$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-PMb900espxb4tw4xDWGYl73HAY.roa File: -PMb900espxb4tw4xDWGYl73HAY.roa (raw, json) Hash identifier: 8YqXkGxbUlbR9vJqhPqLA+zSXTGdI5ayAbC+tvZHhGY= Subject key identifier: F8:F3:1B:F7:4D:1E:B2:9C:5B:E2:DC:38:C4:35:86:62:5E:F7:1C:06 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DFF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-PMb900espxb4tw4xDWGYl73HAY.roa Signing time: Tue 01 Apr 2025 02:29:13 +0000 ROA not before: Tue 01 Apr 2025 02:29:13 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3583 (0xdff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:29:13 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=F8F31BF74D1EB29C5BE2DC38C43586625EF71C06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ed:cc:97:95:07:7a:68:2f:9c:e4:11:23:48: 0d:3c:3d:1b:70:05:4a:5a:42:e5:4d:bf:2e:de:f0: 36:0f:e8:9e:a9:8c:8d:9e:f0:b5:a9:52:e0:9d:73: 2e:52:13:5c:01:a1:7f:ec:01:bf:75:94:d1:53:27: 19:53:71:60:04:e5:54:69:7f:0d:d4:99:35:d1:1a: 2f:b3:90:6d:63:08:20:89:c8:1b:b2:3f:0f:e3:c8: b0:44:00:64:56:71:5e:3a:31:09:89:c2:ca:00:e0: 5a:1a:7f:a2:97:0d:b7:32:98:b6:da:9e:b8:79:fa: 68:46:c8:3c:69:79:06:0e:ab:4b:ea:76:e3:67:c6: da:54:e5:6c:38:85:bc:8d:f8:ac:82:3b:66:38:72: 06:fc:77:61:81:21:f3:59:04:da:a5:dc:9b:f5:ef: 43:f4:20:dc:9b:57:e3:f5:28:28:c4:6b:f6:8b:4f: 8b:7f:a5:3d:a6:b7:2e:fa:62:ec:ac:f0:43:d7:e2: 50:8f:52:f3:3e:aa:e2:bc:10:9a:79:fe:f5:77:68: a7:10:dd:af:86:19:a4:4b:94:f2:72:ba:25:af:14: 82:5f:04:ed:1b:47:f1:e3:c4:ee:b8:44:df:98:e2: ec:d4:78:74:20:ca:13:b6:5e:aa:05:53:d1:59:a0: 41:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F3:1B:F7:4D:1E:B2:9C:5B:E2:DC:38:C4:35:86:62:5E:F7:1C:06 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-PMb900espxb4tw4xDWGYl73HAY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.45.0/24 Signature Algorithm: sha256WithRSAEncryption da:a9:cf:a8:e8:09:0a:d4:50:8b:4a:fc:4d:5f:49:82:58:1a: 16:7d:c3:2c:17:c0:9f:4f:75:b8:8a:36:61:00:ab:79:61:cd: 87:0c:bc:f3:57:c8:cc:ee:8a:e9:f8:19:bc:d2:2b:1f:6f:f2: 10:73:bc:d5:42:67:21:23:62:e8:d0:30:01:7f:ec:ac:69:34: 45:fa:ac:01:7c:66:b7:84:45:0e:50:4f:07:96:59:13:1b:dd: 33:a6:20:2d:64:ec:03:f8:d4:1a:d8:7a:7e:8e:a9:fe:86:c6: 23:c6:4b:ce:22:58:e1:cf:46:80:a3:32:e6:f2:53:62:bd:df: ef:ed:3e:a5:09:50:ab:f9:f3:90:7a:17:0a:36:0c:b9:3c:26: 71:01:4b:ea:a4:6b:be:dc:f7:ee:d5:b6:9a:ef:54:b6:a1:fa: 2c:c1:9d:c2:6c:d6:54:93:37:80:7b:a3:34:f0:18:25:3c:e6: 0f:b0:3a:cd:2d:47:76:5e:b3:f1:72:63:87:44:d4:82:36:34: 9b:f5:fe:e8:47:6f:d9:9a:26:cf:2c:b3:04:3c:3b:ba:33:ed: 58:e8:d0:81:77:06:e1:2a:58:16:8e:15:e9:d8:d3:ff:80:ce: 3a:c1:bd:d6:2d:40:6a:fc:ca:d0:4c:e2:32:1e:23:1a:cc:40: 25:ff:7a:66 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDf8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI5MTNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEY4RjMxQkY3NEQxRUIy OUM1QkUyREMzOEM0MzU4NjYyNUVGNzFDMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx7cyXlQd6aC+c5BEjSA08PRtwBUpaQuVNvy7e8DYP6J6pjI2e 8LWpUuCdcy5SE1wBoX/sAb91lNFTJxlTcWAE5VRpfw3UmTXRGi+zkG1jCCCJyBuy Pw/jyLBEAGRWcV46MQmJwsoA4Foaf6KXDbcymLbanrh5+mhGyDxpeQYOq0vqduNn xtpU5Ww4hbyN+KyCO2Y4cgb8d2GBIfNZBNql3Jv170P0INybV+P1KCjEa/aLT4t/ pT2mty76Yuys8EPX4lCPUvM+quK8EJp5/vV3aKcQ3a+GGaRLlPJyuiWvFIJfBO0b R/HjxO64RN+Y4uzUeHQgyhO2XqoFU9FZoEEfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU+PMb900espxb4tw4xDWGYl73HAYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Ly1QTWI5MDBlc3B4YjR0dzR4RFdHWWw3M0hBWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYC0wDQYJKoZIhvcNAQELBQADggEBANqpz6joCQrUUItK/E1fSYJYGhZ9 wywXwJ9PdbiKNmEAq3lhzYcMvPNXyMzuiun4GbzSKx9v8hBzvNVCZyEjYujQMAF/ 7KxpNEX6rAF8ZreERQ5QTweWWRMb3TOmIC1k7AP41BrYen6Oqf6GxiPGS84iWOHP RoCjMubyU2K93+/tPqUJUKv585B6Fwo2DLk8JnEBS+qka77c9+7VtprvVLah+izB ncJs1lSTN4B7ozTwGCU85g+wOs0tR3Zes/FyY4dE1II2NJv1/uhHb9maJs8sswQ8 O7oz7Vjo0IF3BuEqWBaOFenY0/+AzjrBvdYtQGr8ytBM4jIeIxrMQCX/emY= -----END CERTIFICATE-----Generated at Sat Apr 5 23:11:17 2025 by rpki-client