$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YgXfrtboW-VMgWGHLwhFlqZeujE.roa File: YgXfrtboW-VMgWGHLwhFlqZeujE.roa (raw, json) Hash identifier: mukni3ygmCJlYv7SmNW24jICG3I9sUzEDDgZaoGGrnQ= Subject key identifier: 62:05:DF:AE:D6:E8:5B:E5:4C:81:61:87:2F:08:45:96:A6:5E:BA:31 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 71 Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YgXfrtboW-VMgWGHLwhFlqZeujE.roa Signing time: Thu 01 May 2025 01:29:57 +0000 ROA not before: Thu 01 May 2025 01:29:57 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 9605 IP address blocks: 160.249.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: May 1 01:29:57 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=6205DFAED6E85BE54C8161872F084596A65EBA31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bc:fb:5b:b7:a1:a7:31:e0:2e:01:db:a7:f0: 4d:3f:f0:5d:5f:bb:2f:b5:40:6b:22:39:e3:b8:f4: ed:9f:83:2b:d4:1c:43:c7:54:01:22:20:a7:11:80: 6d:f3:4a:50:0e:c0:fa:7f:6e:b3:61:6a:ce:53:0f: 82:91:43:32:79:4c:d4:76:ea:5a:f5:a8:68:11:a1: 14:8d:0b:2e:3b:79:ee:b2:fe:9c:8f:20:ff:81:8b: 0e:41:bd:4e:c7:92:fc:77:82:3e:ec:46:9d:0e:d0: 1c:f9:33:f8:44:13:5e:b8:95:df:dd:80:cf:d5:e8: a3:f3:b0:1d:dc:77:0f:0d:96:df:af:5d:f3:73:f3: 61:8d:8b:75:09:de:71:66:cd:7e:48:92:c6:d9:73: 60:36:1d:5f:68:98:31:61:b5:26:53:7d:64:a6:3e: a9:9b:cb:5d:00:77:b4:38:3f:35:0c:38:c6:f7:16: bf:ff:ee:f2:81:cd:ff:61:4f:a3:af:8a:b6:30:a0: f1:2d:46:ca:f5:03:59:ff:b8:6e:69:dd:e9:12:7d: 7f:52:04:59:78:f9:c0:43:af:f5:af:78:9a:2f:b7: ff:f2:67:b7:f7:50:2c:e0:9e:ca:57:05:c1:3f:3a: 71:f5:c6:b5:b8:b2:80:46:37:78:e7:f6:e1:35:38: 6a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:05:DF:AE:D6:E8:5B:E5:4C:81:61:87:2F:08:45:96:A6:5E:BA:31 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YgXfrtboW-VMgWGHLwhFlqZeujE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.249.88.0/22 Signature Algorithm: sha256WithRSAEncryption a3:52:1a:6c:26:d1:2a:60:f9:8f:20:80:06:07:f7:f0:e7:d3: 6b:9c:03:0c:9b:e3:65:fe:86:ba:01:81:75:31:1d:da:e7:57: 83:4b:65:d5:59:8b:ca:b7:18:57:74:36:53:65:2d:b4:06:55: c6:16:ac:d3:d4:b0:7b:45:79:f5:d8:43:55:5b:78:fa:fa:29: 97:e2:89:85:69:6a:e2:36:f2:e1:46:18:55:34:65:8e:cb:30: 57:dd:4c:e9:e4:51:bf:ef:84:0a:b1:38:fc:47:e3:b6:ea:40: b2:bc:ec:af:31:24:7c:09:8f:5b:f4:dc:5a:38:be:72:5b:30: ef:df:be:69:3a:a1:71:d4:83:a9:61:4c:55:dd:c5:9b:26:b7: e1:50:2c:68:c4:28:0b:ce:16:35:49:98:e9:10:c3:56:89:b1: e8:96:5b:a9:43:a2:91:3d:d2:99:b3:fb:7a:72:cf:c2:ab:3c: e3:09:a0:25:92:4e:63:dd:25:5a:6e:36:07:47:7f:e9:ee:6f: 39:d7:15:64:6c:57:b7:34:94:7a:24:63:15:6e:91:de:ed:83: ee:ef:b9:39:7a:e0:0c:06:6f:d7:10:96:73:4f:9d:31:a9:01: 38:9b:a4:e5:5e:38:12:57:b3:32:c9:7f:f0:25:10:7a:2f:6a: 53:cb:7a:2d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI1MDUwMTAx Mjk1N1oXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNjIwNURGQUVENkU4NUJF NTRDODE2MTg3MkYwODQ1OTZBNjVFQkEzMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALC8+1u3oacx4C4B26fwTT/wXV+7L7VAayI547j07Z+DK9QcQ8dU ASIgpxGAbfNKUA7A+n9us2FqzlMPgpFDMnlM1HbqWvWoaBGhFI0LLjt57rL+nI8g /4GLDkG9TseS/HeCPuxGnQ7QHPkz+EQTXriV392Az9Xoo/OwHdx3Dw2W369d83Pz YY2LdQnecWbNfkiSxtlzYDYdX2iYMWG1JlN9ZKY+qZvLXQB3tDg/NQw4xvcWv//u 8oHN/2FPo6+KtjCg8S1GyvUDWf+4bmnd6RJ9f1IEWXj5wEOv9a94mi+3//Jnt/dQ LOCeylcFwT86cfXGtbiygEY3eOf24TU4aj0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRiBd+u1uhb5UyBYYcvCEWWpl66MTAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvWWdYZnJ0Ym9XLVZNZ1dHSEx3aEZscVpldWpFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAqD5WDANBgkqhkiG9w0BAQsFAAOCAQEAo1IabCbRKmD5jyCABgf38OfTa5wD DJvjZf6GugGBdTEd2udXg0tl1VmLyrcYV3Q2U2UttAZVxhas09Swe0V59dhDVVt4 +vopl+KJhWlq4jby4UYYVTRljsswV91M6eRRv++ECrE4/EfjtupAsrzsrzEkfAmP W/TcWji+clsw79++aTqhcdSDqWFMVd3Fmya34VAsaMQoC84WNUmY6RDDVomx6JZb qUOikT3SmbP7enLPwqs84wmgJZJOY90lWm42B0d/6e5vOdcVZGxXtzSUeiRjFW6R 3u2D7u+5OXrgDAZv1xCWc0+dMakBOJuk5V44ElezMsl/8CUQei9qU8t6LQ== -----END CERTIFICATE-----Generated at Sat May 10 23:25:53 2025 by rpki-client