$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/o-MKrGfrdrXwYZ3fpUN8ob6c5Ec.roa File: o-MKrGfrdrXwYZ3fpUN8ob6c5Ec.roa (raw, json) Hash identifier: BDkLAReKhEc6R4uTltvje6tdOKIj9gj+3ckw9h8qTmg= Subject key identifier: A3:E3:0A:AC:67:EB:76:B5:F0:61:9D:DF:A5:43:7C:A1:BE:9C:E4:47 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B0A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/o-MKrGfrdrXwYZ3fpUN8ob6c5Ec.roa Signing time: Fri 31 Jan 2025 01:34:22 +0000 ROA not before: Fri 31 Jan 2025 01:34:22 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 17:04:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:34:22 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=A3E30AAC67EB76B5F0619DDFA5437CA1BE9CE447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ed:fd:73:a5:9e:8d:09:b4:24:80:aa:47:2d: 5e:b6:73:04:15:ef:c3:b7:08:2b:59:3b:cd:7f:ee: 60:de:f2:21:67:20:30:69:dc:12:71:9b:d9:97:16: 71:d9:e1:d7:33:4d:ce:f8:6a:d5:fa:3c:16:c0:ab: 4d:3a:6a:03:ca:e6:cf:b3:bd:63:49:ef:db:5b:28: b0:71:61:59:b5:1b:97:b0:59:0f:7e:a0:b5:cd:7d: f4:5f:2c:21:69:8a:04:9b:7b:b2:4e:65:ea:97:92: da:b1:a1:92:7e:b0:9c:bc:0a:0a:6f:e9:3e:04:55: fb:15:97:0f:57:de:5c:6b:ac:55:36:04:53:18:dd: ab:30:5d:78:77:70:39:88:a2:00:54:6a:35:c1:ad: 34:f5:29:04:53:61:c1:97:a7:c9:08:a8:fb:20:29: e3:8c:aa:dc:83:8f:b9:7a:11:99:3d:68:32:2b:72: 93:6d:a4:b9:cc:d9:f3:2f:b6:f3:60:57:61:0e:1d: e1:d7:1b:4b:1c:bb:3d:3e:28:a9:68:dc:ac:f1:fe: e4:56:5d:bc:c0:f3:c0:d3:b7:f3:a1:57:3f:ea:95: 50:25:7c:f4:d3:94:4f:d4:cf:60:af:de:f2:95:bd: dc:f6:66:b0:29:b6:58:74:ce:fa:61:b3:00:ec:ea: ac:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E3:0A:AC:67:EB:76:B5:F0:61:9D:DF:A5:43:7C:A1:BE:9C:E4:47 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/o-MKrGfrdrXwYZ3fpUN8ob6c5Ec.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.102.0/24 Signature Algorithm: sha256WithRSAEncryption 04:74:0e:93:28:ec:ce:b1:12:ce:af:30:05:d7:96:9d:2c:33: aa:d0:36:b2:7d:9d:af:4e:09:db:40:71:eb:36:f7:19:47:27: 7c:e2:e6:e8:27:12:46:21:5b:7f:a4:d3:5c:a7:50:7f:8a:9f: 42:16:0c:65:6b:3a:fe:18:b2:7d:6c:f2:0b:64:22:75:c0:11: 5d:a0:f8:f2:56:64:c2:05:c6:8e:63:aa:28:49:9f:0c:0b:d1: 95:18:de:fc:bc:96:da:ef:e0:83:4b:89:08:0c:1d:40:3d:48: c4:06:5a:f6:66:1c:83:11:ef:90:20:48:19:84:3f:48:29:7f: ba:02:49:fe:fd:83:ac:82:85:20:e9:5a:eb:bd:82:6a:f1:10: 52:d6:1a:2f:f8:42:e4:17:00:81:f5:0c:97:4d:70:d3:8c:e6: 9f:7f:e9:15:a5:36:4e:53:bb:87:11:83:b8:05:f8:fe:f1:13: 5c:46:5a:0a:5d:78:e3:d6:89:a8:b4:cf:c9:cd:29:a1:36:2b: 77:97:74:a5:ac:ab:05:0d:4b:e6:19:a3:01:fa:e2:00:02:d1: ab:53:07:a4:e2:91:39:28:27:3c:20:45:93:c8:e6:d4:8b:81: 7b:e1:5d:66:11:ca:75:5b:bc:f4:9b:22:8b:45:28:9e:95:45: 50:0a:71:0c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCwowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM0MjJaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEEzRTMwQUFDNjdFQjc2 QjVGMDYxOURERkE1NDM3Q0ExQkU5Q0U0NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCf7f1zpZ6NCbQkgKpHLV62cwQV78O3CCtZO81/7mDe8iFnIDBp 3BJxm9mXFnHZ4dczTc74atX6PBbAq006agPK5s+zvWNJ79tbKLBxYVm1G5ewWQ9+ oLXNffRfLCFpigSbe7JOZeqXktqxoZJ+sJy8Cgpv6T4EVfsVlw9X3lxrrFU2BFMY 3aswXXh3cDmIogBUajXBrTT1KQRTYcGXp8kIqPsgKeOMqtyDj7l6EZk9aDIrcpNt pLnM2fMvtvNgV2EOHeHXG0scuz0+KKlo3Kzx/uRWXbzA88DTt/OhVz/qlVAlfPTT lE/Uz2Cv3vKVvdz2ZrAptlh0zvphswDs6qxBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUo+MKrGfrdrXwYZ3fpUN8ob6c5EcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L28tTUtyR2ZyZHJYd1laM2ZwVU44b2I2YzVFYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYWYwDQYJKoZIhvcNAQELBQADggEBAAR0DpMo7M6xEs6vMAXXlp0sM6rQ NrJ9na9OCdtAces29xlHJ3zi5ugnEkYhW3+k01ynUH+Kn0IWDGVrOv4Ysn1s8gtk InXAEV2g+PJWZMIFxo5jqihJnwwL0ZUY3vy8ltrv4INLiQgMHUA9SMQGWvZmHIMR 75AgSBmEP0gpf7oCSf79g6yChSDpWuu9gmrxEFLWGi/4QuQXAIH1DJdNcNOM5p9/ 6RWlNk5Tu4cRg7gF+P7xE1xGWgpdeOPWiai0z8nNKaE2K3eXdKWsqwUNS+YZowH6 4gAC0atTB6TikTkoJzwgRZPI5tSLgXvhXWYRynVbvPSbIotFKJ6VRVAKcQw= -----END CERTIFICATE-----Generated at Thu Apr 17 19:31:16 2025 by rpki-client