$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Hrp96Wt77Ay-Eq4ZQuXNZOGQXxM.roa File: Hrp96Wt77Ay-Eq4ZQuXNZOGQXxM.roa (raw, json) Hash identifier: tE6yqNnPeHDkp+B92NEIc2hx4Bz55pk9zdHdfXqMksE= Subject key identifier: 1E:BA:7D:E9:6B:7B:EC:0C:BE:12:AE:19:42:E5:CD:64:E1:90:5F:13 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D02 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Hrp96Wt77Ay-Eq4ZQuXNZOGQXxM.roa Signing time: Tue 01 Apr 2025 02:11:38 +0000 ROA not before: Tue 01 Apr 2025 02:11:38 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3330 (0xd02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:38 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1EBA7DE96B7BEC0CBE12AE1942E5CD64E1905F13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ba:90:fa:e4:6c:40:21:ed:03:60:a8:f8:66: 90:b0:3c:9b:68:4a:78:1d:cd:0b:f6:a7:15:38:1d: 4a:86:34:2b:32:6d:39:8e:92:a1:41:28:da:cf:0e: 94:f0:5f:8f:15:54:e1:ef:e7:bc:f2:91:d1:ae:58: d8:40:55:8a:b2:64:d8:17:70:81:e1:14:e5:23:48: 94:d3:e7:f0:3f:c8:81:54:d7:15:bf:5c:1b:be:06: c8:7a:f4:61:9a:4f:d6:4d:a6:c3:bb:da:14:92:eb: 98:b6:d2:92:b1:93:68:40:ac:49:57:75:75:bf:db: 69:e9:8e:7a:63:c2:2e:af:14:6d:ba:ae:8b:d8:76: d2:74:73:7e:b0:75:b3:07:0b:e6:63:14:04:73:d5: a4:e7:3b:7e:ba:39:c6:25:3b:c5:ae:0a:b4:99:b5: 29:7e:eb:8b:1f:8e:9d:18:19:c0:ad:c3:e1:9a:12: 37:c7:d9:e2:4d:03:00:04:7c:c7:1f:01:0e:d1:f8: 0c:8c:c8:70:90:6b:9f:2d:02:d5:a8:05:4c:02:55: 01:22:0e:48:53:ba:78:9a:ee:a3:a1:48:1c:e7:6a: a4:62:33:ad:6c:7e:de:89:0f:0a:ed:27:03:f0:bb: f4:b6:bb:24:68:2a:41:0a:10:45:ad:ae:ee:c3:9b: c7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:BA:7D:E9:6B:7B:EC:0C:BE:12:AE:19:42:E5:CD:64:E1:90:5F:13 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Hrp96Wt77Ay-Eq4ZQuXNZOGQXxM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.112.0/20 Signature Algorithm: sha256WithRSAEncryption aa:85:50:d0:08:52:5c:01:48:b6:5d:b5:12:ef:c9:11:4c:ef: ea:8a:bc:d4:23:94:52:dc:fe:c9:39:b6:de:2e:57:9b:b0:7e: 7b:3b:22:5c:62:60:81:18:d0:1e:2e:b4:46:c7:b5:a0:1f:8a: ca:95:5a:2d:14:c3:3d:ff:9e:15:82:fe:3d:f4:cc:1d:62:4d: be:9f:86:97:40:da:26:55:99:2d:c6:ab:a6:47:a2:0d:57:88: 42:04:07:a6:e5:5f:23:4f:a6:ad:49:3b:22:76:a1:bd:05:29: 92:ac:57:08:ca:4b:02:6a:62:5b:94:0e:a7:46:92:73:83:11: 97:ea:c3:a8:ca:d1:3f:ff:20:61:8b:2b:0f:ea:bc:8a:e8:04: ce:05:de:d2:c2:bb:4c:49:c2:4f:c8:8f:38:a3:60:7c:05:1a: cf:3e:7c:23:4e:c0:15:19:ed:af:d2:5a:d2:e9:fc:a8:25:7d: d2:ff:4a:bc:b6:d6:90:94:b9:39:9b:b5:c2:1e:20:07:f6:20: a0:b5:79:57:d8:08:e7:40:e5:ed:4a:c9:fd:26:96:65:5b:60: 50:6a:5f:6d:02:e9:b7:82:ed:9c:2b:44:38:ff:86:45:c1:cc: f2:83:5a:62:e1:df:b1:1e:0e:d4:87:b2:50:d0:c9:18:18:f0: 97:4d:62:23 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDQIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExMzhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFFQkE3REU5NkI3QkVD MENCRTEyQUUxOTQyRTVDRDY0RTE5MDVGMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3upD65GxAIe0DYKj4ZpCwPJtoSngdzQv2pxU4HUqGNCsybTmO kqFBKNrPDpTwX48VVOHv57zykdGuWNhAVYqyZNgXcIHhFOUjSJTT5/A/yIFU1xW/ XBu+Bsh69GGaT9ZNpsO72hSS65i20pKxk2hArElXdXW/22npjnpjwi6vFG26rovY dtJ0c36wdbMHC+ZjFARz1aTnO366OcYlO8WuCrSZtSl+64sfjp0YGcCtw+GaEjfH 2eJNAwAEfMcfAQ7R+AyMyHCQa58tAtWoBUwCVQEiDkhTunia7qOhSBznaqRiM61s ft6JDwrtJwPwu/S2uyRoKkEKEEWtru7Dm8c1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHrp96Wt77Ay+Eq4ZQuXNZOGQXxMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0hycDk2V3Q3N0F5LUVxNFpRdVhOWk9HUVh4TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxanAwDQYJKoZIhvcNAQELBQADggEBAKqFUNAIUlwBSLZdtRLvyRFM7+qK vNQjlFLc/sk5tt4uV5uwfns7IlxiYIEY0B4utEbHtaAfisqVWi0Uwz3/nhWC/j30 zB1iTb6fhpdA2iZVmS3Gq6ZHog1XiEIEB6blXyNPpq1JOyJ2ob0FKZKsVwjKSwJq YluUDqdGknODEZfqw6jK0T//IGGLKw/qvIroBM4F3tLCu0xJwk/IjzijYHwFGs8+ fCNOwBUZ7a/SWtLp/KglfdL/Sry21pCUuTmbtcIeIAf2IKC1eVfYCOdA5e1Kyf0m lmVbYFBqX20C6beC7ZwrRDj/hkXBzPKDWmLh37EeDtSHslDQyRgY8JdNYiM= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:49 2025 by rpki-client