$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YJni22Py8f68pVRkt5fR8RvTZwo.roa File: YJni22Py8f68pVRkt5fR8RvTZwo.roa (raw, json) Hash identifier: 1g3aZl/5Jec6PeypnyDNkT2ADLYljB0cH39popfOS2Q= Subject key identifier: 60:99:E2:DB:63:F2:F1:FE:BC:A5:54:64:B7:97:D1:F1:1B:D3:67:0A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BAD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YJni22Py8f68pVRkt5fR8RvTZwo.roa Signing time: Tue 01 Apr 2025 01:39:59 +0000 ROA not before: Tue 01 Apr 2025 01:39:59 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2989 (0xbad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:39:59 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=6099E2DB63F2F1FEBCA55464B797D1F11BD3670A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9f:d2:b9:46:aa:f3:d9:38:2f:14:c6:54:16: 43:7f:e1:2b:2c:ad:04:19:a0:f6:2e:09:7d:04:bd: fc:45:3c:39:af:fc:4d:c8:7a:8a:b4:e7:fe:32:55: fa:8f:e2:e6:7f:7b:38:d1:32:00:22:76:b1:ed:fe: 43:3b:ec:56:51:93:b8:c9:37:b1:69:13:f7:91:68: e7:7d:ad:f4:b7:38:5e:74:25:0c:08:64:3f:d8:dd: d2:a5:7d:3a:e3:8d:78:5a:73:9f:c6:8d:09:53:f0: 21:21:43:9a:82:28:5b:d2:c3:24:80:01:92:ef:bf: c7:3d:5c:ff:9e:15:a4:8d:3a:e3:53:ed:4f:c0:94: bc:5d:3d:ee:20:28:2a:9e:19:38:d5:0a:90:e9:72: 65:11:2d:4a:c5:d4:6d:d6:da:4b:2b:de:6b:40:be: c1:ec:db:ac:ef:06:6d:bb:bc:c8:37:5c:2f:b5:b1: c7:c2:ef:6c:f5:48:9e:c4:e9:b1:76:45:a8:4c:0b: 4b:8f:7f:e4:f4:96:83:98:46:12:b7:7b:ea:7c:b8: 6b:48:0e:e9:4e:3d:27:6d:9b:5c:f5:36:3c:29:ae: e8:f6:ca:f9:a5:e4:24:3d:17:c4:2c:c0:6f:2c:ac: 1a:1a:62:86:55:07:d1:4e:80:67:22:f6:3c:58:65: f4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:99:E2:DB:63:F2:F1:FE:BC:A5:54:64:B7:97:D1:F1:1B:D3:67:0A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YJni22Py8f68pVRkt5fR8RvTZwo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.12.0/22 Signature Algorithm: sha256WithRSAEncryption a6:49:21:c5:79:43:c1:03:bd:d9:22:18:44:5c:f6:c9:85:5c: 06:d1:64:11:3a:9f:36:c5:10:6a:58:7d:82:2a:71:4d:fe:7e: 2a:ed:79:08:19:af:e7:01:eb:9b:1d:68:f3:ca:1b:d4:f1:6c: e1:d5:64:f3:c6:a8:ae:fc:45:dc:9c:52:89:a4:77:7b:3f:75: 23:a4:47:b5:fc:e0:79:e1:c2:86:ae:a8:84:88:4e:a8:f8:7b: ad:f7:36:30:35:3b:31:d8:52:18:64:85:23:7f:1b:14:39:3f: 5f:1b:4f:a0:c3:d6:3c:cf:12:ee:09:94:ab:06:50:ed:f8:04: 7f:0c:26:1b:f4:18:c6:48:c8:ed:0d:b2:53:94:56:20:4e:eb: 1f:38:92:cd:ec:ee:ee:10:35:47:00:bb:88:a3:6b:11:df:1f: 33:8c:7e:e1:0a:4b:00:a1:dc:b0:cf:0c:b9:06:16:d5:33:70: a6:56:45:d7:62:30:fb:95:09:68:0f:a8:10:2b:99:9d:53:9d: 2a:6f:ea:a6:fb:3a:00:1a:27:4e:09:e0:4f:bb:7c:f9:b2:ea: 4e:6a:cb:bc:28:0f:ed:61:79:98:71:b1:1d:d2:5d:70:7e:27: 7c:81:54:04:9d:b9:6e:b0:63:32:6e:46:22:10:55:d5:cf:c5: 39:4a:36:ec -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC60wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM5NTlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYwOTlFMkRCNjNGMkYx RkVCQ0E1NTQ2NEI3OTdEMUYxMUJEMzY3MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7n9K5Rqrz2TgvFMZUFkN/4SssrQQZoPYuCX0EvfxFPDmv/E3I eoq05/4yVfqP4uZ/ezjRMgAidrHt/kM77FZRk7jJN7FpE/eRaOd9rfS3OF50JQwI ZD/Y3dKlfTrjjXhac5/GjQlT8CEhQ5qCKFvSwySAAZLvv8c9XP+eFaSNOuNT7U/A lLxdPe4gKCqeGTjVCpDpcmURLUrF1G3W2ksr3mtAvsHs26zvBm27vMg3XC+1scfC 72z1SJ7E6bF2RahMC0uPf+T0loOYRhK3e+p8uGtIDulOPSdtm1z1Njwpruj2yvml 5CQ9F8QswG8srBoaYoZVB9FOgGci9jxYZfRvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYJni22Py8f68pVRkt5fR8RvTZwowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1lKbmkyMlB5OGY2OHBWUmt0NWZSOFJ2VFp3by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYAwwDQYJKoZIhvcNAQELBQADggEBAKZJIcV5Q8EDvdkiGERc9smFXAbR ZBE6nzbFEGpYfYIqcU3+firteQgZr+cB65sdaPPKG9TxbOHVZPPGqK78RdycUomk d3s/dSOkR7X84HnhwoauqISITqj4e633NjA1OzHYUhhkhSN/GxQ5P18bT6DD1jzP Eu4JlKsGUO34BH8MJhv0GMZIyO0NslOUViBO6x84ks3s7u4QNUcAu4ijaxHfHzOM fuEKSwCh3LDPDLkGFtUzcKZWRddiMPuVCWgPqBArmZ1TnSpv6qb7OgAaJ04J4E+7 fPmy6k5qy7woD+1heZhxsR3SXXB+J3yBVASduW6wYzJuRiIQVdXPxTlKNuw= -----END CERTIFICATE-----Generated at Sat Apr 5 17:19:40 2025 by rpki-client