$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/pM5aUwg0jchdDl-i6VmmeSJIUn8.roa File: pM5aUwg0jchdDl-i6VmmeSJIUn8.roa (raw, json) Hash identifier: GjqlLLD4/Qz91NzSx/wygfxdXKWL37yriwYvltwD6mE= Subject key identifier: A4:CE:5A:53:08:34:8D:C8:5D:0E:5F:A2:E9:59:A6:79:22:48:52:7F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BEB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pM5aUwg0jchdDl-i6VmmeSJIUn8.roa Signing time: Tue 01 Apr 2025 01:47:44 +0000 ROA not before: Tue 01 Apr 2025 01:47:44 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3051 (0xbeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:44 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A4CE5A5308348DC85D0E5FA2E959A6792248527F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a7:bb:f4:fd:69:50:35:f6:4c:b6:f5:33:45: 98:81:91:ad:1f:61:4b:f4:9b:c8:8b:4e:44:9e:8f: c9:ad:17:83:e9:c2:9e:6f:3f:63:bb:e8:77:9c:2a: 02:21:cb:d0:eb:d6:b4:02:d0:b3:3e:fb:fd:8e:26: 33:f9:3d:40:5f:5e:56:53:1c:c0:b7:ce:25:13:4a: d9:db:c5:20:5a:42:89:dd:f7:90:01:87:56:e3:01: 90:89:50:bd:4b:bc:e8:66:13:04:f8:05:50:ac:bf: 20:49:40:e0:83:17:42:38:b8:b4:14:1b:77:87:38: ec:0f:92:9f:2b:d1:68:44:94:94:93:20:7b:50:83: d3:e8:f7:13:f9:0c:68:38:d8:d0:a0:db:bd:fe:01: 9b:71:27:35:ab:f0:7c:3d:a2:91:38:fe:e7:22:c9: 28:30:43:c7:ba:a2:c9:28:90:c5:a6:8b:54:60:09: 51:61:fb:b4:c0:c9:07:1d:67:24:4d:15:1a:98:12: e4:a1:41:82:de:39:0e:d6:8a:76:6b:fe:17:47:4b: 74:aa:3f:28:9e:08:d9:77:7b:ea:25:eb:04:88:de: 45:86:25:7b:76:df:36:eb:dd:f8:30:fb:5f:c8:67: f7:ae:67:13:87:6f:ab:ba:bb:a2:bb:84:95:5f:a5: e4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:CE:5A:53:08:34:8D:C8:5D:0E:5F:A2:E9:59:A6:79:22:48:52:7F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pM5aUwg0jchdDl-i6VmmeSJIUn8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.26.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:8f:e5:eb:5e:00:37:2a:91:bf:a5:4d:54:ec:bc:3f:52:29: 8c:af:d5:3a:c4:01:1e:b0:c3:16:77:b2:83:da:07:e9:ed:ce: 3c:62:9a:f9:d2:8f:07:4d:2a:7e:31:94:fa:03:30:54:34:fc: 47:cc:30:1f:4b:0f:c4:93:fe:61:9a:f4:dc:a1:88:62:06:c6: 23:23:3f:ea:ac:58:cb:57:ad:b5:ed:ee:5d:ca:f6:ab:9b:6f: c2:13:57:ab:72:24:69:a9:33:b2:d6:1e:81:59:2e:b2:1a:1b: 1b:f3:9b:01:37:5a:64:46:af:c9:08:a3:2b:0f:8b:45:53:aa: 20:f2:6c:15:f1:94:b9:6f:4b:57:1f:90:23:b6:c8:aa:1a:78: b4:17:d2:c6:1e:d2:2a:1d:9f:b9:bb:89:b5:43:0e:42:07:7b: af:48:ed:0f:a6:31:96:e2:de:c7:e2:48:7b:ed:fe:bf:38:96: e9:e2:3f:49:af:aa:9c:58:3f:78:02:8e:34:8d:6c:46:b5:cf: b9:5a:23:86:9e:34:75:17:62:b3:fe:17:e7:2f:3e:32:fe:42: 5a:7f:54:31:01:c2:65:95:90:5b:38:95:fc:dc:21:74:26:e3: 0f:40:f5:33:35:fa:83:3f:af:ab:bd:61:f1:e9:70:eb:2a:db: 7d:5d:96:af -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC+swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3NDRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE0Q0U1QTUzMDgzNDhE Qzg1RDBFNUZBMkU5NTlBNjc5MjI0ODUyN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3p7v0/WlQNfZMtvUzRZiBka0fYUv0m8iLTkSej8mtF4Ppwp5v P2O76HecKgIhy9Dr1rQC0LM++/2OJjP5PUBfXlZTHMC3ziUTStnbxSBaQond95AB h1bjAZCJUL1LvOhmEwT4BVCsvyBJQOCDF0I4uLQUG3eHOOwPkp8r0WhElJSTIHtQ g9Po9xP5DGg42NCg273+AZtxJzWr8Hw9opE4/uciySgwQ8e6oskokMWmi1RgCVFh +7TAyQcdZyRNFRqYEuShQYLeOQ7WinZr/hdHS3SqPyieCNl3e+ol6wSI3kWGJXt2 3zbr3fgw+1/IZ/euZxOHb6u6u6K7hJVfpeQHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUpM5aUwg0jchdDl+i6VmmeSJIUn8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3BNNWFVd2cwamNoZERsLWk2Vm1tZVNKSVVuOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaBowDQYJKoZIhvcNAQELBQADggEBAIuP5eteADcqkb+lTVTsvD9SKYyv 1TrEAR6wwxZ3soPaB+ntzjximvnSjwdNKn4xlPoDMFQ0/EfMMB9LD8ST/mGa9Nyh iGIGxiMjP+qsWMtXrbXt7l3K9qubb8ITV6tyJGmpM7LWHoFZLrIaGxvzmwE3WmRG r8kIoysPi0VTqiDybBXxlLlvS1cfkCO2yKoaeLQX0sYe0iodn7m7ibVDDkIHe69I 7Q+mMZbi3sfiSHvt/r84luniP0mvqpxYP3gCjjSNbEa1z7laI4aeNHUXYrP+F+cv PjL+Qlp/VDEBwmWVkFs4lfzcIXQm4w9A9TM1+oM/r6u9YfHpcOsq231dlq8= -----END CERTIFICATE-----Generated at Sat Apr 5 17:19:59 2025 by rpki-client