$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JjFmfDwMBIAI1UgJZCUmdUoGWeU.roa File: JjFmfDwMBIAI1UgJZCUmdUoGWeU.roa (raw, json) Hash identifier: cKyBJZlHB4QE9GMCZ69uW62pAopb4zxJVqIZh0sJrl0= Subject key identifier: 26:31:66:7C:3C:0C:04:80:08:D5:48:09:64:25:26:75:4A:06:59:E5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DC5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JjFmfDwMBIAI1UgJZCUmdUoGWeU.roa Signing time: Tue 01 Apr 2025 02:27:15 +0000 ROA not before: Tue 01 Apr 2025 02:27:15 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3525 (0xdc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:27:15 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=2631667C3C0C048008D54809642526754A0659E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3a:e9:22:bf:8e:15:4e:60:69:5d:ad:e5:79: 9e:24:2d:d2:e0:27:9f:a2:19:df:85:b3:63:68:24: e6:9e:0a:27:97:19:77:a0:07:9d:4b:b5:24:81:12: f6:b6:c6:c7:50:c1:39:6a:39:f6:92:7e:d4:d9:c4: 0a:cd:54:21:7a:e0:66:da:4f:80:47:35:ee:d3:65: 47:c8:5d:02:db:d3:00:9a:ca:ec:fc:bd:31:71:eb: da:5e:ca:3e:31:1b:8c:cc:f5:69:38:cd:0f:01:33: 11:2d:28:ad:28:bf:3c:4b:00:09:09:11:b4:ef:a9: 89:63:68:4b:bc:ad:0d:3e:28:44:32:e0:7a:56:f7: 42:1e:90:88:9a:11:eb:bc:16:46:0d:02:b0:6a:45: c2:7d:95:6b:96:c7:94:96:1b:72:a6:71:d1:d7:8c: ae:d0:92:1b:78:70:55:e5:62:0b:32:d0:b3:9b:53: 45:4d:66:93:f2:75:c7:5f:70:15:93:5d:55:74:25: 94:7a:f2:e8:bb:04:10:da:8c:28:db:f3:02:76:a6: d5:84:1d:37:dc:54:4c:1c:4f:3a:e2:3d:3e:f3:47: db:10:a5:5c:60:b4:8c:e2:4b:77:8f:ba:63:b8:08: bb:bf:7d:6a:c8:03:ec:6a:fe:bf:2e:1d:87:df:ba: eb:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:31:66:7C:3C:0C:04:80:08:D5:48:09:64:25:26:75:4A:06:59:E5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JjFmfDwMBIAI1UgJZCUmdUoGWeU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.166.0/23 Signature Algorithm: sha256WithRSAEncryption 23:92:0c:76:5a:a4:21:e6:06:a6:f6:16:4a:68:83:b4:ed:67: bf:45:18:ad:7a:62:cf:7e:85:e4:cb:6e:3c:54:a5:05:bc:22: 56:fc:87:e0:48:f6:c6:3d:ba:e2:61:2c:2f:37:27:72:11:c7: 5f:1b:a0:be:cd:53:f1:05:54:66:99:3a:93:86:2a:cf:b3:c3: d8:c3:97:54:43:25:bb:cc:0b:30:53:a3:04:5e:5a:28:15:f3: 45:5a:0c:0f:76:17:f0:45:42:e4:33:2a:ba:8e:60:12:24:b9: cc:e0:03:60:dd:e7:0e:be:28:11:99:8a:bd:c6:c0:dc:1f:45: cc:ae:2d:41:2d:1a:61:bc:97:be:7a:7a:47:45:60:f1:7f:09: 76:a6:68:1c:a2:11:ce:f4:73:19:44:1a:c9:9a:4f:4d:9f:22: ab:d3:1e:e0:0e:4a:be:16:d4:5b:78:da:ec:2f:f7:e6:3d:e5: d0:1d:45:7a:65:e8:84:8f:e1:24:90:71:df:0c:d8:46:5b:c4: a2:62:9c:28:4a:78:d6:30:de:56:c5:02:6d:b3:de:78:13:49: fd:d0:46:bb:a8:23:84:26:61:ab:11:d4:da:9b:62:7c:cb:c7: 3f:c3:4c:17:41:50:9e:7a:29:09:5e:90:40:03:5c:ba:77:ea: 54:a7:b3:ee -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI3MTVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI2MzE2NjdDM0MwQzA0 ODAwOEQ1NDgwOTY0MjUyNjc1NEEwNjU5RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9Oukiv44VTmBpXa3leZ4kLdLgJ5+iGd+Fs2NoJOaeCieXGXeg B51LtSSBEva2xsdQwTlqOfaSftTZxArNVCF64GbaT4BHNe7TZUfIXQLb0wCayuz8 vTFx69peyj4xG4zM9Wk4zQ8BMxEtKK0ovzxLAAkJEbTvqYljaEu8rQ0+KEQy4HpW 90IekIiaEeu8FkYNArBqRcJ9lWuWx5SWG3KmcdHXjK7Qkht4cFXlYgsy0LObU0VN ZpPydcdfcBWTXVV0JZR68ui7BBDajCjb8wJ2ptWEHTfcVEwcTzriPT7zR9sQpVxg tIziS3ePumO4CLu/fWrIA+xq/r8uHYffuuutAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJjFmfDwMBIAI1UgJZCUmdUoGWeUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0pqRm1mRHdNQklBSTFVZ0paQ1VtZFVvR1dlVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYqYwDQYJKoZIhvcNAQELBQADggEBACOSDHZapCHmBqb2Fkpog7TtZ79F GK16Ys9+heTLbjxUpQW8Ilb8h+BI9sY9uuJhLC83J3IRx18boL7NU/EFVGaZOpOG Ks+zw9jDl1RDJbvMCzBTowReWigV80VaDA92F/BFQuQzKrqOYBIkuczgA2Dd5w6+ KBGZir3GwNwfRcyuLUEtGmG8l756ekdFYPF/CXamaByiEc70cxlEGsmaT02fIqvT HuAOSr4W1Ft42uwv9+Y95dAdRXpl6ISP4SSQcd8M2EZbxKJinChKeNYw3lbFAm2z 3ngTSf3QRruoI4QmYasR1NqbYnzLxz/DTBdBUJ56KQlekEADXLp36lSns+4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:51 2025 by rpki-client