$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qOAKvkhB6TSmOWcfFLJ7Kl2DkNY.roa File: qOAKvkhB6TSmOWcfFLJ7Kl2DkNY.roa (raw, json) Hash identifier: IMN2zfx4TLd/Jq1YSH0FthWQRH8aCZutw7OQb+sb244= Subject key identifier: A8:E0:0A:BE:48:41:E9:34:A6:39:67:1F:14:B2:7B:2A:5D:83:90:D6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D40 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qOAKvkhB6TSmOWcfFLJ7Kl2DkNY.roa Signing time: Tue 01 Apr 2025 02:17:06 +0000 ROA not before: Tue 01 Apr 2025 02:17:06 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3392 (0xd40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:17:06 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A8E00ABE4841E934A639671F14B27B2A5D8390D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a9:85:df:78:2c:84:bd:5e:5a:73:e1:8f:26: 1a:27:be:3d:25:f0:18:cd:d4:c8:06:ff:38:a4:83: bd:c4:4e:ab:01:b1:e3:2b:92:dc:09:18:80:f6:cd: 2c:53:4b:21:9b:d5:d5:ff:10:f0:5b:63:24:25:0f: cd:05:84:01:b5:db:bb:c7:c5:9a:78:b2:b0:0c:de: 7f:fd:62:ef:4b:14:53:3d:79:87:b4:b9:d8:f5:d2: 2e:dd:3a:e8:4b:6e:da:81:a8:51:64:84:11:6a:c9: ef:76:6d:65:cd:89:ae:c1:72:91:b9:c3:b0:5b:fb: 33:ee:d4:90:07:38:37:36:06:20:47:19:d6:3b:3e: 71:fe:40:84:f6:59:51:e0:11:5e:22:92:de:39:e4: 80:38:50:0a:26:4d:9c:92:b8:a8:82:75:98:b4:0d: 67:5b:b4:fc:46:a9:98:83:48:02:8c:1f:21:37:73: 96:93:e8:5a:97:b2:30:3c:d5:e9:1a:e6:83:3a:58: 7f:69:c4:83:66:dd:6b:b9:bc:2d:c1:c8:34:e1:7d: fc:b9:11:2b:0b:33:6a:05:fd:40:14:c9:c4:4f:e3: d8:c0:5f:5c:dc:e5:49:a2:b4:e7:e2:d2:ec:61:35: 15:7b:0a:cc:cd:ec:94:65:ab:b3:3b:e8:2e:d4:93: 36:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E0:0A:BE:48:41:E9:34:A6:39:67:1F:14:B2:7B:2A:5D:83:90:D6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qOAKvkhB6TSmOWcfFLJ7Kl2DkNY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.16.0/23 Signature Algorithm: sha256WithRSAEncryption 85:eb:6f:78:9f:d4:2e:e1:03:13:97:6e:3f:fa:09:8a:8d:36: e6:47:bd:48:4e:8a:74:74:e1:8f:03:40:11:ba:17:8a:b4:9b: 85:18:6c:34:b8:ea:40:5e:9d:c4:53:db:3a:06:24:64:28:1d: dc:65:01:a9:a4:17:4d:20:67:1a:70:c3:f1:f3:2e:d4:e2:8c: 61:4c:c2:50:01:e2:c9:5c:55:18:fa:59:a4:5b:95:c8:1c:8e: af:34:b3:be:18:08:61:90:4c:2b:65:d3:21:47:78:b6:dd:51: f1:a1:8a:28:b0:c7:28:1a:5f:c3:3a:41:4c:d1:5d:9f:db:20: 83:13:8a:42:3a:e2:69:a0:c0:a7:10:d2:53:6f:93:a4:f6:7d: 8e:f8:fc:28:1b:1e:e4:a5:80:41:45:1e:13:73:f3:8e:af:36: 9d:df:73:90:04:d8:87:17:4e:20:31:79:3b:45:70:0f:f5:e4: 27:e5:da:96:33:5b:9e:cd:27:7b:5d:e3:72:12:38:e9:5b:7d: 8b:7e:02:2a:b3:b0:50:80:fb:08:f9:7a:ba:dc:68:38:6e:7d: 2e:29:12:1e:b8:f2:a7:10:f7:f0:7e:13:76:4e:3c:43:a7:1b: 86:8f:f8:e9:2b:e8:2c:71:a4:e1:b8:e1:da:5e:da:5a:af:78: 95:c1:44:db -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDUAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE3MDZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE4RTAwQUJFNDg0MUU5 MzRBNjM5NjcxRjE0QjI3QjJBNUQ4MzkwRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+qYXfeCyEvV5ac+GPJhonvj0l8BjN1MgG/zikg73ETqsBseMr ktwJGID2zSxTSyGb1dX/EPBbYyQlD80FhAG127vHxZp4srAM3n/9Yu9LFFM9eYe0 udj10i7dOuhLbtqBqFFkhBFqye92bWXNia7BcpG5w7Bb+zPu1JAHODc2BiBHGdY7 PnH+QIT2WVHgEV4ikt455IA4UAomTZySuKiCdZi0DWdbtPxGqZiDSAKMHyE3c5aT 6FqXsjA81eka5oM6WH9pxINm3Wu5vC3ByDThffy5ESsLM2oF/UAUycRP49jAX1zc 5UmitOfi0uxhNRV7CszN7JRlq7M76C7UkzZpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUqOAKvkhB6TSmOWcfFLJ7Kl2DkNYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3FPQUt2a2hCNlRTbU9XY2ZGTEo3S2wyRGtOWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaBAwDQYJKoZIhvcNAQELBQADggEBAIXrb3if1C7hAxOXbj/6CYqNNuZH vUhOinR04Y8DQBG6F4q0m4UYbDS46kBencRT2zoGJGQoHdxlAamkF00gZxpww/Hz LtTijGFMwlAB4slcVRj6WaRblcgcjq80s74YCGGQTCtl0yFHeLbdUfGhiiiwxyga X8M6QUzRXZ/bIIMTikI64mmgwKcQ0lNvk6T2fY74/CgbHuSlgEFFHhNz846vNp3f c5AE2IcXTiAxeTtFcA/15Cfl2pYzW57NJ3td43ISOOlbfYt+AiqzsFCA+wj5errc aDhufS4pEh648qcQ9/B+E3ZOPEOnG4aP+Okr6CxxpOG44dpe2lqveJXBRNs= -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:52 2025 by rpki-client