$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lyMs3-eQ54h0oFjBQ6y6O9HZpS4.roa File: lyMs3-eQ54h0oFjBQ6y6O9HZpS4.roa (raw, json) Hash identifier: 6VuuvPjKRRPUwKWmNbzkuxUUKd6XA/n3aRZwH5LUoSw= Subject key identifier: 97:23:2C:DF:E7:90:E7:88:74:A0:58:C1:43:AC:BA:3B:D1:D9:A5:2E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BAC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lyMs3-eQ54h0oFjBQ6y6O9HZpS4.roa Signing time: Tue 01 Apr 2025 01:39:59 +0000 ROA not before: Tue 01 Apr 2025 01:39:59 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2988 (0xbac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:39:59 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=97232CDFE790E78874A058C143ACBA3BD1D9A52E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:41:5d:c3:bb:30:46:5f:f9:26:7d:17:0b:59: 3c:d2:8b:ac:5c:79:fa:af:6b:f0:1c:ee:52:7c:8a: e7:86:9d:e3:41:09:62:3f:5c:82:ae:d7:57:e1:8a: 34:3a:6f:6b:72:93:02:f1:e4:1b:32:88:a8:11:ac: bf:e8:bd:1c:88:83:68:70:1e:90:58:c8:2b:5f:ec: 22:a0:ae:30:46:f2:e5:52:7c:ab:c3:a6:3a:42:92: 37:d8:cc:1f:df:1a:26:7b:04:7a:7d:ef:43:bf:e5: d9:7b:7f:5b:f6:50:85:cc:33:e2:b8:0b:4a:dc:8c: a3:5d:91:de:7c:16:1c:13:6c:47:03:0a:65:c9:27: e0:43:7c:8a:b9:2d:29:74:3b:d6:ae:19:8d:ee:e0: 53:77:1c:e0:71:cb:43:52:41:db:8d:d7:37:58:96: 9b:87:0e:48:92:ba:a0:07:29:0f:8e:7e:fe:b6:d0: 54:45:fd:59:82:36:9e:0f:cc:51:4c:14:e7:22:a5: 47:95:90:71:90:63:73:3e:34:14:24:8c:c9:1c:f1: 4c:9f:fc:38:9b:48:97:d2:e3:89:8e:10:7a:d9:99: e2:bb:54:fa:59:04:ed:e1:b6:5d:b4:e8:9c:05:e3: bf:11:c1:2b:c3:f2:1f:90:5a:16:75:9e:af:e5:2f: 60:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:23:2C:DF:E7:90:E7:88:74:A0:58:C1:43:AC:BA:3B:D1:D9:A5:2E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lyMs3-eQ54h0oFjBQ6y6O9HZpS4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.216.0/24 Signature Algorithm: sha256WithRSAEncryption bf:6f:be:89:b7:e7:6f:b4:56:59:fa:4b:64:94:0a:c4:93:f4: 4c:a7:1e:a2:3e:48:bd:4b:bd:3e:c1:f3:85:59:32:6f:b0:af: 8b:e2:8c:1b:cd:08:72:01:59:0b:b5:d8:f3:e1:7a:27:82:27: 67:50:4c:42:de:ff:45:ac:cd:ff:10:2d:a6:1f:c1:a7:71:5c: b2:a9:2f:49:d4:92:e2:f4:c3:26:de:dc:e9:89:9e:d6:e4:85: 27:2b:a9:be:c3:4d:dc:51:53:0e:c5:3e:77:28:f5:54:95:f6: d8:24:ff:3d:78:7e:61:c2:a5:2f:ed:d6:f4:5f:fd:b3:5f:32: bf:9f:4c:34:ef:54:1e:5d:57:b4:4c:50:91:ff:5e:ba:66:b2: fe:b2:12:f7:0a:30:08:40:40:c5:c3:79:71:70:17:19:31:06: 6f:ab:22:32:6d:fd:08:b5:1f:26:70:f4:25:5d:a8:4b:f3:1a: 1b:03:83:61:e6:b8:55:2e:ee:19:cc:97:45:ce:fe:25:ab:a5: 43:b8:ac:01:c3:ae:f3:04:5c:f8:1b:6d:55:30:5c:f7:57:33: 42:df:df:e0:dc:75:c8:4d:86:64:21:7e:e5:27:db:52:b3:ba: 42:0a:f8:a8:26:f1:e9:92:50:b8:1d:e0:f3:5b:47:23:81:a8: 64:01:72:13 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC6wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM5NTlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk3MjMyQ0RGRTc5MEU3 ODg3NEEwNThDMTQzQUNCQTNCRDFEOUE1MkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaQV3DuzBGX/kmfRcLWTzSi6xcefqva/Ac7lJ8iueGneNBCWI/ XIKu11fhijQ6b2tykwLx5BsyiKgRrL/ovRyIg2hwHpBYyCtf7CKgrjBG8uVSfKvD pjpCkjfYzB/fGiZ7BHp970O/5dl7f1v2UIXMM+K4C0rcjKNdkd58FhwTbEcDCmXJ J+BDfIq5LSl0O9auGY3u4FN3HOBxy0NSQduN1zdYlpuHDkiSuqAHKQ+Ofv620FRF /VmCNp4PzFFMFOcipUeVkHGQY3M+NBQkjMkc8Uyf/DibSJfS44mOEHrZmeK7VPpZ BO3htl206JwF478RwSvD8h+QWhZ1nq/lL2BLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlyMs3+eQ54h0oFjBQ6y6O9HZpS4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2x5TXMzLWVRNTRoMG9GakJRNnk2TzlIWnBTNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxatgwDQYJKoZIhvcNAQELBQADggEBAL9vvom352+0Vln6S2SUCsST9Eyn HqI+SL1LvT7B84VZMm+wr4vijBvNCHIBWQu12PPheieCJ2dQTELe/0Wszf8QLaYf wadxXLKpL0nUkuL0wybe3OmJntbkhScrqb7DTdxRUw7FPnco9VSV9tgk/z14fmHC pS/t1vRf/bNfMr+fTDTvVB5dV7RMUJH/Xrpmsv6yEvcKMAhAQMXDeXFwFxkxBm+r IjJt/Qi1HyZw9CVdqEvzGhsDg2HmuFUu7hnMl0XO/iWrpUO4rAHDrvMEXPgbbVUw XPdXM0Lf3+DcdchNhmQhfuUn21KzukIK+Kgm8emSULgd4PNbRyOBqGQBchM= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:19 2025 by rpki-client