$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/E4pilgwJQJZNFxvM0uDlmMjCsoA.roa File: E4pilgwJQJZNFxvM0uDlmMjCsoA.roa (raw, json) Hash identifier: JdlDiIOHieG4hLfF7yzQGg5HqDwXwpWhnXvS8Bf+Gx0= Subject key identifier: 13:8A:62:96:0C:09:40:96:4D:17:1B:CC:D2:E0:E5:98:C8:C2:B2:80 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D48 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/E4pilgwJQJZNFxvM0uDlmMjCsoA.roa Signing time: Tue 01 Apr 2025 02:17:10 +0000 ROA not before: Tue 01 Apr 2025 02:17:10 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3400 (0xd48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:17:10 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=138A62960C0940964D171BCCD2E0E598C8C2B280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fd:b6:7a:8f:f4:ae:80:41:3a:af:d4:1d:ff: fb:dc:df:e2:ff:3f:af:39:f0:e2:af:66:58:e7:17: e7:4e:04:45:66:66:ff:5b:cd:03:00:84:d0:29:b3: 34:8d:f8:53:6a:f9:fb:ec:dc:57:cc:58:60:e7:88: dd:9a:69:ca:5c:11:29:1d:b9:30:f6:cf:32:43:6f: 71:f0:b5:d9:88:14:22:04:32:44:54:03:21:54:fb: 1e:e7:27:b7:56:26:25:2a:49:a1:b2:14:9d:88:32: 1b:55:4a:03:6c:87:ff:ec:c8:6e:d5:2f:5e:a4:cb: 49:10:86:d0:ba:ac:01:23:e4:2e:75:70:19:d5:82: 13:95:4c:1d:47:7d:5a:22:3c:0a:f6:18:f9:e2:74: 21:e4:39:0e:aa:2a:d8:5f:e7:39:e7:7b:2d:cd:0a: 98:93:98:d9:88:e2:93:d8:8b:93:10:be:36:d7:94: 95:f9:53:ed:40:39:dd:71:7f:82:9d:26:87:33:95: da:72:d7:53:17:22:6e:51:41:cf:64:8e:0a:72:eb: 06:6a:5a:aa:e0:ed:65:fb:e1:18:9d:b3:20:84:24: be:46:0a:79:b7:1b:a2:7f:eb:49:78:31:8a:8e:05: 76:6c:00:90:e8:5b:52:e0:5d:28:14:6b:a3:80:5b: d1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8A:62:96:0C:09:40:96:4D:17:1B:CC:D2:E0:E5:98:C8:C2:B2:80 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/E4pilgwJQJZNFxvM0uDlmMjCsoA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.44.0/23 Signature Algorithm: sha256WithRSAEncryption aa:66:b5:eb:ff:1f:62:5c:52:e9:67:c8:21:79:19:e9:4a:93: 1e:65:f9:8b:56:b1:df:19:a8:66:cb:4f:00:16:e1:5e:89:98: fa:cb:4f:9f:69:d2:bd:d0:fe:70:ef:31:9f:09:a6:32:60:0e: 53:af:fd:a5:68:98:76:2d:79:8f:c6:9d:5d:ef:7d:6e:20:fc: de:6f:69:ed:53:2c:18:7d:8e:2a:63:87:52:f6:a8:b1:8d:ee: ed:64:60:72:76:fa:0b:5d:72:4d:45:6b:76:8d:b0:21:4b:0e: b3:8c:ea:8f:84:fe:f4:fd:97:60:44:56:49:b4:21:2b:d8:57: 7f:a9:f4:36:4d:1b:9e:eb:6d:ec:5e:f8:98:dc:fc:40:45:57: 76:8a:8e:58:03:c9:ce:e7:10:f2:b7:c2:14:8d:03:51:80:a5: 10:db:64:3d:60:00:20:a0:de:9c:82:c4:27:2f:fa:b3:8a:c3: c9:69:c8:82:7b:ea:6d:6c:7a:95:dc:60:81:c1:97:36:8a:58: 10:13:bd:72:7f:64:ee:a9:30:e4:40:b4:7f:50:66:ba:4f:b1: cc:24:ff:c0:19:01:81:03:ce:89:e0:7a:49:36:70:53:8f:9c: f4:ff:40:4f:fb:30:d6:4c:f2:ed:73:e8:c8:4b:3e:a8:c7:cb: fa:24:63:85 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDUgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE3MTBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDEzOEE2Mjk2MEMwOTQw OTY0RDE3MUJDQ0QyRTBFNTk4QzhDMkIyODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ/bZ6j/SugEE6r9Qd//vc3+L/P6858OKvZljnF+dOBEVmZv9b zQMAhNApszSN+FNq+fvs3FfMWGDniN2aacpcESkduTD2zzJDb3HwtdmIFCIEMkRU AyFU+x7nJ7dWJiUqSaGyFJ2IMhtVSgNsh//syG7VL16ky0kQhtC6rAEj5C51cBnV ghOVTB1HfVoiPAr2GPnidCHkOQ6qKthf5znney3NCpiTmNmI4pPYi5MQvjbXlJX5 U+1AOd1xf4KdJoczldpy11MXIm5RQc9kjgpy6wZqWqrg7WX74RidsyCEJL5GCnm3 G6J/60l4MYqOBXZsAJDoW1LgXSgUa6OAW9G7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUE4pilgwJQJZNFxvM0uDlmMjCsoAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0U0cGlsZ3dKUUpaTkZ4dk0wdURsbU1qQ3NvQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYSwwDQYJKoZIhvcNAQELBQADggEBAKpmtev/H2JcUulnyCF5GelKkx5l +YtWsd8ZqGbLTwAW4V6JmPrLT59p0r3Q/nDvMZ8JpjJgDlOv/aVomHYteY/GnV3v fW4g/N5vae1TLBh9jipjh1L2qLGN7u1kYHJ2+gtdck1Fa3aNsCFLDrOM6o+E/vT9 l2BEVkm0ISvYV3+p9DZNG57rbexe+Jjc/EBFV3aKjlgDyc7nEPK3whSNA1GApRDb ZD1gACCg3pyCxCcv+rOKw8lpyIJ76m1sepXcYIHBlzaKWBATvXJ/ZO6pMORAtH9Q ZrpPscwk/8AZAYEDzongekk2cFOPnPT/QE/7MNZM8u1z6MhLPqjHy/okY4U= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:33 2025 by rpki-client