$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FYywsPI-nLqNCZmVsdU06W_SaPI.roa File: FYywsPI-nLqNCZmVsdU06W_SaPI.roa (raw, json) Hash identifier: gXjZ3NP/tW1fRbKQRUetlKgj3TjlMRacqxN4/UAijUc= Subject key identifier: 15:8C:B0:B0:F2:3E:9C:BA:8D:09:99:95:B1:D5:34:E9:6F:D2:68:F2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B83 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FYywsPI-nLqNCZmVsdU06W_SaPI.roa Signing time: Tue 01 Apr 2025 01:36:53 +0000 ROA not before: Tue 01 Apr 2025 01:36:53 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2947 (0xb83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:36:53 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=158CB0B0F23E9CBA8D099995B1D534E96FD268F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:fe:ca:85:fd:5f:61:ce:a7:e1:f9:3d:ca:bf: f0:8f:f9:85:31:e0:b6:4e:6c:11:4b:36:37:a2:a7: d4:6d:5c:11:df:ca:de:8b:cb:ee:86:b1:a0:df:ed: f7:d1:6f:20:b0:89:d2:09:54:51:b6:79:10:b8:e6: 46:10:c4:79:78:49:b7:db:29:fe:63:11:4a:ed:87: bd:4a:eb:16:88:93:ba:fd:2d:88:9e:2a:71:e5:23: 81:38:04:7c:10:01:a3:8f:77:5f:d8:80:c4:5c:92: f3:45:a8:9e:fb:63:c4:65:f0:2d:c2:e2:e3:f2:24: 75:1b:2d:15:3c:bd:cf:c5:29:99:30:d6:3e:31:27: 7e:1d:5e:8f:59:96:74:ac:41:d1:e7:eb:14:4a:77: 80:6f:ef:3f:3e:07:bb:72:2a:7a:58:59:a5:fe:78: 29:b3:9a:1c:46:11:dd:8c:9f:ca:14:36:b9:ee:31: ba:6f:27:97:e9:11:27:9d:a5:a2:16:ce:6b:fc:d0: fb:18:c4:5f:91:7c:d0:a7:72:29:83:bd:6b:58:15: 42:90:5f:4a:b2:10:29:14:75:a8:3e:f8:f1:46:0a: d9:d3:6c:54:0f:46:25:b9:66:5c:fa:2f:65:df:f9: 06:b2:0a:d9:11:93:0c:6a:9d:1f:37:85:38:0d:1a: 56:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:8C:B0:B0:F2:3E:9C:BA:8D:09:99:95:B1:D5:34:E9:6F:D2:68:F2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FYywsPI-nLqNCZmVsdU06W_SaPI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.252.0/23 Signature Algorithm: sha256WithRSAEncryption d2:0b:b0:99:46:1a:b0:06:fa:16:fe:09:5a:5c:92:1d:b7:02: d4:47:77:66:5a:5c:bb:a7:06:21:a4:b1:63:b3:54:ca:80:1d: 6e:a2:71:8b:b6:d9:c3:31:4f:54:c2:c1:ad:5e:71:e9:6a:fc: c5:a6:50:c2:40:27:4f:5c:6f:53:bd:ce:dd:f5:92:d8:75:9d: 37:8b:12:2d:56:2b:a9:0b:e7:17:08:61:4c:5c:2e:98:3d:b8: 3a:6f:33:fe:8e:3f:44:02:15:72:b4:bb:63:2e:f5:f1:af:87: 7e:4c:b4:ed:2a:d3:33:51:cb:9b:e8:29:9b:f8:e6:a7:ad:b9: 1e:ce:ba:43:dd:79:32:28:00:2d:dc:36:09:19:fa:d2:cc:08: e7:60:bf:09:2c:7b:30:7b:95:13:08:19:18:80:1a:99:0c:a2: e6:a4:ef:15:c8:55:88:63:a4:cc:c6:9b:63:15:fc:f8:4b:22: 04:8b:89:b1:95:f2:81:49:37:4c:37:59:e1:a5:8a:6f:61:7d: de:10:5b:d2:7f:0d:2a:dd:1c:2d:73:f6:50:e9:58:3f:52:07: bb:d9:79:31:be:4f:3e:ac:dd:37:b6:54:e4:80:44:14:82:d5: 7d:f6:2d:5b:25:b0:5b:08:50:97:bb:88:cf:7a:97:18:53:84: 76:cd:4a:47 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC4MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM2NTNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDE1OENCMEIwRjIzRTlD QkE4RDA5OTk5NUIxRDUzNEU5NkZEMjY4RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDd/sqF/V9hzqfh+T3Kv/CP+YUx4LZObBFLNjeip9RtXBHfyt6L y+6GsaDf7ffRbyCwidIJVFG2eRC45kYQxHl4SbfbKf5jEUrth71K6xaIk7r9LYie KnHlI4E4BHwQAaOPd1/YgMRckvNFqJ77Y8Rl8C3C4uPyJHUbLRU8vc/FKZkw1j4x J34dXo9ZlnSsQdHn6xRKd4Bv7z8+B7tyKnpYWaX+eCmzmhxGEd2Mn8oUNrnuMbpv J5fpESedpaIWzmv80PsYxF+RfNCncimDvWtYFUKQX0qyECkUdag++PFGCtnTbFQP RiW5Zlz6L2Xf+QayCtkRkwxqnR83hTgNGlZfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUFYywsPI+nLqNCZmVsdU06W/SaPIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0ZZeXdzUEktbkxxTkNabVZzZFUwNldfU2FQSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYPwwDQYJKoZIhvcNAQELBQADggEBANILsJlGGrAG+hb+CVpckh23AtRH d2ZaXLunBiGksWOzVMqAHW6icYu22cMxT1TCwa1ecelq/MWmUMJAJ09cb1O9zt31 kth1nTeLEi1WK6kL5xcIYUxcLpg9uDpvM/6OP0QCFXK0u2Mu9fGvh35MtO0q0zNR y5voKZv45qetuR7OukPdeTIoAC3cNgkZ+tLMCOdgvwksezB7lRMIGRiAGpkMouak 7xXIVYhjpMzGm2MV/PhLIgSLibGV8oFJN0w3WeGlim9hfd4QW9J/DSrdHC1z9lDp WD9SB7vZeTG+Tz6s3Te2VOSARBSC1X32LVslsFsIUJe7iM96lxhThHbNSkc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:57 2025 by rpki-client