$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WwVAf6xo9xr04HPisCFb5YyLuRs.roa File: WwVAf6xo9xr04HPisCFb5YyLuRs.roa (raw, json) Hash identifier: MV/mhJWTa7Q9ACyn5dyULi0fdKGp8GaEMmesp3rxdYU= Subject key identifier: 5B:05:40:7F:AC:68:F7:1A:F4:E0:73:E2:B0:21:5B:E5:8C:8B:B9:1B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D86 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WwVAf6xo9xr04HPisCFb5YyLuRs.roa Signing time: Tue 01 Apr 2025 02:21:29 +0000 ROA not before: Tue 01 Apr 2025 02:21:29 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.102.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3462 (0xd86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:29 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5B05407FAC68F71AF4E073E2B0215BE58C8BB91B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9e:fa:b5:4d:0d:80:bc:1a:2f:85:8b:39:49: e1:64:b1:61:2f:03:f1:1e:05:7d:4f:6f:fb:44:f1: 88:1b:5c:92:31:cd:27:86:6d:65:56:77:0c:07:b8: 6e:ad:af:3e:0e:d4:7a:3c:51:01:96:af:8d:25:e0: b4:2c:a0:e0:74:53:37:ab:53:62:1b:5c:26:68:b9: fe:34:00:4c:33:09:f5:ef:28:0d:98:7d:b0:f4:c5: b0:11:80:1b:8e:9a:e2:2e:28:f7:31:3d:d5:af:c5: 8a:93:6a:0a:95:f0:f1:b9:6f:3f:4d:e6:48:c5:a3: ca:12:99:0c:6c:4d:24:cc:ee:4d:94:34:a0:62:92: 3b:7c:a6:88:e8:84:bc:0e:7a:78:de:31:a7:d6:49: db:53:44:1b:82:bf:9b:3d:55:61:e6:4d:42:db:7e: 24:57:7b:af:32:b9:ce:23:48:05:6f:80:3a:52:12: 10:5b:0c:27:d8:81:c8:43:8e:86:10:a3:4c:d6:be: 09:f7:cd:3d:25:8b:cb:e5:28:9d:e9:21:7a:8a:bc: 71:dc:c4:c0:2e:5f:f7:28:5d:fa:8b:11:2f:04:9a: 1f:6c:9a:2e:09:a6:ff:ff:74:45:fb:05:40:4f:d8: d4:38:3b:86:0f:f7:18:2b:f4:62:6a:bf:6a:52:1e: cb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:05:40:7F:AC:68:F7:1A:F4:E0:73:E2:B0:21:5B:E5:8C:8B:B9:1B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WwVAf6xo9xr04HPisCFb5YyLuRs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.102.158.0/23 Signature Algorithm: sha256WithRSAEncryption b3:b4:99:ab:9e:e6:66:6e:2b:d6:ca:30:fa:59:d1:cf:51:fc: c7:1c:21:49:bd:60:22:b0:62:f1:eb:ad:85:b2:cc:10:eb:05: 74:1e:7c:da:8e:e5:ba:5f:c0:38:1e:b9:cd:0b:7c:55:8e:d7: 14:d6:cd:21:ca:13:29:0f:76:e0:74:7d:c6:9f:9d:39:dc:8f: 3c:92:68:6d:14:06:38:89:60:76:dc:23:9e:05:7a:f9:78:d5: e4:b3:97:8f:32:1a:3f:9a:b2:30:19:47:aa:7a:d9:2a:78:3e: d8:4d:7f:08:d2:f2:d0:f5:81:6f:96:07:e5:42:04:c6:1c:96: 93:b4:86:25:4c:ff:bb:21:e0:62:70:4a:b7:aa:ba:98:43:b4: ab:03:09:68:9a:da:90:81:d8:3e:a3:c9:34:7b:43:ce:34:a4: 49:f9:66:28:8f:12:98:7e:20:3e:5a:d0:8a:46:5d:4a:5f:52: ff:be:0a:f4:3d:2a:09:75:83:af:e6:de:d4:05:3e:81:93:39: 6f:81:fb:d3:be:73:84:a4:ae:d9:30:a0:93:07:96:48:50:73: 06:62:03:39:68:63:6e:84:64:28:d3:6b:45:a3:db:88:81:5a: 3d:c0:ac:29:5f:e1:95:8e:80:79:6c:3a:20:d0:a7:03:d6:16: cd:2b:eb:c5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMjlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVCMDU0MDdGQUM2OEY3 MUFGNEUwNzNFMkIwMjE1QkU1OEM4QkI5MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+nvq1TQ2AvBovhYs5SeFksWEvA/EeBX1Pb/tE8YgbXJIxzSeG bWVWdwwHuG6trz4O1Ho8UQGWr40l4LQsoOB0UzerU2IbXCZouf40AEwzCfXvKA2Y fbD0xbARgBuOmuIuKPcxPdWvxYqTagqV8PG5bz9N5kjFo8oSmQxsTSTM7k2UNKBi kjt8pojohLwOenjeMafWSdtTRBuCv5s9VWHmTULbfiRXe68yuc4jSAVvgDpSEhBb DCfYgchDjoYQo0zWvgn3zT0li8vlKJ3pIXqKvHHcxMAuX/coXfqLES8Emh9smi4J pv//dEX7BUBP2NQ4O4YP9xgr9GJqv2pSHstHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWwVAf6xo9xr04HPisCFb5YyLuRswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1d3VkFmNnhvOXhyMDRIUGlzQ0ZiNVl5THVScy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExZp4wDQYJKoZIhvcNAQELBQADggEBALO0maue5mZuK9bKMPpZ0c9R/Mcc IUm9YCKwYvHrrYWyzBDrBXQefNqO5bpfwDgeuc0LfFWO1xTWzSHKEykPduB0fcaf nTncjzySaG0UBjiJYHbcI54Fevl41eSzl48yGj+asjAZR6p62Sp4PthNfwjS8tD1 gW+WB+VCBMYclpO0hiVM/7sh4GJwSrequphDtKsDCWia2pCB2D6jyTR7Q840pEn5 ZiiPEph+ID5a0IpGXUpfUv++CvQ9Kgl1g6/m3tQFPoGTOW+B+9O+c4SkrtkwoJMH lkhQcwZiAzloY26EZCjTa0Wj24iBWj3ArClf4ZWOgHlsOiDQpwPWFs0r68U= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:37 2025 by rpki-client