$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nhGuPt4wDyOFu5mqcxfvJOYiT_c.roa File: nhGuPt4wDyOFu5mqcxfvJOYiT_c.roa (raw, json) Hash identifier: gj6J9o6/5ZA83eiidsKctgQARMOv09AVg0BT2HjrHlU= Subject key identifier: 9E:11:AE:3E:DE:30:0F:23:85:BB:99:AA:73:17:EF:24:E6:22:4F:F7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E42 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nhGuPt4wDyOFu5mqcxfvJOYiT_c.roa Signing time: Sun 01 Jun 2025 01:30:18 +0000 ROA not before: Sun 01 Jun 2025 01:30:18 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.96.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 18:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3650 (0xe42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 1 01:30:18 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=9E11AE3EDE300F2385BB99AA7317EF24E6224FF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bf:f5:f9:98:9c:11:04:40:9d:3d:d2:bb:a5: 3f:16:63:87:be:3d:28:8c:79:c2:6f:1c:5b:1d:5f: e8:28:cb:66:69:f6:45:dd:f4:41:f5:e7:91:07:a2: 3f:05:ab:32:af:74:9a:df:13:9b:a8:06:65:05:1a: 87:fc:8c:8e:21:9f:f1:84:c9:56:8e:17:94:8c:21: b0:71:be:7e:6b:01:74:19:22:a9:75:65:10:e0:ea: 35:1d:0b:49:ac:e1:ca:95:d9:3c:61:57:b9:67:2d: 67:23:80:bf:4e:69:c0:d3:e8:4b:d2:db:9c:ff:e7: f1:da:a4:66:50:2a:d8:aa:7c:39:86:fc:8d:43:93: a9:c7:d2:bb:43:db:03:51:1b:c8:d9:60:dd:56:1e: 54:30:6c:ae:9f:75:c3:75:9a:9d:c4:0b:2a:7b:60: 9d:0c:16:17:29:da:01:f8:2a:96:75:7e:6b:62:1d: 67:0d:c0:c3:c1:0e:bd:2b:d0:de:6b:6f:b3:7c:6d: f3:7d:bb:31:09:fe:c3:f5:6a:46:ef:bd:51:8c:1f: 57:7f:d7:5c:ba:a0:86:15:6b:02:76:5a:81:c3:1a: 85:40:72:10:93:12:9c:d8:29:31:3e:9b:af:ea:69: 53:90:1f:7f:e1:8d:df:0c:96:08:e9:3a:6f:e3:8f: ab:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:11:AE:3E:DE:30:0F:23:85:BB:99:AA:73:17:EF:24:E6:22:4F:F7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nhGuPt4wDyOFu5mqcxfvJOYiT_c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption b6:9c:17:57:bd:0d:90:f4:c4:92:e0:1a:9b:8a:31:d2:8f:84: 7d:33:2b:cf:4b:22:47:94:b9:21:bf:13:67:a7:41:37:96:40: 84:f4:b9:63:69:0d:6c:da:b0:e8:87:ef:65:88:f0:26:b8:80: dc:8e:9e:c0:76:ff:74:5c:f8:89:35:81:61:3b:f4:30:82:13: bf:f5:bb:a4:c8:8d:e1:4f:8e:a4:a0:cd:2f:1b:04:6b:70:83: fc:ec:ee:b4:d5:dd:b0:ad:20:28:84:83:1d:cd:73:e9:a6:ab: ba:28:9d:fe:53:a9:f9:d7:6e:af:fb:c2:39:77:e1:cf:5f:99: 74:b6:6f:48:b0:fe:11:f9:8c:98:72:c1:79:ab:81:eb:b9:5c: be:ff:75:14:d0:d0:6f:cc:df:4f:91:b5:13:0d:fe:f2:52:7b: 00:ee:db:d6:d2:3f:99:6f:63:ff:46:ea:23:aa:07:5a:26:f3: bc:09:7c:a1:a3:f9:7e:ab:93:cf:a6:c6:96:90:65:2e:a2:d0: e7:3f:2f:d5:dc:86:39:d9:40:1a:d8:83:88:00:96:22:8b:c9: a9:28:17:43:39:9a:51:8b:1d:ca:3e:72:25:cb:ce:dd:3d:11: 06:ca:47:ec:fd:b8:3c:01:d7:65:53:d2:cc:5d:d4:0b:0a:b8: 9c:12:31:a2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDkIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MDEw MTMwMThaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDlFMTFBRTNFREUzMDBG MjM4NUJCOTlBQTczMTdFRjI0RTYyMjRGRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/v/X5mJwRBECdPdK7pT8WY4e+PSiMecJvHFsdX+goy2Zp9kXd 9EH155EHoj8FqzKvdJrfE5uoBmUFGof8jI4hn/GEyVaOF5SMIbBxvn5rAXQZIql1 ZRDg6jUdC0ms4cqV2TxhV7lnLWcjgL9OacDT6EvS25z/5/HapGZQKtiqfDmG/I1D k6nH0rtD2wNRG8jZYN1WHlQwbK6fdcN1mp3ECyp7YJ0MFhcp2gH4KpZ1fmtiHWcN wMPBDr0r0N5rb7N8bfN9uzEJ/sP1akbvvVGMH1d/11y6oIYVawJ2WoHDGoVAchCT EpzYKTE+m6/qaVOQH3/hjd8MlgjpOm/jj6tfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUnhGuPt4wDyOFu5mqcxfvJOYiT/cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L25oR3VQdDR3RHlPRnU1bXFjeGZ2Sk9ZaVRfYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxYGAwDQYJKoZIhvcNAQELBQADggEBALacF1e9DZD0xJLgGpuKMdKPhH0z K89LIkeUuSG/E2enQTeWQIT0uWNpDWzasOiH72WI8Ca4gNyOnsB2/3Rc+Ik1gWE7 9DCCE7/1u6TIjeFPjqSgzS8bBGtwg/zs7rTV3bCtICiEgx3Nc+mmq7oonf5TqfnX bq/7wjl34c9fmXS2b0iw/hH5jJhywXmrgeu5XL7/dRTQ0G/M30+RtRMN/vJSewDu 29bSP5lvY/9G6iOqB1om87wJfKGj+X6rk8+mxpaQZS6i0Oc/L9XchjnZQBrYg4gA liKLyakoF0M5mlGLHco+ciXLzt09EQbKR+z9uDwB12VT0sxd1AsKuJwSMaI= -----END CERTIFICATE-----Generated at Thu Jun 5 20:33:01 2025 by rpki-client