$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/gPeD0ssbRfOo6EF241vte3eV1XI.roa File: gPeD0ssbRfOo6EF241vte3eV1XI.roa (raw, json) Hash identifier: YQLPtUvXRGJSLoiPmquG4RaM0XC0Z4CsPCJaTQeyTVg= Subject key identifier: 80:F7:83:D2:CB:1B:45:F3:A8:E8:41:76:E3:5B:ED:7B:77:95:D5:72 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D61 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gPeD0ssbRfOo6EF241vte3eV1XI.roa Signing time: Tue 01 Apr 2025 02:19:16 +0000 ROA not before: Tue 01 Apr 2025 02:19:16 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3425 (0xd61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:19:16 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=80F783D2CB1B45F3A8E84176E35BED7B7795D572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:46:16:4e:31:44:e0:f4:93:4c:0d:05:aa:ae: 8f:c4:11:d2:5b:49:2f:1c:d9:5d:b0:7f:db:d5:26: 60:be:3b:b0:61:0f:3a:b8:3a:e3:ea:dc:ad:79:0a: 45:21:22:f6:42:e0:4e:d0:e8:4c:c7:20:42:10:e3: 25:5f:29:81:8c:93:d1:3e:bb:59:c8:ae:d1:f7:7e: 3e:f6:5a:04:5d:7b:cf:01:ea:e5:40:37:9d:78:38: c6:7f:54:ee:32:e6:51:38:51:1d:63:f3:d6:5c:ec: 73:01:56:ea:a8:e5:84:e5:22:ae:37:b4:70:d7:b0: 13:75:58:f5:7d:0f:b4:04:2e:fd:18:fd:52:2e:bc: 90:10:bd:8b:46:24:70:32:e4:28:cf:2d:b5:2f:04: d9:a9:e9:3d:1f:3f:b1:7a:ff:66:61:f8:27:e0:5f: a4:ec:09:92:ce:2e:7c:a3:12:37:97:fe:8f:f2:be: fe:9a:67:5b:2f:b0:fa:d3:c0:67:33:d9:47:65:ef: 04:52:84:46:17:83:58:e4:6b:fe:ed:24:c0:e6:54: b3:49:e4:f1:3f:0b:74:dd:fb:9f:77:0b:b3:06:41: 19:34:87:3f:78:81:5f:e6:ca:c9:fa:b9:0f:72:90: a1:62:4e:4b:1f:64:15:3a:8a:cb:98:c0:cc:05:f8: 8a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F7:83:D2:CB:1B:45:F3:A8:E8:41:76:E3:5B:ED:7B:77:95:D5:72 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gPeD0ssbRfOo6EF241vte3eV1XI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.254.0/24 Signature Algorithm: sha256WithRSAEncryption 91:a1:78:a0:f2:77:cc:7d:e2:77:b0:f3:1a:19:d1:6e:d6:15: ee:a0:ad:2e:e1:ae:8f:01:ab:0f:cd:8f:6b:26:9e:0a:57:2c: d6:d3:fe:2f:72:ce:f3:e2:c2:c9:73:83:a6:6b:5a:f6:56:31: 5c:9e:a6:f9:f9:1d:ca:51:f6:72:dc:05:e1:f4:ba:db:24:a7: 83:24:78:7f:26:d3:16:18:9c:58:61:80:34:d9:2c:c9:9f:61: 0c:b2:02:e0:b2:f9:10:e9:fc:c6:7d:01:1f:91:26:42:47:42: 2b:1d:49:9e:c6:11:bb:68:8f:07:ee:27:71:6b:82:c0:82:6e: 82:2a:e1:c1:39:ec:f9:22:3d:5d:38:9b:34:3c:ee:00:65:8d: f8:ee:9e:eb:b9:01:80:b3:7e:41:86:5c:32:18:b9:9e:04:a5: 6e:df:47:a5:50:b0:e9:66:10:af:60:34:7f:76:99:1c:ff:c2: 5c:d2:ed:da:6c:b1:52:ec:4a:fa:86:41:34:18:dc:2e:8e:27: dd:50:55:45:18:bb:67:19:fe:0b:10:ff:2e:b7:aa:28:f2:d9: 7a:55:f0:a5:0f:93:59:5b:3d:5c:f3:d0:80:37:42:64:e2:79: 17:f7:b5:bc:ee:1b:aa:2c:de:6d:8d:b6:82:bf:f2:47:c9:43: 6f:d0:6a:5b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE5MTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDgwRjc4M0QyQ0IxQjQ1 RjNBOEU4NDE3NkUzNUJFRDdCNzc5NUQ1NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnRhZOMUTg9JNMDQWqro/EEdJbSS8c2V2wf9vVJmC+O7BhDzq4 OuPq3K15CkUhIvZC4E7Q6EzHIEIQ4yVfKYGMk9E+u1nIrtH3fj72WgRde88B6uVA N514OMZ/VO4y5lE4UR1j89Zc7HMBVuqo5YTlIq43tHDXsBN1WPV9D7QELv0Y/VIu vJAQvYtGJHAy5CjPLbUvBNmp6T0fP7F6/2Zh+CfgX6TsCZLOLnyjEjeX/o/yvv6a Z1svsPrTwGcz2Udl7wRShEYXg1jka/7tJMDmVLNJ5PE/C3Td+593C7MGQRk0hz94 gV/mysn6uQ9ykKFiTksfZBU6isuYwMwF+Ir/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUgPeD0ssbRfOo6EF241vte3eV1XIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2dQZUQwc3NiUmZPbzZFRjI0MXZ0ZTNlVjFYSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaP4wDQYJKoZIhvcNAQELBQADggEBAJGheKDyd8x94new8xoZ0W7WFe6g rS7hro8Bqw/Nj2smngpXLNbT/i9yzvPiwslzg6ZrWvZWMVyepvn5HcpR9nLcBeH0 utskp4MkeH8m0xYYnFhhgDTZLMmfYQyyAuCy+RDp/MZ9AR+RJkJHQisdSZ7GEbto jwfuJ3FrgsCCboIq4cE57PkiPV04mzQ87gBljfjunuu5AYCzfkGGXDIYuZ4EpW7f R6VQsOlmEK9gNH92mRz/wlzS7dpssVLsSvqGQTQY3C6OJ91QVUUYu2cZ/gsQ/y63 qijy2XpV8KUPk1lbPVzz0IA3QmTieRf3tbzuG6os3m2NtoK/8kfJQ2/Qals= -----END CERTIFICATE-----Generated at Sat Apr 5 17:37:33 2025 by rpki-client