$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1WCzC_IxmmhkVx8vyYnJs334rHY.roa File: 1WCzC_IxmmhkVx8vyYnJs334rHY.roa (raw, json) Hash identifier: ENxnCNwrp32YGf+FKX/Fg19Owtw9O1yTMtRAzsxKJpU= Subject key identifier: D5:60:B3:0B:F2:31:9A:68:64:57:1F:2F:C9:89:C9:B3:7D:F8:AC:76 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E1C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1WCzC_IxmmhkVx8vyYnJs334rHY.roa Signing time: Tue 01 Apr 2025 02:31:34 +0000 ROA not before: Tue 01 Apr 2025 02:31:34 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3612 (0xe1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:31:34 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=D560B30BF2319A6864571F2FC989C9B37DF8AC76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a0:b3:77:d0:b7:e7:dd:a8:cd:85:a7:39:49: 4d:54:47:f3:cd:37:09:59:2d:6c:55:cc:13:e4:7c: 03:08:96:d2:43:3d:b7:69:bb:6d:fb:1a:5a:8c:03: 0f:3a:dc:4c:05:93:24:aa:66:55:ba:ca:57:df:5e: 56:ef:f2:b3:db:90:ca:66:50:cb:d0:66:df:30:37: 28:26:4b:ab:85:b1:1d:2f:1c:67:3e:01:23:70:c7: 5c:82:4d:b5:cd:9d:5a:2e:de:05:63:96:7d:d1:8c: 38:24:c5:3e:c0:87:f9:62:bd:88:22:a3:38:f3:c6: 24:f2:94:42:71:94:92:20:59:d6:71:7f:8c:55:24: a7:95:59:9f:d6:ea:01:ba:25:f9:04:1e:33:ea:29: fc:8d:ed:26:9e:ec:a3:cc:66:93:52:73:9f:e1:09: 70:78:10:14:af:71:49:49:25:cf:2d:59:bf:fc:ed: 3e:02:74:98:be:c4:7c:de:86:34:69:e1:e4:e7:39: f3:b1:75:5a:84:e4:28:ed:bc:be:e5:1f:ba:2d:78: e0:22:e8:f8:1f:5d:26:2c:e0:dd:e5:f0:61:17:57: 37:10:32:fb:3a:41:f0:30:33:ba:5c:86:15:14:24: 12:53:dc:86:63:ad:43:ae:3d:b9:94:27:2f:1f:98: 81:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:60:B3:0B:F2:31:9A:68:64:57:1F:2F:C9:89:C9:B3:7D:F8:AC:76 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1WCzC_IxmmhkVx8vyYnJs334rHY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.242.0/23 Signature Algorithm: sha256WithRSAEncryption 74:56:58:ab:c6:00:18:c4:02:0c:8f:5e:3d:1d:d1:9d:be:a2: 7e:e7:ab:fc:07:68:0b:33:b8:a7:72:80:14:65:87:0a:72:a0: 1d:1d:bb:09:50:44:f0:38:fd:6c:6f:64:91:34:e0:71:fc:69: e2:2d:79:ed:d6:a3:8b:12:20:f6:cc:36:ac:53:49:e2:04:06: c9:a7:61:fc:26:4f:fb:5d:fc:72:11:7c:ef:ef:84:f8:91:5c: 42:96:01:c3:e6:60:7c:1d:68:31:eb:88:ea:3b:5e:6b:16:c8: 15:97:e6:c7:25:d0:69:79:8e:a8:bf:2b:2b:39:3f:ae:5f:d0: ea:d5:25:8d:93:96:e1:38:1d:73:1d:99:05:75:e6:75:06:f3: 6a:86:41:9d:16:59:65:b6:46:5c:a0:46:82:aa:c9:c8:af:38: 36:e6:a3:76:cc:6c:33:02:8f:ab:9c:6e:7a:14:9f:4b:9a:42: 70:ef:c1:f2:e5:bb:8e:46:6d:6f:2f:b7:09:8c:74:b4:38:77: 6a:12:df:09:62:42:8f:5a:db:3d:7e:f1:7c:bc:78:b7:bb:c9: ac:dd:f1:6e:16:2a:2c:a4:26:1e:a1:95:66:6e:6f:c3:5e:1f: 0c:ee:f4:99:2a:cb:d2:8b:0b:31:9a:7c:3c:dc:01:d2:ed:5c: 45:9d:84:d4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDhwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMxMzRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQ1NjBCMzBCRjIzMTlB Njg2NDU3MUYyRkM5ODlDOUIzN0RGOEFDNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4oLN30Lfn3ajNhac5SU1UR/PNNwlZLWxVzBPkfAMIltJDPbdp u237GlqMAw863EwFkySqZlW6ylffXlbv8rPbkMpmUMvQZt8wNygmS6uFsR0vHGc+ ASNwx1yCTbXNnVou3gVjln3RjDgkxT7Ah/livYgiozjzxiTylEJxlJIgWdZxf4xV JKeVWZ/W6gG6JfkEHjPqKfyN7Sae7KPMZpNSc5/hCXB4EBSvcUlJJc8tWb/87T4C dJi+xHzehjRp4eTnOfOxdVqE5CjtvL7lH7oteOAi6PgfXSYs4N3l8GEXVzcQMvs6 QfAwM7pchhUUJBJT3IZjrUOuPbmUJy8fmIG/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1WCzC/IxmmhkVx8vyYnJs334rHYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzFXQ3pDX0l4bW1oa1Z4OHZ5WW5KczMzNHJIWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYPIwDQYJKoZIhvcNAQELBQADggEBAHRWWKvGABjEAgyPXj0d0Z2+on7n q/wHaAszuKdygBRlhwpyoB0duwlQRPA4/WxvZJE04HH8aeItee3Wo4sSIPbMNqxT SeIEBsmnYfwmT/td/HIRfO/vhPiRXEKWAcPmYHwdaDHriOo7XmsWyBWX5scl0Gl5 jqi/Kys5P65f0OrVJY2TluE4HXMdmQV15nUG82qGQZ0WWWW2RlygRoKqycivODbm o3bMbDMCj6ucbnoUn0uaQnDvwfLlu45GbW8vtwmMdLQ4d2oS3wliQo9a2z1+8Xy8 eLe7yazd8W4WKiykJh6hlWZub8NeHwzu9Jkqy9KLCzGafDzcAdLtXEWdhNQ= -----END CERTIFICATE-----Generated at Sat Apr 26 18:24:30 2025 by rpki-client