$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WcyiTrUn2gVUfEaTnL4xGx0GeEk.roa File: WcyiTrUn2gVUfEaTnL4xGx0GeEk.roa (raw, json) Hash identifier: ehgk/CegY516eraoLUct8azbFB+GfvDmwIs51F3sL3c= Subject key identifier: 59:CC:A2:4E:B5:27:DA:05:54:7C:46:93:9C:BE:31:1B:1D:06:78:49 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CD1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WcyiTrUn2gVUfEaTnL4xGx0GeEk.roa Signing time: Tue 01 Apr 2025 02:09:13 +0000 ROA not before: Tue 01 Apr 2025 02:09:13 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3281 (0xcd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:13 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=59CCA24EB527DA05547C46939CBE311B1D067849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:82:e8:4f:fb:ef:25:6b:bc:54:ed:38:08:c9: df:80:24:18:e1:d7:8d:f1:11:f4:71:96:64:e8:e3: 8c:0e:1d:10:26:bc:c7:2b:ec:26:14:8d:2c:48:59: cb:ab:2b:46:b0:8c:9c:7d:16:dd:1f:0d:51:6b:93: 4b:bf:14:c5:a2:98:a0:aa:d2:c3:43:82:ec:47:45: e6:21:e0:ac:b0:86:ff:d6:e4:b2:8d:8b:65:7c:15: 47:8c:c9:4b:1e:d0:ed:0e:5d:be:da:ca:75:e0:2c: c1:e8:eb:b6:58:90:50:d2:d2:68:c7:44:00:10:1e: fb:ae:5a:d8:c5:cc:5c:f7:fc:cd:79:4d:46:02:51: c0:ec:f2:57:81:ef:e3:db:66:c5:08:67:c9:16:6f: f3:48:b2:eb:34:5e:24:92:e0:75:3a:96:7d:60:23: 09:8d:18:f1:0f:83:9b:30:8a:16:b5:a6:5d:4a:1d: 6f:e0:6b:ca:40:0c:21:11:da:72:c5:b4:14:31:e0: ef:fb:8d:07:3e:bc:6b:93:7e:10:0a:73:a1:a9:56: 9a:96:e6:97:eb:cb:31:c9:bf:8c:cf:ba:13:bd:8d: bb:b2:2f:d8:9d:a9:b8:89:f9:fd:85:fd:07:04:3d: 8d:8c:6c:e5:f2:82:30:95:da:19:34:85:3b:40:e8: be:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:CC:A2:4E:B5:27:DA:05:54:7C:46:93:9C:BE:31:1B:1D:06:78:49 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WcyiTrUn2gVUfEaTnL4xGx0GeEk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.20.0/23 Signature Algorithm: sha256WithRSAEncryption 88:78:49:f8:03:6b:7b:f3:6b:34:2e:9b:a9:10:6f:1e:6f:84: 61:83:46:d9:98:7e:b9:fd:6e:be:41:6a:df:54:7a:62:3d:21: 20:1a:0e:6d:a9:5f:03:d8:43:1f:0c:7a:44:4b:c6:e8:c0:e6: 89:18:de:8f:64:b6:09:f6:98:47:31:41:dd:5d:78:4e:7b:b2: 6c:73:a4:91:c0:26:d9:22:bf:f5:d8:af:4f:e3:13:03:1e:40: 5e:8f:b6:f3:fc:d8:9a:93:ec:cc:31:a7:71:a5:5e:b9:b5:89: 13:eb:e3:14:4e:42:d2:19:af:56:c9:da:52:06:5f:60:e6:09: 07:1b:f4:c0:19:b3:e1:1a:28:d5:cd:87:57:1c:90:3b:57:80: 3a:37:38:f4:0b:94:8a:ca:a3:88:49:3f:23:36:28:8a:03:53: 74:d9:32:18:31:5b:ef:fd:d5:8a:f9:f9:aa:eb:8c:dd:0e:d9: 48:7c:5d:d3:6c:15:eb:69:eb:93:f3:c8:f6:14:3f:1c:a0:9e: 94:7d:4d:0f:7f:d5:84:60:21:9d:33:e8:ba:48:31:7b:4f:77: 33:44:6f:c6:ef:94:1b:9a:ad:61:f4:21:5b:51:2b:22:94:e7: 35:61:48:d0:fb:c2:fa:fa:ee:82:1f:63:60:2a:45:d9:1a:a8: 63:e9:5a:2f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MTNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU5Q0NBMjRFQjUyN0RB MDU1NDdDNDY5MzlDQkUzMTFCMUQwNjc4NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3guhP++8la7xU7TgIyd+AJBjh143xEfRxlmTo44wOHRAmvMcr 7CYUjSxIWcurK0awjJx9Ft0fDVFrk0u/FMWimKCq0sNDguxHReYh4Kywhv/W5LKN i2V8FUeMyUse0O0OXb7aynXgLMHo67ZYkFDS0mjHRAAQHvuuWtjFzFz3/M15TUYC UcDs8leB7+PbZsUIZ8kWb/NIsus0XiSS4HU6ln1gIwmNGPEPg5swiha1pl1KHW/g a8pADCER2nLFtBQx4O/7jQc+vGuTfhAKc6GpVpqW5pfryzHJv4zPuhO9jbuyL9id qbiJ+f2F/QcEPY2MbOXygjCV2hk0hTtA6L5VAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWcyiTrUn2gVUfEaTnL4xGx0GeEkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1djeWlUclVuMmdWVWZFYVRuTDR4R3gwR2VFay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYBQwDQYJKoZIhvcNAQELBQADggEBAIh4SfgDa3vzazQum6kQbx5vhGGD RtmYfrn9br5Bat9UemI9ISAaDm2pXwPYQx8MekRLxujA5okY3o9ktgn2mEcxQd1d eE57smxzpJHAJtkiv/XYr0/jEwMeQF6PtvP82JqT7Mwxp3GlXrm1iRPr4xROQtIZ r1bJ2lIGX2DmCQcb9MAZs+EaKNXNh1cckDtXgDo3OPQLlIrKo4hJPyM2KIoDU3TZ MhgxW+/91Yr5+arrjN0O2Uh8XdNsFetp65PzyPYUPxygnpR9TQ9/1YRgIZ0z6LpI MXtPdzNEb8bvlBuarWH0IVtRKyKU5zVhSND7wvr67oIfY2AqRdkaqGPpWi8= -----END CERTIFICATE-----Generated at Sat Apr 26 18:19:15 2025 by rpki-client