$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ycDVGom-AtBwvl9MZeo1F6_a1TA.roa File: ycDVGom-AtBwvl9MZeo1F6_a1TA.roa (raw, json) Hash identifier: xKmHE4h+1n2TyZ5zskBBoFFv0gc4qcjvWImovAUfMTI= Subject key identifier: C9:C0:D5:1A:89:BE:02:D0:70:BE:5F:4C:65:EA:35:17:AF:DA:D5:30 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BFF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ycDVGom-AtBwvl9MZeo1F6_a1TA.roa Signing time: Tue 01 Apr 2025 01:51:29 +0000 ROA not before: Tue 01 Apr 2025 01:51:29 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3071 (0xbff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:51:29 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C9C0D51A89BE02D070BE5F4C65EA3517AFDAD530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0a:a4:e9:c8:ea:aa:31:cf:f5:12:f5:f4:00: 59:45:70:03:8c:64:5b:7a:0b:d8:17:42:78:f4:62: 38:06:54:ed:47:bd:b9:8e:7c:c0:e1:fb:13:1b:fd: 72:1d:f8:b6:92:24:9e:1f:a8:b1:2d:47:e5:34:e3: 15:e2:cc:95:e6:56:3f:91:69:c8:01:53:e0:b6:e7: 62:8f:2a:b7:1b:ac:85:ca:9a:d6:41:fc:8c:28:18: 4b:5d:38:14:0b:3c:93:8a:3e:6d:df:c0:96:ea:2f: 84:a4:47:a5:2d:a5:64:cf:20:72:4d:de:13:85:a7: 1a:ec:24:ae:6f:78:eb:61:e9:7f:eb:b1:51:92:27: 93:11:70:bc:f4:57:97:c4:1c:43:b8:33:ce:8b:a4: 26:20:6a:65:45:2e:7b:05:76:83:c7:76:81:5c:f3: 65:71:62:a3:8c:80:ff:08:3b:83:c9:22:1b:57:c4: c4:a9:0d:59:f2:16:55:2e:16:89:3e:1f:3b:bd:83: a9:cb:83:5f:38:de:b1:c8:0f:73:2a:05:04:f0:c2: 1d:13:e1:58:af:d1:54:e3:ed:d0:b3:a4:90:3b:70: 0b:00:6d:e1:22:78:ef:86:6e:ed:53:a0:ee:f8:be: 62:d0:c0:6a:60:dc:43:19:d1:d3:79:97:92:e3:4b: 37:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C0:D5:1A:89:BE:02:D0:70:BE:5F:4C:65:EA:35:17:AF:DA:D5:30 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ycDVGom-AtBwvl9MZeo1F6_a1TA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.156.0/22 Signature Algorithm: sha256WithRSAEncryption 75:c3:ed:a2:31:e7:65:e6:27:b9:ff:3a:16:67:b1:f0:e5:d1: d5:00:6b:ff:9a:09:79:62:52:59:c8:21:ed:45:b3:8a:43:1d: e1:d5:03:36:15:70:64:c8:ea:bc:26:a4:da:65:11:59:21:4f: 05:b4:ff:dd:0b:70:94:6b:c6:eb:19:80:c9:c6:ef:75:e9:df: 63:03:c3:2b:69:04:48:92:a2:2c:5c:63:bb:0c:c5:df:9a:8a: 0b:e0:b7:5a:db:32:cd:15:6e:bc:77:4d:72:2e:51:2a:31:ce: b0:3e:c6:92:3d:7c:99:bb:2e:b3:d1:91:ed:20:b9:3d:2b:84: 8f:26:1d:a6:b5:da:65:c6:f9:79:bd:af:37:b0:76:47:34:a0: f1:79:2a:bf:fb:ae:40:07:9d:1a:a3:60:89:13:32:0d:5c:0b: 4c:7c:03:85:ad:f0:f6:b1:d7:67:71:ce:53:30:ae:53:6c:17: de:25:11:42:0b:e3:0b:a5:db:bb:01:b9:ec:01:6d:68:a8:3c: 82:eb:01:10:35:a2:98:65:f4:80:ad:43:31:d2:16:be:e5:2d: bc:45:b5:3f:28:f2:44:69:2a:a5:98:c8:07:35:12:ea:25:bb: 0e:d9:57:6f:54:36:87:fb:d6:69:5a:d0:08:b9:48:14:e0:77: c0:6a:7a:dd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC/8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTUxMjlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM5QzBENTFBODlCRTAy RDA3MEJFNUY0QzY1RUEzNTE3QUZEQUQ1MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0CqTpyOqqMc/1EvX0AFlFcAOMZFt6C9gXQnj0YjgGVO1HvbmO fMDh+xMb/XId+LaSJJ4fqLEtR+U04xXizJXmVj+RacgBU+C252KPKrcbrIXKmtZB /IwoGEtdOBQLPJOKPm3fwJbqL4SkR6UtpWTPIHJN3hOFpxrsJK5veOth6X/rsVGS J5MRcLz0V5fEHEO4M86LpCYgamVFLnsFdoPHdoFc82VxYqOMgP8IO4PJIhtXxMSp DVnyFlUuFok+Hzu9g6nLg1843rHID3MqBQTwwh0T4Viv0VTj7dCzpJA7cAsAbeEi eO+Gbu1ToO74vmLQwGpg3EMZ0dN5l5LjSzcbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUycDVGom+AtBwvl9MZeo1F6/a1TAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ljRFZHb20tQXRCd3ZsOU1aZW8xRjZfYTFUQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYpwwDQYJKoZIhvcNAQELBQADggEBAHXD7aIx52XmJ7n/OhZnsfDl0dUA a/+aCXliUlnIIe1Fs4pDHeHVAzYVcGTI6rwmpNplEVkhTwW0/90LcJRrxusZgMnG 73Xp32MDwytpBEiSoixcY7sMxd+aigvgt1rbMs0Vbrx3TXIuUSoxzrA+xpI9fJm7 LrPRke0guT0rhI8mHaa12mXG+Xm9rzewdkc0oPF5Kr/7rkAHnRqjYIkTMg1cC0x8 A4Wt8Pax12dxzlMwrlNsF94lEUIL4wul27sBuewBbWioPILrARA1ophl9ICtQzHS Fr7lLbxFtT8o8kRpKqWYyAc1Euoluw7ZV29UNof71mla0Ai5SBTgd8Bqet0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:31:07 2025 by rpki-client