$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/wDZpOI6aN-ju44sMUrZ1-IuDeP8.roa File: wDZpOI6aN-ju44sMUrZ1-IuDeP8.roa (raw, json) Hash identifier: yNl5wBoYWT6EaYAiufTgvVnqrMP9ozZlzkDX7nz5ALM= Subject key identifier: C0:36:69:38:8E:9A:37:E8:EE:E3:8B:0C:52:B6:75:F8:8B:83:78:FF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B5E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wDZpOI6aN-ju44sMUrZ1-IuDeP8.roa Signing time: Tue 01 Apr 2025 01:33:23 +0000 ROA not before: Tue 01 Apr 2025 01:33:23 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2910 (0xb5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:23 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C03669388E9A37E8EEE38B0C52B675F88B8378FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:88:e7:59:d4:73:b0:e6:c2:7b:58:18:00:0e: 01:cd:3a:91:f7:52:86:97:5a:39:bd:72:d0:62:f6: 51:ea:26:d9:94:e0:f9:68:68:a6:ab:6d:c5:69:0b: e1:10:ca:61:8f:17:1f:72:6f:bc:49:43:d1:d4:3d: dd:d2:27:ba:37:db:33:13:f9:76:bb:08:30:b7:39: be:2d:66:97:47:bb:93:fc:63:ec:d8:17:16:55:47: 4f:b0:7c:c6:02:f1:e3:94:53:8f:b3:ff:1e:48:40: 3f:bf:d9:d6:a6:ed:7a:2a:37:04:71:60:9e:0a:c9: 2d:d2:9b:30:3a:37:aa:82:2f:47:d8:f0:73:ed:6d: 95:34:a3:ae:e5:44:61:ca:6b:f6:5a:c0:9b:cd:ba: 0a:93:70:5b:05:42:72:97:5e:82:9b:40:03:e7:59: 1c:44:e6:73:5d:f8:63:0c:9f:6f:4a:87:88:9a:be: 60:d6:4e:ea:e3:2f:c4:2e:63:43:1d:c4:1c:46:f2: 6d:43:a0:4a:9c:48:8a:c9:66:c7:29:a1:2c:4f:17: c7:fa:79:69:07:02:b5:8c:92:06:88:83:55:a3:3d: 47:75:05:75:ee:55:81:c2:bd:40:3a:67:ca:b4:f1: 9d:86:a1:a5:1a:14:d6:7c:6a:14:55:ec:96:70:1c: f5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:36:69:38:8E:9A:37:E8:EE:E3:8B:0C:52:B6:75:F8:8B:83:78:FF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wDZpOI6aN-ju44sMUrZ1-IuDeP8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.52.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:9a:db:c6:c0:36:01:2d:db:92:9d:a6:9e:2f:e0:65:02:8e: 3f:5f:25:47:fb:d3:d0:ff:86:8d:26:f4:b9:6a:74:83:a5:84: 6c:9a:70:24:c6:26:3a:bb:b1:eb:ff:a4:fc:13:28:1d:54:58: 48:a8:c8:31:d6:a3:dd:29:2d:5e:7c:e8:66:d8:01:9d:0e:c9: 58:80:fc:08:5d:27:fa:8c:d4:28:80:d3:bb:14:74:f7:3b:21: 3b:07:3c:9e:23:74:11:ef:79:cb:56:43:da:13:17:6e:ba:bf: 05:7f:f6:af:27:6c:0f:80:99:0c:e1:d3:c5:43:ea:4a:12:44: cb:ac:32:bb:af:ec:4f:f5:cb:58:f5:fd:03:41:46:01:43:83: 44:8f:88:fb:13:f8:d4:21:91:5b:43:f8:a9:e4:56:e2:63:4b: 12:bd:fc:69:15:cf:3e:12:33:ca:58:67:a4:d3:4b:c0:2e:e0: 4b:e6:69:49:41:f8:87:e3:bc:d4:fa:e6:26:9e:30:aa:f0:f3: 63:b9:b6:cc:44:67:29:63:74:e0:24:73:c1:16:c1:c3:d4:2c: c6:a3:bb:4d:10:bd:48:55:89:4c:89:99:32:db:cc:f8:23:5b: 6a:a0:b2:57:78:2f:cd:b4:7a:1d:d1:9e:75:b7:00:39:ff:ea: aa:7e:4d:ae -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC14wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMjNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEMwMzY2OTM4OEU5QTM3 RThFRUUzOEIwQzUyQjY3NUY4OEI4Mzc4RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDciOdZ1HOw5sJ7WBgADgHNOpH3UoaXWjm9ctBi9lHqJtmU4Plo aKarbcVpC+EQymGPFx9yb7xJQ9HUPd3SJ7o32zMT+Xa7CDC3Ob4tZpdHu5P8Y+zY FxZVR0+wfMYC8eOUU4+z/x5IQD+/2dam7XoqNwRxYJ4KyS3SmzA6N6qCL0fY8HPt bZU0o67lRGHKa/ZawJvNugqTcFsFQnKXXoKbQAPnWRxE5nNd+GMMn29Kh4iavmDW TurjL8QuY0MdxBxG8m1DoEqcSIrJZscpoSxPF8f6eWkHArWMkgaIg1WjPUd1BXXu VYHCvUA6Z8q08Z2GoaUaFNZ8ahRV7JZwHPXbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwDZpOI6aN+ju44sMUrZ1+IuDeP8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3dEWnBPSTZhTi1qdTQ0c01VcloxLUl1RGVQOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYjQwDQYJKoZIhvcNAQELBQADggEBAGua28bANgEt25Kdpp4v4GUCjj9f JUf709D/ho0m9LlqdIOlhGyacCTGJjq7sev/pPwTKB1UWEioyDHWo90pLV586GbY AZ0OyViA/AhdJ/qM1CiA07sUdPc7ITsHPJ4jdBHvectWQ9oTF266vwV/9q8nbA+A mQzh08VD6koSRMusMruv7E/1y1j1/QNBRgFDg0SPiPsT+NQhkVtD+KnkVuJjSxK9 /GkVzz4SM8pYZ6TTS8Au4EvmaUlB+IfjvNT65iaeMKrw82O5tsxEZyljdOAkc8EW wcPULMaju00QvUhViUyJmTLbzPgjW2qgsld4L820eh3RnnW3ADn/6qp+Ta4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:25 2025 by rpki-client