$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IoOBoeldo6EUGfXx1sinzffi7i4.roa File: IoOBoeldo6EUGfXx1sinzffi7i4.roa (raw, json) Hash identifier: 09dfmNqNSQVd4ZcxZryDOuXE2U6kpdcCAOIblnPlyGc= Subject key identifier: 22:83:81:A1:E9:5D:A3:A1:14:19:F5:F1:D6:C8:A7:CD:F7:E2:EE:2E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D57 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IoOBoeldo6EUGfXx1sinzffi7i4.roa Signing time: Tue 01 Apr 2025 02:17:16 +0000 ROA not before: Tue 01 Apr 2025 02:17:16 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3415 (0xd57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:17:16 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=228381A1E95DA3A11419F5F1D6C8A7CDF7E2EE2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bd:d1:75:95:58:c3:34:5b:d2:8f:b8:bc:b8: 43:84:41:f2:84:8b:46:3c:df:eb:b9:a0:a2:a2:b6: eb:5f:72:db:5a:4b:12:d0:6d:23:8c:95:77:ce:f7: c9:87:f4:4a:ba:92:0f:04:f5:96:fa:47:d8:71:91: 34:0d:4e:25:d9:bd:d3:12:09:ee:ae:f8:af:dc:25: 2e:55:51:c3:fe:11:6a:e7:9f:c0:b7:e6:9d:cb:48: 58:9a:ee:23:7a:4d:08:a0:74:c5:92:b2:17:40:04: f1:35:b9:cd:cb:ac:1e:43:71:06:fc:04:cc:46:16: bb:29:f7:b5:ff:09:e9:1f:47:cd:10:78:7c:ad:93: 48:cf:aa:2b:c5:e3:69:2f:e1:ef:b8:f0:06:d9:d4: 99:39:e2:4c:6a:7f:47:9c:07:5c:13:28:1a:7a:40: 60:99:12:9a:d7:20:93:ad:e2:dd:4d:a0:d2:28:20: 8e:47:3c:02:86:c4:79:98:5c:39:c4:ef:70:7b:ca: 84:57:33:63:7a:f2:f7:2c:9b:a8:b5:61:5e:87:4e: 8e:b9:d0:91:5e:3a:9d:39:d8:23:2d:56:27:41:75: c5:5b:73:78:63:3f:fc:50:0f:55:56:a5:b4:86:bf: 29:4e:77:58:2f:12:ca:07:33:9a:b0:17:b3:0c:53: 77:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:83:81:A1:E9:5D:A3:A1:14:19:F5:F1:D6:C8:A7:CD:F7:E2:EE:2E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IoOBoeldo6EUGfXx1sinzffi7i4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.52.0/23 Signature Algorithm: sha256WithRSAEncryption 07:f4:aa:03:b7:a7:e3:c2:fa:84:d4:79:70:0e:26:46:a1:ae: 57:10:7d:a9:63:39:82:4f:56:6e:b2:4a:68:d7:c4:ca:3e:13: c3:ff:ff:aa:6a:6b:26:33:ca:7e:75:a8:12:6a:12:65:b8:e0: 8b:8d:c2:a8:c9:37:30:3d:db:04:c7:c3:c5:38:75:fa:e1:5b: 4e:ec:e5:e3:21:a1:47:b2:ce:79:02:b0:10:62:55:51:4e:22: f7:e2:8e:a9:7e:7c:d3:04:31:b1:0b:1f:42:7d:18:0b:25:78: 3e:ed:78:a3:98:28:75:79:2c:77:dd:e7:8f:1a:f2:8e:fe:6b: fb:28:1a:6c:be:d4:f2:43:e1:a0:f3:f0:6d:f1:c6:3c:e3:cb: 7f:7a:c2:95:fd:66:cb:97:c0:68:f7:99:80:b6:07:70:9b:20: 89:ae:a5:bb:6b:4b:83:83:ad:dc:62:24:90:8a:c4:17:87:49: 21:4f:c1:49:25:fb:30:5b:5e:70:3f:68:22:81:5b:88:74:9c: fc:f3:cc:86:a8:c8:d8:b3:81:3e:4e:0e:d7:e5:70:de:04:55: ce:77:af:a8:3b:55:f1:e9:d8:3a:1a:fb:31:4a:30:08:d1:84: 4f:eb:fb:c5:a1:ef:dd:ee:4a:a6:d3:27:dc:bd:d5:a9:28:d2: a0:2b:0b:fb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDVcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE3MTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDIyODM4MUExRTk1REEz QTExNDE5RjVGMUQ2QzhBN0NERjdFMkVFMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDavdF1lVjDNFvSj7i8uEOEQfKEi0Y83+u5oKKitutfcttaSxLQ bSOMlXfO98mH9Eq6kg8E9Zb6R9hxkTQNTiXZvdMSCe6u+K/cJS5VUcP+EWrnn8C3 5p3LSFia7iN6TQigdMWSshdABPE1uc3LrB5DcQb8BMxGFrsp97X/CekfR80QeHyt k0jPqivF42kv4e+48AbZ1Jk54kxqf0ecB1wTKBp6QGCZEprXIJOt4t1NoNIoII5H PAKGxHmYXDnE73B7yoRXM2N68vcsm6i1YV6HTo650JFeOp052CMtVidBdcVbc3hj P/xQD1VWpbSGvylOd1gvEsoHM5qwF7MMU3eNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIoOBoeldo6EUGfXx1sinzffi7i4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0lvT0JvZWxkbzZFVUdmWHgxc2luemZmaTdpNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYjQwDQYJKoZIhvcNAQELBQADggEBAAf0qgO3p+PC+oTUeXAOJkahrlcQ faljOYJPVm6ySmjXxMo+E8P//6pqayYzyn51qBJqEmW44IuNwqjJNzA92wTHw8U4 dfrhW07s5eMhoUeyznkCsBBiVVFOIvfijql+fNMEMbELH0J9GAsleD7teKOYKHV5 LHfd548a8o7+a/soGmy+1PJD4aDz8G3xxjzjy396wpX9ZsuXwGj3mYC2B3CbIImu pbtrS4ODrdxiJJCKxBeHSSFPwUkl+zBbXnA/aCKBW4h0nPzzzIaoyNizgT5ODtfl cN4EVc53r6g7VfHp2Doa+zFKMAjRhE/r+8Wh793uSqbTJ9y91ako0qArC/s= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:38 2025 by rpki-client