$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YUOvt4zYs5rs2kMx1_E2Wy_prwM.roa File: YUOvt4zYs5rs2kMx1_E2Wy_prwM.roa (raw, json) Hash identifier: PHi2L18/8yA055o8oOmlNYaeFL1bJEVnJ54nBzEjolk= Subject key identifier: 61:43:AF:B7:8C:D8:B3:9A:EC:DA:43:31:D7:F1:36:5B:2F:E9:AF:03 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E44 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YUOvt4zYs5rs2kMx1_E2Wy_prwM.roa Signing time: Sun 01 Jun 2025 01:30:20 +0000 ROA not before: Sun 01 Jun 2025 01:30:20 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.96.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 21:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3652 (0xe44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 1 01:30:20 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=6143AFB78CD8B39AECDA4331D7F1365B2FE9AF03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:78:c6:63:c9:59:f3:d5:9c:63:38:11:91:9a: 0d:09:6c:8e:f7:b9:a1:39:a4:61:0c:8a:92:fd:93: 0e:75:19:87:7b:e2:5c:55:90:2c:a0:03:95:da:d1: a3:4c:ac:e3:32:a0:bf:09:5a:ee:ab:e7:4d:2b:a1: 4b:41:81:fe:78:2a:bb:14:9b:5b:33:b2:e6:93:3a: fb:94:cc:da:21:43:ca:cc:b1:9f:be:ae:bb:7b:ac: fe:3e:94:2f:bb:21:96:1a:19:96:5b:fb:a4:11:e3: fe:d8:d4:57:9a:96:39:75:af:cd:02:fa:b5:aa:66: 61:37:26:1a:d0:15:90:6b:65:61:9b:0c:44:a4:41: 68:fa:c4:a1:55:6e:8f:27:d5:0f:08:c6:0f:8d:b5: f2:27:47:0a:e2:dd:18:52:0b:1a:4b:6e:17:8b:ed: 98:c3:b0:64:10:e3:5c:ef:2a:57:ae:96:83:4d:89: 70:75:e7:51:56:01:af:3d:fa:8f:f5:4a:66:34:cc: da:94:ba:eb:04:c7:36:e8:2a:a4:ce:3a:5e:b8:a1: 90:92:2f:81:b2:12:6b:09:94:a0:e5:12:d1:98:f4: a0:a1:a9:6c:c7:42:c9:4b:92:e7:8c:e8:2e:33:77: a5:2b:49:11:dc:16:46:a3:2e:44:84:da:21:74:1a: 72:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:43:AF:B7:8C:D8:B3:9A:EC:DA:43:31:D7:F1:36:5B:2F:E9:AF:03 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YUOvt4zYs5rs2kMx1_E2Wy_prwM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.160.0/19 Signature Algorithm: sha256WithRSAEncryption 28:43:ba:d7:76:93:a9:b5:30:d4:c1:75:42:77:9f:b7:ef:25: b8:cd:d7:0e:59:86:e3:ff:66:72:17:70:11:4a:49:d8:6f:37: dc:2d:24:e6:89:44:66:77:3c:fd:83:99:a5:a5:7e:b2:39:ca: 87:84:75:90:9b:bd:65:3c:e3:81:a7:a0:82:9c:87:3a:59:c1: 25:10:00:d8:94:95:eb:da:ed:5f:d6:59:06:48:50:82:5c:9f: 27:da:d1:a7:bc:12:89:ac:ee:88:89:6c:38:47:c9:46:aa:fa: 38:1d:42:2a:5c:c9:cc:94:29:e5:9a:1c:f4:ac:05:3f:b3:19: 02:b5:2b:86:95:da:ac:c7:81:36:7f:51:23:34:f4:b6:90:be: dc:fb:72:cc:3b:59:e0:15:5c:22:a7:44:7e:02:98:e9:cd:60: ff:45:cd:f6:70:1d:60:d9:f7:91:28:86:0c:9e:90:ec:a5:57: 4e:65:54:6e:a7:5b:7a:2b:51:0c:30:d5:aa:6a:0a:73:cf:70: 4f:9b:04:57:da:e8:ba:ff:75:03:0d:fa:b9:21:34:fe:c8:3d: d4:e8:a1:f5:6f:7c:4c:4e:b1:b7:66:16:22:e5:d6:e0:dd:7e: 20:13:49:57:da:d7:1b:f2:44:fc:b9:ff:c7:bf:eb:f1:38:d6: b0:0f:16:94 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MDEw MTMwMjBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDYxNDNBRkI3OENEOEIz OUFFQ0RBNDMzMUQ3RjEzNjVCMkZFOUFGMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkeMZjyVnz1ZxjOBGRmg0JbI73uaE5pGEMipL9kw51GYd74lxV kCygA5Xa0aNMrOMyoL8JWu6r500roUtBgf54KrsUm1szsuaTOvuUzNohQ8rMsZ++ rrt7rP4+lC+7IZYaGZZb+6QR4/7Y1Fealjl1r80C+rWqZmE3JhrQFZBrZWGbDESk QWj6xKFVbo8n1Q8Ixg+NtfInRwri3RhSCxpLbheL7ZjDsGQQ41zvKleuloNNiXB1 51FWAa89+o/1SmY0zNqUuusExzboKqTOOl64oZCSL4GyEmsJlKDlEtGY9KChqWzH QslLkueM6C4zd6UrSRHcFkajLkSE2iF0GnKFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYUOvt4zYs5rs2kMx1/E2Wy/prwMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1lVT3Z0NHpZczVyczJrTXgxX0UyV3lfcHJ3TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUxYKAwDQYJKoZIhvcNAQELBQADggEBAChDutd2k6m1MNTBdUJ3n7fvJbjN 1w5ZhuP/ZnIXcBFKSdhvN9wtJOaJRGZ3PP2DmaWlfrI5yoeEdZCbvWU844GnoIKc hzpZwSUQANiUleva7V/WWQZIUIJcnyfa0ae8Eoms7oiJbDhHyUaq+jgdQipcycyU KeWaHPSsBT+zGQK1K4aV2qzHgTZ/USM09LaQvtz7csw7WeAVXCKnRH4CmOnNYP9F zfZwHWDZ95EohgyekOylV05lVG6nW3orUQww1apqCnPPcE+bBFfa6Lr/dQMN+rkh NP7IPdToofVvfExOsbdmFiLl1uDdfiATSVfa1xvyRPy5/8e/6/E41rAPFpQ= -----END CERTIFICATE-----Generated at Wed Jun 4 01:07:54 2025 by rpki-client