:ca:f3:40:dd:16:0d:51:0c:15:d6:b6:07:6f: 59:7e:58:03:0a:94:53:7c:57:a8:bc:4f:35:14:b0:06:a3:15: 2c:4c:85:c3:d0:ec:c8:a0:7c:8b:1e:97:7f:fd:3d:4d:94:65: d4:e5:cd:d5:01:cf:11:94:9a:b4:88:72:6b:1b:b5:1c:68:25: be:c2:06:a0:07:04:b2:d0:8f:92:ef:e6:84:27:b0:a6:df:35: d5:16:e1:d0:db:c9:97:04:41:e9:e3:2b:fe:b0:e8:c7:f4:65: cb:09:bf:a5:1a:fe:77:2c:da:02:2e:ff:cf:0a:07:ec:1a:73: 3f:00:87:c6:a6:fd:c5:22:ea:5a:1a:7f:0e:c9:dc:23:42:0f: 63:a6:14:be:fd:68:ec:1e:fe:fb:91:72:d5:92:22:4d:5d:fc: ca:48:ea:9f:f8:c8:4c:94:27:31:b6:89:f0:41:5c:d8:f5:39: a7:14:53:b1 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgIBWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBQjk5 RkU2OUE4MzIxOTFGODQ3QzMzQjI0MzQ0MkU5RDY4QUQxNDMzMB4XDTI1MDMwMTAx MjgxNloXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoOUM2QjgwQjM1MTUwQTAy RDYxNUZDREY2RUJGMDcyRDY2Nzk5OTU2NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMRmpSK9ceTFbJo0yhVxt++WrOMD2M86LXsvw+VdEXVJnY19uItw sAyy3b4tU7yqe69Wo2q3Mps4yKmOwkiMHv+RljDrCuMUPOSRhK2hyqeaaTZHJjUG VmOFVSTth+r/3OLlnqqTJQkjFkIsaiQB2geKL3T5mYtiUkGk4XONwbz0/Sj49X2h i+VBs46pimz8/CP6hKhVcU5LLfxVQ5jR1Q8FtIAt6hgfy9Igwj+IVxZn/JIdv9q4 nM21wkQL7vN6C4/yP2/pFj/hMGD81Iio98YNb/JkomCH4PtdZOZjOIRfy5u60Nb8 OD5OXiaHvRyetn3/iNEzEPV/TD2UoZreTzMCAwEAAaOCAiwwggIoMB0GA1UdDgQW BBSca4CzUVCgLWFfzfbr8HLWZ5mVZjAfBgNVHSMEGDAWgBSrmf5pqDIZH4R8M7JD RC6daK0UMzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAyNjcvcTVuLWFhZ3lHUi1FZkRPeVEwUXVuV2l0RkRNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvcTVuLWFhZ3lHUi1FZkRPeVEwUXVu V2l0RkRNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMjY3L25HdUFzMUZRb0MxaFg4MzI2X0J5MW1lWmxXWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIwYIKwYBBQUHAQcBAf8EFDASMBAE AgACMAoDCAAkAa+AkBEAMA0GCSqGSIb3DQEBCwUAA4IBAQBp4WiDtRvBoRiNmXAz hK3QXb1AOBCD5xX/lTaBhFSpROj/mVRx5K8kQZr30KoEWV7XBbBKRfmvKk+bTBMp fskiL32LP6rssDFoLBSz28rzQN0WDVEMFda2B29ZflgDCpRTfFeovE81FLAGoxUs TIXD0OzIoHyLHpd//T1NlGXU5c3VAc8RlJq0iHJrG7UcaCW+wgagBwSy0I+S7+aE J7Cm3zXVFuHQ28mXBEHp4yv+sOjH9GXLCb+lGv53LNoCLv/PCgfsGnM/AIfGpv3F IupaGn8OydwjQg9jphS+/WjsHv77kXLVkiJNXfzKSOqf+MhMlCcxtonwQVzY9Tmn FFOx -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:51 2025 by rpki-client