$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sxxtzymBVdoPI5EJWRosGA6xoyM.roa File: sxxtzymBVdoPI5EJWRosGA6xoyM.roa (raw, json) Hash identifier: br7ghnxZ3ZrhyfZ3DJBBcdG7Voo/vGClIFLYHoJgCtA= Subject key identifier: B3:1C:6D:CF:29:81:55:DA:0F:23:91:09:59:1A:2C:18:0E:B1:A3:23 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D9C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sxxtzymBVdoPI5EJWRosGA6xoyM.roa Signing time: Tue 01 Apr 2025 02:21:39 +0000 ROA not before: Tue 01 Apr 2025 02:21:39 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3484 (0xd9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:39 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B31C6DCF298155DA0F239109591A2C180EB1A323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:38:b5:b8:83:c9:97:65:4d:60:82:5c:cc:de: ba:a4:cd:99:25:d1:76:76:aa:84:89:52:af:32:2a: a2:b7:8b:cf:f4:9c:4b:3b:1a:e2:f1:79:4e:51:a1: de:e1:1d:22:00:02:00:99:d1:5a:2d:c5:c4:31:a8: c7:2b:ea:42:4a:c5:75:1a:6c:74:33:16:ef:b4:34: 27:e0:4d:12:85:83:58:1f:61:b9:ce:2b:0c:0e:7f: c6:2d:a1:1a:07:b1:67:e2:0e:b5:a1:34:cb:36:a1: 69:15:49:13:33:c1:38:5c:f3:f1:a5:bf:17:02:00: c0:c6:c8:58:7d:30:14:b2:e0:97:36:d7:74:3c:0b: dc:83:84:a6:58:d0:db:45:a0:6d:77:a5:7d:1e:91: 30:03:4c:ef:73:96:dd:01:0e:dd:b2:ca:6c:3e:98: 58:12:c5:d8:27:d4:98:c7:25:6f:17:b7:9c:b6:d2: 28:2f:24:6c:3f:48:1d:84:04:e6:d3:9b:96:2e:5f: ae:4e:21:d1:f0:24:b6:cc:08:d5:12:47:fc:ec:e8: 24:e7:2a:6c:59:e5:34:b1:3d:c0:51:3d:9d:a9:87: 50:7d:ee:41:2a:51:e9:4c:03:5a:68:ad:e8:11:72: a5:f0:81:f3:a2:94:5a:72:40:ab:5c:d3:fd:12:14: 94:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:1C:6D:CF:29:81:55:DA:0F:23:91:09:59:1A:2C:18:0E:B1:A3:23 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sxxtzymBVdoPI5EJWRosGA6xoyM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.9.0/24 Signature Algorithm: sha256WithRSAEncryption 22:92:e3:da:f6:d5:51:bb:91:45:75:3d:46:9b:c6:f7:93:63: f3:df:f5:2c:46:85:09:b6:77:09:d6:8b:38:2b:36:77:ce:06: 86:9a:7b:3a:04:3f:bd:13:60:7a:50:13:b3:df:70:ee:10:57: 63:aa:7b:42:37:fb:c3:05:77:c3:bb:2a:05:10:58:3a:52:63: f7:48:3c:5f:d9:5d:22:cc:96:09:23:61:76:a1:da:37:98:4f: 86:7f:d8:c4:4f:b3:c7:e9:33:b0:57:6c:6f:fa:26:69:32:5c: 51:ba:13:f9:4b:92:59:27:73:92:52:14:25:15:80:a9:1d:9a: 2c:c5:95:11:01:d6:05:65:f1:ad:cc:6c:e5:76:00:b2:91:0e: 47:9f:c8:ca:08:7d:09:c5:74:e6:d3:3d:46:b7:59:02:93:e5: cd:50:7c:d1:9e:a3:55:aa:98:9c:e0:00:d9:85:82:a1:b1:65: 3d:9c:5b:39:b0:af:31:83:bb:77:8b:bd:89:e2:f2:e2:20:89: b1:a0:b0:be:65:ef:1f:23:68:f6:c5:0f:79:c7:32:d0:1d:02: 7c:85:01:70:44:17:e5:6a:8d:38:22:d3:7b:3e:3e:4a:d4:ac: 03:39:14:06:5d:4d:8b:56:a3:56:68:33:03:b9:a9:fa:b0:64: 30:5b:50:dc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDZwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMzlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIzMUM2RENGMjk4MTU1 REEwRjIzOTEwOTU5MUEyQzE4MEVCMUEzMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwOLW4g8mXZU1gglzM3rqkzZkl0XZ2qoSJUq8yKqK3i8/0nEs7 GuLxeU5Rod7hHSIAAgCZ0VotxcQxqMcr6kJKxXUabHQzFu+0NCfgTRKFg1gfYbnO KwwOf8YtoRoHsWfiDrWhNMs2oWkVSRMzwThc8/GlvxcCAMDGyFh9MBSy4Jc213Q8 C9yDhKZY0NtFoG13pX0ekTADTO9zlt0BDt2yymw+mFgSxdgn1JjHJW8Xt5y20igv JGw/SB2EBObTm5YuX65OIdHwJLbMCNUSR/zs6CTnKmxZ5TSxPcBRPZ2ph1B97kEq UelMA1poregRcqXwgfOilFpyQKtc0/0SFJTvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsxxtzymBVdoPI5EJWRosGA6xoyMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3N4eHR6eW1CVmRvUEk1RUpXUm9zR0E2eG95TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaAkwDQYJKoZIhvcNAQELBQADggEBACKS49r21VG7kUV1PUabxveTY/Pf 9SxGhQm2dwnWizgrNnfOBoaaezoEP70TYHpQE7PfcO4QV2Oqe0I3+8MFd8O7KgUQ WDpSY/dIPF/ZXSLMlgkjYXah2jeYT4Z/2MRPs8fpM7BXbG/6JmkyXFG6E/lLklkn c5JSFCUVgKkdmizFlREB1gVl8a3MbOV2ALKRDkefyMoIfQnFdObTPUa3WQKT5c1Q fNGeo1WqmJzgANmFgqGxZT2cWzmwrzGDu3eLvYni8uIgibGgsL5l7x8jaPbFD3nH MtAdAnyFAXBEF+VqjTgi03s+PkrUrAM5FAZdTYtWo1ZoMwO5qfqwZDBbUNw= -----END CERTIFICATE-----Generated at Sat Apr 5 17:07:52 2025 by rpki-client