$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/p3AV2Gx9gFCnIaU7qSquOSl5g0k.roa File: p3AV2Gx9gFCnIaU7qSquOSl5g0k.roa (raw, json) Hash identifier: 1FLopWw5NfTRf9TTydxT5/aq/fEr9iyHQPvUNIGCiIk= Subject key identifier: A7:70:15:D8:6C:7D:80:50:A7:21:A5:3B:A9:2A:AE:39:29:79:83:49 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C3B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/p3AV2Gx9gFCnIaU7qSquOSl5g0k.roa Signing time: Tue 01 Apr 2025 01:57:14 +0000 ROA not before: Tue 01 Apr 2025 01:57:14 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.105.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3131 (0xc3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:57:14 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A77015D86C7D8050A721A53BA92AAE3929798349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c7:4c:c1:b7:bf:47:ae:92:03:35:32:93:34: 94:08:eb:b0:1f:1f:b4:bc:e0:e6:81:05:03:95:8b: fd:60:9f:51:46:9d:44:31:82:51:09:5c:85:b1:c1: 96:56:0f:3d:32:9c:11:67:31:cf:85:2c:8a:63:cf: 28:30:5b:fc:d1:3e:5a:55:1d:9d:8d:e0:48:86:04: bc:74:82:c1:23:f7:da:79:3d:5f:b7:9b:12:db:42: 5f:dd:4d:73:89:b8:0b:a4:ef:ee:e3:9b:d0:d1:3d: 17:a8:ed:ae:5d:07:8a:a0:31:44:b0:0d:81:bb:7c: 5f:6e:8e:54:40:d4:f6:5a:c2:f3:b0:4a:5d:e1:1e: 3c:9a:50:33:20:4b:04:91:51:11:2c:f2:91:23:51: 15:f5:da:73:1b:67:55:2f:a8:cd:c1:56:1e:0f:ca: 65:70:ac:dc:60:a0:d0:25:24:e3:45:1c:83:41:c8: 15:ae:32:b1:2b:93:ec:60:72:c7:11:b4:37:83:fa: 18:cf:3c:51:89:11:ab:81:f0:20:ce:ec:90:e4:7c: fa:8f:8f:6f:d0:3f:f3:83:8c:aa:7a:ad:b7:7c:0e: d7:6f:b7:b5:00:c4:5a:84:62:4e:a6:8a:ab:a4:a8: a8:87:e7:af:3a:c9:bc:14:3d:d2:72:ee:43:27:df: 64:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:70:15:D8:6C:7D:80:50:A7:21:A5:3B:A9:2A:AE:39:29:79:83:49 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/p3AV2Gx9gFCnIaU7qSquOSl5g0k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.90.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:87:ad:37:9c:91:4c:f2:f9:0c:cd:83:6e:57:b9:b1:86:8c: 1a:a8:4d:23:48:30:cf:bf:35:c1:24:d4:88:ef:6e:e4:45:30: a0:e0:92:f1:f6:c6:c5:8b:ec:d3:9a:6c:d9:26:00:c4:ae:6c: 78:1d:c8:de:d4:2e:db:16:19:ce:b8:ab:7f:6c:59:94:1c:e5: d7:ae:b5:ad:20:c1:41:cb:56:65:33:96:65:7f:a8:83:ae:f8: 95:46:35:72:a8:c7:b5:ef:9c:94:67:87:df:77:50:39:87:cb: 63:67:d6:1c:f4:86:b8:7d:71:86:ad:65:14:78:5d:b8:9d:8f: 6d:dc:42:8a:9e:95:48:7c:e6:0d:ae:46:f5:7f:f2:7e:6d:23: 88:67:82:b3:10:73:18:f0:84:4a:c6:8a:ff:87:63:a5:da:22: 32:09:29:ca:e8:80:4f:b3:0e:2d:1a:c5:5b:30:3d:70:9d:4b: ae:07:6e:14:f8:ff:34:47:93:23:51:db:cf:9e:a9:aa:33:b7: 98:4d:da:23:26:f4:b5:a5:b4:52:9d:6e:30:da:24:d8:2e:40: eb:3a:4a:48:e3:5e:c2:b0:48:f9:10:35:c6:16:d6:f6:01:09: 27:77:9a:b3:14:0f:93:ee:c3:d9:cb:4f:3f:9f:84:a6:7a:5e: ac:db:cf:f3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU3MTRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE3NzAxNUQ4NkM3RDgw NTBBNzIxQTUzQkE5MkFBRTM5Mjk3OTgzNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+x0zBt79HrpIDNTKTNJQI67AfH7S84OaBBQOVi/1gn1FGnUQx glEJXIWxwZZWDz0ynBFnMc+FLIpjzygwW/zRPlpVHZ2N4EiGBLx0gsEj99p5PV+3 mxLbQl/dTXOJuAuk7+7jm9DRPReo7a5dB4qgMUSwDYG7fF9ujlRA1PZawvOwSl3h HjyaUDMgSwSRUREs8pEjURX12nMbZ1UvqM3BVh4PymVwrNxgoNAlJONFHINByBWu MrErk+xgcscRtDeD+hjPPFGJEauB8CDO7JDkfPqPj2/QP/ODjKp6rbd8Dtdvt7UA xFqEYk6miqukqKiH5686ybwUPdJy7kMn32SvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUp3AV2Gx9gFCnIaU7qSquOSl5g0kwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3AzQVYyR3g5Z0ZDbklhVTdxU3F1T1NsNWcway5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaVowDQYJKoZIhvcNAQELBQADggEBACyHrTeckUzy+QzNg25XubGGjBqo TSNIMM+/NcEk1IjvbuRFMKDgkvH2xsWL7NOabNkmAMSubHgdyN7ULtsWGc64q39s WZQc5deuta0gwUHLVmUzlmV/qIOu+JVGNXKox7XvnJRnh993UDmHy2Nn1hz0hrh9 cYatZRR4Xbidj23cQoqelUh85g2uRvV/8n5tI4hngrMQcxjwhErGiv+HY6XaIjIJ KcrogE+zDi0axVswPXCdS64HbhT4/zRHkyNR28+eqaozt5hN2iMm9LWltFKdbjDa JNguQOs6SkjjXsKwSPkQNcYW1vYBCSd3mrMUD5Puw9nLTz+fhKZ6Xqzbz/M= -----END CERTIFICATE-----Generated at Sun Apr 6 01:46:40 2025 by rpki-client