$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/603/lj5Qe5b976tJMSnNbRYNC9Dez_Y.roa File: lj5Qe5b976tJMSnNbRYNC9Dez_Y.roa (raw, json) Hash identifier: Ke2Q13hOvDLGqHCeYkQj1TDp8szEkoykORxjjcvLKaQ= Subject key identifier: 96:3E:50:7B:96:FD:EF:AB:49:31:29:CD:6D:16:0D:0B:D0:DE:CF:F6 Certificate issuer: /CN=DD7752CF4FE1B0E1436D45700F3238E255166D1C Certificate serial: 2E Authority key identifier: DD:77:52:CF:4F:E1:B0:E1:43:6D:45:70:0F:32:38:E2:55:16:6D:1C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3XdSz0_hsOFDbUVwDzI44lUWbRw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/lj5Qe5b976tJMSnNbRYNC9Dez_Y.roa Signing time: Fri 31 Jan 2025 01:29:01 +0000 ROA not before: Fri 31 Jan 2025 01:29:01 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 17530 IP address blocks: 64.63.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/3XdSz0_hsOFDbUVwDzI44lUWbRw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/3XdSz0_hsOFDbUVwDzI44lUWbRw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3XdSz0_hsOFDbUVwDzI44lUWbRw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD7752CF4FE1B0E1436D45700F3238E255166D1C Validity Not Before: Jan 31 01:29:01 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=963E507B96FDEFAB493129CD6D160D0BD0DECFF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f5:0a:3b:e5:66:cb:e9:41:ea:a6:8a:bb:07: e1:52:56:9a:6c:04:16:cb:27:14:21:ca:3c:ec:1c: 1d:4c:1d:3b:51:06:f1:2b:b8:19:43:16:27:af:f7: 40:41:42:4b:3d:e8:3e:3e:d9:d5:8f:27:50:99:fc: 6b:58:47:a2:fd:1b:2f:74:69:5e:2d:34:82:f9:7f: a9:36:0f:43:da:23:c1:9e:9d:09:82:ed:8a:b5:ba: e3:b1:1b:ba:07:c5:4e:f1:a2:57:cf:53:b8:ae:32: 66:9c:a6:f0:c2:e2:20:62:76:f3:aa:e0:1b:59:92: 8d:48:14:07:44:7a:a8:6f:8e:9c:71:f1:62:43:5d: 97:c9:70:cb:04:68:29:09:87:71:ee:47:89:9d:25: b6:2b:a6:89:29:f0:b4:c0:18:0e:23:9f:af:45:0d: f6:00:7c:e6:09:58:85:9c:73:61:08:f6:7f:d0:f4: c5:f6:cd:8e:15:44:71:5c:2e:35:42:1c:92:31:53: b4:83:d5:e4:3a:7a:77:ba:38:f6:b6:d0:cd:2a:44: 5f:39:34:ff:8f:31:c8:10:a2:d8:a6:91:1d:1a:0d: ff:86:e5:a5:6d:fa:8c:b3:bb:bb:e8:28:9a:94:d9: 59:36:81:b5:e8:9a:95:90:ba:90:1a:7e:d4:3c:71: 2f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:3E:50:7B:96:FD:EF:AB:49:31:29:CD:6D:16:0D:0B:D0:DE:CF:F6 X509v3 Authority Key Identifier: keyid:DD:77:52:CF:4F:E1:B0:E1:43:6D:45:70:0F:32:38:E2:55:16:6D:1C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/3XdSz0_hsOFDbUVwDzI44lUWbRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3XdSz0_hsOFDbUVwDzI44lUWbRw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/lj5Qe5b976tJMSnNbRYNC9Dez_Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.63.64.0/18 Signature Algorithm: sha256WithRSAEncryption 4b:53:df:cb:1c:09:04:c3:a6:3f:9b:3c:89:4a:c7:cc:6c:8d: f1:65:49:21:2c:84:a4:be:3b:70:77:a9:36:f8:d1:d3:05:17: 93:aa:b8:b3:5f:83:6e:a0:bd:ef:1c:bb:be:56:05:3d:44:12: 1e:17:06:3d:be:9b:91:8b:3f:96:88:16:8f:64:0e:5f:45:b5: 43:3a:c7:6f:1c:68:b6:1c:d7:bc:13:ab:5c:ab:74:7e:06:ef: ff:60:45:52:61:13:95:a1:3c:3a:61:a8:6b:0a:8d:e0:0b:ec: c1:05:71:0f:78:1c:c9:a0:e3:16:a3:32:05:6a:1c:54:db:d4: 15:39:54:76:c2:07:22:41:0d:f8:9d:10:a2:ab:d6:83:57:9e: 2b:cc:f2:25:5a:c7:53:6d:78:8e:e6:9f:04:b7:c9:3f:a4:02: ec:f8:5a:05:97:50:0b:45:98:7e:68:d0:69:91:8e:ef:96:4d: da:ca:a8:3f:29:50:34:a9:03:25:e0:9e:7f:c8:31:d5:e2:3a: 9f:d0:e7:06:57:67:44:1c:64:4b:84:c5:d5:47:4e:19:70:03: ed:a8:d2:1b:63:5b:c4:ae:9c:a6:f0:55:53:c2:6f:84:d4:bd: 7e:fc:6f:5c:53:43:1b:b1:dc:1a:8c:65:a9:cd:da:60:89:d3: 0d:c8:7d:73 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERDc3 NTJDRjRGRTFCMEUxNDM2RDQ1NzAwRjMyMzhFMjU1MTY2RDFDMB4XDTI1MDEzMTAx MjkwMVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoOTYzRTUwN0I5NkZERUZB QjQ5MzEyOUNENkQxNjBEMEJEMERFQ0ZGNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANb1CjvlZsvpQeqmirsH4VJWmmwEFssnFCHKPOwcHUwdO1EG8Su4 GUMWJ6/3QEFCSz3oPj7Z1Y8nUJn8a1hHov0bL3RpXi00gvl/qTYPQ9ojwZ6dCYLt irW647EbugfFTvGiV89TuK4yZpym8MLiIGJ286rgG1mSjUgUB0R6qG+OnHHxYkNd l8lwywRoKQmHce5HiZ0ltiumiSnwtMAYDiOfr0UN9gB85glYhZxzYQj2f9D0xfbN jhVEcVwuNUIckjFTtIPV5Dp6d7o49rbQzSpEXzk0/48xyBCi2KaRHRoN/4blpW36 jLO7u+gompTZWTaBteialZC6kBp+1DxxL4sCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSWPlB7lv3vq0kxKc1tFg0L0N7P9jAfBgNVHSMEGDAWgBTdd1LPT+Gw4UNtRXAP MjjiVRZtHDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjAzLzNYZFN6MF9oc09GRGJVVndEekk0NGxVV2JSdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzNYZFN6MF9oc09GRGJVVndEekk0NGxV V2JSdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82MDMvbGo1UWU1Yjk3NnRKTVNuTmJSWU5DOURlel9ZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBkA/QDANBgkqhkiG9w0BAQsFAAOCAQEAS1PfyxwJBMOmP5s8iUrHzGyN8WVJ ISyEpL47cHepNvjR0wUXk6q4s1+DbqC97xy7vlYFPUQSHhcGPb6bkYs/logWj2QO X0W1QzrHbxxothzXvBOrXKt0fgbv/2BFUmETlaE8OmGoawqN4AvswQVxD3gcyaDj FqMyBWocVNvUFTlUdsIHIkEN+J0QoqvWg1eeK8zyJVrHU214juafBLfJP6QC7Pha BZdQC0WYfmjQaZGO75ZN2sqoPylQNKkDJeCef8gx1eI6n9DnBldnRBxkS4TF1UdO GXAD7ajSG2NbxK6cpvBVU8JvhNS9fvxvXFNDG7HcGoxlqc3aYInTDch9cw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:43 2025 by rpki-client