$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XTQepfwU4RMLC4hFG1TLR7tax_w.roa File: XTQepfwU4RMLC4hFG1TLR7tax_w.roa (raw, json) Hash identifier: 3TN52I1Apfr0SY3hafrgRVtGUO9UChJzUdJq919sX6Q= Subject key identifier: 5D:34:1E:A5:FC:14:E1:13:0B:0B:88:45:1B:54:CB:47:BB:5A:C7:FC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C93 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XTQepfwU4RMLC4hFG1TLR7tax_w.roa Signing time: Tue 01 Apr 2025 02:03:22 +0000 ROA not before: Tue 01 Apr 2025 02:03:22 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.105.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3219 (0xc93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:22 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5D341EA5FC14E1130B0B88451B54CB47BB5AC7FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9a:bc:72:65:72:99:38:41:39:60:25:0a:d0: d1:93:ab:f4:e0:a2:91:f7:93:13:db:87:10:e0:d6: 26:6c:7e:c3:33:77:91:36:b9:19:5a:40:7c:f5:db: 3f:5d:95:f2:b0:d9:ef:b0:6a:ef:ee:60:20:53:01: 9b:9e:74:a8:17:44:f0:83:9c:1c:69:97:51:c0:96: 86:39:5b:b2:15:3b:a7:9a:99:43:e1:ff:ef:ef:4e: c1:49:02:3f:a1:03:d4:70:88:de:3d:f2:ee:f9:cd: 2b:65:54:8b:4a:66:37:42:1e:bc:2c:94:93:88:f8: 51:bd:77:9a:21:5b:92:00:78:99:7f:7f:f8:d5:08: 65:73:4d:75:55:f7:3b:d4:76:c3:25:7b:7f:91:2f: 20:17:5c:01:39:cc:cb:cc:7a:1d:3d:29:bd:40:c3: 67:56:4c:42:bb:4d:08:9c:ce:3d:12:22:d3:33:ba: 3f:33:a2:f6:43:7e:75:4b:88:dd:63:bd:a6:c6:5c: e9:11:3d:02:44:4b:fb:4f:a9:f7:76:fb:75:fd:b5: 58:80:bb:f2:19:32:e8:be:10:d5:d8:6a:5d:38:4d: 64:cf:fb:ae:02:95:f4:0c:af:42:d0:42:5b:f4:67: 78:a9:33:5c:28:57:5f:fc:b4:07:dc:d5:75:02:e3: 33:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:34:1E:A5:FC:14:E1:13:0B:0B:88:45:1B:54:CB:47:BB:5A:C7:FC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XTQepfwU4RMLC4hFG1TLR7tax_w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.120.0/21 Signature Algorithm: sha256WithRSAEncryption 12:8d:03:19:c7:e3:d8:f7:bf:7c:79:9d:88:07:02:58:3f:e9: 4e:98:7d:5d:99:cb:46:66:10:f4:86:cd:6f:c4:6b:cb:36:f3: 0b:bb:0c:34:de:e8:9f:f1:ca:d9:29:ce:51:cf:a1:eb:65:09: ac:5f:e3:38:37:55:86:6f:bc:6f:a3:73:c0:9a:fa:7a:01:6a: 54:ef:88:2a:e6:24:56:2a:65:33:9a:da:b4:2a:cd:d5:29:04: 24:81:47:bb:cf:10:55:43:01:2e:96:b5:17:99:19:8f:e2:8c: 0c:3d:7b:a5:eb:92:79:2e:4b:30:4e:96:71:1f:9d:e1:6f:07: 2f:9b:b7:02:3a:36:b3:22:9c:9b:d8:6f:ad:8d:93:b2:0e:dc: ee:f0:b8:7e:06:3a:2c:1d:00:b4:8b:6a:2d:a5:eb:a4:d2:aa: 12:5d:16:b2:10:ce:39:8e:41:d4:84:ab:dd:32:82:24:5b:5a: cf:ec:ea:26:20:c1:79:e4:33:ce:5a:ec:20:a5:3f:19:3b:7a: 8b:05:5a:0a:f0:6c:3e:1c:4f:9b:96:fd:73:a4:b4:1f:72:d8: 33:6e:fa:3d:f5:03:8d:eb:8d:0b:12:9f:f0:2f:2e:6e:37:0c: 9b:05:76:30:58:6a:82:ea:06:34:6f:85:f1:54:3f:2a:1f:c0: 41:0c:bd:37 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMjJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVEMzQxRUE1RkMxNEUx MTMwQjBCODg0NTFCNTRDQjQ3QkI1QUM3RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXmrxyZXKZOEE5YCUK0NGTq/TgopH3kxPbhxDg1iZsfsMzd5E2 uRlaQHz12z9dlfKw2e+wau/uYCBTAZuedKgXRPCDnBxpl1HAloY5W7IVO6eamUPh /+/vTsFJAj+hA9RwiN498u75zStlVItKZjdCHrwslJOI+FG9d5ohW5IAeJl/f/jV CGVzTXVV9zvUdsMle3+RLyAXXAE5zMvMeh09Kb1Aw2dWTEK7TQiczj0SItMzuj8z ovZDfnVLiN1jvabGXOkRPQJES/tPqfd2+3X9tViAu/IZMui+ENXYal04TWTP+64C lfQMr0LQQlv0Z3ipM1woV1/8tAfc1XUC4zO3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUXTQepfwU4RMLC4hFG1TLR7tax/wwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1hUUWVwZndVNFJNTEM0aEZHMVRMUjd0YXhfdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxaXgwDQYJKoZIhvcNAQELBQADggEBABKNAxnH49j3v3x5nYgHAlg/6U6Y fV2Zy0ZmEPSGzW/Ea8s28wu7DDTe6J/xytkpzlHPoetlCaxf4zg3VYZvvG+jc8Ca +noBalTviCrmJFYqZTOa2rQqzdUpBCSBR7vPEFVDAS6WtReZGY/ijAw9e6Xrknku SzBOlnEfneFvBy+btwI6NrMinJvYb62Nk7IO3O7wuH4GOiwdALSLai2l66TSqhJd FrIQzjmOQdSEq90ygiRbWs/s6iYgwXnkM85a7CClPxk7eosFWgrwbD4cT5uW/XOk tB9y2DNu+j31A43rjQsSn/AvLm43DJsFdjBYaoLqBjRvhfFUPyofwEEMvTc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:06 2025 by rpki-client