$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Wt2wGP5Frqj1N14T4bof5t_Y95Q.roa File: Wt2wGP5Frqj1N14T4bof5t_Y95Q.roa (raw, json) Hash identifier: my9Eu7PMr7fLKV2ZFhsK2KkjQTsFS91zkyqRXvCFvVk= Subject key identifier: 5A:DD:B0:18:FE:45:AE:A8:F5:37:5E:13:E1:BA:1F:E6:DF:D8:F7:94 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C3D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Wt2wGP5Frqj1N14T4bof5t_Y95Q.roa Signing time: Tue 01 Apr 2025 01:57:15 +0000 ROA not before: Tue 01 Apr 2025 01:57:15 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3133 (0xc3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:57:15 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5ADDB018FE45AEA8F5375E13E1BA1FE6DFD8F794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b5:84:fc:46:58:ef:c0:a0:d4:7d:1b:1b:a2: a4:80:6a:c3:f6:c4:78:43:34:12:67:87:36:9a:e3: 72:70:e0:e2:cb:93:f8:f3:44:3b:c6:49:1b:2b:43: 9a:1b:2e:d4:07:e8:95:cb:96:02:b7:ca:d3:e2:dc: 50:84:be:93:94:44:52:2a:2b:2b:64:38:9b:24:b3: 2a:93:1c:cd:40:95:39:60:5c:a8:8c:77:7b:c6:cc: 69:a3:44:e7:31:38:ab:c3:2c:d3:83:50:e6:2a:3d: b7:64:ce:31:55:5a:39:f7:b1:81:d1:85:73:30:a6: 64:c5:86:43:8a:0e:3d:e4:6c:c0:d4:52:dd:71:7f: a3:34:bf:f1:41:b6:26:df:17:9f:eb:0c:a7:f0:7e: 9e:00:76:3e:5d:bc:dd:6e:f0:05:dd:94:7b:68:54: b8:a7:fa:b8:1b:91:fe:c1:93:d2:e0:56:85:8b:86: 14:a6:c1:9c:5a:7a:ab:3d:08:ba:39:f0:37:63:de: ff:75:65:49:78:ba:1e:14:0d:57:82:c1:0a:fc:b4: 97:42:a7:5e:9b:e7:b6:98:c7:58:c9:ca:8d:40:1b: 92:3f:ce:fc:f7:60:6f:f5:45:e5:59:7b:30:7a:eb: 41:d3:32:11:6c:4b:6d:eb:bd:bf:05:e6:7a:1b:0f: 8a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DD:B0:18:FE:45:AE:A8:F5:37:5E:13:E1:BA:1F:E6:DF:D8:F7:94 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Wt2wGP5Frqj1N14T4bof5t_Y95Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.191.0/24 Signature Algorithm: sha256WithRSAEncryption c6:2d:da:97:27:b9:71:3b:9e:5b:05:b2:50:cd:2a:ab:7b:2b: 1c:74:d9:9c:36:bf:8f:43:81:13:d5:20:58:bd:5e:74:54:06: 09:39:70:b1:a5:88:cb:00:f6:11:59:c8:d7:c2:e5:0a:eb:b5: 48:d0:21:83:d4:63:94:98:08:3c:bb:2e:b3:da:a2:51:d9:e1: f5:46:03:63:65:27:5d:17:57:0a:fd:2a:8f:d5:1a:71:6b:83: 17:71:0b:67:8c:3d:d5:4e:ff:76:2a:ca:d0:46:44:f5:db:84: e0:d6:47:46:9b:f1:ae:df:13:64:6e:41:c7:4a:09:c5:44:48: ad:87:c7:37:07:8c:e9:4c:32:cb:e7:27:60:e4:ce:b3:b4:e3: 52:82:09:9a:e4:3b:5a:09:0e:0c:33:dd:48:5e:30:9c:24:ef: a5:72:25:cc:c7:13:64:1b:6a:0a:9c:25:ba:f3:d4:d6:80:c9: a6:18:63:6e:c2:cd:5d:d2:1d:88:28:ee:55:36:63:e4:43:96: 5b:3c:46:8c:c1:c4:3e:25:92:21:d0:0f:77:81:56:87:52:83: df:b3:7e:61:f3:d9:99:c2:98:c8:4d:19:d5:2f:a6:a9:cb:c5: 8f:f0:07:47:37:94:ea:30:9b:88:d5:07:5e:6c:e8:92:e4:07: 5c:42:dc:42 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDD0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU3MTVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVBRERCMDE4RkU0NUFF QThGNTM3NUUxM0UxQkExRkU2REZEOEY3OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOtYT8RljvwKDUfRsboqSAasP2xHhDNBJnhzaa43Jw4OLLk/jz RDvGSRsrQ5obLtQH6JXLlgK3ytPi3FCEvpOURFIqKytkOJsksyqTHM1AlTlgXKiM d3vGzGmjROcxOKvDLNODUOYqPbdkzjFVWjn3sYHRhXMwpmTFhkOKDj3kbMDUUt1x f6M0v/FBtibfF5/rDKfwfp4Adj5dvN1u8AXdlHtoVLin+rgbkf7Bk9LgVoWLhhSm wZxaeqs9CLo58Ddj3v91ZUl4uh4UDVeCwQr8tJdCp16b57aYx1jJyo1AG5I/zvz3 YG/1ReVZezB660HTMhFsS23rvb8F5nobD4pjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWt2wGP5Frqj1N14T4bof5t/Y95QwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1d0MndHUDVGcnFqMU4xNFQ0Ym9mNXRfWTk1US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxar8wDQYJKoZIhvcNAQELBQADggEBAMYt2pcnuXE7nlsFslDNKqt7Kxx0 2Zw2v49DgRPVIFi9XnRUBgk5cLGliMsA9hFZyNfC5QrrtUjQIYPUY5SYCDy7LrPa olHZ4fVGA2NlJ10XVwr9Ko/VGnFrgxdxC2eMPdVO/3YqytBGRPXbhODWR0ab8a7f E2RuQcdKCcVESK2HxzcHjOlMMsvnJ2DkzrO041KCCZrkO1oJDgwz3UheMJwk76Vy JczHE2QbagqcJbrz1NaAyaYYY27CzV3SHYgo7lU2Y+RDlls8RozBxD4lkiHQD3eB VodSg9+zfmHz2ZnCmMhNGdUvpqnLxY/wB0c3lOowm4jVB15s6JLkB1xC3EI= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:34 2025 by rpki-client