$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/668/ujXCmntBU046M5_p2OVeu705ikE.roa File: ujXCmntBU046M5_p2OVeu705ikE.roa (raw, json) Hash identifier: mGSHJWdcIX+Cj6A64sQo+l+MW51qxFjB9lTQz+pToJo= Subject key identifier: BA:35:C2:9A:7B:41:53:4E:3A:33:9F:E9:D8:E5:5E:BB:BD:39:8A:41 Certificate issuer: /CN=F556EC334102047BEDBA0C0DDB4DC930E07A9058 Certificate serial: 53 Authority key identifier: F5:56:EC:33:41:02:04:7B:ED:BA:0C:0D:DB:4D:C9:30:E0:7A:90:58 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9VbsM0ECBHvtugwN203JMOB6kFg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/668/ujXCmntBU046M5_p2OVeu705ikE.roa Signing time: Sat 01 Mar 2025 01:31:39 +0000 ROA not before: Sat 01 Mar 2025 01:31:39 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 17948 IP address blocks: 49.236.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/668/9VbsM0ECBHvtugwN203JMOB6kFg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/668/9VbsM0ECBHvtugwN203JMOB6kFg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9VbsM0ECBHvtugwN203JMOB6kFg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F556EC334102047BEDBA0C0DDB4DC930E07A9058 Validity Not Before: Mar 1 01:31:39 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=BA35C29A7B41534E3A339FE9D8E55EBBBD398A41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9e:07:1f:10:41:b1:f0:41:9e:a0:b4:63:2c: 7b:17:77:86:75:d0:b7:77:14:90:bd:5b:92:2a:ea: ef:8f:15:b9:50:00:23:09:79:9b:7a:6a:4a:d9:40: 41:60:d6:31:8b:a7:ae:9a:7b:8d:ab:30:a9:39:69: 10:a8:71:33:8c:32:ae:f0:78:9c:7c:61:5f:66:7b: 72:2a:19:15:8b:60:de:09:5c:46:29:32:c0:a3:87: 24:7f:c2:9b:9a:e1:7f:50:14:95:c5:d1:70:c2:9d: b5:fa:bc:ea:bd:7d:ba:22:df:d4:10:a1:a0:44:99: 20:f4:72:bc:b6:0f:bb:e6:09:e5:b6:f4:76:9c:b3: 85:56:87:c1:8a:5c:7c:92:d2:ca:ce:4b:8f:9f:b3: e8:5d:62:b0:07:5b:5e:99:b8:bc:06:fc:e5:23:48: 16:c4:8a:b8:96:22:f0:bd:c4:52:6d:97:14:e9:f8: 6c:a4:55:a8:c3:ce:c2:eb:f0:37:f4:85:5e:e8:87: 63:0d:35:6f:dc:26:ba:ca:d3:e1:13:0c:45:e6:a1: 7a:2b:72:8b:ae:6f:49:30:2b:b3:79:a0:15:11:b6: 15:13:38:ba:0c:48:65:0a:c2:2a:06:74:2e:81:e3: 60:c7:5c:af:6f:56:9b:40:82:1f:23:a8:88:61:81: 05:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:35:C2:9A:7B:41:53:4E:3A:33:9F:E9:D8:E5:5E:BB:BD:39:8A:41 X509v3 Authority Key Identifier: keyid:F5:56:EC:33:41:02:04:7B:ED:BA:0C:0D:DB:4D:C9:30:E0:7A:90:58 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/668/9VbsM0ECBHvtugwN203JMOB6kFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9VbsM0ECBHvtugwN203JMOB6kFg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/668/ujXCmntBU046M5_p2OVeu705ikE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.236.224.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:56:e7:16:37:af:50:88:fb:93:74:d6:eb:c5:0b:ed:e8:27: fc:7e:fb:c5:97:2a:cc:ca:39:4d:ec:83:6a:7a:33:2b:1a:ca: 38:7f:30:43:96:6f:79:e6:8b:bd:c3:c7:79:12:f5:65:c7:c4: a2:0a:2d:cb:55:2f:f2:57:df:87:e3:0d:c6:a2:94:ef:09:67: 11:1e:16:b1:81:d5:cb:1e:f2:6f:25:c3:6a:56:d8:3b:70:1a: c8:70:71:9e:64:64:cb:e0:14:60:1d:e8:41:42:6e:90:07:df: 98:57:2f:ab:1f:3f:e4:fb:45:7f:b6:cf:18:d9:61:62:8f:2c: bf:e6:b8:38:e6:9a:26:66:92:6b:40:b4:4b:75:02:12:81:5a: e1:4e:35:05:ed:d3:4c:6e:67:2c:b2:b2:2a:30:5d:61:62:b1: 97:68:4b:88:c4:ea:b3:18:17:55:d0:88:5e:1d:0b:6b:6d:34: ca:88:46:ac:2f:e6:0b:0e:8d:45:79:e3:2e:04:87:c5:03:d1: ba:fc:f7:95:d1:79:63:31:15:0a:c2:a8:8f:b9:f8:d9:8e:51: 6b:80:e2:d6:a5:1d:02:e2:5f:73:38:a4:92:88:d8:6f:05:8c: 69:a1:95:fb:3e:9d:61:34:37:59:81:0c:2f:a2:d2:57:ee:70: 29:99:95:67 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGNTU2 RUMzMzQxMDIwNDdCRURCQTBDMEREQjREQzkzMEUwN0E5MDU4MB4XDTI1MDMwMTAx MzEzOVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoQkEzNUMyOUE3QjQxNTM0 RTNBMzM5RkU5RDhFNTVFQkJCRDM5OEE0MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANaeBx8QQbHwQZ6gtGMsexd3hnXQt3cUkL1bkirq748VuVAAIwl5 m3pqStlAQWDWMYunrpp7jaswqTlpEKhxM4wyrvB4nHxhX2Z7cioZFYtg3glcRiky wKOHJH/Cm5rhf1AUlcXRcMKdtfq86r19uiLf1BChoESZIPRyvLYPu+YJ5bb0dpyz hVaHwYpcfJLSys5Lj5+z6F1isAdbXpm4vAb85SNIFsSKuJYi8L3EUm2XFOn4bKRV qMPOwuvwN/SFXuiHYw01b9wmusrT4RMMReaheityi65vSTArs3mgFRG2FRM4ugxI ZQrCKgZ0LoHjYMdcr29Wm0CCHyOoiGGBBaUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS6NcKae0FTTjozn+nY5V67vTmKQTAfBgNVHSMEGDAWgBT1VuwzQQIEe+26DA3b Tckw4HqQWDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjY4LzlWYnNNMEVDQkh2dHVnd04yMDNKTU9CNmtGZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzlWYnNNMEVDQkh2dHVnd04yMDNKTU9C NmtGZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NjgvdWpYQ21udEJVMDQ2TTVfcDJPVmV1NzA1aWtFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAzHs4DANBgkqhkiG9w0BAQsFAAOCAQEAelbnFjevUIj7k3TW68UL7egn/H77 xZcqzMo5TeyDanozKxrKOH8wQ5ZveeaLvcPHeRL1ZcfEogoty1Uv8lffh+MNxqKU 7wlnER4WsYHVyx7ybyXDalbYO3AayHBxnmRky+AUYB3oQUJukAffmFcvqx8/5PtF f7bPGNlhYo8sv+a4OOaaJmaSa0C0S3UCEoFa4U41Be3TTG5nLLKyKjBdYWKxl2hL iMTqsxgXVdCIXh0La200yohGrC/mCw6NRXnjLgSHxQPRuvz3ldF5YzEVCsKoj7n4 2Y5Ra4Di1qUdAuJfczikkojYbwWMaaGV+z6dYTQ3WYEML6LSV+5wKZmVZw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:37:38 2025 by rpki-client