$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HNzZT7CjniybY55QlWf4YtKHey4.roa File: HNzZT7CjniybY55QlWf4YtKHey4.roa (raw, json) Hash identifier: dVtl8+bhQ4/aXVL+ZelkGyUJOk2rGP0zRi445nKaTIo= Subject key identifier: 1C:DC:D9:4F:B0:A3:9E:2C:9B:63:9E:50:95:67:F8:62:D2:87:7B:2E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E1A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HNzZT7CjniybY55QlWf4YtKHey4.roa Signing time: Tue 01 Apr 2025 02:31:33 +0000 ROA not before: Tue 01 Apr 2025 02:31:33 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3610 (0xe1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:31:33 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1CDCD94FB0A39E2C9B639E509567F862D2877B2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1a:a6:48:bb:63:b1:13:fd:ca:9b:d5:af:e4: 81:52:f2:b3:c0:ce:c2:ff:61:5f:8d:bb:cf:78:1f: 90:7e:7f:ca:98:42:05:69:09:97:2f:9a:8e:40:44: 7c:d3:d7:83:1b:d1:fb:2b:ab:92:9a:e6:7a:42:46: f7:59:6e:4e:a1:2e:7d:2e:c4:d6:11:dd:87:c3:fe: 12:9f:49:9d:b1:cf:05:b5:2f:82:fd:67:f4:fa:2d: 08:f3:10:f4:ad:f6:f1:9a:6f:99:98:b0:99:56:97: 93:c9:8d:71:6a:83:b9:d0:0e:4f:44:17:1c:73:fc: 90:f0:a5:a6:c4:6f:ad:8e:cb:45:fd:6a:ef:86:5b: b8:9c:b9:05:52:72:1e:b9:1f:16:e7:fa:e5:54:7b: a9:c4:35:3f:71:0f:23:60:88:af:a5:31:50:f6:82: 46:20:e7:7a:3a:e7:b0:17:52:9e:1f:9d:d2:d4:b6: 07:0e:cb:3f:19:ab:22:5d:fa:28:db:ef:82:7e:0c: 78:09:ab:b5:1f:3f:9f:2f:02:84:70:18:32:ea:25: dc:de:9c:c0:f0:05:ec:a6:83:06:00:0f:72:81:3c: 3b:63:f4:a5:05:aa:74:13:12:66:7f:19:b0:50:00: ab:ff:a9:17:92:a3:d1:7b:7e:0e:a9:5f:6f:a7:71: e4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DC:D9:4F:B0:A3:9E:2C:9B:63:9E:50:95:67:F8:62:D2:87:7B:2E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HNzZT7CjniybY55QlWf4YtKHey4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 25:25:75:b0:93:09:e1:93:a5:7f:11:19:b9:28:5e:7d:75:89: 4b:23:55:d5:11:bd:57:be:8d:6e:57:66:ce:92:0b:57:65:93: 5e:32:ce:7d:6b:17:c6:ea:d2:14:56:41:04:1e:ad:9f:a5:16: 67:ee:5a:16:76:3c:e5:40:8a:5b:03:4b:a3:fe:84:6b:7e:55: 14:aa:82:27:2c:ec:e3:c5:4b:68:16:c4:1a:08:f5:02:c1:8e: 7d:e3:4e:bf:86:ef:5a:90:64:fe:a6:d1:e4:ea:62:e8:4d:5a: 98:1d:ae:a0:71:55:a2:b7:f7:c8:5f:91:22:7a:b9:b0:e9:3d: 0c:c3:0f:12:db:ca:ef:d3:a2:c9:7e:2b:f9:a9:4c:73:5b:8a: fd:9c:20:5b:7c:96:3d:67:31:c4:d5:72:24:78:8c:54:f5:7d: b3:89:f6:9c:8d:23:07:ad:d8:3f:81:a1:da:82:4b:cf:f9:e5: 3a:cc:4d:0a:df:ff:e9:e2:68:de:b2:92:db:90:d2:99:d4:ab: 87:83:6e:d0:07:ff:07:74:e9:a2:26:6f:43:50:8b:29:53:e7: 94:dd:0c:4b:dd:ef:0b:b3:2e:5e:79:d3:05:8c:c7:4b:ff:5a: bb:5f:19:81:32:56:92:f1:e4:f4:2d:5a:83:07:35:41:8d:76: 7f:c1:ba:f8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDhowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMxMzNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFDRENEOTRGQjBBMzlF MkM5QjYzOUU1MDk1NjdGODYyRDI4NzdCMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClGqZIu2OxE/3Km9Wv5IFS8rPAzsL/YV+Nu894H5B+f8qYQgVp CZcvmo5ARHzT14Mb0fsrq5Ka5npCRvdZbk6hLn0uxNYR3YfD/hKfSZ2xzwW1L4L9 Z/T6LQjzEPSt9vGab5mYsJlWl5PJjXFqg7nQDk9EFxxz/JDwpabEb62Oy0X9au+G W7icuQVSch65Hxbn+uVUe6nENT9xDyNgiK+lMVD2gkYg53o657AXUp4fndLUtgcO yz8ZqyJd+ijb74J+DHgJq7UfP58vAoRwGDLqJdzenMDwBeymgwYAD3KBPDtj9KUF qnQTEmZ/GbBQAKv/qReSo9F7fg6pX2+nceQLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHNzZT7CjniybY55QlWf4YtKHey4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0hOelpUN0Nqbml5Ylk1NVFsV2Y0WXRLSGV5NC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYBowDQYJKoZIhvcNAQELBQADggEBACUldbCTCeGTpX8RGbkoXn11iUsj VdURvVe+jW5XZs6SC1dlk14yzn1rF8bq0hRWQQQerZ+lFmfuWhZ2POVAilsDS6P+ hGt+VRSqgics7OPFS2gWxBoI9QLBjn3jTr+G71qQZP6m0eTqYuhNWpgdrqBxVaK3 98hfkSJ6ubDpPQzDDxLbyu/Tosl+K/mpTHNbiv2cIFt8lj1nMcTVciR4jFT1fbOJ 9pyNIwet2D+BodqCS8/55TrMTQrf/+niaN6yktuQ0pnUq4eDbtAH/wd06aImb0NQ iylT55TdDEvd7wuzLl550wWMx0v/WrtfGYEyVpLx5PQtWoMHNUGNdn/Buvg= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:45 2025 by rpki-client