$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/H5ArYBUB3kMZp2H3-5FY-P8XeDQ.roa File: H5ArYBUB3kMZp2H3-5FY-P8XeDQ.roa (raw, json) Hash identifier: ouY7swfGdOEhFvKJjXU6ZouxxUoJ/ckTjSxGZUlmJ30= Subject key identifier: 1F:90:2B:60:15:01:DE:43:19:A7:61:F7:FB:91:58:F8:FF:17:78:34 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B99 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/H5ArYBUB3kMZp2H3-5FY-P8XeDQ.roa Signing time: Tue 01 Apr 2025 01:39:49 +0000 ROA not before: Tue 01 Apr 2025 01:39:49 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2969 (0xb99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:39:49 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1F902B601501DE4319A761F7FB9158F8FF177834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:11:30:4c:a5:0d:aa:84:73:db:b5:24:ac:bc: e0:d0:cc:ea:b5:7e:f9:2d:5b:71:3a:75:d2:b2:b0: f2:c7:e6:46:66:31:10:57:03:69:25:18:29:b3:06: c9:e5:5e:69:cd:b2:e3:5b:f3:65:ef:8b:7b:eb:f8: 1b:1d:fc:47:ed:27:d4:fa:81:6e:b1:aa:c1:c3:eb: 30:a6:43:1e:4c:d5:97:a0:8b:72:52:57:8d:86:59: 50:22:03:55:df:b2:18:0e:03:70:fe:0c:cf:51:f4: aa:4f:d5:e7:ac:44:74:02:f8:dc:c2:f7:b6:78:97: a6:8a:00:99:b7:2d:5e:c9:76:1c:7e:b0:05:a5:fe: c7:e0:4f:7b:d8:e8:04:ec:97:fd:92:3a:04:1e:9e: 9f:35:68:67:c8:9d:27:0d:60:7f:30:97:d1:c2:9e: c5:88:be:eb:d6:3a:e1:22:9c:fa:95:f0:0d:7a:80: 89:ed:69:64:6a:32:5c:65:44:66:63:f8:b9:8c:b1: 8d:40:33:d2:fb:e1:16:1d:dc:74:ec:38:e2:51:a6: e1:b5:48:d0:00:d7:65:e0:03:31:2f:0f:e0:8b:b5: 7d:22:86:45:5a:72:7f:90:a5:92:20:b5:1c:87:db: 4e:7a:ad:46:88:39:ac:1b:3a:4e:b4:36:47:b6:2f: c6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:90:2B:60:15:01:DE:43:19:A7:61:F7:FB:91:58:F8:FF:17:78:34 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/H5ArYBUB3kMZp2H3-5FY-P8XeDQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.21.0/24 Signature Algorithm: sha256WithRSAEncryption 94:2b:0e:7c:ea:cd:db:37:e7:d9:5c:6e:7c:89:cb:f5:c1:15: f4:52:50:4a:3a:d4:f9:42:4d:56:23:31:18:1b:fc:a4:bc:bf: 8c:d6:b0:bb:26:d6:f6:40:e6:4b:84:60:6f:b7:e1:b8:08:7d: ac:88:cc:fb:d0:2e:d0:a1:fd:f6:7d:86:77:21:3e:13:8d:f7: 68:f8:4d:12:a1:35:1e:15:46:67:43:c6:a2:a4:6e:84:ac:66: d5:7d:8b:cc:69:ec:75:0e:13:cc:28:78:ea:6f:d0:1d:dc:46: 2e:b2:6f:cc:9f:ea:b8:31:30:b2:1b:67:d0:8f:9c:53:d6:7d: 2e:c1:3e:4a:ee:0e:ba:21:ca:0b:c0:f1:cd:7b:d2:a0:49:0d: 97:41:04:d7:8c:66:c1:8f:da:d9:6e:18:98:57:13:ee:6c:9f: 5d:f6:1f:a4:6a:35:b9:0b:01:50:e9:82:3e:6b:93:80:df:d1: 3e:86:3b:ce:1b:8c:ab:60:79:71:02:cd:9a:6b:6c:f5:68:93: e9:11:a6:95:cc:f5:77:d0:84:2c:72:55:8f:2d:15:9b:49:7e: cd:67:de:ec:38:e4:22:d4:8e:cc:6c:68:fd:54:f3:2f:96:13: 4f:ae:9a:ef:64:14:1e:44:29:1a:98:e6:1f:8f:61:66:98:88: 66:c0:14:66 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC5kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM5NDlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFGOTAyQjYwMTUwMURF NDMxOUE3NjFGN0ZCOTE1OEY4RkYxNzc4MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwETBMpQ2qhHPbtSSsvODQzOq1fvktW3E6ddKysPLH5kZmMRBX A2klGCmzBsnlXmnNsuNb82Xvi3vr+Bsd/EftJ9T6gW6xqsHD6zCmQx5M1Zegi3JS V42GWVAiA1XfshgOA3D+DM9R9KpP1eesRHQC+NzC97Z4l6aKAJm3LV7Jdhx+sAWl /sfgT3vY6ATsl/2SOgQenp81aGfInScNYH8wl9HCnsWIvuvWOuEinPqV8A16gInt aWRqMlxlRGZj+LmMsY1AM9L74RYd3HTsOOJRpuG1SNAA12XgAzEvD+CLtX0ihkVa cn+QpZIgtRyH2056rUaIOawbOk60Nke2L8YtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUH5ArYBUB3kMZp2H3+5FY+P8XeDQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0g1QXJZQlVCM2tNWnAySDMtNUZZLVA4WGVEUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaBUwDQYJKoZIhvcNAQELBQADggEBAJQrDnzqzds359lcbnyJy/XBFfRS UEo61PlCTVYjMRgb/KS8v4zWsLsm1vZA5kuEYG+34bgIfayIzPvQLtCh/fZ9hnch PhON92j4TRKhNR4VRmdDxqKkboSsZtV9i8xp7HUOE8woeOpv0B3cRi6yb8yf6rgx MLIbZ9CPnFPWfS7BPkruDrohygvA8c170qBJDZdBBNeMZsGP2tluGJhXE+5sn132 H6RqNbkLAVDpgj5rk4Df0T6GO84bjKtgeXECzZprbPVok+kRppXM9XfQhCxyVY8t FZtJfs1n3uw45CLUjsxsaP1U8y+WE0+umu9kFB5EKRqY5h+PYWaYiGbAFGY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:33 2025 by rpki-client