$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/AHh3XEnNoU7JOzhJPOihYcLTjng.roa File: AHh3XEnNoU7JOzhJPOihYcLTjng.roa (raw, json) Hash identifier: GcFnWZMf+YjjeOnSnqFF1lkxg/TnQF93EnKk9hrpU2s= Subject key identifier: 00:78:77:5C:49:CD:A1:4E:C9:3B:38:49:3C:E8:A1:61:C2:D3:8E:78 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E20 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AHh3XEnNoU7JOzhJPOihYcLTjng.roa Signing time: Tue 01 Apr 2025 02:31:37 +0000 ROA not before: Tue 01 Apr 2025 02:31:37 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3616 (0xe20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:31:37 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=0078775C49CDA14EC93B38493CE8A161C2D38E78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4d:8b:4d:3c:a2:7b:26:87:a0:27:2c:38:c5: b1:bd:51:0a:cd:73:a8:2c:2a:f9:e3:25:fb:b0:28: 1e:67:8c:27:df:40:a6:70:33:09:85:f4:cc:2b:ee: a8:be:d6:1e:54:1d:4a:ab:62:d8:16:13:46:9e:4e: 81:f5:e7:8b:66:da:47:ea:06:5a:56:cc:c8:c7:86: a2:2d:ee:9d:f4:a3:44:43:b9:a5:80:27:0a:94:76: 60:3c:23:65:16:5a:0c:46:10:00:df:31:2d:28:b8: 5e:a5:5d:23:c5:98:a2:e1:7d:f6:bf:fd:56:0a:70: c3:43:4c:c8:de:d1:ad:ea:c9:42:5d:51:cb:90:1c: a1:ff:fe:60:23:d1:25:c8:fa:60:a7:27:e1:6f:01: 9c:94:cf:be:7a:67:4b:1d:6d:46:2f:25:81:b3:b0: 18:ba:63:36:14:27:6e:01:95:5b:6c:9b:da:ea:6e: 9b:50:57:09:17:fa:48:cf:c5:be:4e:26:16:84:37: 6e:b6:ce:96:2e:d4:a3:83:11:f1:3c:c2:4f:46:57: 5e:e9:7a:40:d2:55:9f:63:ce:0e:75:e8:cc:65:bc: 94:4b:1e:bf:6f:63:a4:46:d1:5c:6f:94:a4:12:e0: 53:b1:da:72:4f:9d:b7:85:b4:cb:92:64:1f:27:87: c9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:78:77:5C:49:CD:A1:4E:C9:3B:38:49:3C:E8:A1:61:C2:D3:8E:78 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AHh3XEnNoU7JOzhJPOihYcLTjng.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.209.0/24 Signature Algorithm: sha256WithRSAEncryption 50:06:1f:66:2b:41:e7:2e:d8:99:8c:60:cf:68:d5:63:b9:c4: e7:0a:bf:c2:03:03:e0:98:44:cb:4b:60:8a:e3:c3:4a:d1:87: 7e:02:79:06:c3:89:c1:e0:28:33:24:5f:af:fe:53:ee:35:55: 4d:58:5a:d6:d8:10:71:a7:de:81:5d:d7:3b:8c:a9:1e:56:90: d0:09:3c:71:17:3a:b9:de:41:1e:d8:e5:8f:cf:8b:a6:37:25: 30:45:cf:9d:4d:2e:9d:e8:3d:89:79:ba:55:3f:73:87:c9:36: d1:85:1b:2e:b6:27:fe:f2:1a:e7:7c:b2:c3:17:b2:40:e4:d5: 7f:56:29:22:9f:21:2a:53:44:ab:f6:66:57:9a:69:27:4e:41: 0b:89:99:60:16:4d:c8:8e:dd:b0:5b:a0:27:77:50:62:83:7d: 2f:3f:b7:cd:a8:d1:25:bc:d6:df:66:98:d0:b2:a3:ff:e7:6b: 4b:41:ba:c3:7b:c1:e7:87:bb:72:3e:f5:06:da:16:b6:00:03: a2:98:85:b2:cf:7e:1d:cd:0f:d2:37:83:5e:ee:98:7b:88:40: 2e:11:8b:ed:33:b8:36:db:5d:b3:9a:c3:03:25:b6:8c:29:12: a7:8b:f9:f2:1e:f8:f5:c2:18:4e:69:f6:ca:d2:8a:f2:40:b1: 7a:23:1b:8e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMxMzdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDAwNzg3NzVDNDlDREEx NEVDOTNCMzg0OTNDRThBMTYxQzJEMzhFNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhTYtNPKJ7JoegJyw4xbG9UQrNc6gsKvnjJfuwKB5njCffQKZw MwmF9Mwr7qi+1h5UHUqrYtgWE0aeToH154tm2kfqBlpWzMjHhqIt7p30o0RDuaWA JwqUdmA8I2UWWgxGEADfMS0ouF6lXSPFmKLhffa//VYKcMNDTMje0a3qyUJdUcuQ HKH//mAj0SXI+mCnJ+FvAZyUz756Z0sdbUYvJYGzsBi6YzYUJ24BlVtsm9rqbptQ VwkX+kjPxb5OJhaEN262zpYu1KODEfE8wk9GV17pekDSVZ9jzg516MxlvJRLHr9v Y6RG0VxvlKQS4FOx2nJPnbeFtMuSZB8nh8kFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAHh3XEnNoU7JOzhJPOihYcLTjngwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0FIaDNYRW5Ob1U3Sk96aEpQT2loWWNMVGpuZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxatEwDQYJKoZIhvcNAQELBQADggEBAFAGH2YrQecu2JmMYM9o1WO5xOcK v8IDA+CYRMtLYIrjw0rRh34CeQbDicHgKDMkX6/+U+41VU1YWtbYEHGn3oFd1zuM qR5WkNAJPHEXOrneQR7Y5Y/Pi6Y3JTBFz51NLp3oPYl5ulU/c4fJNtGFGy62J/7y Gud8ssMXskDk1X9WKSKfISpTRKv2ZleaaSdOQQuJmWAWTciO3bBboCd3UGKDfS8/ t82o0SW81t9mmNCyo//na0tBusN7weeHu3I+9QbaFrYAA6KYhbLPfh3ND9I3g17u mHuIQC4Ri+0zuDbbXbOawwMltowpEqeL+fIe+PXCGE5p9srSivJAsXojG44= -----END CERTIFICATE-----Generated at Sat Apr 5 17:48:05 2025 by rpki-client