$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Tqmcv99MUbAleRdQkNLVVNtzzmg.roa File: Tqmcv99MUbAleRdQkNLVVNtzzmg.roa (raw, json) Hash identifier: kpS7gtgo/Qousl/oVOxF6e/xqLJfusvp0vTeMScX9uk= Subject key identifier: 4E:A9:9C:BF:DF:4C:51:B0:25:79:17:50:90:D2:D5:54:DB:73:CE:68 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DDC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Tqmcv99MUbAleRdQkNLVVNtzzmg.roa Signing time: Tue 01 Apr 2025 02:27:26 +0000 ROA not before: Tue 01 Apr 2025 02:27:26 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3548 (0xddc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:27:26 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=4EA99CBFDF4C51B02579175090D2D554DB73CE68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f9:70:2e:ff:99:f3:a2:ac:8a:9f:19:7a:85: 3a:49:46:92:1d:30:fc:b4:db:b4:44:35:ef:4b:3f: fa:4f:cd:a1:e4:06:05:c5:c1:47:ca:25:e2:69:f4: 51:35:8d:f0:25:9e:06:a0:0a:cf:ed:cf:24:ef:16: 0e:4a:18:42:d5:71:3e:90:be:cd:58:e9:df:0d:ff: 57:bc:a1:af:27:08:06:c0:bf:74:29:16:fa:81:4a: c8:e5:7d:5f:b1:4b:2a:10:08:c1:d2:f5:00:19:cd: 33:b5:7a:b9:d8:3f:3c:4f:59:b8:48:d9:35:f0:53: 95:15:40:6f:6a:18:5d:ba:f6:9c:0f:8f:3f:0f:f7: 5e:ec:2b:b6:1d:b9:57:ab:fb:47:dc:bf:b4:bf:cc: 40:cc:e0:9d:1e:34:7f:ae:0f:f6:23:57:f9:0a:b9: 22:bb:99:b3:14:5d:78:5b:73:dd:42:c7:ad:1c:19: d0:43:66:f5:bb:6e:c4:16:7d:0c:a4:44:78:08:02: 41:10:e7:e2:38:89:08:ec:74:48:0e:4c:cd:80:f4: 40:24:ad:63:65:34:c7:40:9b:a0:09:ad:9d:9e:75: 7e:37:ef:51:c3:6e:87:67:36:35:7b:16:c2:88:55: 24:0e:af:31:e5:96:f0:2c:6e:75:26:86:e8:3c:8c: f0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A9:9C:BF:DF:4C:51:B0:25:79:17:50:90:D2:D5:54:DB:73:CE:68 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Tqmcv99MUbAleRdQkNLVVNtzzmg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.64.0/21 Signature Algorithm: sha256WithRSAEncryption 36:1b:ea:a3:5d:d8:31:26:70:0e:f0:07:26:cf:36:5b:55:28: 89:d8:99:4f:c4:1a:71:88:39:a0:aa:f9:31:7c:30:25:ff:4f: 20:9e:bd:18:0e:26:df:67:8d:25:cc:96:0b:bd:98:1b:1e:4f: 1d:f2:09:88:91:73:a9:c5:53:ec:8b:3f:e3:96:04:9f:b0:fd: 80:56:03:28:08:e5:24:4d:c0:a3:00:71:4c:07:5d:38:32:a3: 06:08:42:fc:18:4c:52:65:4d:f3:20:25:4f:6b:e5:bd:2d:24: f3:d1:26:2f:27:58:5a:6a:c3:2e:29:3b:9a:fb:13:68:6d:31: b0:09:b7:a0:0d:0c:0d:b8:d2:5d:fc:3c:f7:e3:a1:e4:34:85: a5:4c:34:b8:70:ed:9a:9b:6e:8a:bc:da:58:7c:4b:3a:79:1f: 59:2a:70:dc:32:83:cf:56:c8:c7:af:f5:8a:27:d9:e6:dd:ac: 9b:8e:d6:d9:46:28:f6:ec:ed:16:5e:b9:d3:bd:e8:ea:42:2b: 98:55:73:94:56:ad:cb:fa:03:49:5b:6c:3e:d9:82:27:dd:24: 36:e6:15:c7:5c:a7:98:64:be:86:5d:9b:51:5f:c7:ef:35:07: 0f:75:1a:7c:26:be:85:c5:02:e2:ea:28:15:b0:7a:b8:66:01: 0b:b2:0f:e3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDdwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI3MjZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDRFQTk5Q0JGREY0QzUx QjAyNTc5MTc1MDkwRDJENTU0REI3M0NFNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4+XAu/5nzoqyKnxl6hTpJRpIdMPy027RENe9LP/pPzaHkBgXF wUfKJeJp9FE1jfAlngagCs/tzyTvFg5KGELVcT6Qvs1Y6d8N/1e8oa8nCAbAv3Qp FvqBSsjlfV+xSyoQCMHS9QAZzTO1ernYPzxPWbhI2TXwU5UVQG9qGF269pwPjz8P 917sK7YduVer+0fcv7S/zEDM4J0eNH+uD/YjV/kKuSK7mbMUXXhbc91Cx60cGdBD ZvW7bsQWfQykRHgIAkEQ5+I4iQjsdEgOTM2A9EAkrWNlNMdAm6AJrZ2edX4371HD bodnNjV7FsKIVSQOrzHllvAsbnUmhug8jPB3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUTqmcv99MUbAleRdQkNLVVNtzzmgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1RxbWN2OTlNVWJBbGVSZFFrTkxWVk50enptZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxaEAwDQYJKoZIhvcNAQELBQADggEBADYb6qNd2DEmcA7wBybPNltVKInY mU/EGnGIOaCq+TF8MCX/TyCevRgOJt9njSXMlgu9mBseTx3yCYiRc6nFU+yLP+OW BJ+w/YBWAygI5SRNwKMAcUwHXTgyowYIQvwYTFJlTfMgJU9r5b0tJPPRJi8nWFpq wy4pO5r7E2htMbAJt6ANDA240l38PPfjoeQ0haVMNLhw7Zqbboq82lh8Szp5H1kq cNwyg89WyMev9Yon2ebdrJuO1tlGKPbs7RZeudO96OpCK5hVc5RWrcv6A0lbbD7Z gifdJDbmFcdcp5hkvoZdm1Ffx+81Bw91GnwmvoXFAuLqKBWwerhmAQuyD+M= -----END CERTIFICATE-----Generated at Sat Apr 5 17:42:07 2025 by rpki-client