$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HCJTnrwRmKajsWPmNKPoqzUjq3w.roa File: HCJTnrwRmKajsWPmNKPoqzUjq3w.roa (raw, json) Hash identifier: 6yhCHDDewAO40ZD1qD0jc5FhaQom4gIbMjUTBbnzdoc= Subject key identifier: 1C:22:53:9E:BC:11:98:A6:A3:B1:63:E6:34:A3:E8:AB:35:23:AB:7C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C2B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HCJTnrwRmKajsWPmNKPoqzUjq3w.roa Signing time: Tue 01 Apr 2025 01:54:05 +0000 ROA not before: Tue 01 Apr 2025 01:54:05 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.102.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3115 (0xc2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:54:05 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1C22539EBC1198A6A3B163E634A3E8AB3523AB7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e1:78:f1:2a:96:93:3e:f5:1b:38:df:64:fb: 4b:1f:0c:c3:60:42:6b:bc:11:f0:6a:7a:34:cc:fd: 5a:23:1d:48:21:be:22:c7:9f:0c:55:91:c4:f3:d9: de:f1:74:f5:3f:7b:d0:82:5c:18:71:af:e6:4f:57: be:2e:48:e8:8f:1d:9f:9a:b3:e7:3a:17:6d:07:d4: bb:2f:12:af:fa:93:d8:e5:ce:99:44:02:b7:5a:68: 31:9e:2d:7e:25:c2:1e:d0:c3:d9:04:4c:18:84:c2: 4f:fb:bf:03:62:54:c1:b6:06:bc:67:2c:af:f6:bb: c9:c7:08:77:26:54:a4:60:1b:2e:b9:15:cc:43:78: 39:6e:52:64:17:4c:e5:19:d5:6d:6f:a8:82:bb:d3: 4d:a8:e4:bd:94:3c:2d:51:7a:15:a4:90:9e:45:a6: f3:96:35:2d:98:e8:37:69:af:8a:22:9b:06:aa:ab: 48:d9:8c:7b:ce:bd:14:90:70:15:e7:cf:ff:31:90: 7b:18:b8:ae:14:5c:47:a5:57:1b:8e:bc:69:a3:65: d4:ce:3f:73:d9:d2:da:e5:24:69:95:b3:2c:bb:7d: 7c:6e:c6:89:df:75:36:a5:97:8b:c3:62:af:ac:29: f1:94:68:43:3d:35:1e:29:a4:e8:92:e9:18:9c:2d: 43:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:22:53:9E:BC:11:98:A6:A3:B1:63:E6:34:A3:E8:AB:35:23:AB:7C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HCJTnrwRmKajsWPmNKPoqzUjq3w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.102.128.0/23 Signature Algorithm: sha256WithRSAEncryption 53:e8:74:2b:f1:57:5e:24:d9:e1:bf:a3:17:5d:3f:1e:56:bc: 92:25:d1:66:f2:89:9f:65:86:49:77:d6:fc:e7:7e:e0:9d:5a: d7:85:b5:d6:cc:90:ee:52:93:60:44:8d:05:ad:18:69:db:f1: 89:de:7f:7c:a6:a3:0e:7f:a5:dc:70:41:bc:9b:e2:1c:82:65: b9:d2:65:39:d0:16:06:52:ec:92:f3:bc:23:dd:6f:bc:62:9f: 55:3d:b8:ac:9a:36:24:91:23:aa:73:1b:92:a2:43:6b:25:f6: fe:f4:13:de:42:bd:44:e3:43:e7:b0:42:33:27:fa:bf:92:09: 5e:d1:29:df:b6:5f:8b:46:e0:7b:86:08:11:0c:25:51:86:e2: ab:c0:70:20:32:9c:37:ad:69:b0:2a:f9:cf:7d:48:2d:82:4d: b9:c6:f4:1e:eb:72:3d:c9:cc:69:fd:5f:06:f5:57:ae:e5:ab: d9:03:c8:d2:f1:a8:03:31:be:c1:54:f2:ed:44:b1:35:e8:11: 66:6d:38:e3:c5:3d:e4:bf:db:7d:3d:40:a8:0e:d8:64:37:9d: 1a:57:aa:6b:d1:db:39:39:ad:ff:0d:5b:7c:a0:73:1f:fd:97: 90:c6:d5:31:86:b6:7c:1a:56:d3:0b:57:47:38:3b:90:8c:ec: b0:45:c1:9e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDCswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU0MDVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFDMjI1MzlFQkMxMTk4 QTZBM0IxNjNFNjM0QTNFOEFCMzUyM0FCN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx4XjxKpaTPvUbON9k+0sfDMNgQmu8EfBqejTM/VojHUghviLH nwxVkcTz2d7xdPU/e9CCXBhxr+ZPV74uSOiPHZ+as+c6F20H1LsvEq/6k9jlzplE ArdaaDGeLX4lwh7Qw9kETBiEwk/7vwNiVMG2BrxnLK/2u8nHCHcmVKRgGy65FcxD eDluUmQXTOUZ1W1vqIK7002o5L2UPC1RehWkkJ5FpvOWNS2Y6Ddpr4oimwaqq0jZ jHvOvRSQcBXnz/8xkHsYuK4UXEelVxuOvGmjZdTOP3PZ0trlJGmVsyy7fXxuxonf dTall4vDYq+sKfGUaEM9NR4ppOiS6RicLUPJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHCJTnrwRmKajsWPmNKPoqzUjq3wwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0hDSlRucndSbUthanNXUG1OS1BvcXpVanEzdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExZoAwDQYJKoZIhvcNAQELBQADggEBAFPodCvxV14k2eG/oxddPx5WvJIl 0WbyiZ9lhkl31vznfuCdWteFtdbMkO5Sk2BEjQWtGGnb8Ynef3ymow5/pdxwQbyb 4hyCZbnSZTnQFgZS7JLzvCPdb7xin1U9uKyaNiSRI6pzG5KiQ2sl9v70E95CvUTj Q+ewQjMn+r+SCV7RKd+2X4tG4HuGCBEMJVGG4qvAcCAynDetabAq+c99SC2CTbnG 9B7rcj3JzGn9Xwb1V67lq9kDyNLxqAMxvsFU8u1EsTXoEWZtOOPFPeS/2309QKgO 2GQ3nRpXqmvR2zk5rf8NW3ygcx/9l5DG1TGGtnwaVtMLV0c4O5CM7LBFwZ4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:45 2025 by rpki-client