$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/afpR14atBCmQ17WHl40NCKKZaao.roa File: afpR14atBCmQ17WHl40NCKKZaao.roa (raw, json) Hash identifier: 1nxke7p86Z4iZsuW+K9VNPAdHuDoxOGx88xfyqkReAw= Subject key identifier: 69:FA:51:D7:86:AD:04:29:90:D7:B5:87:97:8D:0D:08:A2:99:69:AA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BCB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/afpR14atBCmQ17WHl40NCKKZaao.roa Signing time: Tue 01 Apr 2025 01:43:50 +0000 ROA not before: Tue 01 Apr 2025 01:43:50 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3019 (0xbcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:50 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=69FA51D786AD042990D7B587978D0D08A29969AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:3d:8f:5b:58:7c:1b:fd:d6:b5:61:db:0b:01: 09:5c:13:85:f8:28:8d:8b:f4:93:27:32:6e:8e:f9: ef:37:e4:07:ce:b5:c4:53:12:7f:32:98:26:0c:5a: 46:06:bc:d0:d4:c5:68:d5:31:a8:ab:8b:01:d3:9c: 59:2c:0f:7d:63:f1:a2:28:52:2c:db:46:c2:9f:ee: a5:fb:2e:48:11:6b:af:ac:cf:ba:93:13:4a:12:c0: a2:c9:91:8f:94:e7:32:1e:d9:b0:1b:98:79:00:ac: 9c:53:61:a3:85:21:d2:2e:fc:fb:96:99:2b:4b:9e: af:8c:b4:72:9a:97:9a:bc:df:32:e5:0d:a7:55:64: 50:33:72:58:53:cc:b8:0c:5e:f0:6c:89:bb:f6:f6: 4e:8c:4d:73:c4:d6:f7:24:d4:15:58:ee:ff:46:c0: 33:7a:fe:f5:3a:a9:03:5e:ad:f1:ea:37:ea:ae:db: 16:0d:cb:b2:2f:7a:02:07:4b:05:6d:ea:3f:d9:fb: e1:6d:25:07:ab:c7:5d:d1:ac:fd:26:a6:7b:6d:bc: 28:68:09:83:40:1d:5e:59:80:df:ef:d5:04:97:6d: 54:eb:1f:d3:0e:f2:a3:7f:32:3b:f7:5e:d7:f7:87: a7:7e:bc:34:1a:89:e0:8c:67:22:0f:95:68:0f:79: b9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:FA:51:D7:86:AD:04:29:90:D7:B5:87:97:8D:0D:08:A2:99:69:AA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/afpR14atBCmQ17WHl40NCKKZaao.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.176.0/21 Signature Algorithm: sha256WithRSAEncryption 55:76:09:fc:8b:b4:36:57:89:a1:51:d5:96:eb:bd:44:fd:a0: 69:25:9d:29:13:09:30:aa:c3:ad:30:63:bc:3f:0f:cb:d2:91: ea:29:e9:53:ff:36:62:99:86:d3:15:fa:e5:00:f2:a3:76:3c: aa:72:73:ef:9e:58:88:61:5d:71:38:7b:a0:f2:02:2f:66:dd: dd:8a:13:54:a6:7a:4f:f4:c3:e3:d4:23:de:cb:fe:3e:5c:8c: 07:62:d4:c3:5a:05:61:55:f5:5f:54:64:e5:1e:cf:4b:25:d9: 39:e9:4b:9e:2f:3c:fb:3f:bc:6f:a5:44:a5:ac:46:61:fb:a8: a8:68:9a:8c:3f:c6:11:b6:3d:3b:84:d8:88:2e:18:bd:c6:1a: 5d:9d:06:f2:8d:7c:c4:1a:1c:37:b7:a9:99:33:c3:af:3c:5d: 78:e9:e5:0a:eb:be:12:60:74:6f:d0:20:a8:53:2d:49:f9:22: 4a:73:cc:b6:07:ff:da:a5:da:c9:bf:3d:93:7e:7a:de:67:4d: 8e:9d:3d:eb:a0:50:d2:c2:7e:22:dd:c4:73:20:38:7b:e9:66: a9:eb:00:5b:a1:29:90:81:2d:c8:cb:1b:27:34:a4:e2:14:05: 99:ef:2d:3b:c2:fe:d4:b5:95:ce:aa:2b:10:c6:02:ee:b6:a3: 92:96:53:a3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC8swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzNTBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDY5RkE1MUQ3ODZBRDA0 Mjk5MEQ3QjU4Nzk3OEQwRDA4QTI5OTY5QUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZPY9bWHwb/da1YdsLAQlcE4X4KI2L9JMnMm6O+e835AfOtcRT En8ymCYMWkYGvNDUxWjVMairiwHTnFksD31j8aIoUizbRsKf7qX7LkgRa6+sz7qT E0oSwKLJkY+U5zIe2bAbmHkArJxTYaOFIdIu/PuWmStLnq+MtHKal5q83zLlDadV ZFAzclhTzLgMXvBsibv29k6MTXPE1vck1BVY7v9GwDN6/vU6qQNerfHqN+qu2xYN y7IvegIHSwVt6j/Z++FtJQerx13RrP0mpnttvChoCYNAHV5ZgN/v1QSXbVTrH9MO 8qN/Mjv3Xtf3h6d+vDQaieCMZyIPlWgPebnDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUafpR14atBCmQ17WHl40NCKKZaaowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2FmcFIxNGF0QkNtUTE3V0hsNDBOQ0tLWmFhby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxarAwDQYJKoZIhvcNAQELBQADggEBAFV2CfyLtDZXiaFR1ZbrvUT9oGkl nSkTCTCqw60wY7w/D8vSkeop6VP/NmKZhtMV+uUA8qN2PKpyc++eWIhhXXE4e6Dy Ai9m3d2KE1Smek/0w+PUI97L/j5cjAdi1MNaBWFV9V9UZOUez0sl2TnpS54vPPs/ vG+lRKWsRmH7qKhomow/xhG2PTuE2IguGL3GGl2dBvKNfMQaHDe3qZkzw688XXjp 5QrrvhJgdG/QIKhTLUn5IkpzzLYH/9ql2sm/PZN+et5nTY6dPeugUNLCfiLdxHMg OHvpZqnrAFuhKZCBLcjLGyc0pOIUBZnvLTvC/tS1lc6qKxDGAu62o5KWU6M= -----END CERTIFICATE-----Generated at Sat Apr 5 17:42:12 2025 by rpki-client