$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/onSSnFU2K0RMHiwXoEuSf8v-nmg.roa File: onSSnFU2K0RMHiwXoEuSf8v-nmg.roa (raw, json) Hash identifier: qmSDWA4fHMf/ok6JKhVbmKhRZDsT7Wrf6JM0405G5n4= Subject key identifier: A2:74:92:9C:55:36:2B:44:4C:1E:2C:17:A0:4B:92:7F:CB:FE:9E:68 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C5C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/onSSnFU2K0RMHiwXoEuSf8v-nmg.roa Signing time: Tue 01 Apr 2025 01:57:28 +0000 ROA not before: Tue 01 Apr 2025 01:57:28 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3164 (0xc5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:57:28 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A274929C55362B444C1E2C17A04B927FCBFE9E68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:00:30:90:14:38:fe:00:96:10:6d:6d:fc: 67:e6:bc:a4:2d:72:00:6b:86:6d:05:f5:94:2e:f7: 6f:2d:fa:04:db:40:3c:3d:1e:eb:17:43:46:f2:2b: 7c:f3:5b:f9:d0:7a:95:b6:59:af:f9:29:79:14:b3: af:54:40:0e:99:f1:27:be:e9:98:58:54:85:c0:8d: cc:03:76:16:07:f7:c0:8d:f2:a2:cd:9e:93:6f:c4: 77:30:d9:49:43:75:bf:43:cd:f4:1a:85:27:0c:61: c7:dd:3c:1d:13:8f:d3:ef:04:60:8e:8c:ca:ed:0d: 35:f4:a3:0b:eb:ff:17:17:b9:c7:0b:93:f8:8a:2f: c7:5a:6f:58:e4:12:51:b5:07:c9:a1:53:61:dd:3b: 5b:61:a4:97:66:be:71:21:95:db:90:e0:16:8e:bc: 33:0c:af:86:81:8e:41:e1:4f:9b:4c:35:a2:3c:41: cc:c2:28:a3:1d:66:91:0e:ac:62:96:9d:bf:09:7f: 19:41:dd:d3:c8:c9:6b:91:78:fe:f4:78:e0:40:71: 03:d8:e3:02:85:aa:1d:3c:87:1e:93:d8:cb:7f:24: 36:fe:6c:0c:ee:10:fa:cf:a8:53:87:c1:78:ac:7a: 6f:ca:8a:30:17:19:25:ea:09:20:52:10:6d:45:f0: 28:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:74:92:9C:55:36:2B:44:4C:1E:2C:17:A0:4B:92:7F:CB:FE:9E:68 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/onSSnFU2K0RMHiwXoEuSf8v-nmg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.240.0/21 Signature Algorithm: sha256WithRSAEncryption 88:e5:7f:6f:31:ed:ef:06:e2:46:d7:40:a4:0d:73:b8:b7:f8: 3a:b2:5c:d0:b8:7e:38:ac:fb:0a:ca:6b:48:04:71:6e:ee:ee: df:07:b6:d8:fd:31:2b:15:57:ee:27:a5:78:c9:0b:01:57:f1: d0:4d:47:49:31:a4:4e:5a:19:af:34:b0:59:35:ed:c3:82:75: ea:16:a8:47:2c:65:3c:dd:d8:9b:a2:38:16:2e:bd:fe:63:cc: 80:7a:72:4a:73:92:1e:42:a8:d4:26:54:3c:78:37:4c:80:32: ae:c7:c5:1e:7a:ec:10:1b:de:1b:a3:bc:ce:54:3d:f4:6d:9d: 95:be:d7:ff:0b:e6:21:a3:1c:8b:f2:df:fb:aa:57:1d:22:39: 25:df:98:2a:e0:67:28:ca:c0:4b:a7:74:0b:53:4a:4d:93:8f: 47:b9:f7:cd:26:a1:6e:f8:23:13:b9:25:73:3d:df:01:dd:82: ab:1f:b9:e0:c4:bf:ee:c5:ff:4c:97:3c:b5:b8:a0:fd:aa:7e: c7:a2:f5:e4:cf:fc:e4:96:95:54:7d:6e:cc:8e:39:83:24:1c: bb:c5:d6:d7:fb:6f:a9:fe:e2:74:28:58:be:de:10:66:ae:57: ed:2b:2a:79:0a:1a:01:ca:7e:a7:22:e2:f2:5c:cd:27:e8:2d: 9b:31:d6:5e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU3MjhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEEyNzQ5MjlDNTUzNjJC NDQ0QzFFMkMxN0EwNEI5MjdGQ0JGRTlFNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE3QAwkBQ4/gCWEG1t/GfmvKQtcgBrhm0F9ZQu928t+gTbQDw9 HusXQ0byK3zzW/nQepW2Wa/5KXkUs69UQA6Z8Se+6ZhYVIXAjcwDdhYH98CN8qLN npNvxHcw2UlDdb9DzfQahScMYcfdPB0Tj9PvBGCOjMrtDTX0owvr/xcXuccLk/iK L8dab1jkElG1B8mhU2HdO1thpJdmvnEhlduQ4BaOvDMMr4aBjkHhT5tMNaI8QczC KKMdZpEOrGKWnb8JfxlB3dPIyWuReP70eOBAcQPY4wKFqh08hx6T2Mt/JDb+bAzu EPrPqFOHwXisem/KijAXGSXqCSBSEG1F8CghAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUonSSnFU2K0RMHiwXoEuSf8v+nmgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29uU1NuRlUySzBSTUhpd1hvRXVTZjh2LW5tZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxaPAwDQYJKoZIhvcNAQELBQADggEBAIjlf28x7e8G4kbXQKQNc7i3+Dqy XNC4fjis+wrKa0gEcW7u7t8Httj9MSsVV+4npXjJCwFX8dBNR0kxpE5aGa80sFk1 7cOCdeoWqEcsZTzd2JuiOBYuvf5jzIB6ckpzkh5CqNQmVDx4N0yAMq7HxR567BAb 3hujvM5UPfRtnZW+1/8L5iGjHIvy3/uqVx0iOSXfmCrgZyjKwEundAtTSk2Tj0e5 980moW74IxO5JXM93wHdgqsfueDEv+7F/0yXPLW4oP2qfsei9eTP/OSWlVR9bsyO OYMkHLvF1tf7b6n+4nQoWL7eEGauV+0rKnkKGgHKfqci4vJczSfoLZsx1l4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:41 2025 by rpki-client