$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ca3SqhQOmAN7smO4OWclHA5Brdo.roa File: ca3SqhQOmAN7smO4OWclHA5Brdo.roa (raw, json) Hash identifier: 8KVKviLnKwbGjc4n+WbHJWSPy7bzgFb9deQ+8DEPWAg= Subject key identifier: 71:AD:D2:AA:14:0E:98:03:7B:B2:63:B8:39:67:25:1C:0E:41:AD:DA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DC2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ca3SqhQOmAN7smO4OWclHA5Brdo.roa Signing time: Tue 01 Apr 2025 02:24:50 +0000 ROA not before: Tue 01 Apr 2025 02:24:50 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3522 (0xdc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:24:50 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=71ADD2AA140E98037BB263B83967251C0E41ADDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1b:50:b5:2c:46:50:65:3d:b2:93:9e:b0:4b: 64:25:01:87:29:1e:2f:a3:ee:06:cc:8e:02:9f:4e: 98:86:ab:2a:f7:c8:c4:2c:22:78:21:a0:c5:37:aa: 34:76:07:48:ac:87:25:56:77:43:b3:f0:82:a8:21: 14:8c:69:9e:a8:bc:c4:fc:84:b5:f4:6e:6f:d6:0c: 85:cb:f1:85:43:c9:a2:1b:b3:f2:2e:20:b5:b3:34: 11:73:fe:81:2b:02:9b:88:e4:b3:b8:58:d5:e2:e7: d4:59:9a:71:37:5d:32:56:ba:e3:80:df:16:0a:44: 0a:05:ee:31:21:d0:8f:b5:53:11:65:cd:55:d2:49: 04:32:68:df:00:2d:f2:c5:59:4d:a3:29:ec:e4:ef: 82:31:47:1d:e3:e7:25:d9:91:37:3f:cb:d3:30:4c: 79:18:99:6a:c9:96:4c:3c:30:ee:ee:d9:13:7f:71: 14:49:f1:d0:43:dd:f9:c1:2e:b1:dc:22:b6:19:2f: af:ea:14:f9:80:c2:69:5f:4d:3d:6b:07:e2:16:0e: 48:17:57:f9:5f:50:72:f3:7e:12:2f:39:0d:23:19: 00:b1:18:14:e5:1d:fc:84:f7:0a:a9:75:a7:bf:2d: ae:e7:3c:de:1e:6b:e1:88:8c:00:8a:3d:44:b8:79: 90:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:AD:D2:AA:14:0E:98:03:7B:B2:63:B8:39:67:25:1C:0E:41:AD:DA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ca3SqhQOmAN7smO4OWclHA5Brdo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.132.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:83:0c:c5:e0:03:78:28:11:b9:2e:ae:e1:12:f3:4c:e3:e3: 45:a5:d5:54:6f:67:86:ee:d0:05:9d:09:17:48:24:1a:cb:85: 2e:09:e0:74:fa:c6:6c:b6:91:8e:f4:17:73:31:1a:2d:d9:5c: 9b:24:8a:8a:a6:c2:1d:43:ff:55:44:e3:2d:3d:1c:1d:6a:f2: 38:3e:39:24:17:7a:a2:de:1c:ca:6d:5e:f3:84:80:e7:a1:a8: 7a:1a:27:85:7b:45:77:38:8b:78:ce:76:4e:8d:e1:cb:04:45: 4a:32:55:ce:bc:52:89:28:03:a7:f5:a6:78:c0:88:c1:ed:9e: c5:e2:94:7f:93:c0:04:df:d8:42:57:48:7f:b6:44:30:19:7f: 9e:16:63:b6:2f:36:b0:ec:5c:a2:2b:20:19:00:23:c3:1b:63: 55:71:b8:4f:fb:ba:09:a9:f4:7c:32:48:bd:c2:de:78:74:22: aa:8c:25:50:f7:8d:74:7e:bf:77:9e:b0:05:37:9b:69:28:fc: 59:6b:f8:e9:43:65:0d:6d:67:5f:29:22:30:56:78:d0:d2:73: 75:f4:58:9f:00:2d:01:f9:b4:f5:50:26:23:ce:94:92:f8:fa: 13:0c:a1:37:d3:82:db:ac:ae:2e:05:ad:03:bf:1f:09:5c:eb: 48:f9:fa:79 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDcIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI0NTBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcxQUREMkFBMTQwRTk4 MDM3QkIyNjNCODM5NjcyNTFDMEU0MUFEREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7G1C1LEZQZT2yk56wS2QlAYcpHi+j7gbMjgKfTpiGqyr3yMQs InghoMU3qjR2B0ishyVWd0Oz8IKoIRSMaZ6ovMT8hLX0bm/WDIXL8YVDyaIbs/Iu ILWzNBFz/oErApuI5LO4WNXi59RZmnE3XTJWuuOA3xYKRAoF7jEh0I+1UxFlzVXS SQQyaN8ALfLFWU2jKezk74IxRx3j5yXZkTc/y9MwTHkYmWrJlkw8MO7u2RN/cRRJ 8dBD3fnBLrHcIrYZL6/qFPmAwmlfTT1rB+IWDkgXV/lfUHLzfhIvOQ0jGQCxGBTl HfyE9wqpdae/La7nPN4ea+GIjACKPUS4eZDPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUca3SqhQOmAN7smO4OWclHA5BrdowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NhM1NxaFFPbUFON3NtTzRPV2NsSEE1QnJkby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYoQwDQYJKoZIhvcNAQELBQADggEBAIyDDMXgA3goEbkuruES80zj40Wl 1VRvZ4bu0AWdCRdIJBrLhS4J4HT6xmy2kY70F3MxGi3ZXJskioqmwh1D/1VE4y09 HB1q8jg+OSQXeqLeHMptXvOEgOehqHoaJ4V7RXc4i3jOdk6N4csERUoyVc68Uoko A6f1pnjAiMHtnsXilH+TwATf2EJXSH+2RDAZf54WY7YvNrDsXKIrIBkAI8MbY1Vx uE/7ugmp9HwySL3C3nh0IqqMJVD3jXR+v3eesAU3m2ko/Flr+OlDZQ1tZ18pIjBW eNDSc3X0WJ8ALQH5tPVQJiPOlJL4+hMMoTfTgtusri4FrQO/Hwlc60j5+nk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:20 2025 by rpki-client