$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/pVgnxCZ3YtwEuWHP6TcQhp8PerU.roa File: pVgnxCZ3YtwEuWHP6TcQhp8PerU.roa (raw, json) Hash identifier: Sqb6IZZuCPQTHRXUil3GKIPA8NQZYlnz7V44o+4Q0sw= Subject key identifier: A5:58:27:C4:26:77:62:DC:04:B9:61:CF:E9:37:10:86:9F:0F:7A:B5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B3A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pVgnxCZ3YtwEuWHP6TcQhp8PerU.roa Signing time: Fri 21 Feb 2025 04:23:20 +0000 ROA not before: Fri 21 Feb 2025 04:23:20 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2874 (0xb3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 21 04:23:20 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=A55827C4267762DC04B961CFE93710869F0F7AB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:17:14:f3:8d:05:7d:5a:c4:b9:6d:99:9c: 7e:dd:b9:71:65:a0:0e:5c:fa:0a:41:18:30:0d:47: fb:ac:48:68:21:17:40:e1:15:b4:9c:73:fc:20:61: b3:42:ac:21:52:4a:ca:a9:6e:6c:74:a7:d2:43:bc: ec:20:0b:e5:02:3d:06:95:2b:17:56:07:5c:86:b3: e0:8e:ea:18:e8:ad:b8:09:d7:2f:db:06:e4:c5:3b: 23:6d:7c:f7:86:5d:5c:d5:9a:1d:83:46:80:0d:01: 22:48:d9:43:ae:8b:b9:9d:1b:e7:ae:05:54:f4:a9: 40:19:2f:d8:ed:1a:15:3f:a6:c8:f7:28:89:ba:1b: 24:ff:91:a5:9c:d2:3f:cb:35:db:70:1d:dd:8f:0f: f7:73:ea:11:96:61:1c:f0:bb:02:7f:0f:d9:6f:38: 31:24:1d:d6:6b:7d:ea:e2:83:4a:21:95:e0:5e:70: 6e:5d:9c:61:9f:69:38:d1:c6:29:d0:92:b1:0d:29: 4e:88:1c:7a:7e:b7:57:c9:e2:9e:8e:f0:e9:a8:75: cd:f5:91:d7:bf:0e:15:c0:b0:4d:26:22:e8:80:53: 0f:0e:ca:4a:8a:af:81:1e:8c:3b:41:89:bc:d4:f8: be:4c:39:0f:4c:15:4c:93:a4:4a:d3:a1:d5:ea:57: bb:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:58:27:C4:26:77:62:DC:04:B9:61:CF:E9:37:10:86:9F:0F:7A:B5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pVgnxCZ3YtwEuWHP6TcQhp8PerU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.152.0/23 Signature Algorithm: sha256WithRSAEncryption bd:28:6c:3e:3f:87:db:12:d4:69:0e:5a:1e:d4:7c:56:0f:0b: 47:41:da:68:f5:37:ea:d6:26:a7:4b:5b:ea:c0:90:ed:6e:ef: cc:62:75:05:ad:dd:d7:6c:28:a6:14:a6:79:dc:4f:98:60:61: 8b:f0:ac:8f:20:ac:b6:d5:78:4f:d2:22:a6:d5:d4:eb:31:a7: f9:c9:b8:fa:fe:c2:79:03:53:27:8d:cd:da:42:e0:72:37:31: 57:e8:7d:57:29:ab:41:ab:46:fb:22:25:0d:e2:07:0a:4c:13: e3:45:c4:4b:24:4e:f7:92:67:02:2a:7e:81:ae:66:bc:4e:8c: 1f:cd:8c:99:e1:85:6c:fa:89:f6:ad:d2:a2:f0:d3:6d:e7:0c: ee:cf:db:f0:8c:8c:d2:18:5b:3f:50:ee:fe:e1:ee:04:54:8e: d3:67:1d:87:ca:ba:e5:57:21:88:07:d2:d8:b9:1f:43:2c:cf: 30:ab:61:38:e8:5e:2b:f6:b1:4d:52:8f:4c:7a:91:89:89:49: 8b:db:df:f1:5c:83:1c:ed:ed:5b:bd:47:d6:2e:3b:1e:07:f9: 10:e6:f4:bb:ae:81:a6:b6:c6:4c:6b:23:b2:2c:17:8b:37:c0: ac:70:2d:26:b9:52:a0:37:06:2a:a5:e6:5e:a3:64:26:4c:aa: 77:66:81:7c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCzowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAyMjEw NDIzMjBaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE1NTgyN0M0MjY3NzYy REMwNEI5NjFDRkU5MzcxMDg2OUYwRjdBQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyQBcU840FfVrEuW2ZnH7duXFloA5c+gpBGDANR/usSGghF0Dh FbScc/wgYbNCrCFSSsqpbmx0p9JDvOwgC+UCPQaVKxdWB1yGs+CO6hjorbgJ1y/b BuTFOyNtfPeGXVzVmh2DRoANASJI2UOui7mdG+euBVT0qUAZL9jtGhU/psj3KIm6 GyT/kaWc0j/LNdtwHd2PD/dz6hGWYRzwuwJ/D9lvODEkHdZrferig0ohleBecG5d nGGfaTjRxinQkrENKU6IHHp+t1fJ4p6O8Omodc31kde/DhXAsE0mIuiAUw8OykqK r4EejDtBibzU+L5MOQ9MFUyTpErTodXqV7tLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUpVgnxCZ3YtwEuWHP6TcQhp8PerUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3BWZ254Q1ozWXR3RXVXSFA2VGNRaHA4UGVyVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYJgwDQYJKoZIhvcNAQELBQADggEBAL0obD4/h9sS1GkOWh7UfFYPC0dB 2mj1N+rWJqdLW+rAkO1u78xidQWt3ddsKKYUpnncT5hgYYvwrI8grLbVeE/SIqbV 1Osxp/nJuPr+wnkDUyeNzdpC4HI3MVfofVcpq0GrRvsiJQ3iBwpME+NFxEskTveS ZwIqfoGuZrxOjB/NjJnhhWz6ifat0qLw023nDO7P2/CMjNIYWz9Q7v7h7gRUjtNn HYfKuuVXIYgH0ti5H0MszzCrYTjoXiv2sU1Sj0x6kYmJSYvb3/Fcgxzt7Vu9R9Yu Ox4H+RDm9Luugaa2xkxrI7IsF4s3wKxwLSa5UqA3Biql5l6jZCZMqndmgXw= -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:38 2025 by rpki-client