$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4oeZDxtt7ZBu7QHRdlargWMSXM0.roa File: 4oeZDxtt7ZBu7QHRdlargWMSXM0.roa (raw, json) Hash identifier: LXsVhMsXu3+grv/mGuhQBX/PAOVuoXBgva8kQ2n54lg= Subject key identifier: E2:87:99:0F:1B:6D:ED:90:6E:ED:01:D1:76:56:AB:81:63:12:5C:CD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BA7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4oeZDxtt7ZBu7QHRdlargWMSXM0.roa Signing time: Tue 01 Apr 2025 01:39:56 +0000 ROA not before: Tue 01 Apr 2025 01:39:56 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:39:56 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E287990F1B6DED906EED01D17656AB8163125CCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:00:3a:18:9c:0b:d6:4e:c4:f0:dd:43:88:ef: bf:15:80:eb:1d:c0:c8:d1:47:dc:1c:8f:dc:f6:df: 17:9a:cd:8a:46:ba:26:94:bf:d4:7e:78:8c:7b:91: 85:fd:33:3b:e0:0b:35:54:e6:fa:c6:5e:e5:fe:22: ae:c8:91:fb:1b:f1:46:a6:96:b9:5f:92:28:f4:65: c5:d3:9c:54:16:b8:6b:00:51:1d:7e:81:91:35:84: 2b:21:40:bd:05:0f:25:ed:01:70:ed:fe:7e:68:2a: 9f:b1:76:51:c1:9d:53:ae:96:6e:16:e8:fd:dc:fd: d4:f8:1a:b9:0a:b5:f3:6d:10:9b:29:df:ab:d1:c1: bc:d8:78:78:34:ea:8d:55:64:2e:f6:71:87:d8:7f: f4:a2:a0:67:13:c9:85:13:6b:24:69:8a:d8:29:4f: b0:1a:be:fb:1a:6f:a7:4d:62:48:4e:38:ec:3e:dd: b5:03:f7:90:8c:8d:d9:7b:3e:61:f3:a5:f3:0d:bf: ce:df:c3:7e:8c:87:ff:89:47:6e:78:67:45:f1:b9: 36:a8:1f:58:6b:5f:1e:c7:b3:64:a0:f2:3a:96:f2: 96:80:2e:6a:e7:e2:12:65:63:61:cb:3f:d3:43:1d: d0:12:7e:b0:57:d0:63:af:ca:42:0c:c9:0b:ce:45: cf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:87:99:0F:1B:6D:ED:90:6E:ED:01:D1:76:56:AB:81:63:12:5C:CD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4oeZDxtt7ZBu7QHRdlargWMSXM0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.124.0/23 Signature Algorithm: sha256WithRSAEncryption d6:f1:d3:1e:a0:87:3b:4a:a5:d4:36:db:d3:fd:a0:60:75:4c: 35:5b:84:32:20:bf:50:7f:34:96:bc:e3:2c:b9:f7:38:fb:d7: 3a:3c:59:e6:27:ea:4f:bc:d0:3d:20:41:1a:e1:27:ee:b8:46: 89:08:3a:df:cd:40:f4:38:a4:fa:d6:a5:48:8b:0c:68:60:eb: 43:8f:ba:ae:d2:ee:fe:42:7a:39:55:33:6d:3e:d0:7a:1b:75: 12:6b:0c:e6:49:62:c6:cd:79:6d:bf:47:ff:d9:ee:f5:64:04: 73:a2:c6:76:72:a6:d4:e6:fd:a2:b6:da:36:d6:ca:ce:b8:5c: 2b:dc:78:bf:c0:6e:cf:76:88:27:84:41:7e:23:be:35:db:bc: 73:d7:d9:de:38:d0:bf:40:49:9f:84:91:9c:2e:e1:d1:63:59: 51:a7:28:3f:63:c1:d2:79:f6:e6:9f:5e:77:45:18:25:d6:bf: a1:7e:ba:62:ee:02:44:45:44:ab:c2:52:77:62:d1:71:05:a8: b3:60:ca:5a:69:45:ce:4c:65:8f:8d:0b:28:08:55:be:31:54: b0:93:00:47:1b:01:72:ce:d9:67:7c:16:28:24:af:8c:63:84: 47:48:6c:62:42:64:05:92:ab:0a:dd:a0:13:fa:f7:ac:eb:9c: 7f:9b:a5:e5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM5NTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUyODc5OTBGMUI2REVE OTA2RUVEMDFEMTc2NTZBQjgxNjMxMjVDQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdADoYnAvWTsTw3UOI778VgOsdwMjRR9wcj9z23xeazYpGuiaU v9R+eIx7kYX9MzvgCzVU5vrGXuX+Iq7Ikfsb8Uamlrlfkij0ZcXTnFQWuGsAUR1+ gZE1hCshQL0FDyXtAXDt/n5oKp+xdlHBnVOulm4W6P3c/dT4GrkKtfNtEJsp36vR wbzYeHg06o1VZC72cYfYf/SioGcTyYUTayRpitgpT7Aavvsab6dNYkhOOOw+3bUD 95CMjdl7PmHzpfMNv87fw36Mh/+JR254Z0XxuTaoH1hrXx7Hs2Sg8jqW8paALmrn 4hJlY2HLP9NDHdASfrBX0GOvykIMyQvORc9RAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4oeZDxtt7ZBu7QHRdlargWMSXM0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRvZVpEeHR0N1pCdTdRSFJkbGFyZ1dNU1hNMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYnwwDQYJKoZIhvcNAQELBQADggEBANbx0x6ghztKpdQ229P9oGB1TDVb hDIgv1B/NJa84yy59zj71zo8WeYn6k+80D0gQRrhJ+64RokIOt/NQPQ4pPrWpUiL DGhg60OPuq7S7v5CejlVM20+0HobdRJrDOZJYsbNeW2/R//Z7vVkBHOixnZyptTm /aK22jbWys64XCvceL/Abs92iCeEQX4jvjXbvHPX2d440L9ASZ+EkZwu4dFjWVGn KD9jwdJ59uafXndFGCXWv6F+umLuAkRFRKvCUndi0XEFqLNgylppRc5MZY+NCygI Vb4xVLCTAEcbAXLO2Wd8Figkr4xjhEdIbGJCZAWSqwrdoBP696zrnH+bpeU= -----END CERTIFICATE-----Generated at Sat Apr 5 17:23:12 2025 by rpki-client