$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/476rZBAlbA2t8ayw5m9B0HFic2o.roa File: 476rZBAlbA2t8ayw5m9B0HFic2o.roa (raw, json) Hash identifier: NUvVWCzUT1B7m3Egx+/xjJQAtJQGwjUn2zaqdDhh4Ts= Subject key identifier: E3:BE:AB:64:10:25:6C:0D:AD:F1:AC:B0:E6:6F:41:D0:71:62:73:6A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CDD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/476rZBAlbA2t8ayw5m9B0HFic2o.roa Signing time: Tue 01 Apr 2025 02:09:18 +0000 ROA not before: Tue 01 Apr 2025 02:09:18 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3293 (0xcdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:18 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E3BEAB6410256C0DADF1ACB0E66F41D07162736A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:82:00:0c:49:2c:f3:b2:4a:aa:7f:5e:8e:45: 30:de:d6:89:e6:e8:d6:bd:ff:50:b3:fb:f8:04:38: fd:81:6a:ac:9a:51:a3:a7:0e:09:97:89:f9:b2:b5: f8:34:8f:e8:b2:45:ef:da:6d:7e:e0:ab:12:d1:eb: 26:81:3e:9a:39:6e:87:01:d6:b3:dd:3d:71:66:b6: f1:67:81:77:62:c5:06:fa:a4:e9:23:0d:3c:db:20: 84:d3:b3:57:5a:fe:9b:19:2d:21:d7:76:9e:3d:6f: b8:7e:48:5b:44:24:5e:0e:c9:3e:61:3f:1e:8e:15: e6:09:0c:67:6d:40:e6:7b:26:53:61:59:f4:04:77: 75:80:6a:89:19:c0:00:03:ef:5b:d3:15:64:1f:20: d5:30:6e:c8:47:9b:6b:f3:7f:a7:e8:9b:fe:30:45: 27:14:e7:a5:51:c4:5d:f6:0d:08:87:18:c8:7f:92: 1b:c1:8b:d3:79:c3:32:69:38:f5:d9:7d:00:f9:ae: 2b:ff:69:3c:17:d8:74:99:7f:88:ac:83:df:23:6b: e2:3b:e9:15:39:8a:62:24:91:a7:9c:12:a0:e6:e7: a8:1d:47:31:05:37:18:4e:6a:80:58:c8:8d:2a:5d: ce:b7:2e:af:4e:03:e8:91:51:20:eb:f6:9e:28:e3: 63:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:BE:AB:64:10:25:6C:0D:AD:F1:AC:B0:E6:6F:41:D0:71:62:73:6A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/476rZBAlbA2t8ayw5m9B0HFic2o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.46.0/23 Signature Algorithm: sha256WithRSAEncryption 48:d8:7a:9f:bc:9e:48:b5:80:2b:db:94:5c:5b:46:2e:53:c7: 02:64:7b:8c:a8:5f:e2:dd:d5:53:73:5f:53:17:bd:f4:8c:25: a4:d6:38:24:d9:44:62:fc:e2:19:36:ff:61:40:3f:bb:d4:a7: 76:a3:57:aa:3d:1a:58:8b:b9:6e:90:34:3b:a2:32:a0:34:b2: 5f:e5:60:1f:c3:b0:00:bd:8d:87:79:c8:fa:d0:3a:80:89:2e: d1:df:ff:6d:e7:74:04:5f:42:23:db:af:40:63:a4:6f:a0:19: bf:44:53:78:42:05:5a:bb:53:20:1f:e8:c0:da:5a:46:88:d0: ae:ad:6b:1e:bc:4e:8f:55:58:6e:d0:44:92:71:8e:e6:da:d1: 4a:80:bb:5c:30:cd:6d:37:49:8c:17:38:5e:02:ee:b7:90:00: 79:18:30:5e:f1:48:6d:8c:c8:fa:31:23:bb:53:23:67:53:f2: 6e:2b:f6:ca:a2:c2:fe:47:a8:36:69:2b:82:74:02:52:ca:83: 82:6d:f1:95:43:d1:ff:24:6f:46:02:e4:f1:69:b8:f4:8a:b5: 23:e5:66:69:43:3e:4c:79:8d:b5:dc:20:70:04:13:14:3d:72: 5e:7c:6d:8e:14:a6:28:9e:85:a0:4d:ac:85:73:13:91:75:4c: 30:33:0d:79 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MThaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUzQkVBQjY0MTAyNTZD MERBREYxQUNCMEU2NkY0MUQwNzE2MjczNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0ggAMSSzzskqqf16ORTDe1onm6Na9/1Cz+/gEOP2BaqyaUaOn DgmXifmytfg0j+iyRe/abX7gqxLR6yaBPpo5bocB1rPdPXFmtvFngXdixQb6pOkj DTzbIITTs1da/psZLSHXdp49b7h+SFtEJF4OyT5hPx6OFeYJDGdtQOZ7JlNhWfQE d3WAaokZwAAD71vTFWQfINUwbshHm2vzf6fom/4wRScU56VRxF32DQiHGMh/khvB i9N5wzJpOPXZfQD5riv/aTwX2HSZf4isg98ja+I76RU5imIkkaecEqDm56gdRzEF NxhOaoBYyI0qXc63Lq9OA+iRUSDr9p4o42NtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU476rZBAlbA2t8ayw5m9B0HFic2owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzQ3NnJaQkFsYkEydDhheXc1bTlCMEhGaWMyby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaC4wDQYJKoZIhvcNAQELBQADggEBAEjYep+8nki1gCvblFxbRi5TxwJk e4yoX+Ld1VNzX1MXvfSMJaTWOCTZRGL84hk2/2FAP7vUp3ajV6o9GliLuW6QNDui MqA0sl/lYB/DsAC9jYd5yPrQOoCJLtHf/23ndARfQiPbr0BjpG+gGb9EU3hCBVq7 UyAf6MDaWkaI0K6tax68To9VWG7QRJJxjuba0UqAu1wwzW03SYwXOF4C7reQAHkY MF7xSG2MyPoxI7tTI2dT8m4r9sqiwv5HqDZpK4J0AlLKg4Jt8ZVD0f8kb0YC5PFp uPSKtSPlZmlDPkx5jbXcIHAEExQ9cl58bY4UpiiehaBNrIVzE5F1TDAzDXk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:48:18 2025 by rpki-client