$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GPaJahE-F-w0wLrNPJRxgJUNf0A.roa File: GPaJahE-F-w0wLrNPJRxgJUNf0A.roa (raw, json) Hash identifier: TRGgtrtmuGAMXF2uu0KWDAQBtiE/AFejzDVFJm9dLlM= Subject key identifier: 18:F6:89:6A:11:3E:17:EC:34:C0:BA:CD:3C:94:71:80:95:0D:7F:40 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CDB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GPaJahE-F-w0wLrNPJRxgJUNf0A.roa Signing time: Tue 01 Apr 2025 02:09:17 +0000 ROA not before: Tue 01 Apr 2025 02:09:17 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3291 (0xcdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:17 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=18F6896A113E17EC34C0BACD3C947180950D7F40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6a:ef:1a:f9:ec:12:2d:1a:99:bc:a3:5b:a7: ce:2e:ec:11:e9:3c:46:c1:39:e5:93:8e:c9:c2:3c: 3e:32:67:38:70:ca:ef:ee:b0:14:44:9a:2a:e8:a3: 50:48:8f:53:62:55:5b:f9:a6:46:e0:fb:05:20:01: 83:4d:6f:09:9d:d4:be:5b:a3:58:2b:6d:74:c3:b4: 3e:52:78:1b:3d:fa:72:1e:9a:14:00:5b:4f:f0:5b: db:5e:d9:f8:73:08:06:6c:c1:9e:b9:c2:03:0e:f4: 6f:96:08:16:7f:62:30:a5:ae:f8:75:b8:8d:cb:0f: cc:cc:b1:09:12:e6:a8:dd:50:b0:ff:1b:60:59:40: 1f:47:6e:7d:92:a3:8a:d8:10:c5:5f:76:60:27:1e: a3:48:fd:21:29:d1:4f:c1:a4:07:4e:5e:84:80:48: e3:9d:53:e3:5f:69:f7:c3:50:57:70:7c:da:18:63: 60:2f:6b:94:e7:90:a6:a9:74:f2:59:82:2f:74:38: 77:ce:9d:36:c6:75:e3:40:19:3a:02:32:fe:f8:9d: 48:c0:c8:c3:2a:05:cf:e3:00:06:c6:24:a8:ab:44: 87:2a:a1:92:2e:5a:6e:22:72:f1:a5:ca:57:76:3b: ef:c8:2e:0e:67:3b:17:0d:68:3f:5c:a7:8b:ed:66: 16:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F6:89:6A:11:3E:17:EC:34:C0:BA:CD:3C:94:71:80:95:0D:7F:40 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GPaJahE-F-w0wLrNPJRxgJUNf0A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.43.0/24 Signature Algorithm: sha256WithRSAEncryption 45:1c:60:84:a6:a1:78:3a:88:f0:ed:a7:26:d7:68:c2:d1:ff: e9:21:b4:60:37:1e:8f:27:5a:b1:be:bd:46:7c:b4:00:56:e1: 93:f3:ab:bb:61:f6:aa:da:5f:9f:41:a5:21:be:96:b6:16:61: e5:83:62:39:09:62:48:2c:a1:c5:68:99:1f:17:66:01:50:f5: 65:4e:a0:f3:1f:a9:1e:d6:c5:f8:0c:f0:90:e5:c3:b8:b0:a3: 21:93:40:31:c2:2d:34:3a:6f:e0:26:f6:af:6f:7c:66:7e:08: 58:de:74:13:2a:28:64:1f:03:da:45:bb:44:5b:c2:01:87:0b: e8:5f:74:2f:aa:03:52:8e:d6:31:8a:89:aa:b5:1e:78:b2:1e: 07:7b:1d:ae:fc:5c:3c:36:4f:a8:2f:b8:f8:68:e6:4f:d8:5a: ec:c8:0e:1e:1e:2c:26:27:26:b9:a7:45:1f:bc:56:f3:db:54: f7:c2:5a:d3:7e:e8:ef:f3:a2:65:46:e0:87:e0:61:6f:64:ed: 09:21:32:be:b7:43:de:30:50:72:43:db:77:0a:fa:4e:88:28: a2:c5:71:26:d8:5c:cb:3c:3e:ad:6d:36:e3:94:d5:17:0b:47: ab:af:a7:2d:27:b3:6b:96:3d:a6:6d:06:ce:42:1c:4c:80:cc: 59:35:78:d0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDNswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MTdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDE4RjY4OTZBMTEzRTE3 RUMzNEMwQkFDRDNDOTQ3MTgwOTUwRDdGNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqau8a+ewSLRqZvKNbp84u7BHpPEbBOeWTjsnCPD4yZzhwyu/u sBREmiroo1BIj1NiVVv5pkbg+wUgAYNNbwmd1L5bo1grbXTDtD5SeBs9+nIemhQA W0/wW9te2fhzCAZswZ65wgMO9G+WCBZ/YjClrvh1uI3LD8zMsQkS5qjdULD/G2BZ QB9Hbn2So4rYEMVfdmAnHqNI/SEp0U/BpAdOXoSASOOdU+NfaffDUFdwfNoYY2Av a5TnkKapdPJZgi90OHfOnTbGdeNAGToCMv74nUjAyMMqBc/jAAbGJKirRIcqoZIu Wm4icvGlyld2O+/ILg5nOxcNaD9cp4vtZhbTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGPaJahE+F+w0wLrNPJRxgJUNf0AwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0dQYUphaEUtRi13MHdMck5QSlJ4Z0pVTmYwQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYSswDQYJKoZIhvcNAQELBQADggEBAEUcYISmoXg6iPDtpybXaMLR/+kh tGA3Ho8nWrG+vUZ8tABW4ZPzq7th9qraX59BpSG+lrYWYeWDYjkJYkgsocVomR8X ZgFQ9WVOoPMfqR7WxfgM8JDlw7iwoyGTQDHCLTQ6b+Am9q9vfGZ+CFjedBMqKGQf A9pFu0RbwgGHC+hfdC+qA1KO1jGKiaq1HniyHgd7Ha78XDw2T6gvuPho5k/YWuzI Dh4eLCYnJrmnRR+8VvPbVPfCWtN+6O/zomVG4IfgYW9k7QkhMr63Q94wUHJD23cK +k6IKKLFcSbYXMs8Pq1tNuOU1RcLR6uvpy0ns2uWPaZtBs5CHEyAzFk1eNA= -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:23 2025 by rpki-client