$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30440/DgDKCG3ePf5gsklz245ibQDkhgk.roa File: DgDKCG3ePf5gsklz245ibQDkhgk.roa (raw, json) Hash identifier: ad3/kFuQ3Mdl3T1nM415+/Dr5KL43HWHojsdnNCX1tQ= Subject key identifier: 0E:00:CA:08:6D:DE:3D:FE:60:B2:49:73:DB:8E:62:6D:00:E4:86:09 Certificate issuer: /CN=147EB332823E1C1329DCE74AE8ED7D260CA8FD82 Certificate serial: 02 Authority key identifier: 14:7E:B3:32:82:3E:1C:13:29:DC:E7:4A:E8:ED:7D:26:0C:A8:FD:82 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/FH6zMoI-HBMp3OdK6O19Jgyo_YI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30440/DgDKCG3ePf5gsklz245ibQDkhgk.roa Signing time: Mon 10 Mar 2025 06:03:15 +0000 ROA not before: Mon 10 Mar 2025 06:03:15 +0000 ROA not after: Tue 10 Mar 2026 05:50:44 +0000 asID: 152858 IP address blocks: 2401:b720::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30440/FH6zMoI-HBMp3OdK6O19Jgyo_YI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30440/FH6zMoI-HBMp3OdK6O19Jgyo_YI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/FH6zMoI-HBMp3OdK6O19Jgyo_YI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=147EB332823E1C1329DCE74AE8ED7D260CA8FD82 Validity Not Before: Mar 10 06:03:15 2025 GMT Not After : Mar 10 05:50:44 2026 GMT Subject: CN=0E00CA086DDE3DFE60B24973DB8E626D00E48609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:71:5c:e4:6b:85:b8:2e:33:80:2e:f3:d3:a3: 45:4b:31:94:54:3a:e0:ee:ec:1b:4c:21:82:90:ad: c1:eb:8a:c2:72:db:05:31:59:9c:34:b5:98:d1:58: 66:99:e9:68:2a:cb:8e:e8:59:37:e5:3f:b3:0b:7a: f0:b0:8e:df:3b:72:82:ee:ee:20:73:7b:26:32:4f: 5e:58:ae:81:3f:e3:75:31:5f:5a:7d:a5:22:82:ef: 26:5f:21:7a:12:73:3a:4e:00:2a:e2:7c:14:45:b3: 37:79:61:8c:db:54:11:b8:00:1f:5e:ad:13:41:af: a9:9a:fa:41:33:af:6f:49:ca:f5:ee:f6:77:d5:03: fd:95:72:67:0a:fa:8c:69:96:cc:4b:f7:30:2a:96: 96:7e:f8:2b:2b:83:c1:02:eb:ab:c5:d5:7d:ab:17: 4a:f0:03:da:df:34:f0:be:f7:4e:05:20:50:71:47: 39:25:cf:61:b2:8c:69:c5:27:b2:bf:d6:1f:3b:a2: 1a:4a:1c:ad:8c:57:89:43:72:5a:a0:30:77:9d:e0: 2e:93:eb:8b:d9:08:9b:14:5b:8c:76:dd:0a:9f:8a: 4d:29:75:13:23:8c:ed:a6:d2:89:37:30:88:08:81: 93:9f:9b:b9:8d:ed:a9:f0:76:0f:2e:60:ce:c7:52: 80:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:00:CA:08:6D:DE:3D:FE:60:B2:49:73:DB:8E:62:6D:00:E4:86:09 X509v3 Authority Key Identifier: keyid:14:7E:B3:32:82:3E:1C:13:29:DC:E7:4A:E8:ED:7D:26:0C:A8:FD:82 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30440/FH6zMoI-HBMp3OdK6O19Jgyo_YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/FH6zMoI-HBMp3OdK6O19Jgyo_YI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30440/DgDKCG3ePf5gsklz245ibQDkhgk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b720::/32 Signature Algorithm: sha256WithRSAEncryption 29:a3:91:53:eb:45:f7:78:af:ff:dd:29:a1:1c:a0:cf:b4:37: 7f:1d:68:59:54:03:48:18:ca:4b:43:d3:c4:78:73:b0:93:80: 20:01:0c:0d:a5:51:c2:07:d5:14:27:af:b7:78:c1:1b:4c:a9: ea:cd:21:50:bf:39:2c:31:e3:e1:25:06:97:c0:ad:a0:7f:be: 04:67:93:9c:d5:70:4c:91:48:ae:5d:e5:da:87:35:8c:96:d5: 8e:25:48:aa:13:a7:cc:93:a3:58:32:2c:b7:42:38:9b:d5:35: 1d:21:34:66:46:3c:12:f4:c2:8e:de:48:7d:da:93:f0:65:97: 94:02:d7:58:67:7b:2e:7a:e1:ca:d0:39:92:79:3c:4f:0e:8b: bd:80:cc:22:9e:34:2b:3e:82:eb:b6:8c:94:5e:b0:d3:83:22: b0:c2:d2:9a:27:8e:49:52:15:09:e2:d6:b1:dc:fd:db:3d:85: 32:06:b5:f8:b7:ed:75:0b:e1:4f:1f:45:d2:25:70:2c:11:63: 7a:b3:ae:4c:a5:0c:63:19:80:c2:1d:77:a9:de:44:a9:b5:1e: 4e:fd:c4:a8:23:e9:fe:3d:6c:65:d5:6a:c0:cc:63:a4:49:15: 8b:45:45:ed:d2:42:6e:47:94:de:38:0c:95:6f:c5:0b:1f:57: d3:cf:c8:ea -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxNDdF QjMzMjgyM0UxQzEzMjlEQ0U3NEFFOEVEN0QyNjBDQThGRDgyMB4XDTI1MDMxMDA2 MDMxNVoXDTI2MDMxMDA1NTA0NFowMzExMC8GA1UEAxMoMEUwMENBMDg2RERFM0RG RTYwQjI0OTczREI4RTYyNkQwMEU0ODYwOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMFxXORrhbguM4Au89OjRUsxlFQ64O7sG0whgpCtweuKwnLbBTFZ nDS1mNFYZpnpaCrLjuhZN+U/swt68LCO3ztygu7uIHN7JjJPXliugT/jdTFfWn2l IoLvJl8hehJzOk4AKuJ8FEWzN3lhjNtUEbgAH16tE0GvqZr6QTOvb0nK9e72d9UD /ZVyZwr6jGmWzEv3MCqWln74KyuDwQLrq8XVfasXSvAD2t808L73TgUgUHFHOSXP YbKMacUnsr/WHzuiGkocrYxXiUNyWqAwd53gLpPri9kImxRbjHbdCp+KTSl1EyOM 7abSiTcwiAiBk5+buY3tqfB2Dy5gzsdSgD0CAwEAAaOCAikwggIlMB0GA1UdDgQW BBQOAMoIbd49/mCySXPbjmJtAOSGCTAfBgNVHSMEGDAWgBQUfrMygj4cEync50ro 7X0mDKj9gjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0NDAvRkg2ek1vSS1IQk1wM09kSzZPMTlKZ3lvX1lJLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvRkg2ek1vSS1IQk1wM09kSzZPMTlK Z3lvX1lJLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDQwL0RnREtDRzNlUGY1Z3NrbHoyNDVpYlFEa2hnay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAbcgMA0GCSqGSIb3DQEBCwUAA4IBAQApo5FT60X3eK//3SmhHKDP tDd/HWhZVANIGMpLQ9PEeHOwk4AgAQwNpVHCB9UUJ6+3eMEbTKnqzSFQvzksMePh JQaXwK2gf74EZ5Oc1XBMkUiuXeXahzWMltWOJUiqE6fMk6NYMiy3Qjib1TUdITRm RjwS9MKO3kh92pPwZZeUAtdYZ3sueuHK0DmSeTxPDou9gMwinjQrPoLrtoyUXrDT gyKwwtKaJ45JUhUJ4tax3P3bPYUyBrX4t+11C+FPH0XSJXAsEWN6s65MpQxjGYDC HXep3kSptR5O/cSoI+n+PWxl1WrAzGOkSRWLRUXt0kJuR5TeOAyVb8ULH1fTz8jq -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:08 2025 by rpki-client