$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yWzKekwDHlYoUE3qSxO4QF6fflI.roa File: yWzKekwDHlYoUE3qSxO4QF6fflI.roa (raw, json) Hash identifier: rwZQEfrWV2oMZmJ9umbpkEV/a9R9L+UFgLX6+rW4Mqk= Subject key identifier: C9:6C:CA:7A:4C:03:1E:56:28:50:4D:EA:4B:13:B8:40:5E:9F:7E:52 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DC1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yWzKekwDHlYoUE3qSxO4QF6fflI.roa Signing time: Tue 01 Apr 2025 02:24:49 +0000 ROA not before: Tue 01 Apr 2025 02:24:49 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3521 (0xdc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:24:49 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C96CCA7A4C031E5628504DEA4B13B8405E9F7E52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:58:05:6c:e3:6c:ac:78:e5:89:53:de:a6:89: 94:17:99:0d:62:98:62:12:79:be:88:d3:a7:21:62: 71:de:25:8c:ae:2a:44:77:54:1f:86:a0:aa:aa:24: 7b:da:0c:75:c0:8f:f2:6d:d9:21:28:24:1a:5a:4a: 10:ad:70:71:e4:f9:c4:22:08:10:78:61:0c:dc:ff: 0c:eb:f3:f5:51:bf:f6:71:f0:2a:ea:67:95:31:b5: 60:90:f5:d6:95:2f:3d:3a:eb:00:93:4c:1a:cc:ae: d7:52:a1:84:18:44:e6:a2:33:b7:c5:0d:2c:aa:97: 92:78:18:54:85:76:08:a3:f3:fc:ba:e8:8a:23:e6: d9:bd:31:3d:9c:d4:95:5a:fa:56:46:7c:65:25:e2: ca:0a:8a:b9:b3:76:8b:cf:f4:eb:bb:5c:27:79:64: e0:0e:ae:c4:fd:6b:fe:2d:b8:a3:0a:13:4c:ed:6f: 6b:f6:6e:85:e2:05:58:5f:6f:df:0a:f7:f4:19:c5: 3f:2f:5b:75:03:22:74:2a:19:a3:06:59:6a:a6:83: e2:c1:a8:26:09:bd:5a:b7:7b:a5:f4:10:f6:31:c8: f3:bd:2d:cc:de:43:3a:3e:50:7e:68:63:4d:70:77: f1:2b:11:78:71:37:fa:57:1f:d7:c1:b9:c8:21:54: 56:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:6C:CA:7A:4C:03:1E:56:28:50:4D:EA:4B:13:B8:40:5E:9F:7E:52 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yWzKekwDHlYoUE3qSxO4QF6fflI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.130.0/23 Signature Algorithm: sha256WithRSAEncryption df:ee:28:e6:1b:b7:4d:52:3f:97:e1:2a:77:41:4c:73:5b:7b: 25:d2:1f:09:d5:45:a5:a2:41:c7:86:15:51:f8:59:4b:fa:3d: a8:13:f7:23:7f:07:94:e9:d0:95:d3:77:64:58:56:0d:86:e4: f9:ff:4a:56:5c:cf:b6:25:9c:92:b1:1c:07:a1:e9:e2:56:83: a6:33:5e:e7:80:e0:62:52:64:37:7c:84:d8:5a:11:08:4a:f6: 18:b5:5a:02:c0:96:c5:22:78:68:5d:bd:84:17:ab:85:6b:58: 32:84:f2:32:65:c6:20:50:71:79:d2:2f:40:e0:47:77:6f:12: ec:d5:e6:01:f4:6e:95:b8:7a:4a:29:92:95:d8:04:f2:de:16: 9d:80:34:9b:00:f2:06:32:ce:5c:5e:89:70:42:61:29:06:e3: ff:90:b2:e1:54:7c:6c:0e:e2:92:b9:4c:53:9b:ff:b1:15:3b: 9a:85:78:35:4a:a9:46:1e:d9:33:84:13:a3:47:5a:e3:ee:6c: 62:27:c2:66:23:31:e7:55:16:af:22:e5:91:4f:f1:41:b7:c4: dd:18:43:7a:71:ae:98:4e:46:cc:30:21:32:ef:ef:9e:b1:77: 42:ea:0e:16:4c:47:ca:95:6f:f7:a6:4a:a7:8f:0f:cf:8d:68: 6e:5f:f0:76 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDcEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI0NDlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM5NkNDQTdBNEMwMzFF NTYyODUwNERFQTRCMTNCODQwNUU5RjdFNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8WAVs42yseOWJU96miZQXmQ1imGISeb6I06chYnHeJYyuKkR3 VB+GoKqqJHvaDHXAj/Jt2SEoJBpaShCtcHHk+cQiCBB4YQzc/wzr8/VRv/Zx8Crq Z5UxtWCQ9daVLz066wCTTBrMrtdSoYQYROaiM7fFDSyql5J4GFSFdgij8/y66Ioj 5tm9MT2c1JVa+lZGfGUl4soKirmzdovP9Ou7XCd5ZOAOrsT9a/4tuKMKE0ztb2v2 boXiBVhfb98K9/QZxT8vW3UDInQqGaMGWWqmg+LBqCYJvVq3e6X0EPYxyPO9Lcze Qzo+UH5oY01wd/ErEXhxN/pXH9fBucghVFapAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUyWzKekwDHlYoUE3qSxO4QF6fflIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3lXektla3dESGxZb1VFM3FTeE80UUY2ZmZsSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYoIwDQYJKoZIhvcNAQELBQADggEBAN/uKOYbt01SP5fhKndBTHNbeyXS HwnVRaWiQceGFVH4WUv6PagT9yN/B5Tp0JXTd2RYVg2G5Pn/SlZcz7YlnJKxHAeh 6eJWg6YzXueA4GJSZDd8hNhaEQhK9hi1WgLAlsUieGhdvYQXq4VrWDKE8jJlxiBQ cXnSL0DgR3dvEuzV5gH0bpW4ekopkpXYBPLeFp2ANJsA8gYyzlxeiXBCYSkG4/+Q suFUfGwO4pK5TFOb/7EVO5qFeDVKqUYe2TOEE6NHWuPubGInwmYjMedVFq8i5ZFP 8UG3xN0YQ3pxrphORswwITLv756xd0LqDhZMR8qVb/emSqePD8+NaG5f8HY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:20 2025 by rpki-client