$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YXRduKWf3QEYJiqDIz_E6tPIrn4.roa File: YXRduKWf3QEYJiqDIz_E6tPIrn4.roa (raw, json) Hash identifier: 5UYc65iD/SskQxN/c5r++Bhc3jrn8JGwkhsWg5PV+yA= Subject key identifier: 61:74:5D:B8:A5:9F:DD:01:18:26:2A:83:23:3F:C4:EA:D3:C8:AE:7E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B61 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YXRduKWf3QEYJiqDIz_E6tPIrn4.roa Signing time: Tue 01 Apr 2025 01:33:24 +0000 ROA not before: Tue 01 Apr 2025 01:33:24 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 14:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2913 (0xb61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:24 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=61745DB8A59FDD0118262A83233FC4EAD3C8AE7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b4:3c:81:4f:be:c2:87:7c:7c:cf:1f:71:ee: 8f:c7:0e:92:3e:c8:ba:a6:9b:2a:02:66:06:9d:0f: 33:36:43:7d:54:66:87:52:fa:a8:c3:28:3c:36:fd: b5:50:64:88:ab:27:ac:b0:27:84:a3:4d:a2:b2:2c: 64:8b:46:af:c8:78:6b:27:5a:e0:53:37:a4:18:41: 2f:00:27:64:df:8a:5a:5d:61:b7:30:4f:cb:0a:a0: 4e:c7:bf:66:d0:e5:30:fa:12:d4:08:86:fb:ff:13: 7a:cc:db:ca:28:3d:02:91:53:41:4a:40:67:da:fc: db:8e:c3:c6:67:31:3b:7b:1c:53:7f:c2:c5:1a:ff: 3c:83:ac:0c:6d:04:54:9d:8b:14:1b:30:9d:92:d9: a4:5a:0f:8d:c9:e8:3b:49:c0:36:1e:7f:3b:29:99: 08:9d:60:f5:81:39:8a:14:d4:3d:c1:73:94:5e:b8: 85:14:5e:3c:5c:21:0e:65:0e:4c:60:00:bb:4b:ce: 0a:bc:06:8b:ce:e6:43:e5:d0:e7:11:06:b4:89:5f: 80:e5:e5:3d:6d:bb:5a:fa:9f:6e:5c:84:b3:13:81: f2:fa:0d:58:28:94:7c:f5:50:31:3d:94:66:37:2b: 75:98:4f:ec:6e:0e:b6:75:e4:7d:46:ae:9f:0c:99: 9a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:74:5D:B8:A5:9F:DD:01:18:26:2A:83:23:3F:C4:EA:D3:C8:AE:7E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YXRduKWf3QEYJiqDIz_E6tPIrn4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.56.0/22 Signature Algorithm: sha256WithRSAEncryption da:2d:cb:38:29:d7:54:05:08:db:f2:cd:b6:d9:5b:da:0e:70: 3c:1f:27:5c:46:d9:3c:7b:83:e0:48:10:98:78:25:0e:a3:28: b0:96:68:ce:71:4e:28:73:40:69:a0:fa:c9:2e:34:c7:d2:8b: 0e:48:17:7f:75:8f:a8:9f:4b:1f:36:ce:7d:11:9e:55:5a:39: cd:5e:a3:ab:41:29:86:40:f5:6a:1a:c0:60:49:5e:2a:bd:5a: 16:9f:d9:96:a3:26:20:6e:9b:62:e1:1d:38:39:39:83:7d:c6: f2:aa:ed:5c:23:6c:5e:1e:f7:5a:a6:a7:da:c8:39:23:d4:21: db:90:77:ff:b8:39:ed:ef:d2:42:38:16:af:f0:24:21:ff:27: 44:44:07:48:76:c1:1a:63:39:b7:3c:a3:fa:82:68:30:02:b2: 9b:0b:55:c9:df:dc:e7:7f:40:76:f4:ac:d5:ef:18:6e:e8:6d: ad:33:44:59:4d:d2:ed:81:59:9c:93:b3:9e:99:d3:f0:46:25: 8b:83:e9:27:f2:68:70:60:2b:e8:4e:a0:e6:97:9b:f1:07:7b: 01:4d:6f:ea:24:a8:cc:f2:41:84:5a:54:55:a7:7b:f0:c7:22: ba:c8:a6:5b:e6:f9:7c:72:88:87:66:ad:fe:25:0c:14:f4:6a: 1c:f8:16:b0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC2EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMjRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYxNzQ1REI4QTU5RkRE MDExODI2MkE4MzIzM0ZDNEVBRDNDOEFFN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9tDyBT77Ch3x8zx9x7o/HDpI+yLqmmyoCZgadDzM2Q31UZodS +qjDKDw2/bVQZIirJ6ywJ4SjTaKyLGSLRq/IeGsnWuBTN6QYQS8AJ2TfilpdYbcw T8sKoE7Hv2bQ5TD6EtQIhvv/E3rM28ooPQKRU0FKQGfa/NuOw8ZnMTt7HFN/wsUa /zyDrAxtBFSdixQbMJ2S2aRaD43J6DtJwDYefzspmQidYPWBOYoU1D3Bc5ReuIUU XjxcIQ5lDkxgALtLzgq8BovO5kPl0OcRBrSJX4Dl5T1tu1r6n25chLMTgfL6DVgo lHz1UDE9lGY3K3WYT+xuDrZ15H1Grp8MmZoLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYXRduKWf3QEYJiqDIz/E6tPIrn4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1lYUmR1S1dmM1FFWUppcURJel9FNnRQSXJuNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYDgwDQYJKoZIhvcNAQELBQADggEBANotyzgp11QFCNvyzbbZW9oOcDwf J1xG2Tx7g+BIEJh4JQ6jKLCWaM5xTihzQGmg+skuNMfSiw5IF391j6ifSx82zn0R nlVaOc1eo6tBKYZA9WoawGBJXiq9Whaf2ZajJiBum2LhHTg5OYN9xvKq7VwjbF4e 91qmp9rIOSPUIduQd/+4Oe3v0kI4Fq/wJCH/J0REB0h2wRpjObc8o/qCaDACspsL Vcnf3Od/QHb0rNXvGG7oba0zRFlN0u2BWZyTs56Z0/BGJYuD6SfyaHBgK+hOoOaX m/EHewFNb+okqMzyQYRaVFWne/DHIrrIplvm+XxyiIdmrf4lDBT0ahz4FrA= -----END CERTIFICATE-----Generated at Fri Apr 11 15:57:26 2025 by rpki-client