$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/qtNY9qEPbi0HyHLyvU5B-KYbP30.roa File: qtNY9qEPbi0HyHLyvU5B-KYbP30.roa (raw, json) Hash identifier: 2IDUZHRpkt4WfQMTwMP46wUJsS4BaQBk+/1ML1BEPCI= Subject key identifier: AA:D3:58:F6:A1:0F:6E:2D:07:C8:72:F2:BD:4E:41:F8:A6:1B:3F:7D Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 044B Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/qtNY9qEPbi0HyHLyvU5B-KYbP30.roa Signing time: Tue 01 Apr 2025 01:39:36 +0000 ROA not before: Tue 01 Apr 2025 01:39:36 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:1400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 16:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:39:36 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=AAD358F6A10F6E2D07C872F2BD4E41F8A61B3F7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fd:48:62:3d:38:a9:f7:49:cb:15:eb:09:cd: 5a:5c:f3:76:37:df:b7:6b:d1:e1:cb:02:58:d0:c4: 7e:87:43:cc:89:97:86:20:0b:da:76:7c:38:19:45: 1f:ab:0e:03:e3:7e:88:4d:cb:88:98:6b:e2:69:30: 21:f1:c9:7a:2a:9e:73:54:ac:fd:96:93:1f:08:2e: bb:5a:1c:03:19:68:61:bc:c5:a1:bb:78:4c:1f:d8: 5c:17:6b:7d:fd:10:b2:90:1b:71:2f:a7:ce:b0:4e: 12:c9:e3:32:10:22:88:0c:cb:54:f0:34:ee:90:49: e0:e2:41:43:b5:75:17:f4:17:f1:4e:75:47:9c:1c: 99:43:c3:e7:d4:ce:20:39:3f:3f:78:6e:99:e5:c6: 19:50:51:ba:df:af:83:9d:fc:b5:50:3a:0d:0c:c2: e9:40:07:01:66:00:c7:81:63:fa:1e:2f:bd:fa:e2: 2b:d9:b8:6f:00:70:95:47:d1:91:fe:80:b5:66:1e: 15:3a:4f:4a:79:2f:bc:16:bd:81:ba:bc:2c:4c:cd: cb:9b:3b:fb:67:3a:f3:72:23:c1:ad:fe:0b:75:79: f2:9e:17:f0:bb:16:a3:5d:29:e0:7d:29:ba:00:64: 50:41:e1:98:78:ed:fc:8d:09:3c:be:0c:6c:05:31: 49:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D3:58:F6:A1:0F:6E:2D:07:C8:72:F2:BD:4E:41:F8:A6:1B:3F:7D X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/qtNY9qEPbi0HyHLyvU5B-KYbP30.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:1400::/40 Signature Algorithm: sha256WithRSAEncryption 68:a2:89:60:b1:e8:e7:5a:11:28:8f:97:5d:d6:c9:1e:83:21: f3:8a:f1:5b:64:69:b3:fb:cf:19:b5:3d:4d:44:83:a3:64:55: 87:f4:91:96:c9:07:27:ad:fc:df:7e:e0:67:d3:b9:6a:68:5f: 0f:84:ca:96:af:46:e9:3a:e7:17:f5:0a:ee:05:7f:a0:ba:6e: 9c:3d:65:3c:6d:14:06:12:20:a7:67:3d:96:c5:a3:23:02:fa: b8:ca:67:eb:14:10:b2:62:1b:35:b8:37:42:b8:35:62:1c:b7: ae:de:ea:9e:81:82:13:75:83:df:a3:11:f6:7b:ca:4a:3b:7d: 3b:c1:6f:37:cb:89:60:06:2e:ab:0c:d7:50:27:a3:22:15:a2: aa:6b:6e:c5:68:b4:3d:fb:0c:90:c0:1f:c1:98:ae:3e:89:c6: 15:29:d4:63:bf:03:26:b1:91:8a:20:26:f6:cb:48:05:f3:62: ab:16:9d:d7:a3:de:84:11:9a:16:8f:b6:01:ab:59:02:de:2f: c2:c9:f9:77:9a:7f:d5:00:e0:0d:02:9c:c3:37:25:5c:31:b6: f2:99:03:ef:a3:e8:da:67:45:37:05:70:50:c7:6b:95:15:e8: 53:c7:0d:b6:fe:f7:fd:5f:91:e6:c7:8f:e4:15:d1:de:e8:9d: c1:5c:70:93 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBEswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTM5MzZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFBRDM1OEY2QTEwRjZF MkQwN0M4NzJGMkJENEU0MUY4QTYxQjNGN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT/UhiPTip90nLFesJzVpc83Y337dr0eHLAljQxH6HQ8yJl4Yg C9p2fDgZRR+rDgPjfohNy4iYa+JpMCHxyXoqnnNUrP2Wkx8ILrtaHAMZaGG8xaG7 eEwf2FwXa339ELKQG3Evp86wThLJ4zIQIogMy1TwNO6QSeDiQUO1dRf0F/FOdUec HJlDw+fUziA5Pz94bpnlxhlQUbrfr4Od/LVQOg0MwulABwFmAMeBY/oeL7364ivZ uG8AcJVH0ZH+gLVmHhU6T0p5L7wWvYG6vCxMzcubO/tnOvNyI8Gt/gt1efKeF/C7 FqNdKeB9KboAZFBB4Zh47fyNCTy+DGwFMUm9AgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUqtNY9qEPbi0HyHLyvU5B+KYbP30wHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9xdE5ZOXFFUGJpMEh5SEx5dlU1Qi1LWWJQMzAu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAaxQwDQYJKoZIhvcNAQELBQADggEBAGiiiWCx6OdaESiPl13W yR6DIfOK8VtkabP7zxm1PU1Eg6NkVYf0kZbJByet/N9+4GfTuWpoXw+EypavRuk6 5xf1Cu4Ff6C6bpw9ZTxtFAYSIKdnPZbFoyMC+rjKZ+sUELJiGzW4N0K4NWIct67e 6p6BghN1g9+jEfZ7yko7fTvBbzfLiWAGLqsM11AnoyIVoqprbsVotD37DJDAH8GY rj6JxhUp1GO/AyaxkYogJvbLSAXzYqsWndej3oQRmhaPtgGrWQLeL8LJ+Xeaf9UA 4A0CnMM3JVwxtvKZA++j6NpnRTcFcFDHa5UV6FPHDbb+9/1fkebHj+QV0d7oncFc cJM= -----END CERTIFICATE-----Generated at Thu May 8 19:29:55 2025 by rpki-client