$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/o0ph69dwh7gqMdw_VI-8z3h0TFY.roa File: o0ph69dwh7gqMdw_VI-8z3h0TFY.roa (raw, json) Hash identifier: 1EoTt0Q2/vyQlMZHogWAYxVHCey7BmG5A8jacyjCzZU= Subject key identifier: A3:4A:61:EB:D7:70:87:B8:2A:31:DC:3F:54:8F:BC:CF:78:74:4C:56 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CAA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/o0ph69dwh7gqMdw_VI-8z3h0TFY.roa Signing time: Tue 01 Apr 2025 02:05:38 +0000 ROA not before: Tue 01 Apr 2025 02:05:38 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3242 (0xcaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:05:38 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A34A61EBD77087B82A31DC3F548FBCCF78744C56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:33:e0:a7:af:bc:9f:c5:3a:35:ba:ff:e2:bb: 4d:3b:d0:d8:26:67:68:f8:ce:7f:dc:45:0e:ed:47: 5b:2e:fd:d4:d9:4f:dc:30:a1:0d:7b:6c:da:da:81: 76:82:b5:4e:25:19:d3:90:01:b8:44:86:8d:88:94: 60:12:31:14:0e:eb:48:c7:c0:11:7d:0c:a1:ce:0d: b9:81:f8:9b:19:87:2a:d5:d9:a7:e2:d1:d2:69:bd: 2f:62:9c:08:82:8e:ff:2f:87:62:0b:13:83:00:f6: 7d:d0:b6:af:d6:96:a8:9c:3a:5b:a7:26:fa:1a:f5: 05:72:a7:c4:f8:57:d8:41:c8:f9:50:a9:95:be:31: 39:75:a2:c0:fb:d1:8a:3e:97:d1:aa:53:65:1e:e4: 13:83:86:77:55:a5:5c:0c:90:ed:e1:b7:89:f8:13: 8e:b9:87:e4:58:7f:b8:f3:92:41:66:7e:b2:5e:98: 85:1f:93:5f:c6:b6:d2:2c:af:a1:c4:79:94:ec:7e: ec:f9:2e:01:cb:af:3c:8c:8c:fd:f3:c8:7b:d9:a0: d8:ea:7e:26:a3:fb:a5:e5:e3:51:e4:64:62:76:1a: aa:b3:62:c4:73:67:c1:b7:e2:e8:b5:6f:72:8c:87: 6c:7d:17:64:e9:af:43:70:7e:44:70:9d:7f:cd:38: 06:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:4A:61:EB:D7:70:87:B8:2A:31:DC:3F:54:8F:BC:CF:78:74:4C:56 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/o0ph69dwh7gqMdw_VI-8z3h0TFY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.10.0/23 Signature Algorithm: sha256WithRSAEncryption e3:07:19:a2:e5:17:70:37:e8:b2:f0:23:84:23:ad:52:38:35: 59:00:ad:35:06:37:16:b4:05:b2:7a:37:b0:43:35:f4:79:42: dc:bf:f0:55:06:37:cd:0b:33:6d:99:4f:23:ad:07:66:51:80: 2c:de:79:c0:f9:46:7b:e2:db:b7:ae:26:f1:cf:2d:3d:fd:10: 25:8b:a6:02:31:08:ee:51:19:2a:74:33:a6:e2:fa:5b:29:0f: 7b:9a:3b:69:f9:85:10:c4:32:e2:22:ad:29:02:42:8e:cf:57: 12:0e:92:f3:b2:87:aa:13:db:e2:ba:c6:89:a1:ba:50:5b:d0: a5:39:1e:b2:65:6e:a0:58:ae:49:c1:12:bf:19:5d:76:cc:c6: e3:62:25:3f:41:43:20:5b:99:0c:52:a1:86:09:3e:3d:7c:b6: 70:5f:d4:e5:95:bc:79:63:4d:80:a8:de:b5:25:38:3a:c1:3d: 00:e8:1f:d7:0d:55:e7:73:88:c1:6e:6c:e4:66:f9:ab:63:be: f7:ed:77:b5:4c:c2:9e:e9:9f:bb:5a:24:e4:97:7f:8d:0c:bb: bb:80:cc:18:8b:6d:e0:5b:9f:d1:3b:19:59:a4:8e:3f:6f:ec: 53:d3:6d:8e:a2:a9:9d:fd:1c:5d:fa:b0:31:90:6c:33:53:8c: 51:7f:a2:46 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDKowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA1MzhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEEzNEE2MUVCRDc3MDg3 QjgyQTMxREMzRjU0OEZCQ0NGNzg3NDRDNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkM+Cnr7yfxTo1uv/iu0070NgmZ2j4zn/cRQ7tR1su/dTZT9ww oQ17bNragXaCtU4lGdOQAbhEho2IlGASMRQO60jHwBF9DKHODbmB+JsZhyrV2afi 0dJpvS9inAiCjv8vh2ILE4MA9n3Qtq/WlqicOlunJvoa9QVyp8T4V9hByPlQqZW+ MTl1osD70Yo+l9GqU2Ue5BODhndVpVwMkO3ht4n4E465h+RYf7jzkkFmfrJemIUf k1/GttIsr6HEeZTsfuz5LgHLrzyMjP3zyHvZoNjqfiaj+6Xl41HkZGJ2GqqzYsRz Z8G34ui1b3KMh2x9F2Tpr0NwfkRwnX/NOAbDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUo0ph69dwh7gqMdw/VI+8z3h0TFYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L28wcGg2OWR3aDdncU1kd19WSS04ejNoMFRGWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYAowDQYJKoZIhvcNAQELBQADggEBAOMHGaLlF3A36LLwI4QjrVI4NVkA rTUGNxa0BbJ6N7BDNfR5Qty/8FUGN80LM22ZTyOtB2ZRgCzeecD5Rnvi27euJvHP LT39ECWLpgIxCO5RGSp0M6bi+lspD3uaO2n5hRDEMuIirSkCQo7PVxIOkvOyh6oT 2+K6xomhulBb0KU5HrJlbqBYrknBEr8ZXXbMxuNiJT9BQyBbmQxSoYYJPj18tnBf 1OWVvHljTYCo3rUlODrBPQDoH9cNVedziMFubORm+atjvvftd7VMwp7pn7taJOSX f40Mu7uAzBiLbeBbn9E7GVmkjj9v7FPTbY6iqZ39HF36sDGQbDNTjFF/okY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:10 2025 by rpki-client