$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/TTCtjbugv40YW6KI8l4UcdffTNI.roa File: TTCtjbugv40YW6KI8l4UcdffTNI.roa (raw, json) Hash identifier: OWYczlQ1Jl3hHA4Mi82X/M+vaAJ3/HZ6XX7Wrqe9YHo= Subject key identifier: 4D:30:AD:8D:BB:A0:BF:8D:18:5B:A2:88:F2:5E:14:71:D7:DF:4C:D2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DB4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TTCtjbugv40YW6KI8l4UcdffTNI.roa Signing time: Tue 01 Apr 2025 02:24:43 +0000 ROA not before: Tue 01 Apr 2025 02:24:43 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3508 (0xdb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:24:43 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=4D30AD8DBBA0BF8D185BA288F25E1471D7DF4CD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e2:7c:1b:3d:e8:54:f9:c0:81:04:b5:00:b4: c5:c5:a5:22:2e:05:53:c7:52:be:f9:d5:dc:de:8c: 38:4d:07:be:02:53:26:7e:f5:b0:64:8d:6a:a7:88: a1:79:bc:4e:af:63:e3:7e:e6:ec:8b:d9:5f:af:3e: 71:1c:70:3d:71:4d:cb:81:1e:d3:3c:f4:18:2d:09: 64:a1:eb:29:3b:bc:13:b9:64:61:53:b5:2f:bf:5b: 3c:28:e7:c8:32:86:ec:07:23:74:8c:f3:62:f2:e8: 57:80:8a:a5:ef:be:d9:7d:d8:b6:c3:47:b5:37:b3: 3a:6a:53:26:6f:99:98:48:8e:83:a8:1a:e1:29:7f: 6f:4f:d9:7c:cd:9c:e3:a1:ff:16:1e:41:78:ff:17: 65:47:da:ba:bd:c6:54:8c:fa:67:fb:83:fb:02:da: 66:94:8e:6a:a0:37:ea:d3:30:68:6d:7b:fa:40:9a: a9:c9:49:3a:49:83:38:cd:4f:3c:f6:2e:c4:24:f9: 12:33:e4:0b:f6:d4:83:1e:97:e1:3e:30:a8:ac:8a: ae:57:f0:a4:c6:d1:e1:51:b2:84:5d:73:4b:25:5f: 77:9c:14:17:fb:fb:6b:46:f9:fa:ce:1a:8b:46:f4: b8:3b:a6:48:23:06:c0:2c:46:be:ca:fe:39:2c:7e: 5d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:30:AD:8D:BB:A0:BF:8D:18:5B:A2:88:F2:5E:14:71:D7:DF:4C:D2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TTCtjbugv40YW6KI8l4UcdffTNI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.224.0/20 Signature Algorithm: sha256WithRSAEncryption 7c:b3:09:f1:eb:29:08:f4:48:de:02:6a:38:bc:04:2d:99:4b: 9c:ff:c7:2e:92:10:a1:a5:e6:ed:3a:ba:95:ab:52:58:4b:f4: ed:36:00:e2:7b:31:6e:25:0e:29:7d:51:07:50:d7:05:a6:80: ff:1b:dc:3e:6c:3a:ab:45:2a:8a:6f:31:24:27:fd:44:65:d9: 2c:dc:c7:e9:9b:b2:29:47:12:dd:0a:4d:c4:f6:ff:41:6e:f4: b8:7e:b2:78:d6:7f:1d:72:ef:b1:a2:35:e2:04:34:50:fd:e1: 18:e3:3f:c3:69:00:e9:fe:84:82:3c:32:ae:1f:29:8b:85:ae: 74:57:f6:d5:a5:1e:d7:d6:e8:21:cb:89:44:a2:f6:94:eb:97: 39:53:b0:48:d5:28:09:33:f3:85:bc:e4:69:89:05:ba:d0:de: 7b:2c:60:91:f7:6e:94:24:ff:4e:5a:aa:c7:2b:9b:1d:43:28: bd:24:ec:8e:9c:36:f2:98:bf:43:10:7b:6c:fd:27:c1:69:b3: bd:82:e5:65:e8:81:fc:e1:94:d6:b1:a9:4d:c8:23:5f:c4:9b: a3:cd:70:3e:26:33:0d:b0:e7:a5:2e:34:54:d6:6f:f2:67:b7: 58:1a:c0:f3:75:2a:5c:7a:6c:d0:44:1f:36:19:9d:75:d9:dc: 1a:f6:f1:be -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI0NDNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDREMzBBRDhEQkJBMEJG OEQxODVCQTI4OEYyNUUxNDcxRDdERjRDRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz4nwbPehU+cCBBLUAtMXFpSIuBVPHUr751dzejDhNB74CUyZ+ 9bBkjWqniKF5vE6vY+N+5uyL2V+vPnEccD1xTcuBHtM89BgtCWSh6yk7vBO5ZGFT tS+/Wzwo58gyhuwHI3SM82Ly6FeAiqXvvtl92LbDR7U3szpqUyZvmZhIjoOoGuEp f29P2XzNnOOh/xYeQXj/F2VH2rq9xlSM+mf7g/sC2maUjmqgN+rTMGhte/pAmqnJ STpJgzjNTzz2LsQk+RIz5Av21IMel+E+MKisiq5X8KTG0eFRsoRdc0slX3ecFBf7 +2tG+frOGotG9Lg7pkgjBsAsRr7K/jksfl0/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUTTCtjbugv40YW6KI8l4UcdffTNIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1RUQ3RqYnVndjQwWVc2S0k4bDRVY2RmZlROSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxaOAwDQYJKoZIhvcNAQELBQADggEBAHyzCfHrKQj0SN4Caji8BC2ZS5z/ xy6SEKGl5u06upWrUlhL9O02AOJ7MW4lDil9UQdQ1wWmgP8b3D5sOqtFKopvMSQn /URl2Szcx+mbsilHEt0KTcT2/0Fu9Lh+snjWfx1y77GiNeIENFD94RjjP8NpAOn+ hII8Mq4fKYuFrnRX9tWlHtfW6CHLiUSi9pTrlzlTsEjVKAkz84W85GmJBbrQ3nss YJH3bpQk/05aqscrmx1DKL0k7I6cNvKYv0MQe2z9J8Fps72C5WXogfzhlNaxqU3I I1/Em6PNcD4mMw2w56UuNFTWb/Jnt1gawPN1Klx6bNBEHzYZnXXZ3Br28b4= -----END CERTIFICATE-----Generated at Sun Apr 6 01:51:54 2025 by rpki-client