$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CJ0X95v6Q_ZWd166UeXM_y6hdAc.roa File: CJ0X95v6Q_ZWd166UeXM_y6hdAc.roa (raw, json) Hash identifier: jCJ79ECH00qVT2z9yYOtRmEo7ebq/cY37gfacE2Fn+4= Subject key identifier: 08:9D:17:F7:9B:FA:43:F6:56:77:5E:BA:51:E5:CC:FF:2E:A1:74:07 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E2B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CJ0X95v6Q_ZWd166UeXM_y6hdAc.roa Signing time: Tue 01 Apr 2025 02:33:32 +0000 ROA not before: Tue 01 Apr 2025 02:33:32 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.108.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3627 (0xe2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:33:32 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=089D17F79BFA43F656775EBA51E5CCFF2EA17407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:66:65:b5:3b:7d:53:97:a4:6e:3b:05:33:cb: 47:52:ba:49:24:92:cf:11:0f:8a:7d:5c:f5:4b:16: 78:0b:56:de:77:fa:6d:c5:23:6d:76:97:03:28:c1: 03:3b:b8:02:c9:c4:51:6a:67:d7:29:a1:c0:bc:8e: 8d:a8:f5:00:2e:55:50:9d:50:1c:21:37:10:f7:9a: a3:b7:55:aa:5c:3c:7d:b1:5a:11:cf:64:22:8d:c7: e7:94:b8:9c:db:71:31:16:02:77:ea:86:1a:fd:30: 34:1a:76:e7:77:71:43:cb:9e:c2:ef:b4:e2:b7:22: a9:b8:39:ed:57:29:64:4e:ec:86:c1:59:fd:7d:06: dc:36:a8:67:45:66:8b:4d:23:71:35:2b:8a:19:ff: 8b:c3:4a:86:2d:3f:37:0f:39:80:65:56:ce:bf:41: 72:05:c1:e7:6c:19:5b:9f:d6:5d:75:cf:89:b9:b4: 2d:51:43:05:49:42:df:3d:b6:d5:05:80:ab:58:11: 8f:be:fc:fc:6c:b7:ca:ff:4f:6a:e0:22:78:70:ec: b4:28:28:0a:14:9e:3b:76:d6:29:3e:b6:f8:e7:cb: e8:10:43:22:72:ec:d0:b2:9c:c0:fe:75:a1:96:58: a0:0c:40:de:b8:51:d9:8d:24:83:f8:e3:cb:81:5f: f4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:9D:17:F7:9B:FA:43:F6:56:77:5E:BA:51:E5:CC:FF:2E:A1:74:07 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CJ0X95v6Q_ZWd166UeXM_y6hdAc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.108.224.0/23 Signature Algorithm: sha256WithRSAEncryption 49:2e:d8:24:a0:5c:38:df:a7:52:cb:44:5a:b6:a7:07:e5:16: 15:41:0f:e3:5b:ae:af:dc:95:65:75:0c:19:1e:d8:dc:26:54: 65:ae:32:fa:ae:87:35:3f:34:26:f8:12:35:82:92:45:d8:50: 12:67:ea:a5:71:05:73:64:ee:da:98:95:d5:63:3f:07:8d:a2: b1:1e:c6:b7:cb:a4:07:f7:81:30:62:96:78:29:89:e9:26:98: 55:a4:74:f8:49:39:0f:56:92:5b:37:f0:bb:13:03:33:e2:d0: 66:d1:9f:72:f6:7c:89:a6:d4:31:8e:5d:b8:03:03:57:eb:4b: 58:a7:26:33:6f:63:32:ef:fe:9b:21:8d:bb:0c:de:d4:cb:be: 67:6e:da:1b:a5:54:83:45:f7:95:ba:30:be:58:f2:c4:77:9b: 9a:0d:b1:1b:b5:80:c2:5d:d6:8e:de:86:6d:7c:c9:cc:10:ea: 15:c6:9b:d2:8b:48:fd:6a:d0:c0:5d:c9:0a:89:13:41:a9:98: cb:a1:95:05:19:6f:24:70:4f:7a:29:e9:81:bc:7e:22:db:d1: 3d:3a:1b:22:1b:ff:7d:8d:4b:6e:e8:47:37:bb:12:3d:49:58: b1:1b:6f:81:c2:a2:8a:94:01:a5:b7:a9:91:3e:f9:2d:7f:9c: 8f:79:7d:ba -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDiswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMzMzJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA4OUQxN0Y3OUJGQTQz RjY1Njc3NUVCQTUxRTVDQ0ZGMkVBMTc0MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJZmW1O31Tl6RuOwUzy0dSukkkks8RD4p9XPVLFngLVt53+m3F I212lwMowQM7uALJxFFqZ9cpocC8jo2o9QAuVVCdUBwhNxD3mqO3VapcPH2xWhHP ZCKNx+eUuJzbcTEWAnfqhhr9MDQadud3cUPLnsLvtOK3Iqm4Oe1XKWRO7IbBWf19 Btw2qGdFZotNI3E1K4oZ/4vDSoYtPzcPOYBlVs6/QXIFwedsGVuf1l11z4m5tC1R QwVJQt89ttUFgKtYEY++/Pxst8r/T2rgInhw7LQoKAoUnjt21ik+tvjny+gQQyJy 7NCynMD+daGWWKAMQN64UdmNJIP448uBX/SlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCJ0X95v6Q/ZWd166UeXM/y6hdAcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NKMFg5NXY2UV9aV2QxNjZVZVhNX3k2aGRBYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExbOAwDQYJKoZIhvcNAQELBQADggEBAEku2CSgXDjfp1LLRFq2pwflFhVB D+Nbrq/clWV1DBke2NwmVGWuMvquhzU/NCb4EjWCkkXYUBJn6qVxBXNk7tqYldVj PweNorEexrfLpAf3gTBilngpiekmmFWkdPhJOQ9Wkls38LsTAzPi0GbRn3L2fImm 1DGOXbgDA1frS1inJjNvYzLv/pshjbsM3tTLvmdu2hulVINF95W6ML5Y8sR3m5oN sRu1gMJd1o7ehm18ycwQ6hXGm9KLSP1q0MBdyQqJE0GpmMuhlQUZbyRwT3op6YG8 fiLb0T06GyIb/32NS27oRze7Ej1JWLEbb4HCooqUAaW3qZE++S1/nI95fbo= -----END CERTIFICATE-----Generated at Sat Apr 26 18:20:42 2025 by rpki-client