$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/K7bVPXBiHFjBLejzFGdXjGZzLh4.roa File: K7bVPXBiHFjBLejzFGdXjGZzLh4.roa (raw, json) Hash identifier: 6bvu1V6S/R+mwkTTDeEWiSz+qIBZIRctteBqhtFg55Q= Subject key identifier: 2B:B6:D5:3D:70:62:1C:58:C1:2D:E8:F3:14:67:57:8C:66:73:2E:1E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D69 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/K7bVPXBiHFjBLejzFGdXjGZzLh4.roa Signing time: Tue 01 Apr 2025 02:19:20 +0000 ROA not before: Tue 01 Apr 2025 02:19:20 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3433 (0xd69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:19:20 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=2BB6D53D70621C58C12DE8F31467578C66732E1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:de:ff:42:73:10:11:84:25:71:cb:c6:01:b2: cf:84:f5:37:0f:8c:ce:ba:d6:da:17:f8:54:16:f8: e8:12:22:98:42:a5:b3:27:8f:5e:c8:6b:6c:ca:ab: dd:50:e8:2c:eb:bb:f1:f8:73:1d:c4:be:d9:d4:eb: e6:d2:2d:c6:3c:99:0a:7f:4f:8c:9e:50:4f:ab:af: 30:98:71:ed:43:5c:4b:a2:22:83:fb:7c:ed:04:88: aa:65:a3:9a:0d:e4:6b:0e:44:17:3e:f2:59:cc:9a: 09:cb:6f:1f:69:c9:73:a3:41:67:63:0e:83:bc:38: 15:55:67:ce:85:9c:e1:21:d4:3f:67:92:72:48:76: 53:51:09:c5:d3:f9:a1:13:34:57:25:b9:68:cf:a3: 91:9a:f8:c1:73:89:99:ec:9e:f0:98:ad:e9:21:b8: 8d:bd:13:53:b4:1a:fc:a0:58:a1:4e:d4:27:3a:66: fd:2e:af:59:8d:f0:66:0c:9a:fe:41:72:54:be:82: 8a:1c:f8:55:7a:7c:3c:db:c0:63:26:77:a4:d0:53: 9d:00:b0:30:c0:1c:71:a2:e2:ed:a5:16:83:ad:31: b8:27:6b:90:39:66:e5:fa:14:2f:30:95:56:1f:88: dd:54:ec:19:13:ea:56:28:d1:50:6f:7d:94:2f:cf: b0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B6:D5:3D:70:62:1C:58:C1:2D:E8:F3:14:67:57:8C:66:73:2E:1E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/K7bVPXBiHFjBLejzFGdXjGZzLh4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.76.0/22 Signature Algorithm: sha256WithRSAEncryption dc:f5:da:84:8c:d1:8f:11:6b:30:e5:b4:b3:e4:89:c7:d6:ad: 17:c4:12:4f:e3:9f:35:5c:7e:de:2d:f6:e7:bb:b4:d8:fa:0d: eb:a1:2e:66:ce:4b:a9:72:a3:fe:32:52:2f:44:b2:9d:7e:8a: 92:ad:79:9e:05:d7:25:63:a3:2e:78:6b:ea:eb:09:83:af:35: b1:eb:6f:d3:68:d3:8c:f9:5f:5d:73:61:b7:78:e2:65:d3:40: 1d:be:85:8f:a3:5a:2d:fb:98:4c:67:f7:3a:89:a5:d8:d5:44: 5c:ef:8a:52:de:c4:cf:e4:4a:bc:f5:8b:36:6d:5b:dc:ef:d8: 2f:b8:73:18:5c:a0:b9:07:c9:d8:67:86:6c:f1:dd:56:ee:63: f0:ce:f2:23:e7:48:34:e5:28:90:7f:0f:bb:40:89:e1:e5:70: fc:2c:68:95:f2:13:1b:b3:53:d6:03:fa:27:7e:80:10:a7:b8: ea:57:26:c3:be:1f:1e:69:7b:44:43:fa:ba:80:1b:35:b7:91: ed:cc:7c:e3:39:0b:a7:15:f0:7d:27:50:d6:35:0f:5e:f1:44: f8:85:a8:7a:dc:80:b3:df:d6:d7:1b:56:b2:ed:16:9e:e4:e1: dd:72:dc:98:fc:93:bb:31:ad:a8:74:0e:bc:48:56:24:2b:a9: 0f:e2:7a:84 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE5MjBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJCQjZENTNENzA2MjFD NThDMTJERThGMzE0Njc1NzhDNjY3MzJFMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD93v9CcxARhCVxy8YBss+E9TcPjM661toX+FQW+OgSIphCpbMn j17Ia2zKq91Q6Czru/H4cx3EvtnU6+bSLcY8mQp/T4yeUE+rrzCYce1DXEuiIoP7 fO0EiKplo5oN5GsORBc+8lnMmgnLbx9pyXOjQWdjDoO8OBVVZ86FnOEh1D9nknJI dlNRCcXT+aETNFcluWjPo5Ga+MFziZnsnvCYrekhuI29E1O0GvygWKFO1Cc6Zv0u r1mN8GYMmv5BclS+gooc+FV6fDzbwGMmd6TQU50AsDDAHHGi4u2lFoOtMbgna5A5 ZuX6FC8wlVYfiN1U7BkT6lYo0VBvfZQvz7A1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUK7bVPXBiHFjBLejzFGdXjGZzLh4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0s3YlZQWEJpSEZqQkxlanpGR2RYakdaekxoNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxaEwwDQYJKoZIhvcNAQELBQADggEBANz12oSM0Y8RazDltLPkicfWrRfE Ek/jnzVcft4t9ue7tNj6DeuhLmbOS6lyo/4yUi9Esp1+ipKteZ4F1yVjoy54a+rr CYOvNbHrb9No04z5X11zYbd44mXTQB2+hY+jWi37mExn9zqJpdjVRFzvilLexM/k Srz1izZtW9zv2C+4cxhcoLkHydhnhmzx3VbuY/DO8iPnSDTlKJB/D7tAieHlcPws aJXyExuzU9YD+id+gBCnuOpXJsO+Hx5pe0RD+rqAGzW3ke3MfOM5C6cV8H0nUNY1 D17xRPiFqHrcgLPf1tcbVrLtFp7k4d1y3Jj8k7sxrah0DrxIViQrqQ/ieoQ= -----END CERTIFICATE-----Generated at Sun Apr 6 01:58:19 2025 by rpki-client