$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YeMhU3fU66dZBtPQ6Eh1GKglR1E.roa File: YeMhU3fU66dZBtPQ6Eh1GKglR1E.roa (raw, json) Hash identifier: uoWQW8fXY2mZ1asCjACaKcrhLqXBXEmF6CchKzAttfo= Subject key identifier: 61:E3:21:53:77:D4:EB:A7:59:06:D3:D0:E8:48:75:18:A8:25:47:51 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C69 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YeMhU3fU66dZBtPQ6Eh1GKglR1E.roa Signing time: Tue 01 Apr 2025 02:00:31 +0000 ROA not before: Tue 01 Apr 2025 02:00:31 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3177 (0xc69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:00:31 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=61E3215377D4EBA75906D3D0E8487518A8254751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:75:c1:22:0f:3d:db:9b:60:8f:fd:0c:37:a2: 18:4f:33:75:3a:04:93:ff:46:4c:63:f4:88:ee:25: c9:f2:35:c4:f6:a9:06:45:64:fd:f2:6c:b8:77:7f: 57:c1:29:11:19:49:28:9e:5f:38:5c:ff:dd:5a:12: cf:5b:59:9e:c9:e3:24:10:65:fa:82:7a:c8:59:29: 51:d9:20:11:50:39:d0:10:5d:25:71:6a:a7:f0:ff: ca:39:a3:84:cc:01:c5:fe:9e:e1:77:36:3a:b6:3f: 3d:ca:28:9f:97:1f:83:f7:c8:de:8c:31:be:d2:22: a2:90:c5:8e:17:dd:be:62:75:29:1a:be:f2:a3:ab: c3:12:e6:f9:d7:bb:b5:d0:81:36:86:a8:01:c4:31: dd:46:d1:60:e1:b3:a1:26:bf:51:0d:4b:2c:04:31: 44:bf:ff:82:15:fc:a3:85:dd:28:21:4a:e4:9a:a1: 01:02:06:a4:ac:3c:4e:f9:c7:d4:91:7a:59:96:40: ea:d6:9c:58:d1:af:5c:1d:53:8d:00:16:65:80:40: a5:73:1a:08:59:d8:1b:40:f1:6f:5c:b7:bf:5e:de: bf:b1:d9:ed:11:8c:f0:4c:27:ad:d5:a9:a4:73:0f: 23:fa:7e:3d:e2:0d:f0:76:9c:0b:1d:b7:8c:d7:39: 4a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E3:21:53:77:D4:EB:A7:59:06:D3:D0:E8:48:75:18:A8:25:47:51 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YeMhU3fU66dZBtPQ6Eh1GKglR1E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.148.0/22 Signature Algorithm: sha256WithRSAEncryption c3:74:ea:4a:c8:97:f9:f8:7f:16:ff:af:4d:7d:4e:4f:c8:bf: 52:83:45:9d:74:be:09:75:f9:26:a2:36:8c:d8:61:6f:45:60: 82:e2:b7:d1:fb:02:76:4f:c0:1a:e1:a9:1d:fc:db:4c:c6:f3: b0:59:88:f2:04:00:10:35:79:4e:e3:37:d3:71:6d:c1:02:68: 37:22:ff:c8:7b:f8:b6:e6:59:c5:1b:53:e9:06:91:f8:ba:f0: bb:fd:3d:53:8d:21:32:c6:4c:c9:f5:cd:4b:e5:1c:82:4a:18: e4:c9:cb:f9:f1:4e:ad:c1:ad:55:4c:10:ee:9a:f5:a3:70:4d: fa:07:b5:e9:83:da:b5:a1:6a:88:fd:5a:df:1a:a7:7b:f7:7f: e7:2a:0b:aa:90:3e:35:5c:cb:1f:3d:c4:95:96:78:65:c8:09: 80:50:12:33:57:3d:9c:eb:e1:19:78:d3:59:36:c0:b6:c3:fb: 20:c9:1f:16:8f:ad:f0:8d:45:b1:08:58:4c:d7:b6:e1:65:7e: e6:a8:a3:3e:18:31:db:df:67:67:8a:f5:c5:9d:22:bc:bd:62: 24:61:ec:71:0d:61:7e:95:cf:cf:28:2f:fd:0b:88:ca:41:a1: dc:f5:8d:6b:1a:f0:d4:8c:ed:7c:27:e5:15:38:d0:db:a9:04: b0:f2:e0:e0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDGkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAwMzFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYxRTMyMTUzNzdENEVC QTc1OTA2RDNEMEU4NDg3NTE4QTgyNTQ3NTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOdcEiDz3bm2CP/Qw3ohhPM3U6BJP/Rkxj9IjuJcnyNcT2qQZF ZP3ybLh3f1fBKREZSSieXzhc/91aEs9bWZ7J4yQQZfqCeshZKVHZIBFQOdAQXSVx aqfw/8o5o4TMAcX+nuF3Njq2Pz3KKJ+XH4P3yN6MMb7SIqKQxY4X3b5idSkavvKj q8MS5vnXu7XQgTaGqAHEMd1G0WDhs6Emv1ENSywEMUS//4IV/KOF3SghSuSaoQEC BqSsPE75x9SRelmWQOrWnFjRr1wdU40AFmWAQKVzGghZ2BtA8W9ct79e3r+x2e0R jPBMJ63VqaRzDyP6fj3iDfB2nAsdt4zXOUp1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYeMhU3fU66dZBtPQ6Eh1GKglR1EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1llTWhVM2ZVNjZkWkJ0UFE2RWgxR0tnbFIxRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYpQwDQYJKoZIhvcNAQELBQADggEBAMN06krIl/n4fxb/r019Tk/Iv1KD RZ10vgl1+SaiNozYYW9FYILit9H7AnZPwBrhqR3820zG87BZiPIEABA1eU7jN9Nx bcECaDci/8h7+LbmWcUbU+kGkfi68Lv9PVONITLGTMn1zUvlHIJKGOTJy/nxTq3B rVVMEO6a9aNwTfoHtemD2rWhaoj9Wt8ap3v3f+cqC6qQPjVcyx89xJWWeGXICYBQ EjNXPZzr4Rl401k2wLbD+yDJHxaPrfCNRbEIWEzXtuFlfuaooz4YMdvfZ2eK9cWd Iry9YiRh7HENYX6Vz88oL/0LiMpBodz1jWsa8NSM7Xwn5RU40NupBLDy4OA= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:22 2025 by rpki-client