$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/faC94hlmCFZqDh0peKv4TMwVe44.roa File: faC94hlmCFZqDh0peKv4TMwVe44.roa (raw, json) Hash identifier: SeVIZ8oxoj0gnjuVlRbfa0o1RzPUSbnNnJA/71R4Qnw= Subject key identifier: 7D:A0:BD:E2:19:66:08:56:6A:0E:1D:29:78:AB:F8:4C:CC:15:7B:8E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B90 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/faC94hlmCFZqDh0peKv4TMwVe44.roa Signing time: Tue 01 Apr 2025 01:39:45 +0000 ROA not before: Tue 01 Apr 2025 01:39:45 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:39:45 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=7DA0BDE2196608566A0E1D2978ABF84CCC157B8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d4:bc:b7:12:e9:9e:cd:4d:d6:a2:65:36:75: 10:ed:3f:4f:4c:e2:e2:10:5d:aa:56:c7:61:d4:6a: e4:3c:f4:14:c1:3f:7b:05:22:25:b6:e2:f7:90:33: 63:86:16:77:c0:51:3e:60:47:17:4d:f7:1c:dc:bc: 9e:62:dd:ba:d5:ea:1a:3b:3e:bf:b3:48:49:dd:46: bc:b3:0f:b5:fe:fc:c8:20:97:0c:80:3d:32:a0:b8: e3:fb:96:45:6a:eb:02:25:5a:7c:59:cb:25:bf:e9: f2:ea:1e:e6:5c:37:17:1d:37:32:8f:d3:3c:e2:b9: 4e:03:a3:fd:f2:8a:1a:36:a9:9e:3f:3c:3b:7c:f6: 1c:55:d0:3d:7f:7d:54:6e:2e:90:f2:f2:27:97:7f: 44:29:da:d8:28:55:4d:76:9b:b5:03:57:61:e2:2b: 19:c3:12:94:43:d2:ca:f4:28:ca:58:3c:e7:d1:d9: fc:28:f0:ce:bb:02:0f:bf:33:53:68:02:46:0a:91: 14:3c:76:86:af:fc:26:96:28:83:2b:54:0c:63:bb: cf:ec:07:40:42:08:32:32:24:8f:dc:59:bb:73:9c: 25:34:67:2a:8e:22:4f:5e:6d:0d:e3:50:10:49:6e: 31:5a:3f:71:cf:bb:b3:1f:d3:7e:48:0f:5a:e3:b9: 96:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A0:BD:E2:19:66:08:56:6A:0E:1D:29:78:AB:F8:4C:CC:15:7B:8E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/faC94hlmCFZqDh0peKv4TMwVe44.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.16.0/24 Signature Algorithm: sha256WithRSAEncryption e7:44:3c:06:0e:ab:c1:30:5f:f5:8a:b9:97:11:eb:2e:c8:89: 34:2b:6c:a2:90:c6:55:15:8d:63:b0:03:e5:fd:f9:5f:09:e1: 49:e9:aa:23:94:3c:73:6e:bd:0f:02:7d:48:d0:98:c1:c3:5b: dc:2c:48:b4:df:fb:a8:ec:0e:94:e7:ad:f6:53:4f:d2:a9:e5: 77:6c:cb:ac:91:91:65:ce:66:36:7b:87:fc:ca:61:a8:0c:e3: 31:6f:26:90:27:53:f3:9e:77:2f:42:00:e6:4b:65:b4:39:a8: c6:69:3a:32:51:81:cd:75:a9:66:25:07:2f:bc:5c:04:b5:98: f6:1a:b2:0d:5b:65:28:6c:46:4a:19:be:f2:f3:81:af:d2:9f: 06:aa:02:38:a0:e7:1f:87:80:9d:e8:ea:aa:c4:3b:b9:10:7a: 30:91:0a:08:13:30:e8:da:d1:d0:56:c0:d8:1e:da:bd:51:e1: ab:f4:11:14:3e:49:13:b0:db:55:d0:29:77:4c:51:7b:f0:1d: a3:f6:8c:dc:70:1d:65:31:77:9b:3f:be:fb:f7:70:52:5f:da: 25:75:2a:13:06:19:87:cc:34:d4:55:00:74:d6:3b:11:03:24: 6c:63:60:55:40:f7:43:4c:10:40:13:28:4e:04:11:ba:78:fe: f1:af:89:51 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM5NDVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDdEQTBCREUyMTk2NjA4 NTY2QTBFMUQyOTc4QUJGODRDQ0MxNTdCOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB1Ly3EumezU3WomU2dRDtP09M4uIQXapWx2HUauQ89BTBP3sF IiW24veQM2OGFnfAUT5gRxdN9xzcvJ5i3brV6ho7Pr+zSEndRryzD7X+/MgglwyA PTKguOP7lkVq6wIlWnxZyyW/6fLqHuZcNxcdNzKP0zziuU4Do/3yiho2qZ4/PDt8 9hxV0D1/fVRuLpDy8ieXf0Qp2tgoVU12m7UDV2HiKxnDEpRD0sr0KMpYPOfR2fwo 8M67Ag+/M1NoAkYKkRQ8doav/CaWKIMrVAxju8/sB0BCCDIyJI/cWbtznCU0ZyqO Ik9ebQ3jUBBJbjFaP3HPu7Mf035ID1rjuZadAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUfaC94hlmCFZqDh0peKv4TMwVe44wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2ZhQzk0aGxtQ0ZacURoMHBlS3Y0VE13VmU0NC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYBAwDQYJKoZIhvcNAQELBQADggEBAOdEPAYOq8EwX/WKuZcR6y7IiTQr bKKQxlUVjWOwA+X9+V8J4UnpqiOUPHNuvQ8CfUjQmMHDW9wsSLTf+6jsDpTnrfZT T9Kp5Xdsy6yRkWXOZjZ7h/zKYagM4zFvJpAnU/Oedy9CAOZLZbQ5qMZpOjJRgc11 qWYlBy+8XAS1mPYasg1bZShsRkoZvvLzga/SnwaqAjig5x+HgJ3o6qrEO7kQejCR CggTMOja0dBWwNge2r1R4av0ERQ+SROw21XQKXdMUXvwHaP2jNxwHWUxd5s/vvv3 cFJf2iV1KhMGGYfMNNRVAHTWOxEDJGxjYFVA90NMEEATKE4EEbp4/vGviVE= -----END CERTIFICATE-----Generated at Sat Apr 26 18:19:25 2025 by rpki-client