$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/6JTSfxIUEX_tadAEs0PdQtM4liY.roa File: 6JTSfxIUEX_tadAEs0PdQtM4liY.roa (raw, json) Hash identifier: fdljybFv3pZsuUhtSucjof94MUGddlNghDcwYgTEAdA= Subject key identifier: E8:94:D2:7F:12:14:11:7F:ED:69:D0:04:B3:43:DD:42:D3:38:96:26 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B8A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6JTSfxIUEX_tadAEs0PdQtM4liY.roa Signing time: Tue 01 Apr 2025 01:36:56 +0000 ROA not before: Tue 01 Apr 2025 01:36:56 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 20:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2954 (0xb8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:36:56 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E894D27F1214117FED69D004B343DD42D3389626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:56:5f:35:08:c7:35:bc:0a:10:cf:e8:62:82: bc:79:8a:cd:b3:23:a0:71:54:e0:e2:b9:b6:f6:25: 80:71:b6:b6:8e:ce:2c:7c:1a:af:4d:b9:a3:cf:6e: b7:4f:44:50:d4:84:03:fa:4f:8b:39:f0:21:02:de: 1c:85:c3:22:ec:bb:4b:43:14:9f:ad:c9:31:86:01: 48:c2:e4:a6:fa:83:43:00:5d:f8:35:87:0e:64:f4: 7e:97:82:24:d5:1a:e2:4c:2d:7d:13:c9:a4:67:52: e8:e7:67:d3:44:a2:b1:4a:be:29:51:5a:a8:f8:c2: c4:7c:f5:99:36:b5:49:a2:33:6e:77:2c:dd:8a:40: 56:63:90:95:6f:76:f0:b3:af:32:29:14:54:04:95: df:37:f7:af:fc:f3:5a:d4:cd:2a:d8:0a:c7:76:76: 0a:07:09:3f:d6:19:3d:c1:ef:76:56:36:f6:22:ec: 79:f3:6f:d4:8c:29:59:a8:16:1f:f2:c8:47:c9:6e: 22:5a:6d:3d:bc:76:45:88:a5:10:03:1d:af:57:73: c2:32:20:a9:13:c1:7b:af:71:be:42:a0:45:f8:0a: 74:00:18:83:d1:c6:e9:5a:42:d3:29:1f:6a:1a:ce: 0b:4f:8c:aa:99:4d:3c:2e:5a:b7:4d:69:1f:f4:8a: 70:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:94:D2:7F:12:14:11:7F:ED:69:D0:04:B3:43:DD:42:D3:38:96:26 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6JTSfxIUEX_tadAEs0PdQtM4liY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.64.0/23 Signature Algorithm: sha256WithRSAEncryption 26:3b:e7:db:ff:65:23:d9:0c:75:27:11:e5:1d:b1:18:18:0e: 38:39:62:15:22:f2:e6:a0:3b:a1:b8:d3:f8:ef:90:4b:e2:69: d2:b6:6a:c1:36:ae:5a:80:fc:25:48:33:06:60:a1:25:6d:26: 0a:e0:fc:59:27:ff:ed:b6:e7:39:f1:0d:bc:c5:27:97:70:7b: 1c:af:62:e9:0f:5b:07:fd:2a:90:54:7e:44:e1:85:2b:4b:46: aa:90:7d:4e:2c:73:70:ca:64:51:d5:5b:19:3b:ca:f2:17:c1: ca:75:17:d1:b7:d0:54:4f:32:0a:35:04:94:a2:93:6a:49:b2: b4:9d:3b:65:ef:94:87:7e:ec:99:ff:fa:1e:2b:ca:22:82:58: d1:d2:9c:02:d8:57:71:3e:b0:bc:5e:31:c6:2b:57:29:ee:aa: f2:e0:17:0f:c7:bb:c0:7a:34:a1:03:0d:4b:90:ac:c4:10:ae: 48:e8:22:06:42:36:7b:19:d0:e6:81:2d:72:e4:c0:51:96:3c: 16:86:d5:64:d1:96:b7:27:bb:21:f9:ac:c8:c7:1d:92:b9:29: eb:dd:37:4a:4f:63:d0:0b:bb:b7:00:5e:df:94:52:e4:4e:0d: b1:ca:e2:1d:c3:ef:d5:ee:a3:7f:5e:12:45:c3:d1:87:0c:39: 34:3d:0a:da -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM2NTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU4OTREMjdGMTIxNDEx N0ZFRDY5RDAwNEIzNDNERDQyRDMzODk2MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbVl81CMc1vAoQz+higrx5is2zI6BxVODiubb2JYBxtraOzix8 Gq9NuaPPbrdPRFDUhAP6T4s58CEC3hyFwyLsu0tDFJ+tyTGGAUjC5Kb6g0MAXfg1 hw5k9H6XgiTVGuJMLX0TyaRnUujnZ9NEorFKvilRWqj4wsR89Zk2tUmiM253LN2K QFZjkJVvdvCzrzIpFFQEld8396/881rUzSrYCsd2dgoHCT/WGT3B73ZWNvYi7Hnz b9SMKVmoFh/yyEfJbiJabT28dkWIpRADHa9Xc8IyIKkTwXuvcb5CoEX4CnQAGIPR xulaQtMpH2oazgtPjKqZTTwuWrdNaR/0inClAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU6JTSfxIUEX/tadAEs0PdQtM4liYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzZKVFNmeElVRVhfdGFkQUVzMFBkUXRNNGxpWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYkAwDQYJKoZIhvcNAQELBQADggEBACY759v/ZSPZDHUnEeUdsRgYDjg5 YhUi8uagO6G40/jvkEviadK2asE2rlqA/CVIMwZgoSVtJgrg/Fkn/+225znxDbzF J5dwexyvYukPWwf9KpBUfkThhStLRqqQfU4sc3DKZFHVWxk7yvIXwcp1F9G30FRP Mgo1BJSik2pJsrSdO2XvlId+7Jn/+h4ryiKCWNHSnALYV3E+sLxeMcYrVynuqvLg Fw/Hu8B6NKEDDUuQrMQQrkjoIgZCNnsZ0OaBLXLkwFGWPBaG1WTRlrcnuyH5rMjH HZK5KevdN0pPY9ALu7cAXt+UUuRODbHK4h3D79Xuo39eEkXD0YcMOTQ9Cto= -----END CERTIFICATE-----Generated at Tue May 6 22:00:48 2025 by rpki-client