$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4cmlyAw1SOzOgEKuGsj_zigJqr8.roa File: 4cmlyAw1SOzOgEKuGsj_zigJqr8.roa (raw, json) Hash identifier: v+3myD07YMBOXNhAACmRyj+KTveVKapTXiahFScXM4k= Subject key identifier: E1:C9:A5:C8:0C:35:48:EC:CE:80:42:AE:1A:C8:FF:CE:28:09:AA:BF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B9C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4cmlyAw1SOzOgEKuGsj_zigJqr8.roa Signing time: Tue 01 Apr 2025 01:39:51 +0000 ROA not before: Tue 01 Apr 2025 01:39:51 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2972 (0xb9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:39:51 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E1C9A5C80C3548ECCE8042AE1AC8FFCE2809AABF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f1:0e:54:66:37:86:0c:44:0f:19:ac:5e:fe: 74:f0:86:f0:72:91:0d:f4:47:c1:e2:0e:44:27:35: 9c:f7:0a:9c:f1:31:31:f3:94:b2:5c:b1:d6:78:3f: 9f:fc:f2:37:44:71:16:67:1e:4e:19:da:d0:4c:b9: 9b:fb:db:2a:a7:5a:f6:4e:2c:d7:28:34:da:56:7a: ab:40:3f:66:6d:fe:45:3c:81:89:dd:c0:b7:05:60: ae:17:05:f2:70:d5:aa:b1:7b:c6:7d:13:d2:f2:1f: 72:17:2f:f3:b6:7a:97:40:19:72:39:1e:cf:09:77: 2d:98:c6:1d:85:cf:3c:ed:6d:6a:b7:53:3a:4b:05: 62:18:cd:3c:8e:9a:a1:6c:0a:d6:15:ec:da:83:43: fa:b0:8c:b7:b9:18:13:cf:3c:5d:6b:0d:65:2a:52: 2c:37:5e:56:43:e4:b4:e0:da:4b:d3:98:58:bd:d1: 94:d6:e0:7c:11:68:e4:b9:74:15:c4:b5:81:9b:26: c6:cb:5f:f1:61:42:b4:8a:11:77:6c:e6:b1:4d:7a: 1f:f1:0b:33:6e:8d:69:9e:85:ce:65:88:ac:a7:6b: 64:e8:e8:fb:c9:34:f6:ef:0e:56:40:ab:ce:fc:6e: 21:4c:54:58:f7:5e:b4:91:9d:6a:bf:8b:8b:40:1c: 26:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C9:A5:C8:0C:35:48:EC:CE:80:42:AE:1A:C8:FF:CE:28:09:AA:BF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4cmlyAw1SOzOgEKuGsj_zigJqr8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.34.0/24 Signature Algorithm: sha256WithRSAEncryption 76:01:cd:63:0d:8c:92:d4:40:71:c2:55:a4:b8:2e:db:53:82: 70:9e:aa:9e:0b:e7:82:8d:25:e8:52:97:06:26:d5:c5:ca:75: a8:55:bb:2c:c5:c7:ec:30:77:11:af:0f:b1:9b:a1:c0:0e:1b: 24:27:88:cb:36:f9:0e:e8:ab:43:5b:2e:7d:ab:d6:be:1d:6f: c8:d3:ad:12:fd:0f:73:09:37:41:f2:e4:07:2a:ea:5f:2d:26: ab:ad:01:de:87:d4:c4:51:b7:95:3b:dd:0a:8b:b3:d8:9c:ae: 46:1e:0c:57:1c:e1:ac:b9:f2:18:9c:0a:68:d2:32:10:f8:32: d5:bc:d6:c0:e1:0f:cf:77:40:bc:75:c1:b0:08:2d:be:19:ce: 24:34:f5:d3:bb:66:a5:0b:c1:6b:ec:d7:4a:93:e6:db:ca:a3: cc:6c:f7:1b:47:a0:6a:b3:81:90:f1:36:52:f3:e5:9d:0f:49: d8:da:99:93:e7:4a:73:65:f6:c8:cc:94:75:4c:24:bd:b1:13: 39:5a:27:d9:54:0a:32:ff:4e:a8:75:ed:ae:9c:ff:1c:64:f6: 22:76:4b:06:ed:6b:94:6c:0f:61:32:03:70:c2:b7:f0:6c:ab: 59:61:00:e4:e6:14:17:c4:cf:71:40:fe:a7:75:98:9c:48:f2: a1:f4:cd:cf -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC5wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM5NTFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUxQzlBNUM4MEMzNTQ4 RUNDRTgwNDJBRTFBQzhGRkNFMjgwOUFBQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCe8Q5UZjeGDEQPGaxe/nTwhvBykQ30R8HiDkQnNZz3CpzxMTHz lLJcsdZ4P5/88jdEcRZnHk4Z2tBMuZv72yqnWvZOLNcoNNpWeqtAP2Zt/kU8gYnd wLcFYK4XBfJw1aqxe8Z9E9LyH3IXL/O2epdAGXI5Hs8Jdy2Yxh2FzzztbWq3UzpL BWIYzTyOmqFsCtYV7NqDQ/qwjLe5GBPPPF1rDWUqUiw3XlZD5LTg2kvTmFi90ZTW 4HwRaOS5dBXEtYGbJsbLX/FhQrSKEXds5rFNeh/xCzNujWmehc5liKyna2To6PvJ NPbvDlZAq878biFMVFj3XrSRnWq/i4tAHCY/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4cmlyAw1SOzOgEKuGsj/zigJqr8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRjbWx5QXcxU096T2dFS3VHc2pfemlnSnFyOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYiIwDQYJKoZIhvcNAQELBQADggEBAHYBzWMNjJLUQHHCVaS4LttTgnCe qp4L54KNJehSlwYm1cXKdahVuyzFx+wwdxGvD7GbocAOGyQniMs2+Q7oq0NbLn2r 1r4db8jTrRL9D3MJN0Hy5Acq6l8tJqutAd6H1MRRt5U73QqLs9icrkYeDFcc4ay5 8hicCmjSMhD4MtW81sDhD893QLx1wbAILb4ZziQ09dO7ZqULwWvs10qT5tvKo8xs 9xtHoGqzgZDxNlLz5Z0PSdjamZPnSnNl9sjMlHVMJL2xEzlaJ9lUCjL/Tqh17a6c /xxk9iJ2Swbta5RsD2EyA3DCt/Bsq1lhAOTmFBfEz3FA/qd1mJxI8qH0zc8= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:30 2025 by rpki-client