$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CoqcBGjMe9azrGbjx2gd0sCH42g.roa File: CoqcBGjMe9azrGbjx2gd0sCH42g.roa (raw, json) Hash identifier: 2qkZmH6tsdXMuuBRpTdXbbAiEZD8prBK0VhMXisEgXI= Subject key identifier: 0A:8A:9C:04:68:CC:7B:D6:B3:AC:66:E3:C7:68:1D:D2:C0:87:E3:68 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C92 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CoqcBGjMe9azrGbjx2gd0sCH42g.roa Signing time: Tue 01 Apr 2025 02:03:22 +0000 ROA not before: Tue 01 Apr 2025 02:03:22 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3218 (0xc92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:22 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=0A8A9C0468CC7BD6B3AC66E3C7681DD2C087E368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:19:3f:3f:54:32:fc:7b:2a:ca:3f:d9:b1:8b: fa:17:b5:4a:76:3c:37:42:a4:01:66:12:7d:27:f5: de:77:a5:07:98:80:c4:a9:7e:14:dd:00:22:16:49: b8:9f:97:ba:45:9d:1e:a1:46:03:ee:21:59:42:5b: ef:91:f8:59:86:50:6e:28:cc:df:18:2c:b4:99:56: 1a:82:ea:6c:18:db:4b:a3:22:c6:f6:2a:25:b0:3c: b8:dc:1a:e9:32:ce:c5:64:8b:82:2a:ca:fc:1a:07: d1:fb:84:20:d0:c5:03:57:57:df:14:53:82:3d:4d: d0:7b:c0:29:4a:0d:38:e2:3e:d8:ec:82:2d:ce:2f: 74:b8:e7:8e:67:3b:86:7b:1f:a0:92:1a:c6:f8:89: f6:c0:69:a4:8f:46:83:a8:6f:a9:d8:a6:a5:0a:82: b7:27:ce:6f:f7:58:b1:c5:53:b1:b5:b4:97:78:9c: fe:c0:a5:07:6a:c4:14:05:4b:4e:10:18:74:36:26: 47:b3:f3:7e:b4:93:c0:bd:bc:c9:53:7f:f3:ae:e2: 04:96:4e:03:5b:63:5f:a4:b7:50:85:a9:72:fe:c4: 65:47:dc:c6:4d:5c:4c:38:6b:9a:f0:88:f5:95:ab: 4c:8f:52:ff:bc:93:83:a4:67:d8:f7:77:d4:aa:e3: 02:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:8A:9C:04:68:CC:7B:D6:B3:AC:66:E3:C7:68:1D:D2:C0:87:E3:68 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CoqcBGjMe9azrGbjx2gd0sCH42g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.40.0/22 Signature Algorithm: sha256WithRSAEncryption be:d7:a4:cf:2f:68:a7:9c:2d:d0:48:ed:b0:28:96:3e:79:bf: ef:8b:a6:a2:25:9e:08:6e:ca:24:d2:66:16:35:dd:99:d6:a5: 9c:b1:f3:c4:40:99:b9:7d:29:46:63:50:f2:69:ae:3b:08:63: 1a:a8:db:bc:75:3a:9c:b7:88:8b:94:cf:0b:de:7c:53:8e:c9: b5:ea:d5:f8:0d:b1:fe:22:e3:22:fa:79:00:75:93:56:0b:6a: a1:1c:43:11:2c:6a:a7:ba:77:f3:af:ed:02:c4:fa:1f:13:e1: 81:13:a5:27:75:de:76:9a:af:53:e6:80:1a:6a:7d:05:50:2f: c3:dc:91:0c:9c:34:82:9f:92:06:c9:e7:9d:38:28:23:eb:1a: 4d:76:3a:71:33:c4:a3:d7:37:4d:83:f6:12:6d:a9:6f:7e:5e: 6e:d1:84:a6:9f:39:2b:cc:a7:7a:d2:75:31:43:86:cf:10:c3: dd:ec:d1:18:00:7a:1f:99:b4:a2:f9:ae:6f:eb:2f:3e:41:ec: 91:ef:b6:53:fa:27:b3:39:83:ee:f6:4b:db:72:b6:51:76:95: f6:4b:82:97:a1:35:fd:ca:a4:9f:3f:5f:6a:7e:e9:8e:73:07: 0b:6e:9c:b0:3f:cc:78:3e:da:85:8d:be:bd:68:ea:78:fb:69: d2:4a:f4:70 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMjJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBBOEE5QzA0NjhDQzdC RDZCM0FDNjZFM0M3NjgxREQyQzA4N0UzNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtGT8/VDL8eyrKP9mxi/oXtUp2PDdCpAFmEn0n9d53pQeYgMSp fhTdACIWSbifl7pFnR6hRgPuIVlCW++R+FmGUG4ozN8YLLSZVhqC6mwY20ujIsb2 KiWwPLjcGukyzsVki4IqyvwaB9H7hCDQxQNXV98UU4I9TdB7wClKDTjiPtjsgi3O L3S4545nO4Z7H6CSGsb4ifbAaaSPRoOob6nYpqUKgrcnzm/3WLHFU7G1tJd4nP7A pQdqxBQFS04QGHQ2Jkez8360k8C9vMlTf/Ou4gSWTgNbY1+kt1CFqXL+xGVH3MZN XEw4a5rwiPWVq0yPUv+8k4OkZ9j3d9Sq4wLDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCoqcBGjMe9azrGbjx2gd0sCH42gwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NvcWNCR2pNZTlhenJHYmp4MmdkMHNDSDQyZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxaCgwDQYJKoZIhvcNAQELBQADggEBAL7XpM8vaKecLdBI7bAolj55v++L pqIlnghuyiTSZhY13ZnWpZyx88RAmbl9KUZjUPJprjsIYxqo27x1Opy3iIuUzwve fFOOybXq1fgNsf4i4yL6eQB1k1YLaqEcQxEsaqe6d/Ov7QLE+h8T4YETpSd13naa r1PmgBpqfQVQL8PckQycNIKfkgbJ5504KCPrGk12OnEzxKPXN02D9hJtqW9+Xm7R hKafOSvMp3rSdTFDhs8Qw93s0RgAeh+ZtKL5rm/rLz5B7JHvtlP6J7M5g+72S9ty tlF2lfZLgpehNf3KpJ8/X2p+6Y5zBwtunLA/zHg+2oWNvr1o6nj7adJK9HA= -----END CERTIFICATE-----Generated at Sat Apr 26 20:13:16 2025 by rpki-client