$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30443/q-nzpI8B528vG4yXv5iofTgKwX8.roa File: q-nzpI8B528vG4yXv5iofTgKwX8.roa (raw, json) Hash identifier: MQ4Qupe7OcNleYfdvU5w0TtWJgb+5RB9yIakVJeCRxY= Subject key identifier: AB:E9:F3:A4:8F:01:E7:6F:2F:1B:8C:97:BF:98:A8:7D:38:0A:C1:7F Certificate issuer: /CN=DAF8DA0CEB9A4A4E6637D619AE4E712DA91AF491 Certificate serial: 04 Authority key identifier: DA:F8:DA:0C:EB:9A:4A:4E:66:37:D6:19:AE:4E:71:2D:A9:1A:F4:91 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2vjaDOuaSk5mN9YZrk5xLaka9JE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30443/q-nzpI8B528vG4yXv5iofTgKwX8.roa Signing time: Wed 26 Mar 2025 03:03:52 +0000 ROA not before: Wed 26 Mar 2025 03:03:52 +0000 ROA not after: Wed 25 Mar 2026 08:54:55 +0000 asID: 0 IP address blocks: 2401:d0a0:8000::/33 maxlen: 128 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30443/2vjaDOuaSk5mN9YZrk5xLaka9JE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30443/2vjaDOuaSk5mN9YZrk5xLaka9JE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2vjaDOuaSk5mN9YZrk5xLaka9JE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DAF8DA0CEB9A4A4E6637D619AE4E712DA91AF491 Validity Not Before: Mar 26 03:03:52 2025 GMT Not After : Mar 25 08:54:55 2026 GMT Subject: CN=ABE9F3A48F01E76F2F1B8C97BF98A87D380AC17F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6e:cf:05:89:19:4f:4c:fc:7d:bc:f2:f9:70: b2:58:9d:9a:c4:be:e9:ad:3b:08:fe:c4:4d:83:1a: b7:c8:97:5b:2f:ce:df:f8:ff:bc:2d:68:79:d0:a6: 3c:83:a6:55:8b:3b:87:44:21:37:23:54:a0:72:8d: 9d:2f:d1:5c:dc:b6:4f:20:2b:e2:c9:35:24:6b:05: 12:ae:0e:af:7d:53:80:5f:db:d7:15:77:91:9d:3f: b4:0f:1e:e6:c1:50:bf:57:ab:1d:cb:18:e2:7f:d9: 0f:1a:e0:29:43:80:38:ff:ab:31:48:d1:75:42:81: 8c:c5:8e:73:f1:30:62:c4:28:ff:34:a3:a8:c3:bd: 06:81:1b:fb:6d:d9:aa:ff:13:5b:d6:e1:a5:78:05: 93:de:18:dd:79:50:1a:d1:46:42:af:29:57:b9:71: ab:70:c6:92:b1:1c:ca:3e:f0:e1:bb:97:25:96:d6: 09:1c:43:16:fb:4d:37:df:b5:5a:43:70:a9:7d:17: 28:b3:dd:d1:ea:fc:03:80:37:98:7c:3b:1d:ef:90: 22:d0:64:25:9d:7f:d4:31:67:a7:3c:8e:8b:35:95: b3:2c:a5:05:c5:60:9c:53:b7:a5:94:69:a9:f6:b6: b0:af:aa:0a:31:ad:fc:cf:a2:06:23:4a:13:3c:e1: ee:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E9:F3:A4:8F:01:E7:6F:2F:1B:8C:97:BF:98:A8:7D:38:0A:C1:7F X509v3 Authority Key Identifier: keyid:DA:F8:DA:0C:EB:9A:4A:4E:66:37:D6:19:AE:4E:71:2D:A9:1A:F4:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30443/2vjaDOuaSk5mN9YZrk5xLaka9JE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2vjaDOuaSk5mN9YZrk5xLaka9JE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30443/q-nzpI8B528vG4yXv5iofTgKwX8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d0a0:8000::/33 Signature Algorithm: sha256WithRSAEncryption 58:96:f6:9c:f1:dc:9a:ea:b9:fe:9a:c2:e9:57:04:37:da:b1: e2:a3:ef:20:80:6b:88:63:40:9f:b7:18:10:aa:6e:66:fd:f9: f2:e1:23:17:06:8d:6f:0d:6b:64:21:35:f4:c9:14:b7:50:60: 27:3a:41:36:9c:31:74:f1:66:73:03:27:cc:74:43:c3:28:05: 64:57:cb:c8:99:74:59:72:c9:85:1c:2c:95:d3:68:c8:b6:85: 7a:7e:cf:37:d7:5f:73:54:1b:12:b4:76:d8:43:74:ea:17:32: b3:5f:30:ca:b3:97:47:99:5e:b5:17:52:68:2d:1d:2a:e1:65: b3:ef:da:ab:21:b6:47:01:cc:95:e1:a6:19:c8:fe:23:46:3c: 65:12:82:f5:6c:e5:09:d0:58:8b:29:af:c1:12:4e:03:10:20: 8b:0b:14:c5:dd:54:4f:72:f6:67:aa:00:4c:e3:9c:6e:c6:4a: 56:a3:a0:48:7a:02:6c:37:f1:b5:ce:e4:02:c0:87:f0:e6:16: d7:d0:9e:0f:19:ab:c5:12:80:7c:4b:80:eb:10:86:ce:be:bc: cb:3b:5f:6f:a3:5c:ee:05:c2:e9:7e:af:1f:3c:bd:bc:2f:21: c9:fa:c6:dd:4a:8e:99:1d:63:83:43:69:2f:3f:8f:3c:68:c2: 15:07:88:9a -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEQUY4 REEwQ0VCOUE0QTRFNjYzN0Q2MTlBRTRFNzEyREE5MUFGNDkxMB4XDTI1MDMyNjAz MDM1MloXDTI2MDMyNTA4NTQ1NVowMzExMC8GA1UEAxMoQUJFOUYzQTQ4RjAxRTc2 RjJGMUI4Qzk3QkY5OEE4N0QzODBBQzE3RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOpuzwWJGU9M/H288vlwslidmsS+6a07CP7ETYMat8iXWy/O3/j/ vC1oedCmPIOmVYs7h0QhNyNUoHKNnS/RXNy2TyAr4sk1JGsFEq4Or31TgF/b1xV3 kZ0/tA8e5sFQv1erHcsY4n/ZDxrgKUOAOP+rMUjRdUKBjMWOc/EwYsQo/zSjqMO9 BoEb+23Zqv8TW9bhpXgFk94Y3XlQGtFGQq8pV7lxq3DGkrEcyj7w4buXJZbWCRxD FvtNN9+1WkNwqX0XKLPd0er8A4A3mHw7He+QItBkJZ1/1DFnpzyOizWVsyylBcVg nFO3pZRpqfa2sK+qCjGt/M+iBiNKEzzh7p8CAwEAAaOCAiowggImMB0GA1UdDgQW BBSr6fOkjwHnby8bjJe/mKh9OArBfzAfBgNVHSMEGDAWgBTa+NoM65pKTmY31hmu TnEtqRr0kTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA0NDMvMnZqYURPdWFTazVtTjlZWnJrNXhMYWthOUpFLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMnZqYURPdWFTazVtTjlZWnJrNXhM YWthOUpFLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwNDQzL3EtbnpwSThCNTI4dkc0eVh2NWlvZlRnS3dYOC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgckAdCggDANBgkqhkiG9w0BAQsFAAOCAQEAWJb2nPHcmuq5/prC6VcE N9qx4qPvIIBriGNAn7cYEKpuZv358uEjFwaNbw1rZCE19MkUt1BgJzpBNpwxdPFm cwMnzHRDwygFZFfLyJl0WXLJhRwsldNoyLaFen7PN9dfc1QbErR22EN06hcys18w yrOXR5letRdSaC0dKuFls+/aqyG2RwHMleGmGcj+I0Y8ZRKC9WzlCdBYiymvwRJO AxAgiwsUxd1UT3L2Z6oATOOcbsZKVqOgSHoCbDfxtc7kAsCH8OYW19CeDxmrxRKA fEuA6xCGzr68yztfb6Nc7gXC6X6vHzy9vC8hyfrG3UqOmR1jg0NpLz+PPGjCFQeI mg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:33 2025 by rpki-client