$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/okcDJ0jabu90axsqGtsWFQrZp4Q.roa File: okcDJ0jabu90axsqGtsWFQrZp4Q.roa (raw, json) Hash identifier: 7VIC2/H1rfamUkqInda9jwvngxxYK1SzrO++aFNgaPs= Subject key identifier: A2:47:03:27:48:DA:6E:EF:74:6B:1B:2A:1A:DB:16:15:0A:D9:A7:84 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E41 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/okcDJ0jabu90axsqGtsWFQrZp4Q.roa Signing time: Sun 01 Jun 2025 01:30:17 +0000 ROA not before: Sun 01 Jun 2025 01:30:17 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.96.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 01:04:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3649 (0xe41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 1 01:30:17 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=A247032748DA6EEF746B1B2A1ADB16150AD9A784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:da:2f:a2:4f:92:f9:61:d4:06:f6:d2:39:7b: 66:fe:20:91:4a:14:11:03:1c:f1:91:a3:7a:e2:b3: b6:d3:98:99:cd:cb:4e:b3:04:be:13:d1:a0:c9:3b: 1a:8b:4e:31:a9:41:d3:8d:0d:41:b5:ba:8e:0e:11: 44:00:f0:21:ad:a0:b2:e7:5b:0e:81:75:bc:0c:66: 73:75:31:63:40:7e:67:18:18:f7:f7:f7:86:10:0d: 5a:69:81:6a:06:d2:ba:7c:0e:fe:3d:b8:b6:16:44: b1:e7:17:04:de:fe:0a:40:33:97:7b:3a:09:4f:ed: 38:40:cb:d3:f7:78:49:e4:86:8a:64:c8:53:48:c5: 3e:e0:b2:69:6f:ea:4e:3a:a1:7a:bf:4b:0f:e7:9d: 3f:a9:46:e9:c7:3b:94:ab:3d:60:96:4a:19:0a:d3: 68:db:c7:c0:7d:3c:32:8c:14:e0:05:a2:ee:44:7d: 0c:71:aa:df:ed:31:c7:33:22:3d:01:e3:34:cc:5b: 46:f2:54:3c:a4:27:21:47:b5:03:a4:7f:51:47:ea: 20:03:32:d7:b4:99:82:6f:ff:61:3e:f5:e6:f6:5c: 5d:ee:9f:1b:e9:95:79:14:70:e3:07:68:88:56:d6: dc:de:f1:dd:f7:04:51:59:ba:9c:20:00:f4:dc:b2: 1e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:47:03:27:48:DA:6E:EF:74:6B:1B:2A:1A:DB:16:15:0A:D9:A7:84 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/okcDJ0jabu90axsqGtsWFQrZp4Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.64.0/19 Signature Algorithm: sha256WithRSAEncryption 59:3e:e3:08:40:2f:01:ca:02:24:5f:86:3a:dc:5d:d1:7e:be: a7:92:5a:87:d3:28:62:2f:fc:55:4f:fb:a7:8f:88:7d:9f:43: 97:b2:e1:2a:36:e9:1e:67:14:32:c1:50:1a:ca:c2:a9:e4:62: fe:11:3e:fb:a2:ac:8a:75:7a:03:8d:e9:61:c6:3a:bf:f5:e5: 29:d8:c8:e5:c8:e7:47:e1:bb:11:ce:7b:bf:26:b7:14:53:45: 10:c7:3b:47:78:06:67:22:f1:af:1e:64:2f:c0:ec:5d:47:c0: 23:fb:6d:ce:37:e1:c8:8b:57:83:cf:3d:d3:71:63:a5:f6:9f: 6b:4f:9a:91:b3:51:be:d4:8b:c4:d2:15:87:13:4e:75:41:28: b0:7b:67:46:00:2c:7a:35:a8:32:82:37:91:ed:dd:49:69:62: 84:ec:d6:3e:db:4f:c6:12:19:52:e4:06:e4:58:9b:4b:66:d6: e0:40:38:d3:d9:65:e9:45:33:d5:7c:60:3b:17:94:26:bf:3f: b6:a4:b4:db:91:5b:8e:34:1a:3a:28:d8:66:80:96:d0:22:71: ec:2d:03:5d:e4:58:ad:58:98:f5:1e:00:ff:6f:3f:8c:ae:4f: 44:4e:32:67:3b:0c:c8:14:ed:6a:34:56:82:ec:5d:a3:f4:a6: de:39:9d:db -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MDEw MTMwMTdaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEEyNDcwMzI3NDhEQTZF RUY3NDZCMUIyQTFBREIxNjE1MEFEOUE3ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK2i+iT5L5YdQG9tI5e2b+IJFKFBEDHPGRo3ris7bTmJnNy06z BL4T0aDJOxqLTjGpQdONDUG1uo4OEUQA8CGtoLLnWw6BdbwMZnN1MWNAfmcYGPf3 94YQDVppgWoG0rp8Dv49uLYWRLHnFwTe/gpAM5d7OglP7ThAy9P3eEnkhopkyFNI xT7gsmlv6k46oXq/Sw/nnT+pRunHO5SrPWCWShkK02jbx8B9PDKMFOAFou5EfQxx qt/tMcczIj0B4zTMW0byVDykJyFHtQOkf1FH6iADMte0mYJv/2E+9eb2XF3unxvp lXkUcOMHaIhW1tze8d33BFFZupwgAPTcsh4BAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUokcDJ0jabu90axsqGtsWFQrZp4QwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29rY0RKMGphYnU5MGF4c3FHdHNXRlFyWnA0US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUxYEAwDQYJKoZIhvcNAQELBQADggEBAFk+4whALwHKAiRfhjrcXdF+vqeS WofTKGIv/FVP+6ePiH2fQ5ey4So26R5nFDLBUBrKwqnkYv4RPvuirIp1egON6WHG Or/15SnYyOXI50fhuxHOe78mtxRTRRDHO0d4Bmci8a8eZC/A7F1HwCP7bc434ciL V4PPPdNxY6X2n2tPmpGzUb7Ui8TSFYcTTnVBKLB7Z0YALHo1qDKCN5Ht3UlpYoTs 1j7bT8YSGVLkBuRYm0tm1uBAONPZZelFM9V8YDsXlCa/P7aktNuRW440Gjoo2GaA ltAicewtA13kWK1YmPUeAP9vP4yuT0ROMmc7DMgU7Wo0VoLsXaP0pt45nds= -----END CERTIFICATE-----Generated at Wed Jun 4 03:34:59 2025 by rpki-client