$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LrWf33Lv9xD0qCpcDZ0gxcXLByo.roa File: LrWf33Lv9xD0qCpcDZ0gxcXLByo.roa (raw, json) Hash identifier: LOA/M/r/DS3L+17m7l2GzAAzYcEl2CmTM9w+X9eJsHs= Subject key identifier: 2E:B5:9F:DF:72:EF:F7:10:F4:A8:2A:5C:0D:9D:20:C5:C5:CB:07:2A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CCF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LrWf33Lv9xD0qCpcDZ0gxcXLByo.roa Signing time: Tue 01 Apr 2025 02:09:13 +0000 ROA not before: Tue 01 Apr 2025 02:09:13 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3279 (0xccf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:13 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=2EB59FDF72EFF710F4A82A5C0D9D20C5C5CB072A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2c:24:ca:da:71:33:40:cd:1c:2d:30:b5:30: 75:d1:6b:56:d6:8f:07:08:ab:bf:c6:ee:d0:c9:8c: ba:f3:0a:30:33:a0:6b:77:26:b8:30:a0:61:95:64: c4:f8:1c:fc:ce:9c:6e:7c:0b:df:c6:88:76:44:e5: 69:7c:f5:87:90:e8:02:dc:80:3d:90:c3:0c:30:f3: c5:40:f8:b9:1c:53:d8:87:68:0a:1f:b0:22:41:7c: d5:64:05:a3:ef:2c:49:e5:79:7c:de:f4:0d:d0:44: 44:70:57:49:08:47:f9:55:88:fd:12:a4:77:8f:b9: 0e:09:11:f0:db:ca:d0:16:d6:29:d6:bb:0c:d6:ce: 96:2a:9e:72:8f:6d:11:51:c5:76:55:39:53:6e:87: ef:9f:d3:c0:e2:32:c1:14:9d:d4:2b:ee:ce:a8:7d: 96:4d:6f:83:e7:30:86:18:19:39:02:97:03:7e:5f: 41:98:5c:f2:67:1c:de:62:ca:d0:d6:cb:f7:60:ab: fd:4d:05:ee:5f:b1:c5:f0:82:e9:95:d0:8f:20:b4: 7a:29:88:8d:bd:8a:58:63:b4:34:ff:10:8e:46:f3: ba:98:6c:58:a8:c8:59:09:38:27:a9:04:2f:b9:5d: 7a:75:c2:f1:5f:38:bd:88:96:a7:74:1e:f6:73:8c: 13:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B5:9F:DF:72:EF:F7:10:F4:A8:2A:5C:0D:9D:20:C5:C5:CB:07:2A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LrWf33Lv9xD0qCpcDZ0gxcXLByo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.224.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:44:a6:94:02:0c:36:e9:c0:1c:b6:0e:91:5a:97:8b:01:3c: 13:ab:bf:40:4d:2d:3a:5e:fa:da:79:9d:40:d8:5f:0c:a9:bf: 69:25:ed:d3:00:ff:a7:97:3e:c9:93:14:bf:de:9b:97:f9:9b: b8:76:37:ae:be:6e:df:40:d4:b8:d3:61:ce:43:53:c0:18:ec: 94:25:8f:24:82:4d:e5:f1:2b:65:cd:f6:43:3d:17:e6:6a:06: d1:2e:27:5d:a3:9b:b7:66:9a:42:93:36:70:85:07:57:ce:b9: 85:e5:1c:7f:be:89:2c:b1:91:f7:52:bf:03:94:6d:f3:19:b3: 17:49:4e:f3:77:88:8a:00:7f:c1:0a:6d:ee:2c:e5:cd:76:73: be:b0:ed:77:17:61:96:95:f8:05:25:12:c5:76:d4:44:31:cf: 99:c1:8f:d1:3b:bd:17:ea:66:83:da:06:fe:35:80:e6:b3:fd: 9b:99:8d:47:ff:fb:3e:12:d6:b6:51:81:4b:a9:be:47:9c:86: e5:01:17:01:38:d3:ca:c8:c1:47:7f:40:06:47:02:d1:b6:1c: 3a:fb:6f:7e:7e:b5:a4:a9:a8:b7:27:b8:9f:24:a2:47:e5:a3: b5:4f:bd:eb:2a:8c:73:2b:30:df:68:b0:fb:ff:e6:be:0c:78: c5:c9:3d:54 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDM8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MTNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJFQjU5RkRGNzJFRkY3 MTBGNEE4MkE1QzBEOUQyMEM1QzVDQjA3MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChLCTK2nEzQM0cLTC1MHXRa1bWjwcIq7/G7tDJjLrzCjAzoGt3 JrgwoGGVZMT4HPzOnG58C9/GiHZE5Wl89YeQ6ALcgD2Qwwww88VA+LkcU9iHaAof sCJBfNVkBaPvLEnleXze9A3QRERwV0kIR/lViP0SpHePuQ4JEfDbytAW1inWuwzW zpYqnnKPbRFRxXZVOVNuh++f08DiMsEUndQr7s6ofZZNb4PnMIYYGTkClwN+X0GY XPJnHN5iytDWy/dgq/1NBe5fscXwgumV0I8gtHopiI29ilhjtDT/EI5G87qYbFio yFkJOCepBC+5XXp1wvFfOL2Ilqd0HvZzjBPpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULrWf33Lv9xD0qCpcDZ0gxcXLByowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0xyV2YzM0x2OXhEMHFDcGNEWjBneGNYTEJ5by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYOAwDQYJKoZIhvcNAQELBQADggEBAD1EppQCDDbpwBy2DpFal4sBPBOr v0BNLTpe+tp5nUDYXwypv2kl7dMA/6eXPsmTFL/em5f5m7h2N66+bt9A1LjTYc5D U8AY7JQljySCTeXxK2XN9kM9F+ZqBtEuJ12jm7dmmkKTNnCFB1fOuYXlHH++iSyx kfdSvwOUbfMZsxdJTvN3iIoAf8EKbe4s5c12c76w7XcXYZaV+AUlEsV21EQxz5nB j9E7vRfqZoPaBv41gOaz/ZuZjUf/+z4S1rZRgUupvkechuUBFwE408rIwUd/QAZH AtG2HDr7b35+taSpqLcnuJ8kokflo7VPvesqjHMrMN9osPv/5r4MeMXJPVQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:22 2025 by rpki-client