$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Y13xhEaW_kmfbHzgurKDod98BWs.roa File: Y13xhEaW_kmfbHzgurKDod98BWs.roa (raw, json) Hash identifier: NmXx2VZmyQ5W4Ub36jiLPZiMGdyMTX45Z0JeTBOi0og= Subject key identifier: 63:5D:F1:84:46:96:FE:49:9F:6C:7C:E0:BA:B2:83:A1:DF:7C:05:6B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C0B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Y13xhEaW_kmfbHzgurKDod98BWs.roa Signing time: Tue 01 Apr 2025 01:51:34 +0000 ROA not before: Tue 01 Apr 2025 01:51:34 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:51:34 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=635DF1844696FE499F6C7CE0BAB283A1DF7C056B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:32:56:ec:39:ea:2f:a9:15:42:54:2c:47:91: b6:3d:68:25:33:79:ce:a7:b8:6e:a6:e2:37:3a:9f: b3:49:28:03:71:51:b8:0a:95:1b:1b:c8:5b:f9:0b: 32:b5:b9:8f:ee:8a:73:fd:b6:4f:b2:2e:1e:db:4b: fa:84:7e:ef:04:f8:d4:2a:98:e2:42:ec:b6:5c:63: b3:78:75:91:21:aa:62:ab:7e:90:29:63:c6:5b:df: 4c:ce:80:9f:ac:d1:0c:da:b6:19:df:4c:2b:5d:fa: df:eb:f8:94:be:2f:a4:51:0a:c9:4e:8b:3b:57:d6: df:3f:24:f0:1c:a3:34:1f:0b:92:57:d5:6c:ac:e1: 34:8f:96:4c:59:48:d5:8d:c6:c3:78:c7:5c:d3:55: d3:20:96:e2:e7:3a:10:ae:6c:7d:48:9b:10:78:00: 64:e2:f7:dd:22:39:42:d8:b8:d5:f3:90:0e:3e:0e: d9:14:a7:84:c0:2a:ae:dc:3c:f0:a1:e7:9c:e1:e3: 19:ae:a9:dc:c4:86:d0:ba:35:3d:2d:1d:8b:3d:4b: a1:4c:8c:1d:bb:0e:6a:80:c5:d8:13:ca:a2:2a:d5: cf:21:c1:a9:87:97:ad:31:3a:9b:c0:e6:a5:e6:db: 3e:86:4a:7d:9b:c2:19:93:1d:26:7b:62:5e:bc:5c: 45:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:5D:F1:84:46:96:FE:49:9F:6C:7C:E0:BA:B2:83:A1:DF:7C:05:6B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Y13xhEaW_kmfbHzgurKDod98BWs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.231.0/24 Signature Algorithm: sha256WithRSAEncryption 63:ce:19:3a:a6:80:35:56:ae:1f:39:91:45:09:5b:a0:f4:fc: 81:0a:0e:12:7f:58:8a:22:76:8d:32:c3:30:aa:be:4a:2b:35: 20:0a:fa:05:b5:d2:4e:76:26:0e:6b:fb:c7:02:59:33:22:e1: b6:93:6e:f1:35:bb:cd:10:2f:14:13:e0:78:e0:a9:aa:97:bb: a2:03:b9:20:41:5f:82:39:1e:1b:0e:88:c8:0c:35:36:24:9d: 85:c5:8f:de:78:c6:ca:5e:c7:0e:60:25:ca:70:98:22:19:43: 58:eb:5b:b6:ca:81:92:36:6f:1f:2a:ab:6a:be:23:02:95:26: 30:55:7c:68:07:b2:36:aa:e2:a3:d7:ea:ac:6f:fd:69:da:74: 2d:97:4e:ae:32:14:78:a4:65:f5:bb:12:74:7c:cf:4c:18:cb: 36:b3:04:1b:d5:79:67:74:d3:18:16:a8:66:16:0e:d9:7e:fa: 5e:ad:04:31:6b:52:0e:a0:76:7f:e1:66:c9:d2:83:ec:cc:d2: b8:d5:e9:da:4f:b3:34:dc:34:41:05:b2:df:5a:82:0a:50:03: 87:fd:59:20:5c:05:2d:fb:2a:c0:fb:b3:5c:a2:48:e3:5e:c8: 0a:9a:e8:8c:85:7c:9f:90:de:e4:13:09:68:50:8b:8b:7c:4f: 0b:40:d3:fe -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTUxMzRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYzNURGMTg0NDY5NkZF NDk5RjZDN0NFMEJBQjI4M0ExREY3QzA1NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwMlbsOeovqRVCVCxHkbY9aCUzec6nuG6m4jc6n7NJKANxUbgK lRsbyFv5CzK1uY/uinP9tk+yLh7bS/qEfu8E+NQqmOJC7LZcY7N4dZEhqmKrfpAp Y8Zb30zOgJ+s0QzathnfTCtd+t/r+JS+L6RRCslOiztX1t8/JPAcozQfC5JX1Wys 4TSPlkxZSNWNxsN4x1zTVdMgluLnOhCubH1ImxB4AGTi990iOULYuNXzkA4+DtkU p4TAKq7cPPCh55zh4xmuqdzEhtC6NT0tHYs9S6FMjB27DmqAxdgTyqIq1c8hwamH l60xOpvA5qXm2z6GSn2bwhmTHSZ7Yl68XEVZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUY13xhEaW/kmfbHzgurKDod98BWswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1kxM3hoRWFXX2ttZmJIemd1cktEb2Q5OEJXcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaucwDQYJKoZIhvcNAQELBQADggEBAGPOGTqmgDVWrh85kUUJW6D0/IEK DhJ/WIoido0ywzCqvkorNSAK+gW10k52Jg5r+8cCWTMi4baTbvE1u80QLxQT4Hjg qaqXu6IDuSBBX4I5HhsOiMgMNTYknYXFj954xspexw5gJcpwmCIZQ1jrW7bKgZI2 bx8qq2q+IwKVJjBVfGgHsjaq4qPX6qxv/WnadC2XTq4yFHikZfW7EnR8z0wYyzaz BBvVeWd00xgWqGYWDtl++l6tBDFrUg6gdn/hZsnSg+zM0rjV6dpPszTcNEEFst9a ggpQA4f9WSBcBS37KsD7s1yiSONeyAqa6IyFfJ+Q3uQTCWhQi4t8TwtA0/4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:45:40 2025 by rpki-client