$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7UbYCTYc7_73WGNBbfVr-Av4VWY.roa File: 7UbYCTYc7_73WGNBbfVr-Av4VWY.roa (raw, json) Hash identifier: nROYVnWmEqPFbOSiN+W9GZdmq0kP4KIg5yl+TJqwUD4= Subject key identifier: ED:46:D8:09:36:1C:EF:FE:F7:58:63:41:6D:F5:6B:F8:0B:F8:55:66 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C98 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7UbYCTYc7_73WGNBbfVr-Av4VWY.roa Signing time: Tue 01 Apr 2025 02:03:25 +0000 ROA not before: Tue 01 Apr 2025 02:03:25 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:25 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=ED46D809361CEFFEF75863416DF56BF80BF85566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:af:aa:42:02:c4:73:cf:0d:08:49:43:bb:cb: 24:67:0a:c9:1a:81:62:d1:5b:98:49:84:35:35:06: 1a:a3:3c:db:ee:89:b4:f4:1f:93:8c:a0:12:c0:96: cd:4e:15:1b:dc:a3:d7:4a:f3:32:38:1f:30:49:2c: dd:dc:c5:bd:ce:5c:45:27:07:27:9b:e4:02:a9:20: 03:c3:90:37:0c:4e:06:91:97:7d:9f:c8:0c:21:0f: 6f:2e:4b:95:b8:44:26:0c:36:7a:02:03:6b:e6:92: 8d:5f:c6:8f:0c:0a:ae:bd:5d:a6:00:f0:cd:c9:68: 3b:0e:0a:7b:09:5d:2a:46:e9:fb:59:fa:e9:30:e0: a0:32:73:d0:ab:78:3a:f0:cb:f5:a7:a9:59:a1:34: d4:0e:1a:9c:9a:2d:32:9c:e6:30:a3:51:af:00:de: 2c:80:c8:c1:c4:5b:db:d4:02:53:78:1f:1a:4c:28: 84:b6:c7:b5:f1:43:95:ed:95:f4:54:e1:13:b2:47: fd:c0:b4:33:72:f8:0f:82:4b:4d:1d:24:dc:1c:8a: bc:0f:43:df:89:39:fd:0d:8e:0b:c5:5d:70:61:c1: 38:38:79:96:b5:e3:aa:cc:48:89:63:a9:7d:74:74: c2:e7:ef:4a:f7:d4:28:ed:4c:c9:03:ed:9a:30:dd: 9b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:46:D8:09:36:1C:EF:FE:F7:58:63:41:6D:F5:6B:F8:0B:F8:55:66 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7UbYCTYc7_73WGNBbfVr-Av4VWY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.76.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:a9:37:65:05:73:c3:2e:77:11:98:5f:98:1c:48:b1:5f:9b: 1a:76:df:d5:7c:f3:25:5d:18:4f:98:f4:ff:e6:a0:ad:b9:21: 46:a0:6d:ab:33:f5:82:25:b4:35:2f:39:5c:7e:43:c7:18:18: 6e:ba:2c:1e:7a:b0:78:f8:c2:99:72:53:a1:92:7d:df:fa:ab: e3:3d:ee:ba:ad:45:b9:cb:6e:a2:25:d2:24:07:4a:62:fa:73: d3:53:0b:43:ac:e4:12:93:d2:b2:91:6d:c5:8c:41:55:d8:62: aa:52:45:35:b4:0b:75:d5:16:13:e6:ca:4c:2d:42:4b:ef:66: e4:91:99:08:35:17:c8:54:3a:fc:48:ff:5b:b9:61:86:73:43: e4:99:b8:34:6c:4f:e5:99:1e:e1:f8:19:fc:2f:93:a4:83:43: 32:1c:a9:23:ff:33:9a:a6:a5:9f:9c:ae:9f:90:53:30:5b:bb: 59:b6:32:1b:68:6c:82:31:a7:fa:0b:47:0a:25:d4:e2:64:2d: 08:d1:30:21:44:06:ea:66:21:ec:f5:64:a2:fe:93:9c:cb:23: 1d:69:a4:aa:7e:88:89:06:a8:8b:3b:af:90:a4:1f:9c:6e:f7: bf:65:b2:4d:00:31:a5:cc:24:24:1a:83:c3:fb:32:b8:fd:26: 62:90:ed:30 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMjVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEVENDZEODA5MzYxQ0VG RkVGNzU4NjM0MTZERjU2QkY4MEJGODU1NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDir6pCAsRzzw0ISUO7yyRnCskagWLRW5hJhDU1BhqjPNvuibT0 H5OMoBLAls1OFRvco9dK8zI4HzBJLN3cxb3OXEUnByeb5AKpIAPDkDcMTgaRl32f yAwhD28uS5W4RCYMNnoCA2vmko1fxo8MCq69XaYA8M3JaDsOCnsJXSpG6ftZ+ukw 4KAyc9CreDrwy/WnqVmhNNQOGpyaLTKc5jCjUa8A3iyAyMHEW9vUAlN4HxpMKIS2 x7XxQ5XtlfRU4ROyR/3AtDNy+A+CS00dJNwcirwPQ9+JOf0NjgvFXXBhwTg4eZa1 46rMSIljqX10dMLn70r31CjtTMkD7Zow3ZsJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU7UbYCTYc7/73WGNBbfVr+Av4VWYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzdVYllDVFljN183M1dHTkJiZlZyLUF2NFZXWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYkwwDQYJKoZIhvcNAQELBQADggEBAJupN2UFc8MudxGYX5gcSLFfmxp2 39V88yVdGE+Y9P/moK25IUagbasz9YIltDUvOVx+Q8cYGG66LB56sHj4wplyU6GS fd/6q+M97rqtRbnLbqIl0iQHSmL6c9NTC0Os5BKT0rKRbcWMQVXYYqpSRTW0C3XV FhPmykwtQkvvZuSRmQg1F8hUOvxI/1u5YYZzQ+SZuDRsT+WZHuH4Gfwvk6SDQzIc qSP/M5qmpZ+crp+QUzBbu1m2MhtobIIxp/oLRwol1OJkLQjRMCFEBupmIez1ZKL+ k5zLIx1ppKp+iIkGqIs7r5CkH5xu979lsk0AMaXMJCQag8P7Mrj9JmKQ7TA= -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:23 2025 by rpki-client