$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/M6-yod77J3K0HlEttlmFXpWVVoc.roa File: M6-yod77J3K0HlEttlmFXpWVVoc.roa (raw, json) Hash identifier: s+hu1WJKLGcy8rEi0ys5t+EbgrpPmraTUwZOuz1LEAw= Subject key identifier: 33:AF:B2:A1:DE:FB:27:72:B4:1E:51:2D:B6:59:85:5E:95:95:56:87 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D36 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/M6-yod77J3K0HlEttlmFXpWVVoc.roa Signing time: Tue 01 Apr 2025 02:13:56 +0000 ROA not before: Tue 01 Apr 2025 02:13:56 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3382 (0xd36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:56 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=33AFB2A1DEFB2772B41E512DB659855E95955687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e2:21:ca:b9:b7:20:9b:9f:1a:66:90:45:51: 15:68:6a:54:ce:ba:98:a7:00:2c:0c:44:3b:81:6e: 27:88:fe:e9:17:3d:8f:12:ef:40:5a:ca:2c:2f:43: bb:5d:0c:f9:64:0e:17:5f:6d:07:e0:e2:d3:bd:d4: 90:6d:cf:07:61:d9:cf:2d:99:1a:71:e9:f1:4c:66: 41:ea:dd:b0:a8:91:1d:35:7c:f3:57:11:9b:c9:fc: 77:f4:b4:88:f8:73:1c:1a:05:29:da:66:a6:df:c8: 08:ac:5d:7c:73:de:88:9f:ca:0d:b9:cb:a3:31:fe: c1:b3:1e:d6:a9:00:eb:38:e5:e2:04:be:33:c0:6f: 9c:99:19:0a:55:d1:db:15:d6:f8:14:09:a6:32:94: dd:fa:fa:2e:9b:e2:c5:44:25:80:1a:20:78:f7:2a: 41:2b:3d:e7:60:7c:8e:cb:0c:0a:18:c3:80:1d:0e: be:82:f5:b4:b5:f3:34:55:fb:c2:d2:ff:9d:52:33: 9b:ff:73:8c:fe:46:8b:64:03:b2:0b:bf:9f:ed:13: b3:8e:34:3b:f3:f1:9a:3e:9e:31:d6:3e:77:f5:4f: 3b:92:5e:75:46:73:c4:24:31:47:ce:79:26:9c:93: 3b:df:3b:88:bc:c6:7a:ba:7a:4c:fb:46:13:60:68: f5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AF:B2:A1:DE:FB:27:72:B4:1E:51:2D:B6:59:85:5E:95:95:56:87 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/M6-yod77J3K0HlEttlmFXpWVVoc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.28.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:f7:33:b0:c1:72:23:7b:0b:6c:0d:e9:fc:40:a4:cf:8b:79: 54:0c:61:a7:c1:2d:57:5c:3e:a9:a4:4f:6c:76:be:d9:a8:94: f3:69:48:1f:7e:81:01:fc:eb:a7:1a:dc:16:f1:3a:45:d3:dd: 11:e1:83:0c:d0:09:b2:16:17:cf:75:76:43:14:74:b1:0b:5d: 47:70:e5:50:79:75:a0:66:2a:ea:f0:52:9e:f6:0a:0e:aa:d2: 87:64:9a:3c:1e:8f:4a:db:4a:81:b3:42:33:6c:ef:bb:d6:c8: 9c:dd:5a:ab:b0:46:17:55:17:a4:f8:38:13:bd:6e:ce:df:18: b9:6a:62:81:32:74:33:78:e3:fa:b8:77:79:74:1b:8c:08:f0: d4:15:b0:62:ee:cc:22:6f:53:57:52:56:69:d0:79:19:bb:59: 9a:28:1e:08:c6:f4:cf:e2:69:1c:de:56:c0:dc:6a:78:d0:52: b1:46:bc:25:8f:2c:1a:da:b1:1d:36:21:71:24:82:c4:55:59: eb:51:a3:2f:cc:18:1a:14:55:23:79:3b:55:e7:0a:1a:b1:13: a3:b5:3e:ed:e6:56:5d:66:2a:17:bf:43:67:0a:6a:a2:fb:b3: db:52:6a:35:3d:cf:59:c8:f8:af:ba:de:fe:2f:f6:af:cc:a0: e2:ac:02:d2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDTYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMzQUZCMkExREVGQjI3 NzJCNDFFNTEyREI2NTk4NTVFOTU5NTU2ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK4iHKubcgm58aZpBFURVoalTOupinACwMRDuBbieI/ukXPY8S 70BayiwvQ7tdDPlkDhdfbQfg4tO91JBtzwdh2c8tmRpx6fFMZkHq3bCokR01fPNX EZvJ/Hf0tIj4cxwaBSnaZqbfyAisXXxz3oifyg25y6Mx/sGzHtapAOs45eIEvjPA b5yZGQpV0dsV1vgUCaYylN36+i6b4sVEJYAaIHj3KkErPedgfI7LDAoYw4AdDr6C 9bS18zRV+8LS/51SM5v/c4z+RotkA7ILv5/tE7OONDvz8Zo+njHWPnf1TzuSXnVG c8QkMUfOeSackzvfO4i8xnq6ekz7RhNgaPUpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUM6+yod77J3K0HlEttlmFXpWVVocwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L002LXlvZDc3SjNLMEhsRXR0bG1GWHBXVlZvYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYRwwDQYJKoZIhvcNAQELBQADggEBAG/3M7DBciN7C2wN6fxApM+LeVQM YafBLVdcPqmkT2x2vtmolPNpSB9+gQH866ca3BbxOkXT3RHhgwzQCbIWF891dkMU dLELXUdw5VB5daBmKurwUp72Cg6q0odkmjwej0rbSoGzQjNs77vWyJzdWquwRhdV F6T4OBO9bs7fGLlqYoEydDN44/q4d3l0G4wI8NQVsGLuzCJvU1dSVmnQeRm7WZoo HgjG9M/iaRzeVsDcanjQUrFGvCWPLBrasR02IXEkgsRVWetRoy/MGBoUVSN5O1Xn ChqxE6O1Pu3mVl1mKhe/Q2cKaqL7s9tSajU9z1nI+K+63v4v9q/MoOKsAtI= -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:43 2025 by rpki-client