$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hZ2CJG9yISItcu1k9HZzw_nl7Ko.roa File: hZ2CJG9yISItcu1k9HZzw_nl7Ko.roa (raw, json) Hash identifier: VX1Drizkd+DrKoVyVHNHJbmxdDSN0elh1IcbFM/MaCg= Subject key identifier: 85:9D:82:24:6F:72:21:22:2D:72:ED:64:F4:76:73:C3:F9:E5:EC:AA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DF6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hZ2CJG9yISItcu1k9HZzw_nl7Ko.roa Signing time: Tue 01 Apr 2025 02:29:09 +0000 ROA not before: Tue 01 Apr 2025 02:29:09 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3574 (0xdf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:29:09 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=859D82246F7221222D72ED64F47673C3F9E5ECAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e0:da:35:cc:e6:23:48:4e:54:e7:7b:51:e7: 09:ee:d2:22:f4:29:a0:88:31:cc:71:3d:17:75:1c: 5f:77:7e:92:9d:b2:5d:30:bf:c5:c3:6b:37:22:0c: e6:1a:e5:c5:07:87:fb:9a:19:cf:cc:95:8b:e9:ad: 24:58:6f:36:05:a3:cc:d5:f1:27:48:9e:f2:92:4e: 65:52:38:e4:cd:f2:8d:89:f4:b0:c5:a7:ac:fa:59: db:f4:76:23:c3:30:e3:2f:7a:d9:95:04:77:c3:c5: 70:3d:3e:4b:aa:e0:f3:a1:39:91:0e:d7:b1:eb:1c: b9:fc:1f:68:73:91:e5:77:21:bf:45:b9:58:ef:e1: 4c:60:7c:f1:08:29:84:97:db:ce:5b:30:2c:9d:b9: c0:22:95:27:ca:1a:20:8b:ee:eb:9c:5c:1f:68:f9: 21:7d:d5:e5:3c:23:d8:fd:35:46:5e:a3:93:b1:eb: 58:95:3b:3b:0a:d6:d2:47:f3:a8:98:0b:d9:88:ae: e3:a7:68:47:17:31:d4:d4:ef:9c:d9:6e:e2:56:b3: 88:d0:48:ed:af:94:62:86:fa:7a:13:93:aa:ec:9c: 7c:df:be:7b:2f:61:7b:0b:70:c3:72:74:30:57:d5: 8a:45:88:94:78:d8:e1:87:cd:9e:13:86:7a:7f:05: 69:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9D:82:24:6F:72:21:22:2D:72:ED:64:F4:76:73:C3:F9:E5:EC:AA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hZ2CJG9yISItcu1k9HZzw_nl7Ko.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.4.0/22 Signature Algorithm: sha256WithRSAEncryption a1:02:1c:66:99:6b:6d:24:e4:93:1b:db:7a:a6:af:96:ae:b3: 53:a9:bf:49:f2:10:a7:b3:49:c4:16:fe:71:47:1c:22:f7:5b: e1:a4:57:17:04:f9:62:38:c3:6e:b6:c8:71:3a:7b:b3:99:e2: e5:b3:99:39:a7:18:c2:63:f9:fc:ac:09:a8:e6:c2:5f:26:f1: 9a:7b:43:69:27:31:15:a4:47:1f:0f:64:53:7d:ac:df:f7:c1: f2:e5:4b:f0:c1:72:ef:1a:52:f6:50:05:cc:9c:e4:19:26:14: 07:1f:a5:76:58:d7:63:4d:09:63:8f:8b:9d:41:17:f6:6d:0a: d8:35:11:b9:ed:b6:79:ec:3d:fe:b1:28:e3:43:29:b4:f8:90: 61:4a:8d:39:04:fa:6c:f4:2f:5c:9b:5c:ed:ee:cf:b3:b9:7c: 04:87:d1:19:10:65:93:a8:38:b0:23:5a:85:33:33:ed:4c:04: 25:81:8a:53:eb:24:ce:6c:92:85:64:6c:4b:48:85:b1:2c:82: ef:ca:19:6a:9f:14:ab:97:80:47:05:08:a0:44:a8:b3:16:2c: 59:b6:40:79:d6:8b:93:46:10:47:8e:bb:34:8a:04:76:40:6a: 04:a4:13:60:8f:e0:63:38:93:77:c2:01:d2:6b:e3:2b:bb:fc: d0:3b:22:95 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDfYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI5MDlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg1OUQ4MjI0NkY3MjIx MjIyRDcyRUQ2NEY0NzY3M0MzRjlFNUVDQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI4No1zOYjSE5U53tR5wnu0iL0KaCIMcxxPRd1HF93fpKdsl0w v8XDazciDOYa5cUHh/uaGc/MlYvprSRYbzYFo8zV8SdInvKSTmVSOOTN8o2J9LDF p6z6Wdv0diPDMOMvetmVBHfDxXA9Pkuq4POhOZEO17HrHLn8H2hzkeV3Ib9FuVjv 4UxgfPEIKYSX285bMCyducAilSfKGiCL7uucXB9o+SF91eU8I9j9NUZeo5Ox61iV OzsK1tJH86iYC9mIruOnaEcXMdTU75zZbuJWs4jQSO2vlGKG+noTk6rsnHzfvnsv YXsLcMNydDBX1YpFiJR42OGHzZ4Thnp/BWntAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhZ2CJG9yISItcu1k9HZzw/nl7KowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2haMkNKRzl5SVNJdGN1MWs5SFp6d19ubDdLby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxaAQwDQYJKoZIhvcNAQELBQADggEBAKECHGaZa20k5JMb23qmr5aus1Op v0nyEKezScQW/nFHHCL3W+GkVxcE+WI4w262yHE6e7OZ4uWzmTmnGMJj+fysCajm wl8m8Zp7Q2knMRWkRx8PZFN9rN/3wfLlS/DBcu8aUvZQBcyc5BkmFAcfpXZY12NN CWOPi51BF/ZtCtg1EbnttnnsPf6xKONDKbT4kGFKjTkE+mz0L1ybXO3uz7O5fASH 0RkQZZOoOLAjWoUzM+1MBCWBilPrJM5skoVkbEtIhbEsgu/KGWqfFKuXgEcFCKBE qLMWLFm2QHnWi5NGEEeOuzSKBHZAagSkE2CP4GM4k3fCAdJr4yu7/NA7IpU= -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:34 2025 by rpki-client