$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cTnwjK_-DbU3Lt9cMa-q_wsJT18.roa File: cTnwjK_-DbU3Lt9cMa-q_wsJT18.roa (raw, json) Hash identifier: xiYGzM4XByzPpGEAzD6tLpIlbkDgcCJ8LHnRpMCPQow= Subject key identifier: 71:39:F0:8C:AF:FE:0D:B5:37:2E:DF:5C:31:AF:AA:FF:0B:09:4F:5F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C63 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cTnwjK_-DbU3Lt9cMa-q_wsJT18.roa Signing time: Tue 01 Apr 2025 02:00:28 +0000 ROA not before: Tue 01 Apr 2025 02:00:28 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3171 (0xc63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:00:28 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=7139F08CAFFE0DB5372EDF5C31AFAAFF0B094F5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ef:19:ae:1a:60:a0:4d:ca:61:9e:48:f5:5b: 72:f0:10:11:dc:e6:ab:78:e5:8a:24:a3:fa:80:a8: d2:c3:21:fa:23:22:df:cf:41:10:a8:70:a7:0c:90: 45:64:63:1b:91:64:43:51:e1:74:e7:99:1a:97:db: 41:f6:79:2b:8e:91:0f:ee:07:ea:be:1a:20:62:65: ee:aa:62:a8:e1:eb:7e:e6:dc:ab:9b:ee:81:3a:da: 44:57:df:af:13:85:79:b4:15:08:94:0c:74:c9:b4: 22:dc:81:61:33:99:ac:67:5d:35:5a:c4:bf:73:10: 04:fe:ce:c4:ca:c4:be:e5:fa:25:13:0f:a6:b5:a6: 4f:57:9c:71:e7:eb:0b:cb:f1:f4:88:6f:4f:7b:c3: ab:a8:39:e8:ea:4e:f7:1b:70:5a:0e:70:c8:a3:1b: 94:a0:ee:22:3e:05:fe:13:1c:15:b2:59:56:35:da: 6e:4e:8e:a5:23:54:94:c2:c0:a9:72:36:02:31:0a: 10:52:62:fb:c6:12:a9:36:ba:e7:ea:b9:bc:3d:4a: 56:31:ca:66:91:36:19:7e:ec:a9:33:9e:7a:c3:9b: d3:a2:48:bf:5c:ba:36:c6:35:02:3a:e9:9f:2a:86: 4c:79:81:b4:b5:9b:29:00:42:e2:a6:a7:90:fb:69: 90:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:39:F0:8C:AF:FE:0D:B5:37:2E:DF:5C:31:AF:AA:FF:0B:09:4F:5F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cTnwjK_-DbU3Lt9cMa-q_wsJT18.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.230.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:43:e7:92:0f:0c:1e:a6:c6:2f:38:53:06:4e:47:ff:0f:e7: 58:2f:86:a7:32:57:d1:4a:32:bf:9c:56:2c:e1:70:98:37:86: 01:54:24:1a:52:87:8f:b5:9e:84:5b:32:f6:de:9a:3a:75:f5: fb:9a:63:cd:69:3b:59:a2:c1:7e:ba:94:7e:a3:2f:da:6f:04: aa:58:1a:ff:b1:95:90:54:a1:1b:35:1b:56:83:2d:8f:ea:c5: 75:4d:d0:65:84:2a:ba:e4:0b:68:e1:40:da:39:4b:49:d5:6c: a9:33:07:64:03:23:85:9d:39:d9:da:34:0e:00:49:eb:2d:ba: 0d:bc:e3:fc:59:1e:1f:0f:70:a6:73:f6:2a:1e:f5:63:8f:7e: eb:8c:02:d3:1c:92:eb:87:f8:ee:66:c1:38:1e:11:1d:d0:ac: 2a:7e:f7:01:d1:22:f1:24:09:7c:b2:2a:43:7f:5a:93:7b:a8: 48:47:db:21:c5:40:b0:f0:c0:b3:32:26:35:a1:1a:c0:5b:8b: 9a:50:53:d5:ba:34:40:bd:0d:40:ba:b9:ec:58:a2:ae:7d:38: ab:ff:3d:da:cb:d4:b0:bc:a3:ea:70:bf:3e:28:aa:bf:ba:99: ba:f2:d4:ef:8a:b7:33:55:f1:bb:0b:99:03:1c:ec:e6:00:45: 6e:b9:ad:ca -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAwMjhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcxMzlGMDhDQUZGRTBE QjUzNzJFREY1QzMxQUZBQUZGMEIwOTRGNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDr7xmuGmCgTcphnkj1W3LwEBHc5qt45Yoko/qAqNLDIfojIt/P QRCocKcMkEVkYxuRZENR4XTnmRqX20H2eSuOkQ/uB+q+GiBiZe6qYqjh637m3Kub 7oE62kRX368ThXm0FQiUDHTJtCLcgWEzmaxnXTVaxL9zEAT+zsTKxL7l+iUTD6a1 pk9XnHHn6wvL8fSIb097w6uoOejqTvcbcFoOcMijG5Sg7iI+Bf4THBWyWVY12m5O jqUjVJTCwKlyNgIxChBSYvvGEqk2uufqubw9SlYxymaRNhl+7KkznnrDm9OiSL9c ujbGNQI66Z8qhkx5gbS1mykAQuKmp5D7aZBTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcTnwjK/+DbU3Lt9cMa+q/wsJT18wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NUbndqS18tRGJVM0x0OWNNYS1xX3dzSlQxOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYOYwDQYJKoZIhvcNAQELBQADggEBAE5D55IPDB6mxi84UwZOR/8P51gv hqcyV9FKMr+cVizhcJg3hgFUJBpSh4+1noRbMvbemjp19fuaY81pO1miwX66lH6j L9pvBKpYGv+xlZBUoRs1G1aDLY/qxXVN0GWEKrrkC2jhQNo5S0nVbKkzB2QDI4Wd OdnaNA4ASestug284/xZHh8PcKZz9ioe9WOPfuuMAtMckuuH+O5mwTgeER3QrCp+ 9wHRIvEkCXyyKkN/WpN7qEhH2yHFQLDwwLMyJjWhGsBbi5pQU9W6NEC9DUC6uexY oq59OKv/PdrL1LC8o+pwvz4oqr+6mbry1O+KtzNV8bsLmQMc7OYARW65rco= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:36 2025 by rpki-client