$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/jAs_EDsCmexN-USl63UNmHaGd5g.roa File: jAs_EDsCmexN-USl63UNmHaGd5g.roa (raw, json) Hash identifier: HHd8uoV6mivBNNLeuq5MIKL8O94junQXUPthuNhCsUg= Subject key identifier: 8C:0B:3F:10:3B:02:99:EC:4D:F9:44:A5:EB:75:0D:98:76:86:77:98 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B69 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jAs_EDsCmexN-USl63UNmHaGd5g.roa Signing time: Tue 01 Apr 2025 01:33:28 +0000 ROA not before: Tue 01 Apr 2025 01:33:28 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.103.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2921 (0xb69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:28 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=8C0B3F103B0299EC4DF944A5EB750D9876867798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:af:ba:9f:6b:0e:44:e5:dd:2e:ee:3a:a1:b8: ee:fb:69:57:ed:94:3b:54:f7:e3:bb:66:e3:23:8a: 01:45:e3:3b:8c:a2:77:86:2f:79:b1:95:f1:e5:d5: 22:74:0a:97:0c:b6:8a:1c:0d:60:b0:19:71:bb:88: 53:41:29:7c:79:ec:ab:89:dc:2c:8f:73:62:f8:a0: b0:14:c7:38:be:8d:9a:ff:a2:16:5d:a2:a6:0f:a7: 06:73:4e:2f:c8:e5:5b:bb:34:53:c3:6f:bf:4d:9a: c0:1e:80:91:0e:63:fb:4c:17:8e:ed:a1:df:22:bf: 4b:55:8b:13:ef:84:6d:81:8d:9a:0a:91:5b:77:54: 04:c4:ba:b5:ec:82:6f:5a:74:7c:91:20:1c:49:7f: c1:d4:b3:29:13:59:17:bf:f2:6f:f7:e2:00:a1:d1: 77:96:df:5b:6c:f5:4c:2b:00:8d:ef:10:e2:b6:2d: e7:96:c2:39:40:3d:d5:aa:4c:97:e3:23:f2:87:73: 8e:f7:77:26:ea:2b:b9:a6:1f:4f:0c:dd:cd:fe:16: eb:ce:5d:54:eb:89:a7:8d:d6:bd:85:62:12:3c:e7: b9:2a:a2:df:1f:3b:e7:32:e2:96:cb:0e:8f:00:c3: 81:89:f5:e4:7e:0a:f8:b3:36:ff:a7:9e:d2:a0:fe: c7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0B:3F:10:3B:02:99:EC:4D:F9:44:A5:EB:75:0D:98:76:86:77:98 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jAs_EDsCmexN-USl63UNmHaGd5g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.103.24.0/21 Signature Algorithm: sha256WithRSAEncryption c5:14:ff:fe:a4:7f:1f:b7:75:d5:5f:e1:3d:e0:bc:e7:0b:e5: e3:80:b7:8e:ba:8e:1a:08:12:fa:95:5d:51:ec:ed:75:71:21: 05:e0:58:d4:19:90:92:14:9f:3b:6c:36:59:28:e7:32:13:4e: 82:8a:0a:71:72:bd:70:09:cd:5a:91:fc:20:d2:a8:fd:e0:6d: 69:4e:86:1c:23:a0:94:59:23:d3:75:e8:00:88:48:12:03:ad: 37:d7:99:88:15:3d:74:66:2e:d0:f2:43:4f:f1:b7:fb:04:69: 4a:80:08:04:e1:01:ed:2d:2d:ef:e5:23:ef:ab:41:ad:89:af: 8a:bf:21:42:a0:58:b8:1c:8a:92:d8:14:ec:b6:9a:5a:9b:0a: 2d:d2:9b:53:40:53:84:42:a9:db:74:de:9f:ff:a7:d0:e6:bc: 9f:81:d3:a3:c5:73:70:4c:b1:a0:63:f8:ce:e0:1a:2a:ca:c5: da:7a:8b:a0:b9:70:00:5e:b8:17:e8:32:a7:91:d0:08:28:e2: 70:b9:6b:cc:f1:85:a0:68:d6:1c:20:11:c9:0b:2d:13:7a:34: 4e:52:6d:17:3d:01:eb:18:49:a4:d6:8d:e8:b7:8a:0c:c2:29: e0:a0:b6:a0:11:c9:d2:e8:31:75:7e:a8:89:a8:a1:19:df:34: a3:38:a6:59 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC2kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMjhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDhDMEIzRjEwM0IwMjk5 RUM0REY5NDRBNUVCNzUwRDk4NzY4Njc3OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCWr7qfaw5E5d0u7jqhuO77aVftlDtU9+O7ZuMjigFF4zuMoneG L3mxlfHl1SJ0CpcMtoocDWCwGXG7iFNBKXx57KuJ3CyPc2L4oLAUxzi+jZr/ohZd oqYPpwZzTi/I5Vu7NFPDb79NmsAegJEOY/tMF47tod8iv0tVixPvhG2BjZoKkVt3 VATEurXsgm9adHyRIBxJf8HUsykTWRe/8m/34gCh0XeW31ts9UwrAI3vEOK2LeeW wjlAPdWqTJfjI/KHc473dybqK7mmH08M3c3+FuvOXVTriaeN1r2FYhI857kqot8f O+cy4pbLDo8Aw4GJ9eR+CvizNv+nntKg/sclAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjAs/EDsCmexN+USl63UNmHaGd5gwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2pBc19FRHNDbWV4Ti1VU2w2M1VObUhhR2Q1Zy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxZxgwDQYJKoZIhvcNAQELBQADggEBAMUU//6kfx+3ddVf4T3gvOcL5eOA t466jhoIEvqVXVHs7XVxIQXgWNQZkJIUnztsNlko5zITToKKCnFyvXAJzVqR/CDS qP3gbWlOhhwjoJRZI9N16ACISBIDrTfXmYgVPXRmLtDyQ0/xt/sEaUqACAThAe0t Le/lI++rQa2Jr4q/IUKgWLgcipLYFOy2mlqbCi3Sm1NAU4RCqdt03p//p9DmvJ+B 06PFc3BMsaBj+M7gGirKxdp6i6C5cABeuBfoMqeR0Ago4nC5a8zxhaBo1hwgEckL LRN6NE5SbRc9AesYSaTWjei3igzCKeCgtqARydLoMXV+qImooRnfNKM4plk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:37:43 2025 by rpki-client