$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BTanlUUe8iIAo4SeDY_3D5e2dks.roa File: BTanlUUe8iIAo4SeDY_3D5e2dks.roa (raw, json) Hash identifier: kMi+mbobnieUhTDMLPB7FilmigXAs4Ejf1O0R/zD0zI= Subject key identifier: 05:36:A7:95:45:1E:F2:22:00:A3:84:9E:0D:8F:F7:0F:97:B6:76:4B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D99 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BTanlUUe8iIAo4SeDY_3D5e2dks.roa Signing time: Tue 01 Apr 2025 02:21:38 +0000 ROA not before: Tue 01 Apr 2025 02:21:38 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3481 (0xd99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:38 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=0536A795451EF22200A3849E0D8FF70F97B6764B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:23:ae:ed:4f:dc:2d:19:8c:1c:88:a7:87:03: 7f:fd:fc:09:db:72:ef:96:54:49:ba:ee:2d:b0:25: 09:83:c8:46:45:e3:bd:83:15:57:39:81:15:09:c9: f6:1b:eb:ad:31:70:c2:64:1d:99:d1:3e:62:d5:ca: aa:fa:e6:7f:96:05:bd:e9:52:7d:a8:86:4e:0e:62: 2b:3f:66:c9:1f:c3:23:49:83:9f:18:77:d0:c0:07: 02:62:a1:5f:4d:1c:06:d3:8c:f0:7b:77:46:c6:60: ad:c4:5e:68:46:3a:f6:8a:2e:1a:bf:03:b4:6a:f8: 83:94:09:9b:8b:53:7b:60:b8:88:43:d4:56:ca:85: f2:34:7a:af:56:6b:6d:99:5e:06:fb:1d:b7:49:b1: 40:2e:8d:f1:42:d9:6d:b4:51:9b:31:53:e8:58:24: 92:b4:b9:a6:1e:28:c5:6b:50:f8:d0:4a:96:76:7d: c3:80:07:c0:9b:70:82:b3:e0:4b:24:3d:f7:f8:67: 4f:d1:a4:14:fc:f6:fd:37:c1:56:13:ff:e1:eb:b7: 0e:be:b9:ab:5a:0f:88:19:4d:d5:e0:1f:16:5e:3f: 03:86:83:7f:c9:10:3d:3a:19:da:57:da:92:13:47: 18:b4:f3:8d:0c:20:a1:6c:45:a3:ca:ad:ba:a9:f9: 0d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:36:A7:95:45:1E:F2:22:00:A3:84:9E:0D:8F:F7:0F:97:B6:76:4B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BTanlUUe8iIAo4SeDY_3D5e2dks.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.16.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:17:45:8b:52:ca:67:ff:87:78:7b:e1:ec:06:6e:24:30:81: 3e:f1:43:29:d6:95:89:d8:c9:df:3a:04:d0:c9:bd:e4:9e:0a: 3d:d3:b6:57:16:f5:85:00:f9:a9:7b:a3:32:30:ff:cb:c4:d4: 29:86:3e:c8:de:12:99:5f:0c:3e:c8:8f:6d:a4:20:ad:15:73: ef:d7:80:28:38:9c:5c:0c:72:67:ea:0c:59:2d:f4:ec:81:96: af:d4:02:ef:d8:c2:69:cb:e6:a6:2e:b2:2d:71:5c:35:76:4f: 97:1c:01:5b:c1:a6:66:99:52:aa:37:09:66:6e:35:96:a3:04: ba:a5:a0:3e:2c:44:5e:a2:58:95:0d:ca:95:2e:94:35:32:ed: e9:4e:5c:d4:1d:5d:f0:ca:b0:41:9f:38:58:32:72:e8:fc:ac: 9a:0b:f2:10:38:7d:6b:45:64:21:55:3b:42:13:bb:43:02:5f: 21:6f:4a:dd:db:94:7e:2e:aa:80:c0:0e:7e:b2:a9:bb:6e:7c: 8f:7e:84:40:22:d4:cc:e9:ae:9a:02:21:ed:78:bc:a7:3e:85: 75:ee:81:4e:14:04:00:4a:a2:0f:b1:dc:9b:31:4b:f7:33:12: 59:a9:9c:25:d3:63:77:6a:63:56:1d:66:82:47:73:fd:00:16: 5d:c5:27:ab -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDZkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMzhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA1MzZBNzk1NDUxRUYy MjIwMEEzODQ5RTBEOEZGNzBGOTdCNjc2NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDI67tT9wtGYwciKeHA3/9/Anbcu+WVEm67i2wJQmDyEZF472D FVc5gRUJyfYb660xcMJkHZnRPmLVyqr65n+WBb3pUn2ohk4OYis/ZskfwyNJg58Y d9DABwJioV9NHAbTjPB7d0bGYK3EXmhGOvaKLhq/A7Rq+IOUCZuLU3tguIhD1FbK hfI0eq9Wa22ZXgb7HbdJsUAujfFC2W20UZsxU+hYJJK0uaYeKMVrUPjQSpZ2fcOA B8CbcIKz4EskPff4Z0/RpBT89v03wVYT/+Hrtw6+uataD4gZTdXgHxZePwOGg3/J ED06GdpX2pITRxi0840MIKFsRaPKrbqp+Q1FAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBTanlUUe8iIAo4SeDY/3D5e2dkswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JUYW5sVVVlOGlJQW80U2VEWV8zRDVlMmRrcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYhAwDQYJKoZIhvcNAQELBQADggEBAFoXRYtSymf/h3h74ewGbiQwgT7x QynWlYnYyd86BNDJveSeCj3TtlcW9YUA+al7ozIw/8vE1CmGPsjeEplfDD7Ij22k IK0Vc+/XgCg4nFwMcmfqDFkt9OyBlq/UAu/YwmnL5qYusi1xXDV2T5ccAVvBpmaZ Uqo3CWZuNZajBLqloD4sRF6iWJUNypUulDUy7elOXNQdXfDKsEGfOFgycuj8rJoL 8hA4fWtFZCFVO0ITu0MCXyFvSt3blH4uqoDADn6yqbtufI9+hEAi1MzprpoCIe14 vKc+hXXugU4UBABKog+x3JsxS/czElmpnCXTY3dqY1YdZoJHc/0AFl3FJ6s= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:34 2025 by rpki-client