$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3iDe61wI_EhUundFJyY5mCgNJR0.roa File: 3iDe61wI_EhUundFJyY5mCgNJR0.roa (raw, json) Hash identifier: pVkwghVn542g3FWPZ7nKIRGPNxA6hX4/DXoTvG5qWVQ= Subject key identifier: DE:20:DE:EB:5C:08:FC:48:54:BA:77:45:27:26:39:98:28:0D:25:1D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D10 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3iDe61wI_EhUundFJyY5mCgNJR0.roa Signing time: Tue 01 Apr 2025 02:11:43 +0000 ROA not before: Tue 01 Apr 2025 02:11:43 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3344 (0xd10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:43 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=DE20DEEB5C08FC4854BA774527263998280D251D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e2:d7:48:3c:55:4b:08:3a:8f:b4:34:46:1a: 44:f6:37:a9:75:c0:e4:37:9b:2a:a9:ec:63:2a:9e: f8:14:a9:e5:19:c4:c1:b8:97:c7:cb:a6:ff:ac:75: 33:56:a7:24:32:91:f0:21:73:52:35:af:73:c9:65: fb:8c:4b:24:bb:a9:ee:47:8d:ae:3a:a1:f9:41:93: 46:2d:42:ed:64:81:41:cc:e2:15:17:08:bf:4e:1b: 78:3d:06:be:4d:cd:d9:ff:40:cb:f2:9c:50:37:20: 01:7d:bf:bf:83:51:53:1d:7b:08:df:3d:61:98:2c: 43:c0:9b:c7:49:b4:43:59:87:8e:64:b1:4d:10:ce: 64:bb:21:9a:67:0a:12:0e:32:e5:5c:ef:00:1b:c0: c0:e3:7c:eb:ff:59:6d:48:76:45:ac:41:b9:d7:2f: 16:06:ca:11:e2:1a:a3:72:29:d9:82:7b:2b:18:b0: 2b:4a:f5:f9:5f:d1:6c:e7:c1:c2:3e:0a:a9:7b:a0: 62:5b:68:22:5c:2d:66:16:6c:77:64:5b:a3:b5:b3: 4f:b9:33:7d:93:2f:1f:d1:8d:be:6b:df:3d:bf:0c: 5a:9b:a6:75:ba:ee:1c:3c:0f:64:ec:e2:8e:36:1c: aa:7e:c0:7c:c4:dc:bf:69:6b:af:23:a9:f9:54:e7: 54:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:20:DE:EB:5C:08:FC:48:54:BA:77:45:27:26:39:98:28:0D:25:1D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3iDe61wI_EhUundFJyY5mCgNJR0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.4.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:6c:5e:2b:08:b9:9f:75:e2:ce:c6:b7:4e:19:08:e1:b0:33: 0d:d9:ad:2e:2d:36:0b:b0:1b:4f:18:89:e0:0c:39:14:80:46: 5f:d8:74:71:54:87:b0:cb:db:88:e3:8c:f4:6f:85:da:4e:c0: 4a:68:d4:e8:a7:14:21:76:8e:c3:ce:21:bf:9f:f2:28:ff:20: 28:65:25:cb:c8:73:a2:c4:84:6a:26:79:c9:8e:95:6b:22:eb: a0:df:f2:ca:08:66:26:ae:9b:4d:f5:46:23:68:91:29:63:f6: a6:76:70:0a:6f:92:0a:da:a9:93:a6:4c:7e:d4:81:4b:4f:b2: 1f:02:53:bb:c8:83:ea:31:2c:b5:df:26:dc:1b:12:f1:6a:56: e1:06:c2:9c:49:65:3c:85:3d:bc:c6:59:f7:90:3e:c8:d1:c5: 38:1e:53:68:85:14:bc:ac:76:00:35:c2:e3:67:32:f1:c0:7f: d7:07:6e:09:5e:72:8c:17:3d:b6:76:f1:46:3f:c4:ef:67:81: 0e:a7:13:20:01:ab:f0:e8:76:ef:cc:4a:22:eb:06:5b:6a:cf: 02:46:11:df:87:86:29:8d:0c:01:6c:db:26:5a:35:42:2c:c9: 6c:50:fb:41:3e:43:6d:62:cd:b4:b6:97:02:2c:c7:18:09:66: d4:8e:b0:ca -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDRAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExNDNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERFMjBERUVCNUMwOEZD NDg1NEJBNzc0NTI3MjYzOTk4MjgwRDI1MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDX4tdIPFVLCDqPtDRGGkT2N6l1wOQ3myqp7GMqnvgUqeUZxMG4 l8fLpv+sdTNWpyQykfAhc1I1r3PJZfuMSyS7qe5Hja46oflBk0YtQu1kgUHM4hUX CL9OG3g9Br5Nzdn/QMvynFA3IAF9v7+DUVMdewjfPWGYLEPAm8dJtENZh45ksU0Q zmS7IZpnChIOMuVc7wAbwMDjfOv/WW1IdkWsQbnXLxYGyhHiGqNyKdmCeysYsCtK 9flf0WznwcI+Cql7oGJbaCJcLWYWbHdkW6O1s0+5M32TLx/Rjb5r3z2/DFqbpnW6 7hw8D2Ts4o42HKp+wHzE3L9pa68jqflU51TFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3iDe61wI/EhUundFJyY5mCgNJR0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNpRGU2MXdJX0VoVXVuZEZKeVk1bUNnTkpSMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYgQwDQYJKoZIhvcNAQELBQADggEBAA5sXisIuZ914s7Gt04ZCOGwMw3Z rS4tNguwG08YieAMORSARl/YdHFUh7DL24jjjPRvhdpOwEpo1OinFCF2jsPOIb+f 8ij/IChlJcvIc6LEhGomecmOlWsi66Df8soIZiaum031RiNokSlj9qZ2cApvkgra qZOmTH7UgUtPsh8CU7vIg+oxLLXfJtwbEvFqVuEGwpxJZTyFPbzGWfeQPsjRxTge U2iFFLysdgA1wuNnMvHAf9cHbglecowXPbZ28UY/xO9ngQ6nEyABq/Dodu/MSiLr BltqzwJGEd+HhimNDAFs2yZaNUIsyWxQ+0E+Q21izbS2lwIsxxgJZtSOsMo= -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:48 2025 by rpki-client