$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/T6_0GYcaeSoI25S6iI39rx85Y5c.roa File: T6_0GYcaeSoI25S6iI39rx85Y5c.roa (raw, json) Hash identifier: gGc2Lm3UuoFWIADcB/EJ9Ga5mlphUwYVu5E67zQXOpE= Subject key identifier: 4F:AF:F4:19:87:1A:79:2A:08:DB:94:BA:88:8D:FD:AF:1F:39:63:97 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DDE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/T6_0GYcaeSoI25S6iI39rx85Y5c.roa Signing time: Tue 01 Apr 2025 02:27:27 +0000 ROA not before: Tue 01 Apr 2025 02:27:27 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.111.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3550 (0xdde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:27:27 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=4FAFF419871A792A08DB94BA888DFDAF1F396397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a5:aa:0a:4a:bc:aa:99:bb:39:c9:00:52:38: ae:de:0c:21:22:76:f9:f0:ae:7f:a9:ba:25:b2:cf: d3:42:48:d3:7e:f2:0e:2f:b9:ed:5b:8b:28:7c:06: dc:84:bb:57:a4:7c:1f:92:6c:1d:00:da:c4:09:fe: 86:29:4a:6e:11:71:cd:79:1c:6f:6e:02:da:9f:68: 33:d4:ca:44:94:81:de:32:f1:f7:09:1e:6e:14:26: bd:5c:71:d4:b2:e2:4b:bf:45:82:81:45:a5:f8:9b: b3:77:ba:3c:c6:9d:8d:19:89:32:3a:b9:4d:87:08: fd:96:5c:c0:64:32:25:fb:bd:44:eb:16:c6:94:31: d8:d9:64:1c:ea:1b:90:b0:73:ca:bc:3d:3d:1e:e1: ba:4f:f6:8b:c6:48:da:b8:60:99:38:83:e5:af:6b: 19:3b:e9:63:f4:a7:19:f0:06:ac:8a:f0:d8:c2:8e: 62:d1:c0:b7:30:d2:f2:0d:72:5d:77:d8:62:4c:c0: 49:d0:3e:67:eb:ba:90:1a:c6:b6:3d:23:ab:2f:cb: 65:ee:98:2d:65:1b:80:45:21:49:77:24:02:7d:e8: e7:9d:27:44:d9:7e:21:f0:75:63:0d:7b:93:51:3b: d6:d7:2a:10:2b:ca:f7:a7:cb:5c:61:4a:d6:f5:61: c6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:AF:F4:19:87:1A:79:2A:08:DB:94:BA:88:8D:FD:AF:1F:39:63:97 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/T6_0GYcaeSoI25S6iI39rx85Y5c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.111.0.0/16 Signature Algorithm: sha256WithRSAEncryption bd:6c:4e:a1:d9:f7:60:61:fe:0f:c4:0e:a9:98:a2:6c:10:66: e2:13:77:b5:e7:3c:ab:53:58:ec:57:b7:98:f2:df:a3:19:55: 41:16:c3:54:d9:54:8a:ed:70:d1:e6:19:53:72:e6:fc:43:36: 56:7c:96:54:47:c3:9e:4c:a2:f7:ce:eb:35:80:fb:bd:ff:13: 9c:34:51:19:ce:46:cd:1c:c1:dc:44:fe:8b:5a:4e:f5:29:a2: d4:ad:55:04:ec:26:42:20:a6:26:cf:79:58:e6:9b:c0:b2:27: 08:ad:80:17:54:6c:27:f2:2f:83:9f:8d:91:1e:6b:fa:74:fa: 74:75:67:20:b2:67:99:f7:4f:1a:79:dc:68:c1:85:66:5b:e2: b6:b6:e7:2f:09:44:c8:99:63:18:72:20:fd:7e:4a:2c:4c:87: 93:a3:0b:7c:fc:07:3b:bb:28:3d:e8:3e:14:70:e0:5c:ff:18: 43:03:c1:cf:01:48:2c:10:af:4a:4d:cd:ce:49:78:c4:89:2e: 98:de:33:f4:42:61:29:f9:a3:31:a3:b8:6b:36:1b:7d:bb:4a: e2:30:09:51:74:28:67:c9:9b:77:52:84:54:1d:42:09:72:94: 09:98:2c:17:79:f6:60:af:ec:e8:a2:4d:6a:cd:6a:56:4b:83: 89:9d:d2:81 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICDd4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI3MjdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDRGQUZGNDE5ODcxQTc5 MkEwOERCOTRCQTg4OERGREFGMUYzOTYzOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKpaoKSryqmbs5yQBSOK7eDCEidvnwrn+puiWyz9NCSNN+8g4v ue1biyh8BtyEu1ekfB+SbB0A2sQJ/oYpSm4Rcc15HG9uAtqfaDPUykSUgd4y8fcJ Hm4UJr1ccdSy4ku/RYKBRaX4m7N3ujzGnY0ZiTI6uU2HCP2WXMBkMiX7vUTrFsaU MdjZZBzqG5Cwc8q8PT0e4bpP9ovGSNq4YJk4g+Wvaxk76WP0pxnwBqyK8NjCjmLR wLcw0vINcl132GJMwEnQPmfrupAaxrY9I6svy2XumC1lG4BFIUl3JAJ96OedJ0TZ fiHwdWMNe5NRO9bXKhAryveny1xhStb1YcZfAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUT6/0GYcaeSoI25S6iI39rx85Y5cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1Q2XzBHWWNhZVNvSTI1UzZpSTM5cng4NVk1Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAxbzANBgkqhkiG9w0BAQsFAAOCAQEAvWxOodn3YGH+D8QOqZiibBBm4hN3 tec8q1NY7Fe3mPLfoxlVQRbDVNlUiu1w0eYZU3Lm/EM2VnyWVEfDnkyi987rNYD7 vf8TnDRRGc5GzRzB3ET+i1pO9Smi1K1VBOwmQiCmJs95WOabwLInCK2AF1RsJ/Iv g5+NkR5r+nT6dHVnILJnmfdPGnncaMGFZlvitrbnLwlEyJljGHIg/X5KLEyHk6ML fPwHO7soPeg+FHDgXP8YQwPBzwFILBCvSk3Nzkl4xIkumN4z9EJhKfmjMaO4azYb fbtK4jAJUXQoZ8mbd1KEVB1CCXKUCZgsF3n2YK/s6KJNas1qVkuDiZ3SgQ== -----END CERTIFICATE-----Generated at Sat Apr 5 17:28:08 2025 by rpki-client