$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/uldb-StvCRH4e9aEfabtuqp5oPQ.roa File: uldb-StvCRH4e9aEfabtuqp5oPQ.roa (raw, json) Hash identifier: DzttAJzbN5KtKVBRTlnkIRCS+gge8WfHmwBHftdkndQ= Subject key identifier: BA:57:5B:F9:2B:6F:09:11:F8:7B:D6:84:7D:A6:ED:BA:AA:79:A0:F4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B1F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/uldb-StvCRH4e9aEfabtuqp5oPQ.roa Signing time: Fri 31 Jan 2025 01:37:57 +0000 ROA not before: Fri 31 Jan 2025 01:37:57 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 12:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2847 (0xb1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:37:57 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=BA575BF92B6F0911F87BD6847DA6EDBAAA79A0F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:03:18:fb:16:06:4f:46:57:06:c4:e5:ab:7d: cd:1d:43:44:c0:60:02:99:14:d7:07:0c:7c:20:f7: 45:25:db:6f:70:cb:e5:d7:95:a9:22:f2:51:f5:21: 02:fa:34:01:5a:75:ae:93:ae:a1:1a:fe:46:fc:33: c8:be:78:b8:16:18:8e:be:ea:d4:8d:71:28:a7:97: 4d:a0:57:98:29:ed:24:3b:00:88:fd:2f:41:0d:c8: 1d:47:46:94:87:97:d0:20:0d:dd:89:69:cf:5e:05: ea:aa:17:3b:bc:f2:24:a3:56:50:7d:9e:1d:70:36: a0:05:44:06:30:48:b2:5a:7d:5e:69:45:1a:38:a8: 00:1a:79:3f:94:c1:5f:69:01:b5:2e:f1:7e:e8:c1: bf:ad:c6:87:0d:d1:f5:4e:81:12:a1:5a:3e:66:db: 0a:3a:7c:8b:e8:23:36:d3:33:34:48:a8:92:ab:3c: b6:19:da:1c:af:e2:48:b6:03:3c:1b:73:8e:96:83: b5:f6:96:8b:5f:ab:14:46:c3:27:b2:61:d7:1a:f4: 07:8a:e0:7a:46:65:71:18:01:dd:cc:09:9c:65:05: 2d:a6:bd:f2:33:aa:e5:55:7e:a9:49:11:53:01:57: bc:d8:da:41:96:06:65:2d:f8:39:9d:f4:6e:39:0a: a6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:57:5B:F9:2B:6F:09:11:F8:7B:D6:84:7D:A6:ED:BA:AA:79:A0:F4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/uldb-StvCRH4e9aEfabtuqp5oPQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.120.0/22 Signature Algorithm: sha256WithRSAEncryption 21:bc:51:94:87:5f:41:6e:ec:dc:19:c6:38:b8:79:79:11:3f: 74:ca:62:8f:eb:90:ff:4b:2a:c3:3d:70:71:ec:e4:08:c8:6c: 2a:95:85:da:0d:3f:7d:cb:80:5e:26:3c:7e:ca:76:32:68:3c: ab:15:3d:1d:48:1f:56:08:d2:0b:7f:94:73:bd:c2:82:94:76: ad:c8:a5:9a:50:a7:79:8d:78:a9:74:d7:c2:de:cb:a1:60:fc: 70:10:e3:46:d0:14:f6:d0:af:c9:11:a3:b9:46:89:1a:f8:91: 4b:5b:a7:ee:01:eb:7c:b5:01:55:d2:05:84:0d:d3:24:a2:9c: c0:24:5a:bb:a2:19:be:d4:13:30:02:77:b8:e2:1a:e1:62:13: fe:4c:c8:b3:58:f1:06:6e:5c:0c:b7:8f:ad:5c:1a:5f:74:15: 15:35:5d:6c:0a:a5:ba:91:c9:89:d9:e1:ac:a6:49:f0:f4:a5: d7:74:e2:22:1f:23:d5:e0:3e:60:a0:eb:dd:17:2e:fd:1b:aa: d0:df:49:d4:db:de:7b:2f:10:6e:ce:45:f1:04:53:2a:05:e7: 07:b8:d9:a1:80:5b:f2:a9:5b:5c:8c:29:16:f7:55:34:62:d1: af:22:0e:db:1e:e5:02:89:e0:5e:08:ea:c2:db:01:21:fc:80: cf:d0:0f:0c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCx8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTM3NTdaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEJBNTc1QkY5MkI2RjA5 MTFGODdCRDY4NDdEQTZFREJBQUE3OUEwRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJAxj7FgZPRlcGxOWrfc0dQ0TAYAKZFNcHDHwg90Ul229wy+XX laki8lH1IQL6NAFada6TrqEa/kb8M8i+eLgWGI6+6tSNcSinl02gV5gp7SQ7AIj9 L0ENyB1HRpSHl9AgDd2Jac9eBeqqFzu88iSjVlB9nh1wNqAFRAYwSLJafV5pRRo4 qAAaeT+UwV9pAbUu8X7owb+txocN0fVOgRKhWj5m2wo6fIvoIzbTMzRIqJKrPLYZ 2hyv4ki2Azwbc46Wg7X2lotfqxRGwyeyYdca9AeK4HpGZXEYAd3MCZxlBS2mvfIz quVVfqlJEVMBV7zY2kGWBmUt+Dmd9G45CqbvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUuldb+StvCRH4e9aEfabtuqp5oPQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3VsZGItU3R2Q1JINGU5YUVmYWJ0dXFwNW9QUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYXgwDQYJKoZIhvcNAQELBQADggEBACG8UZSHX0Fu7NwZxji4eXkRP3TK Yo/rkP9LKsM9cHHs5AjIbCqVhdoNP33LgF4mPH7KdjJoPKsVPR1IH1YI0gt/lHO9 woKUdq3IpZpQp3mNeKl018Ley6Fg/HAQ40bQFPbQr8kRo7lGiRr4kUtbp+4B63y1 AVXSBYQN0ySinMAkWruiGb7UEzACd7jiGuFiE/5MyLNY8QZuXAy3j61cGl90FRU1 XWwKpbqRyYnZ4aymSfD0pdd04iIfI9XgPmCg690XLv0bqtDfSdTb3nsvEG7ORfEE UyoF5we42aGAW/KpW1yMKRb3VTRi0a8iDtse5QKJ4F4I6sLbASH8gM/QDww= -----END CERTIFICATE-----Generated at Fri Oct 24 13:47:57 2025 by rpki-client