$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zBRKZTUsL5yzPIu13IThK-Yclu4.roa File: zBRKZTUsL5yzPIu13IThK-Yclu4.roa (raw, json) Hash identifier: zsZOtAIdfYLAeTwNKa4Ket+iNqsclPBuchqfSbu8/qk= Subject key identifier: CC:14:4A:65:35:2C:2F:9C:B3:3C:8B:B5:DC:84:E1:2B:E6:1C:96:EE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C0A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zBRKZTUsL5yzPIu13IThK-Yclu4.roa Signing time: Tue 01 Apr 2025 01:51:34 +0000 ROA not before: Tue 01 Apr 2025 01:51:34 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3082 (0xc0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:51:34 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CC144A65352C2F9CB33C8BB5DC84E12BE61C96EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:06:ad:07:d8:68:13:ca:61:76:ee:9c:a3:eb: b2:c9:98:37:d7:38:16:ec:13:ac:65:ae:12:c4:da: 29:98:15:64:7b:59:ad:e5:1f:37:38:99:dd:b1:ff: 6f:b3:02:87:01:03:c1:90:3f:7d:e9:e2:26:4e:d8: b4:fa:51:a6:cc:72:06:ff:3e:28:04:a9:01:5a:0e: ce:4e:7f:e0:f3:45:1f:8c:3b:12:eb:d4:17:c5:57: 8a:63:15:88:5c:fd:88:ea:f3:80:92:78:f0:23:33: e8:69:42:d6:92:fb:9a:eb:82:a1:26:ca:e8:6b:ba: 13:23:49:be:fe:37:cc:71:54:13:b4:d6:ca:a0:c9: 59:9d:45:3c:a0:31:4e:66:cf:ec:4a:c9:fd:c9:75: 98:5e:6a:c0:b1:19:4f:36:c2:8d:b8:fb:28:8b:ee: 09:4c:e5:42:9d:49:dc:05:df:8b:25:9c:03:96:7b: 11:2a:84:1e:c2:89:ff:fd:ed:c1:58:a5:00:1c:96: 40:c5:ae:52:d4:e6:a1:ea:df:3e:12:ae:09:5e:77: 2d:43:e5:f6:30:7f:f2:6e:0b:11:8e:f7:c3:c2:82: 00:ed:ec:b1:b8:ab:eb:aa:8f:b8:db:4f:36:e8:2b: 72:b8:1f:a4:88:5a:b8:07:38:bd:38:04:f9:77:3f: 64:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:14:4A:65:35:2C:2F:9C:B3:3C:8B:B5:DC:84:E1:2B:E6:1C:96:EE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zBRKZTUsL5yzPIu13IThK-Yclu4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.96.0/22 Signature Algorithm: sha256WithRSAEncryption c5:72:9c:5f:10:f3:02:87:e1:67:93:8a:6e:67:b5:4f:2b:b3: ca:0b:b3:cc:32:3c:fa:02:e3:17:8c:36:3b:a0:35:9f:eb:13: 3d:c8:e1:f2:43:81:2b:1f:3a:c4:63:31:25:62:5e:40:13:11: 4f:83:b4:a4:fc:2a:05:39:78:28:8f:75:8f:ab:72:b1:64:40: 4e:d0:0b:50:da:46:6c:ff:3f:d6:79:52:2b:2a:95:ac:75:49: 0b:9e:13:96:b1:1d:f5:af:84:7b:2d:fd:b3:fc:bc:8c:a0:6a: 53:29:ae:a3:4a:2a:f7:2d:c4:60:63:e2:77:9a:ac:48:30:1b: a9:5e:43:36:5e:ad:30:8a:f4:a5:40:b3:5c:b9:44:e3:7e:44: 64:cf:23:f8:83:66:df:76:7d:cf:8d:ca:82:07:65:b9:7d:47: 98:55:f6:69:3d:98:63:73:52:b2:cd:f2:e9:b0:57:ff:8c:b9: 42:a7:ba:11:66:25:6b:f8:cd:f6:2d:34:3a:22:fc:2a:b1:e7: 95:1d:ff:cb:17:34:7c:56:5a:d2:3d:32:b9:38:68:58:06:bc: 2b:c3:5e:93:bc:b1:e4:b7:f3:11:7b:6b:ce:df:6e:74:f9:6f: be:42:29:9e:4f:10:03:c5:1f:93:da:04:d3:d0:7f:43:ba:7e: 18:f9:59:a6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDAowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTUxMzRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENDMTQ0QTY1MzUyQzJG OUNCMzNDOEJCNURDODRFMTJCRTYxQzk2RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGBq0H2GgTymF27pyj67LJmDfXOBbsE6xlrhLE2imYFWR7Wa3l Hzc4md2x/2+zAocBA8GQP33p4iZO2LT6UabMcgb/PigEqQFaDs5Of+DzRR+MOxLr 1BfFV4pjFYhc/Yjq84CSePAjM+hpQtaS+5rrgqEmyuhruhMjSb7+N8xxVBO01sqg yVmdRTygMU5mz+xKyf3JdZheasCxGU82wo24+yiL7glM5UKdSdwF34slnAOWexEq hB7Cif/97cFYpQAclkDFrlLU5qHq3z4Srgledy1D5fYwf/JuCxGO98PCggDt7LG4 q+uqj7jbTzboK3K4H6SIWrgHOL04BPl3P2QHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzBRKZTUsL5yzPIu13IThK+Yclu4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3pCUktaVFVzTDV5elBJdTEzSVRoSy1ZY2x1NC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxamAwDQYJKoZIhvcNAQELBQADggEBAMVynF8Q8wKH4WeTim5ntU8rs8oL s8wyPPoC4xeMNjugNZ/rEz3I4fJDgSsfOsRjMSViXkATEU+DtKT8KgU5eCiPdY+r crFkQE7QC1DaRmz/P9Z5Uisqlax1SQueE5axHfWvhHst/bP8vIygalMprqNKKvct xGBj4nearEgwG6leQzZerTCK9KVAs1y5RON+RGTPI/iDZt92fc+NyoIHZbl9R5hV 9mk9mGNzUrLN8umwV/+MuUKnuhFmJWv4zfYtNDoi/Cqx55Ud/8sXNHxWWtI9Mrk4 aFgGvCvDXpO8seS38xF7a87fbnT5b75CKZ5PEAPFH5PaBNPQf0O6fhj5WaY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:51 2025 by rpki-client