$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lxVqRik30_fdwImBQz4KRLZCbCc.roa File: lxVqRik30_fdwImBQz4KRLZCbCc.roa (raw, json) Hash identifier: l2KH0eM7jel7/vocmu/ZfG6tjQYXhIETsI6jFT4mi1U= Subject key identifier: 97:15:6A:46:29:37:D3:F7:DD:C0:89:81:43:3E:0A:44:B6:42:6C:27 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CD5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lxVqRik30_fdwImBQz4KRLZCbCc.roa Signing time: Tue 01 Apr 2025 02:09:15 +0000 ROA not before: Tue 01 Apr 2025 02:09:15 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.101.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3285 (0xcd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:15 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=97156A462937D3F7DDC08981433E0A44B6426C27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e7:71:d5:e4:d9:f7:7b:50:64:75:6d:96:fb: a3:86:1a:a5:3c:2b:2f:95:0a:0c:02:65:ce:18:19: 8c:76:11:d2:35:0b:ec:5e:ea:5a:ec:65:90:e6:00: 6e:cc:4c:cf:bc:94:f2:5a:df:78:43:93:f0:7e:11: 57:b5:21:e8:bb:a4:e7:50:11:e5:75:0f:21:bc:8e: 8f:c5:d0:fd:e1:a1:0d:02:ff:84:b9:8d:69:be:d4: 63:08:ce:99:f4:52:97:be:46:0f:df:7b:79:b3:c6: a5:42:7f:a5:ce:5d:40:53:08:ef:63:42:da:9f:ad: a9:df:79:e2:a0:6f:71:a6:5b:9d:2a:5d:48:2b:97: b3:5d:6e:67:74:9b:1f:9d:00:a8:53:05:f1:be:1d: e0:c0:e7:cc:6d:d8:b6:f6:0b:85:28:d9:6d:34:dc: eb:28:1e:74:42:09:d6:a5:3a:aa:92:2e:ae:dd:5c: b6:78:c3:41:96:7e:e6:18:79:b7:1a:0a:e2:4a:ae: 6f:50:16:81:e1:e8:e7:ea:f3:0e:29:48:7b:63:42: f3:59:41:5c:4c:36:89:78:10:4c:aa:58:81:83:49: d3:40:9a:a8:1e:85:56:3e:61:e9:d5:6b:1e:ae:ae: 47:3a:7c:23:7b:f0:95:b5:8a:18:b6:e9:46:b5:3f: 54:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:15:6A:46:29:37:D3:F7:DD:C0:89:81:43:3E:0A:44:B6:42:6C:27 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lxVqRik30_fdwImBQz4KRLZCbCc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.101.128.0/17 Signature Algorithm: sha256WithRSAEncryption 63:16:34:92:75:c5:cf:78:98:7c:ff:95:e6:dd:60:10:3b:5b: b7:23:fc:cf:37:a0:6d:8d:4d:cf:90:c8:83:ef:52:d9:94:c5: 8f:ae:3a:a9:f7:b1:28:97:0d:c6:9a:06:4a:5b:d5:81:e8:0d: f7:e0:5c:84:9b:59:ab:13:ee:a0:bb:ca:0a:73:06:01:ac:0f: 19:df:23:2d:c8:e3:32:90:34:26:50:e9:af:3c:0d:0d:fe:80: 15:39:38:94:ef:0b:26:4f:bc:c5:4b:31:f5:bc:e0:fe:66:5a: d4:69:8d:c0:40:c4:6a:7c:c4:ec:dd:c5:63:86:0b:3b:56:58: c1:70:46:20:de:15:32:5c:84:69:43:82:12:b7:f4:d1:be:00: 8b:7f:64:85:cf:c2:6d:32:dc:66:c3:e6:ff:90:5d:29:44:85: 8b:01:9d:c7:72:16:ae:4c:d3:56:50:f9:05:ad:26:75:fb:fe: 87:c3:aa:01:64:be:c2:87:d3:61:48:08:94:d7:c7:1c:9d:66: 47:8b:2c:5c:4e:82:98:7d:55:d2:bb:43:f3:6e:ee:5a:ad:af: 95:50:ba:25:32:b8:b0:45:25:78:f0:13:13:2a:0d:48:5f:bd: bc:8a:45:25:0d:0f:c4:bb:fb:84:6d:3f:78:a7:bd:6d:89:e1: f2:d0:42:75 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDNUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MTVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk3MTU2QTQ2MjkzN0Qz RjdEREMwODk4MTQzM0UwQTQ0QjY0MjZDMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB53HV5Nn3e1BkdW2W+6OGGqU8Ky+VCgwCZc4YGYx2EdI1C+xe 6lrsZZDmAG7MTM+8lPJa33hDk/B+EVe1Iei7pOdQEeV1DyG8jo/F0P3hoQ0C/4S5 jWm+1GMIzpn0Upe+Rg/fe3mzxqVCf6XOXUBTCO9jQtqfranfeeKgb3GmW50qXUgr l7Ndbmd0mx+dAKhTBfG+HeDA58xt2Lb2C4Uo2W003OsoHnRCCdalOqqSLq7dXLZ4 w0GWfuYYebcaCuJKrm9QFoHh6Ofq8w4pSHtjQvNZQVxMNol4EEyqWIGDSdNAmqge hVY+YenVax6urkc6fCN78JW1ihi26Ua1P1TZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlxVqRik30/fdwImBQz4KRLZCbCcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2x4VnFSaWszMF9mZHdJbUJRejRLUkxaQ2JDYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcxZYAwDQYJKoZIhvcNAQELBQADggEBAGMWNJJ1xc94mHz/lebdYBA7W7cj /M83oG2NTc+QyIPvUtmUxY+uOqn3sSiXDcaaBkpb1YHoDffgXISbWasT7qC7ygpz BgGsDxnfIy3I4zKQNCZQ6a88DQ3+gBU5OJTvCyZPvMVLMfW84P5mWtRpjcBAxGp8 xOzdxWOGCztWWMFwRiDeFTJchGlDghK39NG+AIt/ZIXPwm0y3GbD5v+QXSlEhYsB ncdyFq5M01ZQ+QWtJnX7/ofDqgFkvsKH02FICJTXxxydZkeLLFxOgph9VdK7Q/Nu 7lqtr5VQuiUyuLBFJXjwExMqDUhfvbyKRSUND8S7+4RtP3invW2J4fLQQnU= -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:23 2025 by rpki-client