$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/gdT5ivA7PQgfUhguzrQNKxktZL0.roa File: gdT5ivA7PQgfUhguzrQNKxktZL0.roa (raw, json) Hash identifier: P0bfnlxl1dQM6xVY7N4KJSnGl8EpH8hG/Li8uUSgG+8= Subject key identifier: 81:D4:F9:8A:F0:3B:3D:08:1F:52:18:2E:CE:B4:0D:2B:19:2D:64:BD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CD3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gdT5ivA7PQgfUhguzrQNKxktZL0.roa Signing time: Tue 01 Apr 2025 02:09:14 +0000 ROA not before: Tue 01 Apr 2025 02:09:14 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3283 (0xcd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:14 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=81D4F98AF03B3D081F52182ECEB40D2B192D64BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:14:d1:da:20:4a:68:ae:d6:d2:d4:79:40:2f: cf:03:bb:9b:d8:3f:e9:b4:e7:25:a7:aa:36:8d:de: 46:a6:64:56:0d:a7:e6:d8:5a:40:9a:35:df:bb:d5: 60:ed:24:d6:62:61:2c:8e:0e:63:db:83:f4:71:b2: c6:3b:7c:43:2f:69:6e:3c:ae:a2:6e:8a:7d:73:92: 7f:99:50:27:0e:48:a4:b1:32:7d:72:ee:b2:19:21: 86:b0:4b:53:cc:f7:aa:16:46:39:04:88:83:d1:3f: c0:04:96:b8:61:57:d2:5e:57:94:8c:c4:1c:e1:52: a8:16:1a:c1:99:89:c1:5a:29:8d:85:9f:6d:a7:43: 09:ab:e0:11:b1:36:d2:df:29:02:ff:47:b4:13:4b: 26:49:0a:f8:94:51:ec:d5:66:d4:bf:da:2b:aa:e5: a1:f7:03:68:00:58:44:e3:62:d0:6f:22:a7:86:b2: 2f:27:b1:b6:a2:06:27:5e:c2:92:d2:b7:1b:b2:37: 99:88:38:d9:b7:ca:e2:b6:3b:ea:9d:d3:f4:78:44: 00:18:1c:d7:b9:7d:2c:ce:16:2e:d7:41:e0:ed:d5: 30:5d:96:88:9c:6b:9d:22:dc:4c:dd:e1:8e:0e:6c: f4:4f:70:4d:4a:6b:de:6a:ec:7e:f7:c8:6a:b6:12: 0a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D4:F9:8A:F0:3B:3D:08:1F:52:18:2E:CE:B4:0D:2B:19:2D:64:BD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gdT5ivA7PQgfUhguzrQNKxktZL0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.174.0/23 Signature Algorithm: sha256WithRSAEncryption af:db:84:4a:92:db:e9:07:cb:1f:b2:01:07:24:cc:63:a0:10: 27:45:d6:b3:c3:f4:5b:ec:52:fd:a0:c7:7e:12:f3:f7:e2:59: 77:ef:b4:f9:77:c5:35:19:ab:67:08:07:cf:f2:f8:e1:e4:c2: 04:ed:b6:9c:98:1d:41:ab:d7:6f:bd:e7:ce:43:2c:82:39:ce: b6:66:6c:d1:6e:11:fa:99:78:1b:b2:3f:75:b1:5b:88:94:db: 7e:74:12:f5:eb:2d:7a:ec:a7:2a:71:28:98:24:60:12:33:37: 5d:4b:07:b3:02:ad:ae:af:df:a9:cd:a0:9a:fa:2a:e0:01:bf: a7:a4:3c:95:e8:c0:92:ae:b3:0c:da:c8:fa:17:c4:13:3c:07: ea:91:32:30:38:bd:0a:55:f8:d2:1d:0f:0b:27:24:80:09:a1: fa:9d:99:de:5a:0f:bf:9d:62:d4:25:8e:25:2e:5a:1a:ab:82: 3e:86:a2:f2:71:57:9f:ad:96:47:12:f9:bb:84:fb:61:c7:3d: 46:be:a0:ad:75:c8:08:31:78:a7:b5:b9:20:c7:b6:9c:a9:f8: b9:e4:7f:2a:23:70:78:27:85:5e:4a:a5:d8:e3:3c:f8:17:af: ab:77:8d:2d:65:42:b0:71:74:a6:3e:a2:be:e9:b4:3c:c1:1a: bd:16:9f:66 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDNMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MTRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDgxRDRGOThBRjAzQjNE MDgxRjUyMTgyRUNFQjQwRDJCMTkyRDY0QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTFNHaIEportbS1HlAL88Du5vYP+m05yWnqjaN3kamZFYNp+bY WkCaNd+71WDtJNZiYSyODmPbg/RxssY7fEMvaW48rqJuin1zkn+ZUCcOSKSxMn1y 7rIZIYawS1PM96oWRjkEiIPRP8AElrhhV9JeV5SMxBzhUqgWGsGZicFaKY2Fn22n Qwmr4BGxNtLfKQL/R7QTSyZJCviUUezVZtS/2iuq5aH3A2gAWETjYtBvIqeGsi8n sbaiBidewpLStxuyN5mIONm3yuK2O+qd0/R4RAAYHNe5fSzOFi7XQeDt1TBdloic a50i3Ezd4Y4ObPRPcE1Ka95q7H73yGq2EgrvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUgdT5ivA7PQgfUhguzrQNKxktZL0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2dkVDVpdkE3UFFnZlVoZ3V6clFOS3hrdFpMMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaq4wDQYJKoZIhvcNAQELBQADggEBAK/bhEqS2+kHyx+yAQckzGOgECdF 1rPD9FvsUv2gx34S8/fiWXfvtPl3xTUZq2cIB8/y+OHkwgTttpyYHUGr12+9585D LII5zrZmbNFuEfqZeBuyP3WxW4iU2350EvXrLXrspypxKJgkYBIzN11LB7MCra6v 36nNoJr6KuABv6ekPJXowJKuswzayPoXxBM8B+qRMjA4vQpV+NIdDwsnJIAJofqd md5aD7+dYtQljiUuWhqrgj6GovJxV5+tlkcS+buE+2HHPUa+oK11yAgxeKe1uSDH tpyp+LnkfyojcHgnhV5KpdjjPPgXr6t3jS1lQrBxdKY+or7ptDzBGr0Wn2Y= -----END CERTIFICATE-----Generated at Sat Apr 5 17:20:12 2025 by rpki-client