$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30304/Oznh3B6Bo84ldx0BKFdoGsxQFxk.roa File: Oznh3B6Bo84ldx0BKFdoGsxQFxk.roa (raw, json) Hash identifier: 5DCalTeC+LBImpTwef/KoZXipFlR0mpcRmbjfTXGKqY= Subject key identifier: 3B:39:E1:DC:1E:81:A3:CE:25:77:1D:01:28:57:68:1A:CC:50:17:19 Certificate issuer: /CN=6A513AF7BF5D2DD629FD1826885C1002929305CD Certificate serial: 4F Authority key identifier: 6A:51:3A:F7:BF:5D:2D:D6:29:FD:18:26:88:5C:10:02:92:93:05:CD Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/alE6979dLdYp_RgmiFwQApKTBc0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/Oznh3B6Bo84ldx0BKFdoGsxQFxk.roa Signing time: Tue 01 Apr 2025 01:30:35 +0000 ROA not before: Tue 01 Apr 2025 01:30:35 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 59127 IP address blocks: 2401:7ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/alE6979dLdYp_RgmiFwQApKTBc0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/alE6979dLdYp_RgmiFwQApKTBc0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/alE6979dLdYp_RgmiFwQApKTBc0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A513AF7BF5D2DD629FD1826885C1002929305CD Validity Not Before: Apr 1 01:30:35 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=3B39E1DC1E81A3CE25771D012857681ACC501719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:24:ba:88:9e:dc:4c:d1:4e:34:99:dd:f5:89: 75:50:39:4a:ca:bc:ab:38:a4:38:9d:49:91:0c:db: 82:be:98:0d:e0:95:0f:53:51:0b:fa:09:e7:8d:89: e5:56:ef:af:bd:19:53:e9:74:61:48:cc:98:0b:c2: aa:0d:67:8a:d6:ba:b4:af:33:65:e4:28:cf:1a:af: 6c:21:1a:60:e8:17:44:d6:cd:bc:c9:79:94:dc:0d: 31:39:eb:73:02:0f:1b:ca:15:c1:88:5a:76:55:c8: cb:db:a8:23:29:9f:96:1d:96:71:bc:1a:2b:e8:58: fe:cb:c3:3b:8d:7b:a7:72:d9:25:ad:92:61:21:e1: d9:01:9f:d7:41:0b:d5:bb:74:5e:9b:5e:d3:cd:e0: e6:f8:63:84:d7:14:19:43:9b:63:f7:19:38:71:6d: 0d:2f:08:33:dc:39:79:f0:de:59:5a:83:ad:0b:80: 17:a7:88:37:9f:f5:60:e2:04:f2:85:84:1e:05:00: 38:3c:e5:c5:bb:6e:08:0e:8c:e5:bd:1e:42:a4:75: c8:2d:ce:08:fa:67:ef:0d:36:4d:a9:84:a5:7c:57: ee:cc:d8:d6:af:33:d5:99:49:26:61:45:86:c1:0b: f7:5d:20:fa:c3:d3:0e:6e:05:3b:45:26:9c:2e:c6: 83:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:39:E1:DC:1E:81:A3:CE:25:77:1D:01:28:57:68:1A:CC:50:17:19 X509v3 Authority Key Identifier: keyid:6A:51:3A:F7:BF:5D:2D:D6:29:FD:18:26:88:5C:10:02:92:93:05:CD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/alE6979dLdYp_RgmiFwQApKTBc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/alE6979dLdYp_RgmiFwQApKTBc0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30304/Oznh3B6Bo84ldx0BKFdoGsxQFxk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:7ec0::/32 Signature Algorithm: sha256WithRSAEncryption 9e:c0:df:cc:14:f2:4f:66:ee:69:56:51:08:24:b7:f2:c0:82: fa:a0:3f:7d:a9:bb:45:04:33:5e:6e:86:dc:74:3d:bd:07:e1: be:76:18:8f:91:59:63:a4:ec:5f:c4:ad:4f:37:d5:d9:16:b8: b0:e0:e1:b4:10:73:77:13:49:b4:6e:ab:2d:24:e5:a9:fe:5f: 4d:5d:44:17:e4:a1:90:93:c6:9c:fa:e9:0c:4e:81:59:cd:6f: 6d:c7:87:c2:06:61:08:69:0d:d1:9c:8e:67:77:d5:55:84:5d: 21:04:18:dd:4d:50:d8:71:d0:70:c3:67:c9:de:4f:dd:f7:2b: b4:46:18:a2:15:2e:ea:ee:19:d8:03:ba:fe:83:97:47:ee:1d: 07:e4:bc:ae:bd:fc:c3:bd:08:63:b8:66:c0:8e:df:d2:bf:39: 7f:9d:23:91:df:0d:4b:63:ed:7c:47:f2:dd:2f:1c:1b:fd:eb: 46:03:cd:a9:f3:84:c3:5c:29:7b:c9:ee:c4:0e:ec:e7:b5:6f: 21:a7:47:78:71:84:45:80:45:6f:a0:e3:00:59:9f:29:05:e6: 82:25:62:74:d9:ed:94:a7:3b:2a:c9:ec:3d:40:77:9c:f5:96: 5b:cb:22:64:12:12:93:6d:1d:f1:26:03:60:10:b4:be:65:87: 1d:2a:e7:3b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2QTUx M0FGN0JGNUQyREQ2MjlGRDE4MjY4ODVDMTAwMjkyOTMwNUNEMB4XDTI1MDQwMTAx MzAzNVoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoM0IzOUUxREMxRTgxQTND RTI1NzcxRDAxMjg1NzY4MUFDQzUwMTcxOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOAkuoie3EzRTjSZ3fWJdVA5Ssq8qzikOJ1JkQzbgr6YDeCVD1NR C/oJ542J5Vbvr70ZU+l0YUjMmAvCqg1nita6tK8zZeQozxqvbCEaYOgXRNbNvMl5 lNwNMTnrcwIPG8oVwYhadlXIy9uoIymflh2WcbwaK+hY/svDO417p3LZJa2SYSHh 2QGf10EL1bt0Xpte083g5vhjhNcUGUObY/cZOHFtDS8IM9w5efDeWVqDrQuAF6eI N5/1YOIE8oWEHgUAODzlxbtuCA6M5b0eQqR1yC3OCPpn7w02TamEpXxX7szY1q8z 1ZlJJmFFhsEL910g+sPTDm4FO0UmnC7Gg9UCAwEAAaOCAikwggIlMB0GA1UdDgQW BBQ7OeHcHoGjziV3HQEoV2gazFAXGTAfBgNVHSMEGDAWgBRqUTr3v10t1in9GCaI XBACkpMFzTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzMDQvYWxFNjk3OWRMZFlwX1JnbWlGd1FBcEtUQmMwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvYWxFNjk3OWRMZFlwX1JnbWlGd1FB cEtUQmMwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzA0L096bmgzQjZCbzg0bGR4MEJLRmRvR3N4UUZ4ay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAX7AMA0GCSqGSIb3DQEBCwUAA4IBAQCewN/MFPJPZu5pVlEIJLfy wIL6oD99qbtFBDNebobcdD29B+G+dhiPkVljpOxfxK1PN9XZFriw4OG0EHN3E0m0 bqstJOWp/l9NXUQX5KGQk8ac+ukMToFZzW9tx4fCBmEIaQ3RnI5nd9VVhF0hBBjd TVDYcdBww2fJ3k/d9yu0RhiiFS7q7hnYA7r+g5dH7h0H5LyuvfzDvQhjuGbAjt/S vzl/nSOR3w1LY+18R/LdLxwb/etGA82p84TDXCl7ye7EDuzntW8hp0d4cYRFgEVv oOMAWZ8pBeaCJWJ02e2Upzsqyew9QHec9ZZbyyJkEhKTbR3xJgNgELS+ZYcdKuc7 -----END CERTIFICATE-----Generated at Sat Apr 26 20:38:26 2025 by rpki-client