$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/x2J1J_Dfml_Kc2tl6KONBmqGhD4.roa File: x2J1J_Dfml_Kc2tl6KONBmqGhD4.roa (raw, json) Hash identifier: ylLk+6qTgsEKOd8KQV+QNLP4mDDyxKQwr8wIllAkBxY= Subject key identifier: C7:62:75:27:F0:DF:9A:5F:CA:73:6B:65:E8:A3:8D:06:6A:86:84:3E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BFD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/x2J1J_Dfml_Kc2tl6KONBmqGhD4.roa Signing time: Tue 01 Apr 2025 01:51:28 +0000 ROA not before: Tue 01 Apr 2025 01:51:28 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3069 (0xbfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:51:28 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C7627527F0DF9A5FCA736B65E8A38D066A86843E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:91:1d:46:af:c0:0a:3b:92:9b:10:58:d2:29: fe:b5:0b:ea:97:01:ca:73:8a:ac:2d:f5:f7:56:c0: d6:dc:31:c4:ce:c6:9c:93:fc:6f:e4:10:76:6d:ac: 72:74:e5:e9:7e:cd:b2:d4:83:30:25:2d:38:54:04: 8f:9a:7b:ed:70:d5:02:58:b3:b1:78:39:ab:95:63: 60:f8:b7:90:db:27:ca:85:c2:b2:25:e3:68:b0:c7: 59:8a:d9:dc:37:f2:09:e0:9e:6b:d4:62:f1:49:b0: 45:0e:f2:ba:2b:ae:2a:bc:4b:6a:3d:1f:3e:47:53: 17:2b:43:c9:18:00:92:eb:ba:7b:cc:26:de:12:9b: cb:5b:da:26:41:3b:6e:d7:1e:f7:16:0f:c2:0a:71: 7f:da:86:5f:13:05:72:8e:fe:d2:4e:53:01:2b:81: 63:c1:88:9f:5d:04:0f:fb:a1:74:fd:6e:e8:ad:21: f0:34:d5:01:d9:66:b9:39:cb:0b:5f:b4:a4:5a:98: 8a:f3:3a:ef:50:f2:60:3d:cc:30:a7:7f:95:fb:21: d2:e5:96:08:d9:82:6c:d0:92:8d:34:d5:7a:ec:f6: 6c:c1:84:b2:c8:a9:d3:81:1e:d1:5d:c1:03:c2:a6: fa:7d:f3:6b:3f:5a:d1:dd:17:8c:6a:61:e1:fa:28: d6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:62:75:27:F0:DF:9A:5F:CA:73:6B:65:E8:A3:8D:06:6A:86:84:3E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/x2J1J_Dfml_Kc2tl6KONBmqGhD4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.213.0/24 Signature Algorithm: sha256WithRSAEncryption 16:28:c3:33:22:52:47:a7:96:a5:bd:6a:2d:a0:96:a2:ac:2d: 02:08:25:0a:b7:6d:e6:e3:63:9a:90:0a:a4:b9:c4:b2:ae:cd: 54:53:52:7b:13:8f:05:b6:95:ad:e3:51:01:ac:3d:1e:aa:40: e7:64:1d:0d:70:f9:cf:b2:d6:96:d9:b9:f8:15:1f:e7:0b:8c: 0b:de:cd:69:25:7c:ae:34:2f:7e:8d:19:2f:ad:47:7e:02:c1: c9:7d:3f:40:a6:8e:e0:e5:6c:ec:b9:a1:52:34:48:c9:a8:7c: 81:4e:1f:9f:9b:0f:4d:97:81:43:41:bb:d8:3a:01:17:8c:31: 5d:53:81:32:03:cd:7b:b0:ca:a1:3e:97:ed:82:ea:f0:fb:ae: ee:e3:19:46:de:e3:19:d7:bc:99:17:9c:07:eb:07:41:02:d0: e6:b3:ff:2b:16:ba:9c:73:67:4f:8c:7e:0d:93:aa:29:a7:56: 63:b6:22:5f:a1:d8:29:e6:26:06:72:3a:ed:67:e3:7b:68:93: 1d:4b:b5:fb:1a:38:e5:b9:df:52:3a:cc:fe:91:15:54:49:17: 4e:05:bf:4c:b9:ca:1c:53:83:87:31:41:46:b9:ac:2c:81:dd: 53:1d:0b:d5:3e:34:1a:5d:ad:52:4d:94:b4:fa:e0:00:71:60: e6:61:85:87 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC/0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTUxMjhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM3NjI3NTI3RjBERjlB NUZDQTczNkI2NUU4QTM4RDA2NkE4Njg0M0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCkR1Gr8AKO5KbEFjSKf61C+qXAcpziqwt9fdWwNbcMcTOxpyT /G/kEHZtrHJ05el+zbLUgzAlLThUBI+ae+1w1QJYs7F4OauVY2D4t5DbJ8qFwrIl 42iwx1mK2dw38gngnmvUYvFJsEUO8rorriq8S2o9Hz5HUxcrQ8kYAJLrunvMJt4S m8tb2iZBO27XHvcWD8IKcX/ahl8TBXKO/tJOUwErgWPBiJ9dBA/7oXT9buitIfA0 1QHZZrk5ywtftKRamIrzOu9Q8mA9zDCnf5X7IdLllgjZgmzQko001Xrs9mzBhLLI qdOBHtFdwQPCpvp982s/WtHdF4xqYeH6KNZ7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUx2J1J/Dfml/Kc2tl6KONBmqGhD4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3gySjFKX0RmbWxfS2MydGw2S09OQm1xR2hENC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxatUwDQYJKoZIhvcNAQELBQADggEBABYowzMiUkenlqW9ai2glqKsLQII JQq3bebjY5qQCqS5xLKuzVRTUnsTjwW2la3jUQGsPR6qQOdkHQ1w+c+y1pbZufgV H+cLjAvezWklfK40L36NGS+tR34Cwcl9P0CmjuDlbOy5oVI0SMmofIFOH5+bD02X gUNBu9g6AReMMV1TgTIDzXuwyqE+l+2C6vD7ru7jGUbe4xnXvJkXnAfrB0EC0Oaz /ysWupxzZ0+Mfg2TqimnVmO2Il+h2CnmJgZyOu1n43tokx1LtfsaOOW531I6zP6R FVRJF04Fv0y5yhxTg4cxQUa5rCyB3VMdC9U+NBpdrVJNlLT64ABxYOZhhYc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:08 2025 by rpki-client