$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iyy5WIDgwokyDVPoiaX3aT02MoM.roa File: iyy5WIDgwokyDVPoiaX3aT02MoM.roa (raw, json) Hash identifier: /bnIToMx1c10EQe5H+JS2OMoQ83inFRhSPpeLJXxzgs= Subject key identifier: 8B:2C:B9:58:80:E0:C2:89:32:0D:53:E8:89:A5:F7:69:3D:36:32:83 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D85 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iyy5WIDgwokyDVPoiaX3aT02MoM.roa Signing time: Tue 01 Apr 2025 02:21:29 +0000 ROA not before: Tue 01 Apr 2025 02:21:29 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:29 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=8B2CB95880E0C289320D53E889A5F7693D363283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:30:ec:66:40:99:31:a4:11:32:2f:c6:33:7d: 4b:30:a7:25:af:aa:a3:45:06:e9:fb:43:48:44:17: 61:c6:59:04:10:dc:71:d6:d7:f2:aa:02:5c:6c:f9: 1a:8c:df:3c:b2:96:d6:0d:a1:04:1c:a8:6b:36:18: b0:da:91:a8:37:87:e0:8f:17:aa:55:d5:37:93:27: 04:2f:7c:d1:87:2c:35:ee:7b:6c:99:d9:4c:35:37: 6f:03:86:0f:54:49:bd:dc:bd:4a:33:88:4b:0e:8e: 80:00:20:83:07:b8:7f:fe:c9:e0:cd:6b:d9:54:99: 3e:dc:f3:66:f3:7d:50:c4:e1:d3:1a:a3:32:27:df: 56:d5:65:6c:43:3c:43:c5:ed:5b:21:b9:f4:85:00: 73:2c:87:33:05:28:d1:93:41:6e:14:9b:6a:6e:17: f6:ea:e1:1a:a7:07:48:0e:95:f8:14:32:00:22:67: dc:a6:72:a3:5f:90:e5:d4:c3:6e:13:c6:f3:c0:c2: 2d:9c:eb:6c:3d:05:d0:c8:de:ea:a9:98:8c:77:2c: 6c:25:98:e9:61:2f:04:fb:52:5d:5d:cf:91:7a:0d: 8d:95:16:4d:44:98:ec:1e:e7:1f:46:41:4f:f9:db: 04:13:21:ed:b5:52:34:5d:71:d0:fe:1a:a4:b7:62: 7b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2C:B9:58:80:E0:C2:89:32:0D:53:E8:89:A5:F7:69:3D:36:32:83 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iyy5WIDgwokyDVPoiaX3aT02MoM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.80.0/22 Signature Algorithm: sha256WithRSAEncryption cd:49:85:af:d1:27:40:06:46:eb:19:f0:c4:44:d1:aa:a2:51: 7e:a4:70:44:d0:40:2b:b2:60:7e:b1:a7:3f:90:bb:6e:55:32: 95:4b:ec:d2:48:0c:3a:73:1a:88:45:be:c4:82:88:19:b2:4d: 40:92:44:f9:a0:d5:3b:ed:58:14:c7:0e:bd:40:e6:94:eb:af: 6d:18:d1:8e:af:53:ed:d9:e4:97:dd:a3:11:33:da:b0:dd:b0: 8f:ef:a5:ee:ba:c1:7f:5d:7c:e5:78:df:96:87:a3:92:4e:d5: 93:45:67:f2:86:04:55:a5:aa:2d:8e:9c:4e:bb:dc:a2:2c:b2: ca:99:bc:54:11:65:41:13:c3:4a:80:c2:c1:ad:0e:4a:02:2b: 33:20:07:f6:d7:37:70:9b:94:d2:3c:e5:c6:fa:c6:23:c3:54: 88:86:18:af:92:68:bb:06:00:8c:3e:da:e4:df:fa:ff:28:e4: d1:d0:e7:c0:f5:69:1a:ed:19:96:d6:18:df:2a:cc:81:2f:07: b5:06:4a:21:d1:0e:e8:34:cd:64:a3:a4:8f:33:87:74:62:a7: 63:92:f0:c3:e4:87:58:fd:88:4a:40:11:49:eb:79:ec:52:fb: 39:0f:ff:15:52:71:23:cd:ad:d3:3a:65:33:7d:c8:7e:6e:b9: 18:d8:ee:06 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMjlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDhCMkNCOTU4ODBFMEMy ODkzMjBENTNFODg5QTVGNzY5M0QzNjMyODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnMOxmQJkxpBEyL8YzfUswpyWvqqNFBun7Q0hEF2HGWQQQ3HHW 1/KqAlxs+RqM3zyyltYNoQQcqGs2GLDakag3h+CPF6pV1TeTJwQvfNGHLDXue2yZ 2Uw1N28Dhg9USb3cvUoziEsOjoAAIIMHuH/+yeDNa9lUmT7c82bzfVDE4dMaozIn 31bVZWxDPEPF7VshufSFAHMshzMFKNGTQW4Um2puF/bq4RqnB0gOlfgUMgAiZ9ym cqNfkOXUw24TxvPAwi2c62w9BdDI3uqpmIx3LGwlmOlhLwT7Ul1dz5F6DY2VFk1E mOwe5x9GQU/52wQTIe21UjRdcdD+GqS3YnsJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiyy5WIDgwokyDVPoiaX3aT02MoMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2l5eTVXSURnd29reURWUG9pYVgzYVQwMk1vTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYlAwDQYJKoZIhvcNAQELBQADggEBAM1Jha/RJ0AGRusZ8MRE0aqiUX6k cETQQCuyYH6xpz+Qu25VMpVL7NJIDDpzGohFvsSCiBmyTUCSRPmg1TvtWBTHDr1A 5pTrr20Y0Y6vU+3Z5JfdoxEz2rDdsI/vpe66wX9dfOV435aHo5JO1ZNFZ/KGBFWl qi2OnE673KIsssqZvFQRZUETw0qAwsGtDkoCKzMgB/bXN3CblNI85cb6xiPDVIiG GK+SaLsGAIw+2uTf+v8o5NHQ58D1aRrtGZbWGN8qzIEvB7UGSiHRDug0zWSjpI8z h3Rip2OS8MPkh1j9iEpAEUnreexS+zkP/xVScSPNrdM6ZTN9yH5uuRjY7gY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:02 2025 by rpki-client