$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fG3ECFhhk_0DITDHL0znbIN677g.roa File: fG3ECFhhk_0DITDHL0znbIN677g.roa (raw, json) Hash identifier: /Tq81FaK8vDlS2vCOzyKvISiEAsX6OiaZHwnXfHhyiM= Subject key identifier: 7C:6D:C4:08:58:61:93:FD:03:21:30:C7:2F:4C:E7:6C:83:7A:EF:B8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BF4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fG3ECFhhk_0DITDHL0znbIN677g.roa Signing time: Tue 01 Apr 2025 01:51:25 +0000 ROA not before: Tue 01 Apr 2025 01:51:25 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3060 (0xbf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:51:25 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=7C6DC408586193FD032130C72F4CE76C837AEFB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:eb:87:53:86:ea:ad:97:08:09:92:78:7a:6b: b6:85:af:bb:eb:01:98:ed:1b:f8:d2:d8:45:c6:ca: 25:07:c4:9c:6e:cf:10:7f:ce:40:ba:51:d2:86:1a: d8:fa:9e:8a:94:bf:75:1b:63:ea:d7:7c:67:2c:80: e3:49:d1:28:87:2d:24:9b:ec:6c:c9:c4:ce:3c:87: 5f:dd:ff:93:08:2d:3f:7a:33:89:b7:5a:51:6d:38: 85:0d:8d:c6:cb:16:35:42:c2:2c:c0:1f:e4:9d:6e: 56:08:29:4c:20:55:28:86:92:fd:16:e6:10:87:c5: 26:25:82:f0:72:e4:49:da:42:03:0d:c6:20:f8:d8: 7b:4c:70:24:84:1f:67:2a:6c:a4:29:1c:7e:95:21: a6:40:0a:83:35:60:11:51:b8:2c:52:d0:87:e8:6c: 1a:2a:65:29:25:82:ff:bb:0c:7a:72:6b:e3:92:b9: 92:c6:83:c7:95:ec:c8:11:f1:83:65:57:ac:9a:bf: a2:cc:90:35:df:7a:f4:a6:3b:82:0e:66:da:74:14: 4e:6f:3c:c6:19:78:05:5e:03:52:5d:03:af:27:f1: 66:ec:e6:cc:9e:cd:56:ff:59:19:ee:1b:e7:7c:5b: 64:5e:9d:f1:73:6e:21:36:8d:4e:2d:d5:44:95:af: 71:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:6D:C4:08:58:61:93:FD:03:21:30:C7:2F:4C:E7:6C:83:7A:EF:B8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fG3ECFhhk_0DITDHL0znbIN677g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.227.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:c9:63:f8:02:b9:9d:08:f9:6c:27:04:bc:b1:06:d2:b5:57: e3:28:58:d1:0a:fa:91:94:73:90:0b:f5:46:90:ce:06:e9:a6: 2a:0a:cb:42:53:cd:c2:94:79:88:12:2d:1e:c8:5c:4c:aa:78: 0f:4b:64:9a:b3:3d:83:52:7f:8a:2a:59:e7:fc:d4:24:17:a1: 4b:3c:a2:5b:fa:ab:79:43:9a:b0:12:15:2c:43:16:0e:cf:44: f5:5f:54:7e:de:5a:94:bb:10:c0:60:26:0b:0f:43:bd:00:22: db:e1:e2:07:46:c4:47:48:3c:75:65:b6:f9:73:60:05:dd:e1: 7c:3a:0b:44:71:53:cf:dc:18:ee:55:e7:3f:24:18:12:00:6a: 68:79:b9:d9:06:6d:d2:62:5b:36:ea:42:c3:a8:cc:a8:32:87: 67:46:bb:fb:a7:2c:83:92:72:c7:17:fc:60:31:f2:4e:7a:8e: a2:71:b5:54:19:c2:5e:ee:68:07:9f:ab:66:66:b7:d7:7f:e9: 95:ba:99:9f:cd:d3:89:3e:b4:69:7f:95:1c:da:cd:de:bf:c0: fe:28:dd:db:c9:1c:88:a0:39:b5:12:9a:f2:1f:cb:39:e0:4c: 59:8f:ec:84:5b:57:07:00:5c:13:0d:d1:ad:94:c4:e7:97:64: 68:81:a4:38 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC/QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTUxMjVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDdDNkRDNDA4NTg2MTkz RkQwMzIxMzBDNzJGNENFNzZDODM3QUVGQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE64dThuqtlwgJknh6a7aFr7vrAZjtG/jS2EXGyiUHxJxuzxB/ zkC6UdKGGtj6noqUv3UbY+rXfGcsgONJ0SiHLSSb7GzJxM48h1/d/5MILT96M4m3 WlFtOIUNjcbLFjVCwizAH+SdblYIKUwgVSiGkv0W5hCHxSYlgvBy5EnaQgMNxiD4 2HtMcCSEH2cqbKQpHH6VIaZACoM1YBFRuCxS0IfobBoqZSklgv+7DHpya+OSuZLG g8eV7MgR8YNlV6yav6LMkDXfevSmO4IOZtp0FE5vPMYZeAVeA1JdA68n8Wbs5sye zVb/WRnuG+d8W2RenfFzbiE2jU4t1USVr3HtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUfG3ECFhhk/0DITDHL0znbIN677gwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2ZHM0VDRmhoa18wRElUREhMMHpuYklONjc3Zy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYOMwDQYJKoZIhvcNAQELBQADggEBAJrJY/gCuZ0I+WwnBLyxBtK1V+Mo WNEK+pGUc5AL9UaQzgbppioKy0JTzcKUeYgSLR7IXEyqeA9LZJqzPYNSf4oqWef8 1CQXoUs8olv6q3lDmrASFSxDFg7PRPVfVH7eWpS7EMBgJgsPQ70AItvh4gdGxEdI PHVltvlzYAXd4Xw6C0RxU8/cGO5V5z8kGBIAamh5udkGbdJiWzbqQsOozKgyh2dG u/unLIOScscX/GAx8k56jqJxtVQZwl7uaAefq2Zmt9d/6ZW6mZ/N04k+tGl/lRza zd6/wP4o3dvJHIigObUSmvIfyzngTFmP7IRbVwcAXBMN0a2UxOeXZGiBpDg= -----END CERTIFICATE-----Generated at Sat Apr 26 18:21:45 2025 by rpki-client