$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3G1GO_fXbVbIOtfuzYOyl9z-VWk.roa File: 3G1GO_fXbVbIOtfuzYOyl9z-VWk.roa (raw, json) Hash identifier: x6oz7alfQDcpvVZBF9IDZokg3/DosGjX7iszLK070f8= Subject key identifier: DC:6D:46:3B:F7:D7:6D:56:C8:3A:D7:EE:CD:83:B2:97:DC:FE:55:69 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DA0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3G1GO_fXbVbIOtfuzYOyl9z-VWk.roa Signing time: Tue 01 Apr 2025 02:24:36 +0000 ROA not before: Tue 01 Apr 2025 02:24:36 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3488 (0xda0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:24:36 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=DC6D463BF7D76D56C83AD7EECD83B297DCFE5569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5a:5f:68:a7:d7:aa:1a:92:d4:ac:a2:bb:93: bc:4a:f5:c2:50:73:c4:6f:38:2e:f1:2c:a9:b4:33: 0b:bc:4c:dc:c6:f9:7b:e5:4c:ab:e9:b8:bd:50:5c: d1:9f:c0:cd:43:d6:01:81:c3:33:14:14:7d:66:13: a7:3c:6b:ac:d7:3b:87:f8:92:34:86:ee:4c:ac:be: 74:e9:38:07:07:c1:ec:a3:41:cf:17:71:b2:75:17: bb:68:b6:c4:e9:6d:44:5e:81:52:e0:ce:3c:3c:71: b1:ec:b4:f1:40:21:08:9b:8d:82:2e:ab:85:50:e4: 5f:52:ee:25:38:c5:62:12:52:ac:03:c1:82:bd:02: 60:cd:88:05:a7:a0:5b:85:5e:fc:e5:d4:c3:2b:f0: cc:cf:b2:53:d1:58:14:78:2c:6a:7a:e0:2e:c4:6c: 1d:3b:1a:0a:d5:7b:d2:a4:d3:07:69:5b:0f:82:2f: 08:b4:80:b4:9f:f2:80:3e:2f:33:83:8f:f5:c0:36: 75:7b:03:c0:d6:7f:dc:e1:87:36:02:b5:a1:77:dc: 3f:54:ab:aa:a1:cc:72:f8:0a:a9:c5:54:75:9b:a0: 3e:7a:fb:1c:66:ec:09:61:36:63:59:2a:ae:36:9a: 2f:39:cc:9f:96:4c:a8:af:bb:54:c2:1f:16:bd:18: cf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:6D:46:3B:F7:D7:6D:56:C8:3A:D7:EE:CD:83:B2:97:DC:FE:55:69 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3G1GO_fXbVbIOtfuzYOyl9z-VWk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 74:ae:fd:1d:be:70:84:51:1e:5f:54:fd:19:00:f4:ff:da:b7: e3:d8:f1:6e:38:ce:01:68:66:de:c6:5c:43:f4:3d:ee:62:17: e6:7c:2d:4c:75:eb:5a:8a:e4:f8:28:a9:cd:5c:64:35:8e:0a: 12:81:35:12:88:76:50:fc:71:65:e4:34:6c:3a:f7:5e:e7:64: 46:79:ab:e1:d6:9a:49:a4:bd:80:76:65:0f:31:f3:f2:d9:9c: 64:61:ee:d5:3c:7c:92:a8:76:21:e4:52:ea:9b:27:17:48:1b: 93:9d:45:80:55:b3:c2:fa:d4:6f:7d:65:5f:1a:e9:6b:74:da: 8e:4d:74:cc:7c:76:9e:6c:3e:9c:f3:af:e8:13:95:df:a5:2c: e6:fc:41:77:21:3f:fa:ac:51:10:c0:e5:34:d8:46:86:c5:02: 69:1b:0b:e8:dd:fa:98:cc:cb:b7:d5:62:1e:45:60:f3:d9:7d: 88:63:0b:67:49:5d:bc:9a:c8:e3:41:f7:67:6e:a5:14:c1:ee: f1:e8:b6:e1:ea:12:2f:cf:92:85:8f:4d:a4:48:8c:81:60:4c: 3e:a3:c6:58:27:d1:67:4a:9a:f5:ba:99:86:d6:72:0b:96:bf: 2d:0e:fe:69:47:1a:f4:25:aa:82:1f:c5:3b:f4:09:d8:e3:70: c9:2b:36:f9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDaAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI0MzZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERDNkQ0NjNCRjdENzZE NTZDODNBRDdFRUNEODNCMjk3RENGRTU1NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjWl9op9eqGpLUrKK7k7xK9cJQc8RvOC7xLKm0Mwu8TNzG+Xvl TKvpuL1QXNGfwM1D1gGBwzMUFH1mE6c8a6zXO4f4kjSG7kysvnTpOAcHweyjQc8X cbJ1F7totsTpbURegVLgzjw8cbHstPFAIQibjYIuq4VQ5F9S7iU4xWISUqwDwYK9 AmDNiAWnoFuFXvzl1MMr8MzPslPRWBR4LGp64C7EbB07GgrVe9Kk0wdpWw+CLwi0 gLSf8oA+LzODj/XANnV7A8DWf9zhhzYCtaF33D9Uq6qhzHL4CqnFVHWboD56+xxm 7AlhNmNZKq42mi85zJ+WTKivu1TCHxa9GM+7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3G1GO/fXbVbIOtfuzYOyl9z+VWkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNHMUdPX2ZYYlZiSU90ZnV6WU95bDl6LVZXay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYBYwDQYJKoZIhvcNAQELBQADggEBAHSu/R2+cIRRHl9U/RkA9P/at+PY 8W44zgFoZt7GXEP0Pe5iF+Z8LUx161qK5Pgoqc1cZDWOChKBNRKIdlD8cWXkNGw6 917nZEZ5q+HWmkmkvYB2ZQ8x8/LZnGRh7tU8fJKodiHkUuqbJxdIG5OdRYBVs8L6 1G99ZV8a6Wt02o5NdMx8dp5sPpzzr+gTld+lLOb8QXchP/qsURDA5TTYRobFAmkb C+jd+pjMy7fVYh5FYPPZfYhjC2dJXbyayONB92dupRTB7vHotuHqEi/PkoWPTaRI jIFgTD6jxlgn0WdKmvW6mYbWcguWvy0O/mlHGvQlqoIfxTv0CdjjcMkrNvk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:09 2025 by rpki-client