$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ye4HbOLhFTouRzSiwhIBplFpskk.roa File: Ye4HbOLhFTouRzSiwhIBplFpskk.roa (raw, json) Hash identifier: vrnj5qeUrygaSfEB5oak2rUmHts92kdUH23SQe/vAvw= Subject key identifier: 61:EE:07:6C:E2:E1:15:3A:2E:47:34:A2:C2:12:01:A6:51:69:B2:49 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B8D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ye4HbOLhFTouRzSiwhIBplFpskk.roa Signing time: Tue 01 Apr 2025 01:39:44 +0000 ROA not before: Tue 01 Apr 2025 01:39:44 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2957 (0xb8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:39:44 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=61EE076CE2E1153A2E4734A2C21201A65169B249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:90:22:ce:71:f0:88:62:e9:ad:7f:4f:ac:7e: 7d:13:50:e8:53:e9:f9:0d:21:03:70:b4:95:80:d8: be:c7:8a:de:70:e9:f1:1f:ef:85:28:1e:24:33:96: 63:44:0d:ef:9c:38:ce:59:b9:10:9e:19:ac:85:98: 01:45:b6:93:06:81:20:7a:b5:5f:97:e5:6d:59:03: 34:32:ac:b7:0b:7d:a9:6a:9d:a9:2d:89:fb:03:9a: 93:94:df:19:07:3d:63:dd:99:21:23:79:8a:36:eb: d8:5b:98:b6:66:7e:d2:3d:19:31:69:ba:71:63:71: 45:33:bd:12:4f:53:01:c5:55:a0:cd:8c:4f:b7:53: 25:b5:0d:e8:3d:47:c3:ad:33:a7:23:c4:a9:f2:38: 36:62:0b:a5:fc:f0:6c:03:8a:d2:a7:c6:4c:1b:d2: 68:1f:90:7b:37:3d:37:3f:1c:72:e8:d2:a6:4b:53: 03:5c:eb:28:e4:1a:f1:1d:ac:74:6b:bc:ac:6e:72: a3:96:a2:40:34:e3:38:0e:09:b4:02:d4:69:f6:fa: 08:b4:10:2f:7f:5d:f9:ec:87:f7:33:72:ca:fb:10: 1a:4a:db:2c:2e:3b:f9:ad:58:e3:6d:7d:f7:57:9c: b2:75:e6:54:c6:57:84:fc:a7:27:18:a9:d7:27:33: a5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:EE:07:6C:E2:E1:15:3A:2E:47:34:A2:C2:12:01:A6:51:69:B2:49 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ye4HbOLhFTouRzSiwhIBplFpskk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.0.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:0d:25:20:3c:78:8c:16:ec:b7:7b:14:7b:9d:28:da:5d:96: 55:28:06:ce:21:50:15:5f:81:a5:af:40:9e:83:93:9b:52:f7: 05:9a:a4:42:c3:f9:94:3d:a8:9f:2a:8a:dc:df:a4:44:ca:49: 48:47:f7:30:aa:84:13:c8:ee:c6:07:cf:c9:1c:cb:80:dc:6c: 0e:ea:b1:d2:1b:6c:cf:a4:8b:fd:23:87:68:56:8d:6f:c4:34: 33:44:93:02:75:cc:26:59:41:08:83:bd:6d:f0:d7:d2:30:1a: dc:63:3b:5f:b0:46:47:eb:71:9d:32:10:a8:1f:f6:27:8b:b3: d1:c6:7a:d6:6b:18:9b:42:11:c0:db:27:b5:54:76:e8:95:5e: e1:ea:dd:98:d7:c3:b4:2f:e5:f9:07:38:4d:e7:ab:73:1a:31: 1d:9d:72:13:e8:5f:6c:8a:28:aa:fa:56:9c:35:4c:0c:3e:c6: 2f:03:87:b1:4f:36:1f:5c:b9:c7:c5:0a:30:6f:ab:82:53:c4: 6b:db:4f:52:7d:f4:f0:2c:70:f7:72:96:af:38:5d:e5:4e:09: 2a:0a:19:5e:39:e2:45:9b:12:39:98:29:61:96:ea:7a:51:c2: 34:3e:95:29:7e:c5:cf:b1:04:6a:6a:05:d2:b6:96:70:d8:90: e1:f6:7d:c3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC40wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM5NDRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYxRUUwNzZDRTJFMTE1 M0EyRTQ3MzRBMkMyMTIwMUE2NTE2OUIyNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3kCLOcfCIYumtf0+sfn0TUOhT6fkNIQNwtJWA2L7Hit5w6fEf 74UoHiQzlmNEDe+cOM5ZuRCeGayFmAFFtpMGgSB6tV+X5W1ZAzQyrLcLfalqnakt ifsDmpOU3xkHPWPdmSEjeYo269hbmLZmftI9GTFpunFjcUUzvRJPUwHFVaDNjE+3 UyW1Deg9R8OtM6cjxKnyODZiC6X88GwDitKnxkwb0mgfkHs3PTc/HHLo0qZLUwNc 6yjkGvEdrHRrvKxucqOWokA04zgOCbQC1Gn2+gi0EC9/Xfnsh/czcsr7EBpK2ywu O/mtWONtffdXnLJ15lTGV4T8pycYqdcnM6UVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYe4HbOLhFTouRzSiwhIBplFpskkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1llNEhiT0xoRlRvdVJ6U2l3aElCcGxGcHNray5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxaAAwDQYJKoZIhvcNAQELBQADggEBAHwNJSA8eIwW7Ld7FHudKNpdllUo Bs4hUBVfgaWvQJ6Dk5tS9wWapELD+ZQ9qJ8qitzfpETKSUhH9zCqhBPI7sYHz8kc y4DcbA7qsdIbbM+ki/0jh2hWjW/ENDNEkwJ1zCZZQQiDvW3w19IwGtxjO1+wRkfr cZ0yEKgf9ieLs9HGetZrGJtCEcDbJ7VUduiVXuHq3ZjXw7Qv5fkHOE3nq3MaMR2d chPoX2yKKKr6Vpw1TAw+xi8Dh7FPNh9cucfFCjBvq4JTxGvbT1J99PAscPdylq84 XeVOCSoKGV454kWbEjmYKWGW6npRwjQ+lSl+xc+xBGpqBdK2lnDYkOH2fcM= -----END CERTIFICATE-----Generated at Sat Apr 5 17:19:34 2025 by rpki-client