$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yuI9QL2iLkztcM-ydFdh5aVs6wE.roa File: yuI9QL2iLkztcM-ydFdh5aVs6wE.roa (raw, json) Hash identifier: WBCGpdcJ6X2kLjd/QT8mb8JP2rZn/gLJulywzBHln30= Subject key identifier: CA:E2:3D:40:BD:A2:2E:4C:ED:70:CF:B2:74:57:61:E5:A5:6C:EB:01 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E36 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yuI9QL2iLkztcM-ydFdh5aVs6wE.roa Signing time: Tue 01 Apr 2025 02:33:36 +0000 ROA not before: Tue 01 Apr 2025 02:33:36 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:33:36 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CAE23D40BDA22E4CED70CFB2745761E5A56CEB01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c1:b3:29:bb:5c:21:7f:32:b6:67:7b:ea:09: e4:6c:c8:d7:f0:e3:80:89:a0:3b:7f:04:64:c9:df: 94:bf:10:f7:1f:ad:a1:3c:ef:50:fe:de:8f:52:e1: d1:1c:b0:cb:f9:02:25:39:4c:95:3b:ca:26:2f:6f: a8:0b:08:c0:9a:2f:8f:26:c1:ca:de:ce:d7:c7:46: 38:af:d4:54:0b:56:ba:28:ac:5d:23:2a:e0:5b:a4: 33:9d:b9:a1:19:e5:ec:af:eb:0f:b5:32:9c:9d:be: f0:a5:01:19:59:40:b6:16:09:f6:b8:cc:a0:fe:64: 99:7d:f1:28:70:4c:51:58:f3:34:ca:95:6d:d8:40: bc:d0:35:da:ee:b7:b4:1f:c8:3a:15:a8:9b:ed:dd: 9e:59:89:80:f9:81:bb:aa:42:ba:93:11:d2:d1:63: 8f:0b:f7:c5:34:89:9d:0e:18:c0:12:5b:7c:b3:b5: b3:cd:c7:01:33:c9:a6:35:c6:74:1b:bb:ce:2a:8a: 47:ab:b3:b4:21:7d:a2:9c:c4:9a:1e:4b:76:21:65: ff:48:46:4a:35:b9:6a:19:fb:20:aa:76:9a:d1:92: a5:0c:2a:e8:16:e4:dc:0f:81:cd:fb:e6:1d:64:e0: 71:7a:d7:a4:89:9b:30:a3:bd:db:64:9d:d3:0e:32: 75:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:E2:3D:40:BD:A2:2E:4C:ED:70:CF:B2:74:57:61:E5:A5:6C:EB:01 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yuI9QL2iLkztcM-ydFdh5aVs6wE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.162.0/23 Signature Algorithm: sha256WithRSAEncryption ca:f0:83:61:54:7f:c8:20:7d:3e:3a:72:ce:4c:26:5c:b9:83: e2:34:95:7d:7b:3d:0e:a3:39:f9:4b:e0:8b:07:8a:82:f4:81: cf:a2:f1:65:85:8a:10:4c:8e:ba:1e:bf:ba:b5:b4:6c:a0:a5: 52:d2:40:29:da:81:3f:e1:84:30:2d:62:3c:fe:40:cb:93:8c: 81:d2:4a:91:72:9a:6b:d8:c1:c2:e5:bd:84:64:d0:25:5f:ce: bd:ee:34:a2:4d:e8:97:4f:4a:9f:3f:51:93:0c:ab:f2:1b:a2: d9:56:36:f9:23:9a:cd:0e:74:57:99:aa:b3:56:2d:db:fd:64: cb:6f:d0:b3:43:48:47:a1:9b:33:c1:8f:67:e4:9e:eb:74:5e: ef:c2:19:55:58:df:ca:aa:91:0c:d8:29:f9:19:1a:87:30:15: 06:55:6d:fc:6b:60:3e:e5:49:3c:bb:37:93:66:54:ea:bb:03: f7:4a:6e:9f:6b:d4:34:21:fd:92:46:2d:4e:39:fe:53:a7:f5: 30:60:25:29:64:97:29:c6:81:2c:76:51:3b:a1:95:06:7b:cb: 97:ab:89:2b:3f:1a:01:a4:bd:1c:bb:b7:e3:b1:b1:3c:01:0c: 5e:15:b5:44:90:9c:64:74:ab:a0:1c:77:5b:35:27:0c:43:6a: 8e:59:65:23 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMzMzZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENBRTIzRDQwQkRBMjJF NENFRDcwQ0ZCMjc0NTc2MUU1QTU2Q0VCMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+wbMpu1whfzK2Z3vqCeRsyNfw44CJoDt/BGTJ35S/EPcfraE8 71D+3o9S4dEcsMv5AiU5TJU7yiYvb6gLCMCaL48mwcreztfHRjiv1FQLVroorF0j KuBbpDOduaEZ5eyv6w+1MpydvvClARlZQLYWCfa4zKD+ZJl98ShwTFFY8zTKlW3Y QLzQNdrut7QfyDoVqJvt3Z5ZiYD5gbuqQrqTEdLRY48L98U0iZ0OGMASW3yztbPN xwEzyaY1xnQbu84qikers7QhfaKcxJoeS3YhZf9IRko1uWoZ+yCqdprRkqUMKugW 5NwPgc375h1k4HF616SJmzCjvdtkndMOMnUtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUyuI9QL2iLkztcM+ydFdh5aVs6wEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3l1STlRTDJpTGt6dGNNLXlkRmRoNWFWczZ3RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYqIwDQYJKoZIhvcNAQELBQADggEBAMrwg2FUf8ggfT46cs5MJly5g+I0 lX17PQ6jOflL4IsHioL0gc+i8WWFihBMjroev7q1tGygpVLSQCnagT/hhDAtYjz+ QMuTjIHSSpFymmvYwcLlvYRk0CVfzr3uNKJN6JdPSp8/UZMMq/IbotlWNvkjms0O dFeZqrNWLdv9ZMtv0LNDSEehmzPBj2fknut0Xu/CGVVY38qqkQzYKfkZGocwFQZV bfxrYD7lSTy7N5NmVOq7A/dKbp9r1DQh/ZJGLU45/lOn9TBgJSlklynGgSx2UTuh lQZ7y5eriSs/GgGkvRy7t+OxsTwBDF4VtUSQnGR0q6Acd1s1JwxDao5ZZSM= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:13 2025 by rpki-client