$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GsZILL1iCsFrASnEV_uBD9-nfxs.roa File: GsZILL1iCsFrASnEV_uBD9-nfxs.roa (raw, json) Hash identifier: AKhD93XWao0ulr0dpHm2PY0EO/uF+1rNR+76Zlcx+h0= Subject key identifier: 1A:C6:48:2C:BD:62:0A:C1:6B:01:29:C4:57:FB:81:0F:DF:A7:7F:1B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C73 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GsZILL1iCsFrASnEV_uBD9-nfxs.roa Signing time: Tue 01 Apr 2025 02:00:35 +0000 ROA not before: Tue 01 Apr 2025 02:00:35 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:00:35 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1AC6482CBD620AC16B0129C457FB810FDFA77F1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4e:a3:7f:15:4b:3a:68:e8:ca:12:57:3e:9e: a1:a9:e3:8a:3e:60:de:90:fb:8b:33:85:55:8c:9d: fb:42:02:a2:32:43:7c:ae:18:96:d9:02:b7:2d:41: 9e:6c:d3:c7:7e:85:e7:2c:98:f5:41:0b:b2:46:20: cc:96:c2:cf:62:a6:70:e2:c4:67:ba:2d:84:32:ca: 4e:90:97:e6:95:a8:62:58:8f:5a:67:aa:f7:32:b6: 31:66:9a:a5:f7:36:77:d5:2a:fe:95:3f:e3:26:ed: 6a:b3:ca:80:d2:f1:80:de:bf:8a:54:64:f6:23:92: a8:b8:51:31:9b:c1:17:bb:ae:6f:ab:21:7d:8a:c3: 28:64:a6:d1:f2:ef:ef:4d:26:38:c3:47:bd:56:10: a2:3f:8a:2e:a6:d7:c2:4f:61:12:33:bf:57:bf:e2: ae:9c:7f:23:3b:01:77:ef:37:b1:45:6e:cb:08:80: 06:4f:bb:a5:95:23:32:71:03:5d:ec:6a:1f:a3:66: 23:d4:76:13:0a:c9:6d:89:93:48:b9:77:7f:02:7b: ee:a8:8e:8c:1e:2d:f3:34:e6:d3:d2:27:d4:b7:15: 77:b8:f3:b6:84:d2:50:1b:31:9b:5f:6e:ec:91:0e: 10:3e:76:57:02:8c:a2:2f:da:ac:2c:34:66:08:1b: 66:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C6:48:2C:BD:62:0A:C1:6B:01:29:C4:57:FB:81:0F:DF:A7:7F:1B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GsZILL1iCsFrASnEV_uBD9-nfxs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.8.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:0a:3c:34:a8:5a:6d:98:55:de:23:ec:2a:a6:71:4b:88:26: 14:e1:d5:a7:c7:94:63:19:2b:b3:e2:6b:f4:8e:b3:74:bf:16: 9c:79:6c:1d:4f:c4:de:d2:06:f6:1a:10:1a:c5:88:1b:71:d9: 25:56:56:dc:bf:60:15:af:6f:0d:33:9d:c0:bf:da:5c:bd:a0: 79:63:d3:0d:36:32:2b:07:3d:4a:59:24:4d:97:eb:56:85:ff: 3d:67:fb:dc:0c:46:a7:7f:0e:41:3c:68:7e:5f:b3:a7:58:ea: a0:aa:43:be:12:3c:43:5c:5f:49:74:57:02:f0:af:6d:ff:68: ed:ba:3e:78:25:ce:d9:7d:68:f2:2b:0a:31:a8:54:03:cf:f1: 88:c3:10:24:27:5a:63:6e:e9:fb:ce:ce:39:47:14:e8:08:6a: e2:fb:e4:77:8b:f1:df:60:8e:e1:17:29:7d:1a:38:86:a9:df: 55:86:4f:7b:cc:01:62:ce:12:d0:ba:58:33:f0:7f:4f:6a:00: 28:b6:cf:d8:8a:18:fb:96:98:76:db:89:2d:da:96:9f:d6:cc: e2:01:09:81:19:b0:62:32:36:31:15:d9:85:3e:41:dd:8e:eb: f1:c6:dd:f9:cc:fb:5a:97:f1:43:2b:78:ee:52:70:2b:89:89: b0:58:97:f5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAwMzVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFBQzY0ODJDQkQ2MjBB QzE2QjAxMjlDNDU3RkI4MTBGREZBNzdGMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBTqN/FUs6aOjKElc+nqGp44o+YN6Q+4szhVWMnftCAqIyQ3yu GJbZArctQZ5s08d+hecsmPVBC7JGIMyWws9ipnDixGe6LYQyyk6Ql+aVqGJYj1pn qvcytjFmmqX3NnfVKv6VP+Mm7WqzyoDS8YDev4pUZPYjkqi4UTGbwRe7rm+rIX2K wyhkptHy7+9NJjjDR71WEKI/ii6m18JPYRIzv1e/4q6cfyM7AXfvN7FFbssIgAZP u6WVIzJxA13sah+jZiPUdhMKyW2Jk0i5d38Ce+6ojoweLfM05tPSJ9S3FXe487aE 0lAbMZtfbuyRDhA+dlcCjKIv2qwsNGYIG2avAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGsZILL1iCsFrASnEV/uBD9+nfxswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0dzWklMTDFpQ3NGckFTbkVWX3VCRDktbmZ4cy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYAgwDQYJKoZIhvcNAQELBQADggEBAAwKPDSoWm2YVd4j7CqmcUuIJhTh 1afHlGMZK7Pia/SOs3S/Fpx5bB1PxN7SBvYaEBrFiBtx2SVWVty/YBWvbw0zncC/ 2ly9oHlj0w02MisHPUpZJE2X61aF/z1n+9wMRqd/DkE8aH5fs6dY6qCqQ74SPENc X0l0VwLwr23/aO26Pnglztl9aPIrCjGoVAPP8YjDECQnWmNu6fvOzjlHFOgIauL7 5HeL8d9gjuEXKX0aOIap31WGT3vMAWLOEtC6WDPwf09qACi2z9iKGPuWmHbbiS3a lp/WzOIBCYEZsGIyNjEV2YU+Qd2O6/HG3fnM+1qX8UMreO5ScCuJibBYl/U= -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:51 2025 by rpki-client