$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vNR4ZX8oK4YjpkDjds5W1BTPeVM.roa File: vNR4ZX8oK4YjpkDjds5W1BTPeVM.roa (raw, json) Hash identifier: zMPCW4V/8KxmB3fCoCSQ1UvisB0LEiivZpDrS1c2iBE= Subject key identifier: BC:D4:78:65:7F:28:2B:86:23:A6:40:E3:76:CE:56:D4:14:CF:79:53 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D2C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vNR4ZX8oK4YjpkDjds5W1BTPeVM.roa Signing time: Tue 01 Apr 2025 02:13:52 +0000 ROA not before: Tue 01 Apr 2025 02:13:52 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3372 (0xd2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:52 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=BCD478657F282B8623A640E376CE56D414CF7953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:de:c6:f1:01:e0:f3:9c:c5:5f:42:4b:2e:1e: 4a:e0:d1:14:53:a5:a5:f9:2c:d6:8d:8d:cb:bc:e4: 8c:7f:51:dc:81:5d:0b:65:bc:f9:a8:40:cf:2b:e7: 2a:8a:94:c1:68:7a:cd:4b:55:c9:6a:9b:c5:bb:7c: 7d:1a:8f:c5:c9:12:3b:7c:73:93:ea:62:6f:3d:34: 1c:a4:93:92:97:f4:cc:3c:d5:e0:41:4e:97:76:ba: 4b:8e:20:29:a5:ca:79:73:18:8c:66:66:39:60:2b: 1f:14:44:52:c3:06:40:d9:89:4f:ba:d9:bb:d8:cb: 7d:fd:ed:bd:93:96:a7:96:99:f5:e2:02:b3:a4:2f: cb:1e:6e:d6:82:cb:76:32:5d:5a:f6:65:7e:fc:6c: 02:34:59:02:1f:64:ec:4b:6a:9c:08:f5:2a:0f:38: 7e:e2:6d:f1:63:10:30:bd:f8:5f:05:ff:36:a0:93: 40:25:7e:6e:d0:f8:a2:3b:3b:35:b6:df:34:ef:ad: b4:43:b1:8d:3c:f0:05:6a:c8:d1:9f:a4:a5:ba:67: 9f:c2:eb:1a:92:fe:d5:e7:a0:73:e8:14:39:8f:4f: b3:e3:54:b3:30:65:4a:f0:6d:15:3b:cc:a4:87:0a: 17:4a:be:53:f2:bd:cd:5f:a8:08:fd:35:c4:de:18: ba:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D4:78:65:7F:28:2B:86:23:A6:40:E3:76:CE:56:D4:14:CF:79:53 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vNR4ZX8oK4YjpkDjds5W1BTPeVM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.224.0/23 Signature Algorithm: sha256WithRSAEncryption 71:bc:d5:35:43:f5:b6:0c:b8:a8:05:f4:64:24:bc:7a:b4:86: 25:2e:6d:17:5a:b5:38:49:13:28:58:0d:f2:1b:4c:11:98:9a: 6a:2f:29:d8:cb:f6:02:35:96:84:28:07:49:b4:34:c3:dd:be: 0b:49:55:c7:f4:eb:ec:dd:e5:a5:84:ec:4f:32:91:6d:60:02: 36:34:7c:a7:50:6b:0a:aa:8a:d1:79:01:10:2e:ee:67:1f:e5: f9:db:0b:20:44:1e:b0:38:86:77:0b:7a:c1:f4:c5:bf:5e:aa: ac:cf:2d:19:e9:ea:3a:de:09:2b:82:22:47:19:ff:4a:50:3f: e3:58:e7:56:1c:77:3d:f5:25:b0:9a:3f:59:84:97:bb:48:db: 6a:a1:df:43:65:e0:14:0c:7b:db:69:fe:97:23:43:37:63:71: 24:77:84:fe:b2:73:b2:b2:ea:81:d5:ef:06:39:a4:03:d7:fe: a6:55:bc:db:93:18:0c:47:b1:3f:18:97:02:ba:60:91:70:fd: 84:f7:81:77:23:25:90:48:c9:dc:6b:f9:3f:e9:0d:18:9f:49: 86:c6:e6:94:c2:5f:20:02:ae:08:37:87:87:ec:51:b2:a1:6d: d1:5c:c8:94:b3:ab:3d:b3:17:4a:e0:9d:56:d3:59:e0:98:52: c8:35:02:38 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDSwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNTJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEJDRDQ3ODY1N0YyODJC ODYyM0E2NDBFMzc2Q0U1NkQ0MTRDRjc5NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDX3sbxAeDznMVfQksuHkrg0RRTpaX5LNaNjcu85Ix/UdyBXQtl vPmoQM8r5yqKlMFoes1LVclqm8W7fH0aj8XJEjt8c5PqYm89NBykk5KX9Mw81eBB Tpd2ukuOICmlynlzGIxmZjlgKx8URFLDBkDZiU+62bvYy3397b2TlqeWmfXiArOk L8sebtaCy3YyXVr2ZX78bAI0WQIfZOxLapwI9SoPOH7ibfFjEDC9+F8F/zagk0Al fm7Q+KI7OzW23zTvrbRDsY088AVqyNGfpKW6Z5/C6xqS/tXnoHPoFDmPT7PjVLMw ZUrwbRU7zKSHChdKvlPyvc1fqAj9NcTeGLqPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvNR4ZX8oK4YjpkDjds5W1BTPeVMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ZOUjRaWDhvSzRZanBrRGpkczVXMUJUUGVWTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExauAwDQYJKoZIhvcNAQELBQADggEBAHG81TVD9bYMuKgF9GQkvHq0hiUu bRdatThJEyhYDfIbTBGYmmovKdjL9gI1loQoB0m0NMPdvgtJVcf06+zd5aWE7E8y kW1gAjY0fKdQawqqitF5ARAu7mcf5fnbCyBEHrA4hncLesH0xb9eqqzPLRnp6jre CSuCIkcZ/0pQP+NY51Ycdz31JbCaP1mEl7tI22qh30Nl4BQMe9tp/pcjQzdjcSR3 hP6yc7Ky6oHV7wY5pAPX/qZVvNuTGAxHsT8YlwK6YJFw/YT3gXcjJZBIydxr+T/p DRifSYbG5pTCXyACrgg3h4fsUbKhbdFcyJSzqz2zF0rgnVbTWeCYUsg1Ajg= -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:09 2025 by rpki-client