$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qAwZC7P0CsFbgKhWdouhsNH7RRY.roa File: qAwZC7P0CsFbgKhWdouhsNH7RRY.roa (raw, json) Hash identifier: aoU+WEiCXyaRTRcKe4ySlHDVgeSaTVXHxksQ6r/AsT0= Subject key identifier: A8:0C:19:0B:B3:F4:0A:C1:5B:80:A8:56:76:8B:A1:B0:D1:FB:45:16 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CBF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qAwZC7P0CsFbgKhWdouhsNH7RRY.roa Signing time: Tue 01 Apr 2025 02:05:49 +0000 ROA not before: Tue 01 Apr 2025 02:05:49 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3263 (0xcbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:05:49 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A80C190BB3F40AC15B80A856768BA1B0D1FB4516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fd:1e:a9:bf:66:2f:8f:68:43:ec:0c:b1:18: a6:4f:cd:a1:5b:b6:2d:91:bd:fa:29:75:9b:aa:8a: 62:d0:dc:46:c0:2c:8e:46:5a:d5:36:7a:d6:8e:7a: 24:42:98:f9:86:14:fd:d1:bf:df:c6:08:b0:2e:b9: c2:d7:eb:fc:22:73:a4:2e:c7:5c:d3:63:86:56:9b: 7e:c5:42:7b:86:a8:1c:c0:90:58:0d:20:35:50:8f: a6:1d:7d:b4:65:1c:b1:fb:b3:b4:46:49:f9:15:c9: f5:e5:83:21:1b:f4:44:1c:22:06:77:55:4a:8c:37: 88:50:c7:98:fd:15:17:86:cc:6e:4f:c3:4a:87:4e: d0:99:28:fb:0d:3d:8c:e5:dc:e7:87:0c:14:75:a4: e3:75:0e:be:51:c0:bf:ed:7b:39:3d:79:ff:24:e1: 63:2b:d3:5f:65:bc:8f:db:ad:b8:67:87:80:d8:eb: 64:f9:ed:b9:99:78:c2:17:ab:a0:01:34:52:9a:e6: 46:74:08:22:e2:02:3e:a0:f9:31:85:df:f1:1a:d3: 10:7d:ba:d3:09:4f:82:26:0b:ed:3d:7a:51:f6:09: 30:0b:a3:11:68:c5:5d:b6:16:da:a4:a1:16:b6:d7: 5b:53:3e:47:69:8e:76:cf:a0:b4:bd:fc:35:9b:88: bd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:0C:19:0B:B3:F4:0A:C1:5B:80:A8:56:76:8B:A1:B0:D1:FB:45:16 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qAwZC7P0CsFbgKhWdouhsNH7RRY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.231.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:12:d5:c0:8a:53:74:98:76:12:1d:76:32:39:d6:8d:b3:fc: 89:cf:84:68:b5:89:3a:69:5d:07:f2:e9:5b:6e:f0:b1:9a:a0: 37:fc:16:bd:cd:c0:3a:7f:4b:ff:e3:c0:df:8f:95:25:99:d1: d7:6b:3f:a9:e4:29:85:83:d1:4e:8c:32:e1:ac:e3:b4:46:67: 37:df:42:60:cc:11:59:0f:f9:95:00:da:1c:10:ed:86:64:b2: b3:fc:f1:e4:fd:74:72:67:05:6a:1a:1d:e7:8f:3a:f8:a8:02: 21:f6:e8:26:6d:f8:a2:18:00:88:f9:0b:6a:d3:a1:f0:a7:0d: c5:d1:5d:09:8f:77:3e:f3:bf:b4:02:72:7e:bd:53:ca:bd:c6: 2c:57:79:31:62:70:83:dd:f2:6b:8d:66:a4:56:b1:ef:92:c8: 7e:b4:3d:f6:9a:4a:94:dd:60:62:05:f5:38:00:b7:4f:14:ce: ad:b1:75:a7:b5:5c:f3:78:98:51:7a:87:aa:1f:50:c9:f8:08: 82:9c:ab:1f:a8:d1:a2:6e:d9:cd:e4:54:3d:2c:fb:5a:f5:0c: 3f:02:35:95:c6:0d:0f:c4:2b:6f:96:59:af:67:ba:9a:b8:b6: 52:a7:06:05:8d:19:b0:d0:98:54:3e:17:53:be:68:c2:3c:42: 9b:34:09:8d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA1NDlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE4MEMxOTBCQjNGNDBB QzE1QjgwQTg1Njc2OEJBMUIwRDFGQjQ1MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8/R6pv2Yvj2hD7AyxGKZPzaFbti2RvfopdZuqimLQ3EbALI5G WtU2etaOeiRCmPmGFP3Rv9/GCLAuucLX6/wic6Qux1zTY4ZWm37FQnuGqBzAkFgN IDVQj6YdfbRlHLH7s7RGSfkVyfXlgyEb9EQcIgZ3VUqMN4hQx5j9FReGzG5Pw0qH TtCZKPsNPYzl3OeHDBR1pON1Dr5RwL/tezk9ef8k4WMr019lvI/brbhnh4DY62T5 7bmZeMIXq6ABNFKa5kZ0CCLiAj6g+TGF3/Ea0xB9utMJT4ImC+09elH2CTALoxFo xV22FtqkoRa211tTPkdpjnbPoLS9/DWbiL1fAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUqAwZC7P0CsFbgKhWdouhsNH7RRYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3FBd1pDN1AwQ3NGYmdLaFdkb3Voc05IN1JSWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYOcwDQYJKoZIhvcNAQELBQADggEBACoS1cCKU3SYdhIddjI51o2z/InP hGi1iTppXQfy6Vtu8LGaoDf8Fr3NwDp/S//jwN+PlSWZ0ddrP6nkKYWD0U6MMuGs 47RGZzffQmDMEVkP+ZUA2hwQ7YZksrP88eT9dHJnBWoaHeePOvioAiH26CZt+KIY AIj5C2rTofCnDcXRXQmPdz7zv7QCcn69U8q9xixXeTFicIPd8muNZqRWse+SyH60 PfaaSpTdYGIF9TgAt08Uzq2xdae1XPN4mFF6h6ofUMn4CIKcqx+o0aJu2c3kVD0s +1r1DD8CNZXGDQ/EK2+WWa9nupq4tlKnBgWNGbDQmFQ+F1O+aMI8Qps0CY0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:51 2025 by rpki-client