$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/rTJjCZyTdPZycUnjl7v-dQMwnSE.roa File: rTJjCZyTdPZycUnjl7v-dQMwnSE.roa (raw, json) Hash identifier: 5dFzMXCpAtOF5B+JK2g4LA13adlXKu3zP26MiSgcIdY= Subject key identifier: AD:32:63:09:9C:93:74:F6:72:71:49:E3:97:BB:FE:75:03:30:9D:21 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BE7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rTJjCZyTdPZycUnjl7v-dQMwnSE.roa Signing time: Tue 01 Apr 2025 01:47:43 +0000 ROA not before: Tue 01 Apr 2025 01:47:43 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:43 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=AD3263099C9374F6727149E397BBFE7503309D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2a:b0:f3:82:7a:da:d0:0e:de:bc:00:d7:05: f8:b8:c7:6e:71:5f:93:9e:ac:d0:ad:dd:f1:77:f2: 07:9a:62:40:a5:8c:d2:f8:b0:85:55:f5:3f:89:60: fb:7c:b0:7e:36:4c:85:ae:1a:11:52:8b:4f:b6:b1: 48:7e:2b:0d:d4:07:f7:9c:ce:03:47:29:40:ae:99: cb:17:3e:98:d1:09:e3:87:35:e4:b1:56:90:03:22: 30:fa:1b:f1:67:f5:08:d2:d7:3d:62:ca:56:78:2f: 37:13:55:34:23:e1:4c:33:77:c6:92:85:4f:a9:b0: 27:e4:ae:f0:8e:06:35:29:08:8d:e9:a6:a7:41:34: 3a:3e:1e:b1:a7:d1:0d:ec:c6:34:4a:e7:12:57:da: af:00:1f:c1:72:97:bf:c9:9d:dc:db:3b:57:80:b2: ee:83:c3:b1:0c:41:3a:0a:28:4c:92:c4:59:66:47: 94:ec:3c:6f:6d:27:ed:7c:28:1c:fb:5d:e5:6a:2a: 44:e4:3e:bb:f6:f4:02:b3:bc:cd:c8:9f:45:32:8a: 9f:0b:ac:8e:25:1b:b0:e7:12:33:b4:bc:e7:97:86: cd:01:59:e0:87:85:55:3d:93:fd:79:94:a1:6c:5e: 2a:39:1f:77:b9:ab:1e:ab:64:96:76:66:82:d0:a4: ca:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:32:63:09:9C:93:74:F6:72:71:49:E3:97:BB:FE:75:03:30:9D:21 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rTJjCZyTdPZycUnjl7v-dQMwnSE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.10.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:d0:df:cc:7d:3a:3d:af:5a:76:35:7b:24:8e:20:9c:c6:43: 28:32:08:de:ea:18:4e:7f:f5:77:51:7f:2d:0d:16:e4:19:13: 84:a2:28:45:2d:8f:7c:c0:7e:24:85:28:b1:b4:b2:a7:77:ba: de:a1:a8:be:9a:3a:8d:cd:b2:fe:55:61:bf:34:70:d7:e2:e7: 3b:57:81:9f:35:2f:bf:e3:6f:69:f0:6d:3a:a7:bf:a7:6a:1e: 4a:6d:ed:ad:31:90:86:ce:63:f7:ba:1d:0a:d2:e6:b5:72:40: 14:c0:75:24:62:3d:8c:01:9b:d8:8b:80:3b:82:e4:1c:2f:16: 16:a9:15:86:09:2b:1f:71:95:5b:e9:32:84:49:2b:fb:04:9d: eb:08:7c:2a:94:73:82:84:97:95:1d:15:5f:3c:f6:91:b0:4a: dc:4a:d3:2a:ef:76:da:fa:22:09:38:c6:54:09:05:14:91:f8: 9b:81:ea:65:87:68:7b:32:54:02:f7:2d:bb:fb:d3:70:0d:d3: 88:b6:59:55:73:fc:49:1e:35:7f:7a:9a:ba:99:15:66:cc:90: 8d:51:70:26:88:93:54:66:9a:21:5a:88:42:d2:f6:4f:4f:b7: c3:e7:26:71:ff:f9:90:86:b8:39:68:92:9d:3d:f8:09:94:71: b9:04:d7:a9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3NDNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFEMzI2MzA5OUM5Mzc0 RjY3MjcxNDlFMzk3QkJGRTc1MDMzMDlEMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWKrDzgnra0A7evADXBfi4x25xX5OerNCt3fF38geaYkCljNL4 sIVV9T+JYPt8sH42TIWuGhFSi0+2sUh+Kw3UB/eczgNHKUCumcsXPpjRCeOHNeSx VpADIjD6G/Fn9QjS1z1iylZ4LzcTVTQj4Uwzd8aShU+psCfkrvCOBjUpCI3ppqdB NDo+HrGn0Q3sxjRK5xJX2q8AH8Fyl7/JndzbO1eAsu6Dw7EMQToKKEySxFlmR5Ts PG9tJ+18KBz7XeVqKkTkPrv29AKzvM3In0Uyip8LrI4lG7DnEjO0vOeXhs0BWeCH hVU9k/15lKFsXio5H3e5qx6rZJZ2ZoLQpMrDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUrTJjCZyTdPZycUnjl7v+dQMwnSEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3JUSmpDWnlUZFBaeWNVbmpsN3YtZFFNd25TRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaAowDQYJKoZIhvcNAQELBQADggEBAH7Q38x9Oj2vWnY1eySOIJzGQygy CN7qGE5/9XdRfy0NFuQZE4SiKEUtj3zAfiSFKLG0sqd3ut6hqL6aOo3Nsv5VYb80 cNfi5ztXgZ81L7/jb2nwbTqnv6dqHkpt7a0xkIbOY/e6HQrS5rVyQBTAdSRiPYwB m9iLgDuC5BwvFhapFYYJKx9xlVvpMoRJK/sEnesIfCqUc4KEl5UdFV889pGwStxK 0yrvdtr6Igk4xlQJBRSR+JuB6mWHaHsyVAL3Lbv703AN04i2WVVz/EkeNX96mrqZ FWbMkI1RcCaIk1RmmiFaiELS9k9Pt8PnJnH/+ZCGuDlokp09+AmUcbkE16k= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:16 2025 by rpki-client