$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30310/1pvAtxNS9HqIbFVX4MKb6ih-lXI.roa File: 1pvAtxNS9HqIbFVX4MKb6ih-lXI.roa (raw, json) Hash identifier: I1N3Z8S1oLyMSaABXkyxdEokqaFcyHCzx0YU305kf28= Subject key identifier: D6:9B:C0:B7:13:52:F4:7A:88:6C:55:57:E0:C2:9B:EA:28:7E:95:72 Certificate issuer: /CN=9DDC7377517D53593BF1AC966C3B71AF6F5C09CA Certificate serial: 46 Authority key identifier: 9D:DC:73:77:51:7D:53:59:3B:F1:AC:96:6C:3B:71:AF:6F:5C:09:CA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ndxzd1F9U1k78ayWbDtxr29cCco.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/1pvAtxNS9HqIbFVX4MKb6ih-lXI.roa Signing time: Tue 01 Apr 2025 01:32:42 +0000 ROA not before: Tue 01 Apr 2025 01:32:42 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 23778 IP address blocks: 2401:cbc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/ndxzd1F9U1k78ayWbDtxr29cCco.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/ndxzd1F9U1k78ayWbDtxr29cCco.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ndxzd1F9U1k78ayWbDtxr29cCco.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DDC7377517D53593BF1AC966C3B71AF6F5C09CA Validity Not Before: Apr 1 01:32:42 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=D69BC0B71352F47A886C5557E0C29BEA287E9572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cc:3a:f8:eb:50:43:61:e6:91:f7:71:04:e4: 89:c3:9b:b6:b7:0a:28:f0:48:18:2d:03:ef:42:c2: 00:d3:ae:01:7c:7b:59:83:c7:3a:fd:6b:b7:c6:69: b0:19:dc:b0:db:1a:81:ba:19:7c:c1:5b:51:f4:30: 94:ea:86:dc:df:c8:d7:01:10:15:63:7f:df:19:db: 64:0f:4e:26:09:70:81:91:d7:0e:d9:30:91:d8:02: c8:de:a6:8c:dd:51:e8:b4:75:e0:b2:ff:c8:8e:76: b3:1f:80:fd:79:7f:36:79:3a:34:a5:47:71:29:fa: 0d:bc:a8:01:33:24:57:93:ee:64:61:2c:5e:7a:e4: fd:c2:95:32:f2:f7:34:8d:2f:a6:cc:54:b0:c8:c1: aa:5b:3f:5c:0b:7d:ba:4a:ec:ac:97:03:af:87:85: 7e:62:49:24:1f:5e:98:d9:05:e4:fb:ab:88:35:4e: 54:94:85:f8:18:e1:69:28:8e:c1:b7:a1:65:32:97: 0d:02:34:93:3a:25:1e:4b:7c:ad:51:e7:4f:79:7a: fe:e0:bb:55:52:de:6b:9b:59:6e:bb:ea:70:6a:dd: 7d:60:65:71:c2:73:42:44:4f:5b:dd:55:a8:10:cc: 84:35:6d:67:f6:ba:ce:53:8e:a6:b0:c3:45:37:35: 55:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:9B:C0:B7:13:52:F4:7A:88:6C:55:57:E0:C2:9B:EA:28:7E:95:72 X509v3 Authority Key Identifier: keyid:9D:DC:73:77:51:7D:53:59:3B:F1:AC:96:6C:3B:71:AF:6F:5C:09:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/ndxzd1F9U1k78ayWbDtxr29cCco.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ndxzd1F9U1k78ayWbDtxr29cCco.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30310/1pvAtxNS9HqIbFVX4MKb6ih-lXI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:cbc0::/32 Signature Algorithm: sha256WithRSAEncryption 4f:0d:9c:4e:d3:4b:d5:b3:19:b0:85:92:5f:f4:c9:76:27:c9: 88:8b:c2:a2:69:17:0f:20:4b:8a:43:91:38:57:f2:4f:90:4f: fd:bd:e5:36:6f:a9:ab:d7:f0:ba:05:ee:0b:fa:8e:6e:55:8f: 23:f3:c6:db:48:3e:33:26:f9:d8:fa:b8:63:08:77:e4:15:6e: 51:fb:df:40:e1:da:5a:a3:ee:66:ca:92:c8:e7:b2:dd:79:1a: cb:dc:a0:45:0c:9e:36:90:0f:e1:8e:67:3e:43:73:2e:16:14: 76:57:19:cf:53:76:f2:e1:8a:a4:b9:6e:cc:4f:a0:52:aa:ce: 9e:a0:f0:11:e1:6d:27:fd:ec:fa:b5:11:3c:e7:d0:e1:65:9f: ba:9d:eb:2d:21:bf:bc:c4:fe:3c:88:c0:46:45:b6:5a:4a:cc: 70:90:d7:38:75:4c:58:d3:32:29:04:77:11:ec:ee:9d:cb:74: 87:59:74:e6:fc:bd:3e:ac:5f:d9:47:18:de:36:eb:37:b2:d6: 30:1f:cc:61:4b:30:75:75:2c:c5:00:b8:66:a7:74:89:2d:9b: bb:dc:25:aa:7f:3e:04:5f:f1:e8:2c:af:26:30:28:2c:52:b5: 60:57:41:69:65:99:56:d0:e0:b4:85:6c:5e:bb:05:23:85:41: c3:70:7d:d6 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5RERD NzM3NzUxN0Q1MzU5M0JGMUFDOTY2QzNCNzFBRjZGNUMwOUNBMB4XDTI1MDQwMTAx MzI0MloXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoRDY5QkMwQjcxMzUyRjQ3 QTg4NkM1NTU3RTBDMjlCRUEyODdFOTU3MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALXMOvjrUENh5pH3cQTkicObtrcKKPBIGC0D70LCANOuAXx7WYPH Ov1rt8ZpsBncsNsagboZfMFbUfQwlOqG3N/I1wEQFWN/3xnbZA9OJglwgZHXDtkw kdgCyN6mjN1R6LR14LL/yI52sx+A/Xl/Nnk6NKVHcSn6DbyoATMkV5PuZGEsXnrk /cKVMvL3NI0vpsxUsMjBqls/XAt9ukrsrJcDr4eFfmJJJB9emNkF5PuriDVOVJSF +BjhaSiOwbehZTKXDQI0kzolHkt8rVHnT3l6/uC7VVLea5tZbrvqcGrdfWBlccJz QkRPW91VqBDMhDVtZ/a6zlOOprDDRTc1VVECAwEAAaOCAikwggIlMB0GA1UdDgQW BBTWm8C3E1L0eohsVVfgwpvqKH6VcjAfBgNVHSMEGDAWgBSd3HN3UX1TWTvxrJZs O3Gvb1wJyjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAzMTAvbmR4emQxRjlVMWs3OGF5V2JEdHhyMjljQ2NvLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbmR4emQxRjlVMWs3OGF5V2JEdHhy MjljQ2NvLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMzEwLzFwdkF0eE5TOUhxSWJGVlg0TUtiNmloLWxYSS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAcvAMA0GCSqGSIb3DQEBCwUAA4IBAQBPDZxO00vVsxmwhZJf9Ml2 J8mIi8KiaRcPIEuKQ5E4V/JPkE/9veU2b6mr1/C6Be4L+o5uVY8j88bbSD4zJvnY +rhjCHfkFW5R+99A4dpao+5mypLI57LdeRrL3KBFDJ42kA/hjmc+Q3MuFhR2VxnP U3by4YqkuW7MT6BSqs6eoPAR4W0n/ez6tRE859DhZZ+6nestIb+8xP48iMBGRbZa SsxwkNc4dUxY0zIpBHcR7O6dy3SHWXTm/L0+rF/ZRxjeNus3stYwH8xhSzB1dSzF ALhmp3SJLZu73CWqfz4EX/HoLK8mMCgsUrVgV0FpZZlW0OC0hWxeuwUjhUHDcH3W -----END CERTIFICATE-----Generated at Sat Apr 26 19:46:34 2025 by rpki-client