$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/P-1XOQ6Lz07hX6XOJgmb63L7vJw.roa File: P-1XOQ6Lz07hX6XOJgmb63L7vJw.roa (raw, json) Hash identifier: fpWZtJc277wCHYUfrvRPML9M94CM5YlbFqnxXrj9B2E= Subject key identifier: 3F:ED:57:39:0E:8B:CF:4E:E1:5F:A5:CE:26:09:9B:EB:72:FB:BC:9C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DF8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/P-1XOQ6Lz07hX6XOJgmb63L7vJw.roa Signing time: Tue 01 Apr 2025 02:29:10 +0000 ROA not before: Tue 01 Apr 2025 02:29:10 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3576 (0xdf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:29:10 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=3FED57390E8BCF4EE15FA5CE26099BEB72FBBC9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:da:7a:e2:f3:c9:f2:99:4c:da:5f:47:79:88: 15:8e:72:e0:15:01:6b:a5:5b:c9:bb:56:c8:b8:2e: 70:86:e3:0e:2c:27:52:ef:07:20:41:5d:08:70:25: ca:b3:ab:51:c9:5b:d5:35:f0:a5:0f:04:4b:0e:2d: 17:ae:a8:f8:d8:d7:e9:75:04:76:c9:c8:d9:d3:38: 1e:40:cb:ee:4d:1d:21:c6:8f:9c:05:fa:e8:d6:fc: 3a:52:62:dd:b0:56:88:90:09:17:df:7a:79:8a:0f: 67:42:1e:28:91:df:12:1a:49:df:10:fa:51:1d:0a: 8a:7a:fe:4b:e8:ab:5e:7d:73:be:67:20:fa:cb:2d: 01:8c:2d:be:0c:50:ef:e9:74:0d:0e:d3:62:f9:99: ed:2d:46:08:ad:e9:6e:52:04:bf:15:d5:17:d3:04: ac:fa:fa:76:c2:0e:71:5e:89:32:f2:4d:8e:d1:69: 02:e5:e7:6e:a4:7d:03:f2:9a:65:ad:c4:db:11:d1: a0:ff:99:eb:e2:68:7b:c3:3c:41:47:19:ca:1c:36: 67:87:a6:56:de:07:ce:d7:3c:9b:df:a6:cf:d2:b9: 57:52:c0:d7:4a:22:17:32:5e:7d:a4:ed:a9:ce:34: 68:93:00:c8:cf:31:6e:2a:2a:88:cb:13:83:52:0e: ad:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:ED:57:39:0E:8B:CF:4E:E1:5F:A5:CE:26:09:9B:EB:72:FB:BC:9C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/P-1XOQ6Lz07hX6XOJgmb63L7vJw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.40.0/23 Signature Algorithm: sha256WithRSAEncryption bd:df:b7:c4:31:b2:a6:cc:73:85:bf:10:3b:6c:91:34:25:a8: fa:9e:fd:d9:0d:2f:97:e3:c3:cc:7a:3e:37:81:91:35:ed:aa: f0:85:b5:58:e4:24:de:cc:35:7c:a9:71:61:b0:90:e9:d0:5c: 65:af:1e:d1:df:76:b0:43:b8:dd:61:ac:22:37:5a:02:68:44: 9c:5a:99:f7:f4:26:02:74:d1:34:bf:fe:ce:63:b5:a0:b4:5a: 98:85:18:a6:54:f2:f8:78:3d:26:76:7b:f8:62:fc:f8:60:1f: 96:91:c0:36:cb:63:4a:67:0b:46:8b:81:49:47:0a:26:ea:2b: 5d:73:1f:55:66:e5:30:df:e6:d5:39:e1:02:d0:4e:bf:72:04: 3b:be:88:4c:e7:bf:f1:a2:f1:04:4e:7a:3b:c1:16:0d:07:cc: 53:19:e0:9d:95:80:6c:bf:b5:b9:fd:0a:cd:94:a5:26:26:8c: 47:03:94:f7:8e:bd:ca:9f:65:7b:fb:f3:a1:12:a1:ff:57:09: 48:23:65:25:79:97:ed:a4:fb:41:96:e3:6d:cc:73:bd:bf:df: f2:30:3d:b0:ae:b9:d5:a3:8c:a6:e8:ea:99:ea:09:39:ae:b2: 18:07:ec:dc:01:d4:30:8d:12:76:24:b6:bf:3f:64:62:52:ca: 1d:fb:4a:96 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDfgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI5MTBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNGRUQ1NzM5MEU4QkNG NEVFMTVGQTVDRTI2MDk5QkVCNzJGQkJDOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD92nri88nymUzaX0d5iBWOcuAVAWulW8m7Vsi4LnCG4w4sJ1Lv ByBBXQhwJcqzq1HJW9U18KUPBEsOLReuqPjY1+l1BHbJyNnTOB5Ay+5NHSHGj5wF +ujW/DpSYt2wVoiQCRffenmKD2dCHiiR3xIaSd8Q+lEdCop6/kvoq159c75nIPrL LQGMLb4MUO/pdA0O02L5me0tRgit6W5SBL8V1RfTBKz6+nbCDnFeiTLyTY7RaQLl 526kfQPymmWtxNsR0aD/meviaHvDPEFHGcocNmeHplbeB87XPJvfps/SuVdSwNdK IhcyXn2k7anONGiTAMjPMW4qKojLE4NSDq3hAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUP+1XOQ6Lz07hX6XOJgmb63L7vJwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1AtMVhPUTZMejA3aFg2WE9KZ21iNjNMN3ZKdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYCgwDQYJKoZIhvcNAQELBQADggEBAL3ft8QxsqbMc4W/EDtskTQlqPqe /dkNL5fjw8x6PjeBkTXtqvCFtVjkJN7MNXypcWGwkOnQXGWvHtHfdrBDuN1hrCI3 WgJoRJxamff0JgJ00TS//s5jtaC0WpiFGKZU8vh4PSZ2e/hi/PhgH5aRwDbLY0pn C0aLgUlHCibqK11zH1Vm5TDf5tU54QLQTr9yBDu+iEznv/Gi8QROejvBFg0HzFMZ 4J2VgGy/tbn9Cs2UpSYmjEcDlPeOvcqfZXv786ESof9XCUgjZSV5l+2k+0GW423M c72/3/IwPbCuudWjjKbo6pnqCTmushgH7NwB1DCNEnYktr8/ZGJSyh37SpY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:42:10 2025 by rpki-client