$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HBnX9J2I1C-lT9aScslr43b5usE.roa File: HBnX9J2I1C-lT9aScslr43b5usE.roa (raw, json) Hash identifier: rtMaXJABRgt9G5o78ieiUS2lWv4GIwzbngrkqSm4DKg= Subject key identifier: 1C:19:D7:F4:9D:88:D4:2F:A5:4F:D6:92:72:C9:6B:E3:76:F9:BA:C1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D0B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HBnX9J2I1C-lT9aScslr43b5usE.roa Signing time: Tue 01 Apr 2025 02:11:41 +0000 ROA not before: Tue 01 Apr 2025 02:11:41 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3339 (0xd0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:41 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1C19D7F49D88D42FA54FD69272C96BE376F9BAC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:0e:0f:66:58:9e:3e:0c:22:6f:ab:58:d5:f9: 3b:eb:88:f2:35:f4:56:c6:b7:88:25:86:69:1c:a8: 6d:73:b6:41:0e:01:30:51:e7:1e:dc:8c:c8:98:92: 0b:87:4b:b1:4a:c9:c2:bd:f2:a0:0f:70:11:47:4d: 1c:39:08:57:86:fe:6e:bf:ba:01:71:b7:25:ae:36: 78:bf:4c:e5:9d:f7:c8:9a:a1:2d:4a:59:f5:77:2b: e1:00:84:d7:cc:94:8a:d5:ce:be:0b:27:e9:ad:e2: db:db:ef:a0:68:f8:4a:18:6d:62:4e:e2:96:72:f8: d6:d7:e9:77:50:55:43:ff:e4:49:c6:34:4b:e0:98: 64:34:35:11:db:7a:94:d5:81:c1:68:41:40:72:5b: 87:49:36:3f:34:aa:71:e3:b1:1a:76:5d:da:f3:fe: df:a8:28:07:55:a6:d2:83:45:53:50:78:b7:d6:7a: dc:73:ab:df:f9:51:ef:70:55:6a:ef:3c:6e:12:3d: e1:c5:0e:b7:82:e4:6a:2a:b1:94:cd:17:f9:0a:70: 31:1d:94:b1:45:8d:fc:55:0f:5b:a3:0e:2a:77:4f: d9:8a:0d:4f:41:c9:14:3a:54:19:2b:40:a5:c1:d4: dd:d8:bb:d3:8f:44:3e:ad:6f:d5:56:01:e6:31:c7: 3d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:19:D7:F4:9D:88:D4:2F:A5:4F:D6:92:72:C9:6B:E3:76:F9:BA:C1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HBnX9J2I1C-lT9aScslr43b5usE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.48.0/22 Signature Algorithm: sha256WithRSAEncryption e5:97:75:33:f9:e4:15:17:32:3b:0d:2f:23:8f:56:13:39:65: 30:0c:c2:5f:b6:fe:99:ee:9b:b0:c5:a3:4c:2c:61:70:5a:4c: 2c:2e:e4:3c:6c:7a:1a:14:f4:51:b7:fe:ce:29:29:16:2a:3c: 1a:77:6d:1c:ba:ed:b3:78:dd:16:b4:b5:fa:e3:5d:d2:17:a5: 82:50:bf:0c:17:aa:ab:f3:ef:a5:b3:9f:9e:12:53:44:52:f0: 9b:d8:62:ac:65:6a:62:ea:4c:eb:7c:01:de:eb:90:0f:df:e3: 1a:b1:1b:21:55:86:5b:bb:ce:48:66:fd:d9:63:64:09:80:23: 69:9d:35:6b:43:e7:19:43:a6:ed:64:bf:e9:57:dc:de:8d:aa: 43:a4:4b:e4:9a:59:59:7c:6f:25:83:7a:96:c7:59:cf:7e:31: d0:43:e6:30:e1:14:6a:b9:2c:14:86:d9:01:98:e4:76:f9:bb: 39:da:cc:16:bc:3d:7e:b2:05:df:99:ec:4b:0b:46:c1:6a:69: f9:44:b9:97:91:ac:41:f3:a0:e7:3b:0c:e0:f5:43:7c:14:ad: 8e:45:13:8f:22:2c:f6:fb:15:ec:a9:52:40:2d:9f:ba:dc:d5: 61:fd:b3:7b:1e:e1:01:81:b2:dc:c1:2c:96:a7:ce:0f:33:e5: 8c:7f:96:89 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDQswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExNDFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFDMTlEN0Y0OUQ4OEQ0 MkZBNTRGRDY5MjcyQzk2QkUzNzZGOUJBQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvDg9mWJ4+DCJvq1jV+TvriPI19FbGt4glhmkcqG1ztkEOATBR 5x7cjMiYkguHS7FKycK98qAPcBFHTRw5CFeG/m6/ugFxtyWuNni/TOWd98iaoS1K WfV3K+EAhNfMlIrVzr4LJ+mt4tvb76Bo+EoYbWJO4pZy+NbX6XdQVUP/5EnGNEvg mGQ0NRHbepTVgcFoQUByW4dJNj80qnHjsRp2Xdrz/t+oKAdVptKDRVNQeLfWetxz q9/5Ue9wVWrvPG4SPeHFDreC5GoqsZTNF/kKcDEdlLFFjfxVD1ujDip3T9mKDU9B yRQ6VBkrQKXB1N3Yu9OPRD6tb9VWAeYxxz1BAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHBnX9J2I1C+lT9aScslr43b5usEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0hCblg5SjJJMUMtbFQ5YVNjc2xyNDNiNXVzRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYjAwDQYJKoZIhvcNAQELBQADggEBAOWXdTP55BUXMjsNLyOPVhM5ZTAM wl+2/pnum7DFo0wsYXBaTCwu5DxsehoU9FG3/s4pKRYqPBp3bRy67bN43Ra0tfrj XdIXpYJQvwwXqqvz76Wzn54SU0RS8JvYYqxlamLqTOt8Ad7rkA/f4xqxGyFVhlu7 zkhm/dljZAmAI2mdNWtD5xlDpu1kv+lX3N6NqkOkS+SaWVl8byWDepbHWc9+MdBD 5jDhFGq5LBSG2QGY5Hb5uznazBa8PX6yBd+Z7EsLRsFqaflEuZeRrEHzoOc7DOD1 Q3wUrY5FE48iLPb7FeypUkAtn7rc1WH9s3se4QGBstzBLJanzg8z5Yx/lok= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:12 2025 by rpki-client