$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/39061/9fbAmqRsNqcbJgwuvmR9ep4sdY0.roa File: 9fbAmqRsNqcbJgwuvmR9ep4sdY0.roa (raw, json) Hash identifier: nMqj2SfatBep+6/uc/hHfwQTQCdiCrPV4TV/nzGfzRY= Subject key identifier: F5:F6:C0:9A:A4:6C:36:A7:1B:26:0C:2E:BE:64:7D:7A:9E:2C:75:8D Certificate issuer: /CN=F1627C3C233E79637AC9DC035CDF50B789FC67AF Certificate serial: 2A Authority key identifier: F1:62:7C:3C:23:3E:79:63:7A:C9:DC:03:5C:DF:50:B7:89:FC:67:AF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8WJ8PCM-eWN6ydwDXN9Qt4n8Z68.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39061/9fbAmqRsNqcbJgwuvmR9ep4sdY0.roa Signing time: Tue 01 Apr 2025 01:28:25 +0000 ROA not before: Tue 01 Apr 2025 01:28:25 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 131948 IP address blocks: 2001:df0:2440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39061/8WJ8PCM-eWN6ydwDXN9Qt4n8Z68.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39061/8WJ8PCM-eWN6ydwDXN9Qt4n8Z68.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8WJ8PCM-eWN6ydwDXN9Qt4n8Z68.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 00:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1627C3C233E79637AC9DC035CDF50B789FC67AF Validity Not Before: Apr 1 01:28:25 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=F5F6C09AA46C36A71B260C2EBE647D7A9E2C758D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:c3:3f:75:f1:bd:a6:f3:65:45:d6:c8:41: 0f:fb:89:7b:c5:2f:40:e3:de:30:19:59:37:e7:a6: 46:f2:ac:36:0b:dd:0e:3f:94:8e:1a:d5:c3:2a:63: bc:ee:65:29:f0:e7:4d:60:b6:cc:bd:7c:e2:71:10: 39:c4:c0:bb:7c:1e:47:66:9b:cd:93:9e:20:41:ff: 71:6e:15:64:7e:f9:d4:00:ff:68:76:c5:50:87:87: 01:fc:99:17:cc:bd:a8:0e:e1:b7:59:51:e7:1f:02: 54:9b:7d:d6:3e:94:31:3c:60:67:c7:58:1a:f8:40: 34:eb:35:55:7a:58:b1:3f:f9:17:1a:cc:d0:a6:c9: 40:ba:af:75:d2:19:54:7c:4b:9b:7f:d8:62:b8:93: 64:ce:f0:ea:95:7e:5e:1a:d3:78:bf:35:dd:88:5e: 33:1b:7c:dd:aa:ad:53:e5:9a:8f:1c:8e:3f:6d:0e: 50:49:2a:11:98:e2:6e:31:43:53:f8:a2:e4:15:a1: ed:72:88:34:9a:72:1d:3e:7d:34:12:e2:68:87:1f: e6:b2:90:a6:03:ed:17:05:9f:88:0c:8b:5a:0a:20: e1:87:86:57:45:d3:2b:59:94:0f:1a:4a:10:e2:d9: 29:46:34:42:52:b4:6b:15:de:3a:1f:8b:5f:c1:58: 7e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F6:C0:9A:A4:6C:36:A7:1B:26:0C:2E:BE:64:7D:7A:9E:2C:75:8D X509v3 Authority Key Identifier: keyid:F1:62:7C:3C:23:3E:79:63:7A:C9:DC:03:5C:DF:50:B7:89:FC:67:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39061/8WJ8PCM-eWN6ydwDXN9Qt4n8Z68.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8WJ8PCM-eWN6ydwDXN9Qt4n8Z68.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39061/9fbAmqRsNqcbJgwuvmR9ep4sdY0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:2440::/48 Signature Algorithm: sha256WithRSAEncryption 95:e7:37:8c:9e:be:84:1d:0d:f5:b2:bc:23:42:af:39:bc:f4: a4:65:ee:68:a2:1c:e4:90:84:d3:4d:af:a8:78:29:eb:7a:9a: 06:09:ce:57:9a:b2:9d:5a:eb:09:45:28:46:f3:17:75:7a:52: c7:f9:f6:7e:45:b4:63:e8:9f:90:86:f7:33:f6:9e:4e:75:47: 7e:32:d7:c2:65:9e:3b:0a:75:50:40:13:8e:71:18:c3:77:81: 56:75:79:38:d5:c0:38:28:37:29:fb:67:b0:55:79:5b:d6:f1: 25:2a:e7:70:08:23:bd:95:dd:4e:74:f0:23:1c:1c:75:57:69: 4a:c9:5c:97:23:4f:ed:90:22:59:33:43:1d:a1:b9:c4:73:17: 8a:bf:01:fc:22:55:4b:c6:c1:8e:2c:8d:0b:e4:50:9a:b2:29: f4:8b:1b:28:f5:d7:35:68:d2:e7:e7:55:fb:47:07:ba:12:94: 6c:15:d7:25:7f:f9:fa:6c:d8:47:a6:95:1b:08:56:96:f5:b5: eb:ec:d0:af:06:4d:cd:ed:0a:41:5a:f1:21:b9:af:2a:54:cb: 74:fe:ff:75:48:3e:29:64:ce:53:c0:2e:6d:48:29:88:13:b2: 19:ed:0d:1c:df:7a:8d:15:d8:fc:cd:5f:b6:64:57:07:62:e9: 9b:10:98:16 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMTYy N0MzQzIzM0U3OTYzN0FDOURDMDM1Q0RGNTBCNzg5RkM2N0FGMB4XDTI1MDQwMTAx MjgyNVoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoRjVGNkMwOUFBNDZDMzZB NzFCMjYwQzJFQkU2NDdEN0E5RTJDNzU4RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMudwz918b2m82VF1shBD/uJe8UvQOPeMBlZN+emRvKsNgvdDj+U jhrVwypjvO5lKfDnTWC2zL184nEQOcTAu3weR2abzZOeIEH/cW4VZH751AD/aHbF UIeHAfyZF8y9qA7ht1lR5x8CVJt91j6UMTxgZ8dYGvhANOs1VXpYsT/5FxrM0KbJ QLqvddIZVHxLm3/YYriTZM7w6pV+XhrTeL813YheMxt83aqtU+WajxyOP20OUEkq EZjibjFDU/ii5BWh7XKINJpyHT59NBLiaIcf5rKQpgPtFwWfiAyLWgog4YeGV0XT K1mUDxpKEOLZKUY0QlK0axXeOh+LX8FYflMCAwEAAaOCAiswggInMB0GA1UdDgQW BBT19sCapGw2pxsmDC6+ZH16nix1jTAfBgNVHSMEGDAWgBTxYnw8Iz55Y3rJ3ANc 31C3ifxnrzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzkwNjEvOFdKOFBDTS1lV042eWR3RFhOOVF0NG44WjY4LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvOFdKOFBDTS1lV042eWR3RFhOOVF0 NG44WjY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzM5MDYxLzlmYkFtcVJzTnFjYkpnd3V2bVI5ZXA0c2RZMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ3wJEAwDQYJKoZIhvcNAQELBQADggEBAJXnN4yevoQdDfWyvCNC rzm89KRl7miiHOSQhNNNr6h4Ket6mgYJzleasp1a6wlFKEbzF3V6Usf59n5FtGPo n5CG9zP2nk51R34y18JlnjsKdVBAE45xGMN3gVZ1eTjVwDgoNyn7Z7BVeVvW8SUq 53AII72V3U508CMcHHVXaUrJXJcjT+2QIlkzQx2hucRzF4q/AfwiVUvGwY4sjQvk UJqyKfSLGyj11zVo0ufnVftHB7oSlGwV1yV/+fps2EemlRsIVpb1tevs0K8GTc3t CkFa8SG5rypUy3T+/3VIPilkzlPALm1IKYgTshntDRzfeo0V2PzNX7ZkVwdi6ZsQ mBY= -----END CERTIFICATE-----Generated at Mon Apr 7 02:00:32 2025 by rpki-client