$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1lxZuVSu-hC-p8j5eqQVdMdNxDc.roa File: 1lxZuVSu-hC-p8j5eqQVdMdNxDc.roa (raw, json) Hash identifier: H1z6ge/7PVzRCj+wMR7TliW6Vwtfqr0OTs1Ig7tAiwc= Subject key identifier: D6:5C:59:B9:54:AE:FA:10:BE:A7:C8:F9:7A:A4:15:74:C7:4D:C4:37 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C82 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1lxZuVSu-hC-p8j5eqQVdMdNxDc.roa Signing time: Tue 01 Apr 2025 02:03:16 +0000 ROA not before: Tue 01 Apr 2025 02:03:16 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3202 (0xc82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:16 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=D65C59B954AEFA10BEA7C8F97AA41574C74DC437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:31:16:56:7d:20:44:55:56:3f:43:b8:b2:a5: c8:be:fe:50:75:46:de:cd:0b:00:3a:57:4d:0e:0e: 34:e9:30:d4:f9:fd:09:a5:11:99:e4:41:a3:51:87: e6:2a:58:d1:ea:28:36:7f:a3:6f:9b:7f:53:89:39: b6:a9:4d:be:47:9f:cb:87:ea:66:fb:51:5d:eb:e6: eb:06:9b:6a:8e:4a:90:a8:d9:69:f6:b6:b4:5f:f0: 3c:8a:87:82:46:a7:d8:d8:63:0b:34:48:6f:dd:ff: ed:a8:f3:62:72:04:b3:dc:12:c5:e3:60:e3:8a:2d: e4:8b:f9:4e:7f:55:84:24:de:63:0f:a0:73:7b:95: 72:85:be:ce:82:54:3a:14:93:a0:46:06:d6:2e:5d: 37:17:43:b0:31:3f:5d:1f:fb:a0:e0:87:a9:a9:05: 0d:d1:6d:04:39:6c:43:1d:a9:67:08:d4:85:d8:61: 22:0d:3b:1c:0e:ef:44:af:1a:0c:ff:69:f3:3f:43: 84:fe:b8:a8:1b:5a:bc:e1:cb:84:77:81:71:f8:9e: 98:0d:48:15:dd:77:0f:fe:51:91:79:79:44:f6:86: 37:b7:d5:1e:b3:f9:1e:2d:3f:33:60:21:6f:3b:86: 5a:09:b3:dc:3f:c1:f6:93:0a:29:7d:ac:b5:9a:3d: 03:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:5C:59:B9:54:AE:FA:10:BE:A7:C8:F9:7A:A4:15:74:C7:4D:C4:37 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1lxZuVSu-hC-p8j5eqQVdMdNxDc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.164.0/23 Signature Algorithm: sha256WithRSAEncryption 98:4f:f6:e2:10:c9:6a:f3:75:24:2a:cc:c3:2f:5b:b9:b9:91: 23:7d:72:f1:f7:7c:c8:22:30:58:db:1f:13:20:63:55:31:ea: 8f:df:d2:cd:b5:af:7f:e4:d1:d7:94:a9:4b:4d:9a:5e:05:59: 38:5a:82:d8:41:27:4c:d2:d2:07:50:9b:7b:ff:d8:b6:4b:86: 0d:ef:76:5a:5e:25:62:50:59:dc:c9:48:6f:fe:2a:69:96:28: a3:4e:90:7c:af:e4:e8:3d:9d:eb:91:24:65:2c:92:ba:35:ab: c4:13:c9:2f:d7:af:c4:89:78:4f:0e:0a:43:5f:48:bc:0f:b3: 55:8a:23:85:ea:62:15:51:67:f8:76:2f:11:08:27:ab:34:eb: 03:1d:a1:54:d0:5d:a0:08:59:d1:2d:1e:e0:c4:6e:f7:94:7e: e8:c8:5c:86:38:e9:b6:48:5d:04:a6:6b:6c:fb:03:22:a1:df: b8:f0:12:58:3d:32:49:44:b1:ad:79:24:30:0d:b2:30:99:5e: 68:ab:6c:7a:7a:27:45:11:c9:d4:3a:65:d9:12:21:d4:52:4b: 19:c1:b3:58:6a:47:a4:7e:87:84:de:09:6f:1b:09:b3:46:46: 16:24:8d:65:7a:b8:8d:56:ec:57:42:fe:01:f2:80:5c:94:ed: d9:f4:9b:51 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDIIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQ2NUM1OUI5NTRBRUZB MTBCRUE3QzhGOTdBQTQxNTc0Qzc0REM0MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCWMRZWfSBEVVY/Q7iypci+/lB1Rt7NCwA6V00ODjTpMNT5/Qml EZnkQaNRh+YqWNHqKDZ/o2+bf1OJObapTb5Hn8uH6mb7UV3r5usGm2qOSpCo2Wn2 trRf8DyKh4JGp9jYYws0SG/d/+2o82JyBLPcEsXjYOOKLeSL+U5/VYQk3mMPoHN7 lXKFvs6CVDoUk6BGBtYuXTcXQ7AxP10f+6Dgh6mpBQ3RbQQ5bEMdqWcI1IXYYSIN OxwO70SvGgz/afM/Q4T+uKgbWrzhy4R3gXH4npgNSBXddw/+UZF5eUT2hje31R6z +R4tPzNgIW87hloJs9w/wfaTCil9rLWaPQOZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1lxZuVSu+hC+p8j5eqQVdMdNxDcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzFseFp1VlN1LWhDLXA4ajVlcVFWZE1kTnhEYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYqQwDQYJKoZIhvcNAQELBQADggEBAJhP9uIQyWrzdSQqzMMvW7m5kSN9 cvH3fMgiMFjbHxMgY1Ux6o/f0s21r3/k0deUqUtNml4FWThagthBJ0zS0gdQm3v/ 2LZLhg3vdlpeJWJQWdzJSG/+KmmWKKNOkHyv5Og9neuRJGUskro1q8QTyS/Xr8SJ eE8OCkNfSLwPs1WKI4XqYhVRZ/h2LxEIJ6s06wMdoVTQXaAIWdEtHuDEbveUfujI XIY46bZIXQSma2z7AyKh37jwElg9MklEsa15JDANsjCZXmirbHp6J0URydQ6ZdkS IdRSSxnBs1hqR6R+h4TeCW8bCbNGRhYkjWV6uI1W7FdC/gHygFyU7dn0m1E= -----END CERTIFICATE-----Generated at Sat Apr 5 17:07:38 2025 by rpki-client