$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Vcl9jplJH7zwYvTRilgqEhddIVA.roa File: Vcl9jplJH7zwYvTRilgqEhddIVA.roa (raw, json) Hash identifier: DTDL1ApNGliOdqhLxxrsa3urjkK5xG+fpFcp1RG5Ulg= Subject key identifier: 55:C9:7D:8E:99:49:1F:BC:F0:62:F4:D1:8A:58:2A:12:17:5D:21:50 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BD3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Vcl9jplJH7zwYvTRilgqEhddIVA.roa Signing time: Tue 01 Apr 2025 01:47:34 +0000 ROA not before: Tue 01 Apr 2025 01:47:34 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.108.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3027 (0xbd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:34 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=55C97D8E99491FBCF062F4D18A582A12175D2150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:eb:55:ba:7f:74:fb:68:c1:44:dd:cd:ef:7c: 89:bf:63:57:ad:c0:11:52:66:d7:b8:c8:0f:fe:c9: f2:e7:4c:9a:dc:38:16:0a:e0:c5:cf:f1:ec:92:d5: 75:78:4d:26:5a:8a:85:6f:e6:12:91:f0:34:78:b0: 0b:be:ca:4e:1f:ea:66:5f:8e:bb:bd:3a:c8:78:bc: 3d:44:7c:15:c7:69:f4:03:dc:1e:2d:58:dd:31:a0: f8:16:b0:af:02:53:05:52:88:16:13:af:52:e5:31: 00:af:fe:2c:9a:57:89:d5:9e:33:1d:c1:60:47:1b: 5a:70:04:e1:d2:97:cc:aa:07:61:97:83:45:ca:b7: 83:0a:a1:fc:16:1d:61:23:93:a3:f5:ad:d9:17:b0: 2f:03:de:5f:07:dd:67:eb:86:fa:04:02:99:ed:58: e8:7c:0b:4e:57:e0:d8:01:85:a5:dd:bf:67:46:c2: e5:8c:7b:c1:0d:fb:d4:7f:51:63:7b:8b:e0:40:67: e8:ac:52:fd:f5:17:ae:cb:bc:57:98:1e:f4:17:68: c8:38:99:26:53:6f:50:19:23:74:ae:1b:3d:f1:73: c7:cf:cc:2e:f3:8b:cb:84:ce:d7:d2:27:06:45:6e: ae:03:a2:86:22:15:c4:cd:ab:b7:3e:55:4a:7d:d0: 29:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C9:7D:8E:99:49:1F:BC:F0:62:F4:D1:8A:58:2A:12:17:5D:21:50 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Vcl9jplJH7zwYvTRilgqEhddIVA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.108.240.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:f7:cb:1f:73:e0:77:38:6f:80:49:cd:ed:5a:01:fa:6c:5e: 6e:66:f6:68:18:74:4e:61:ac:c5:60:29:aa:c6:e4:d4:e5:28: ed:ec:5d:0b:dd:eb:a6:66:45:11:40:8a:52:a4:ab:9e:94:10: c8:68:49:1c:32:5f:f0:43:f7:b0:c2:70:40:84:b5:c5:3d:f6: a0:ce:f2:51:bf:f0:03:79:b8:91:3f:10:c4:83:50:08:21:f5: 29:2a:1f:f4:87:be:31:02:7a:88:e6:a6:3e:d5:62:6b:8b:93: 9a:12:25:46:24:23:27:b9:a4:91:22:79:c2:32:8d:1e:35:36: 84:a8:d6:5d:f3:3e:eb:e0:c7:6a:16:32:f0:13:d3:c6:83:b1: 19:83:dc:cc:c7:1d:aa:09:da:ce:10:13:7a:a7:12:f7:20:74: 04:34:76:2b:dc:5d:f7:02:84:05:78:f7:94:10:29:94:62:2e: b9:99:f0:50:1e:4a:a8:8f:d1:9d:3a:42:bf:a4:de:97:9d:a9: a9:0d:a7:27:1f:83:6e:70:80:e6:26:85:1b:43:d6:43:3b:7e: 1b:23:34:1c:89:6e:77:95:64:ae:a8:e7:31:43:15:e9:78:cc: 2c:d5:ac:50:e0:1e:e6:78:bd:c4:0f:72:bb:2c:6b:ff:30:07: 99:9d:a2:38 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC9MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3MzRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU1Qzk3RDhFOTk0OTFG QkNGMDYyRjREMThBNTgyQTEyMTc1RDIxNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDy61W6f3T7aMFE3c3vfIm/Y1etwBFSZte4yA/+yfLnTJrcOBYK 4MXP8eyS1XV4TSZaioVv5hKR8DR4sAu+yk4f6mZfjru9Osh4vD1EfBXHafQD3B4t WN0xoPgWsK8CUwVSiBYTr1LlMQCv/iyaV4nVnjMdwWBHG1pwBOHSl8yqB2GXg0XK t4MKofwWHWEjk6P1rdkXsC8D3l8H3WfrhvoEApntWOh8C05X4NgBhaXdv2dGwuWM e8EN+9R/UWN7i+BAZ+isUv31F67LvFeYHvQXaMg4mSZTb1AZI3SuGz3xc8fPzC7z i8uEztfSJwZFbq4DooYiFcTNq7c+VUp90CkPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVcl9jplJH7zwYvTRilgqEhddIVAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1ZjbDlqcGxKSDd6d1l2VFJpbGdxRWhkZElWQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExbPAwDQYJKoZIhvcNAQELBQADggEBAG73yx9z4Hc4b4BJze1aAfpsXm5m 9mgYdE5hrMVgKarG5NTlKO3sXQvd66ZmRRFAilKkq56UEMhoSRwyX/BD97DCcECE tcU99qDO8lG/8AN5uJE/EMSDUAgh9SkqH/SHvjECeojmpj7VYmuLk5oSJUYkIye5 pJEiecIyjR41NoSo1l3zPuvgx2oWMvAT08aDsRmD3MzHHaoJ2s4QE3qnEvcgdAQ0 divcXfcChAV495QQKZRiLrmZ8FAeSqiP0Z06Qr+k3pedqakNpycfg25wgOYmhRtD 1kM7fhsjNByJbneVZK6o5zFDFel4zCzVrFDgHuZ4vcQPcrssa/8wB5mdojg= -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:39 2025 by rpki-client