$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iapvfD2jWylKPg91LFqqRqs-Pow.roa File: iapvfD2jWylKPg91LFqqRqs-Pow.roa (raw, json) Hash identifier: tC4DgV1bC9nudQoQQ+CZm/vlMOxdjJv19H98XzF/Aps= Subject key identifier: 89:AA:6F:7C:3D:A3:5B:29:4A:3E:0F:75:2C:5A:AA:46:AB:3E:3E:8C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CD0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iapvfD2jWylKPg91LFqqRqs-Pow.roa Signing time: Tue 01 Apr 2025 02:09:13 +0000 ROA not before: Tue 01 Apr 2025 02:09:13 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3280 (0xcd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:13 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=89AA6F7C3DA35B294A3E0F752C5AAA46AB3E3E8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b1:cb:09:d7:78:5c:97:dc:a6:90:da:d8:6e: 73:bf:6c:39:b6:95:6f:01:87:f4:ca:5d:b6:f6:7c: 99:7c:24:a2:01:ef:5a:7a:f4:02:cd:fe:32:c2:ef: 15:3a:fe:d6:2e:87:51:e6:96:83:f7:27:b8:af:67: ee:63:34:12:e4:de:89:24:a1:78:35:3e:d9:ce:0f: 89:03:e1:19:f3:90:0e:e3:96:e3:18:5a:c5:51:d9: 87:0d:4c:9b:2d:04:86:34:44:d1:8b:aa:eb:25:34: 16:13:47:51:7c:e3:4c:c7:b4:85:c2:61:f3:46:46: 11:21:d8:8f:d6:ea:36:fb:c8:a7:3d:f4:14:60:31: 29:df:30:de:54:92:72:2b:6f:e9:1c:00:5a:a9:f0: 45:76:b0:3e:b3:c2:bb:f8:6d:34:18:58:11:d1:fb: 8c:a1:85:59:87:ce:73:16:e5:c9:fb:2d:6c:30:d8: 38:5f:06:d3:c4:88:66:64:2f:08:fd:07:72:9b:3b: 41:43:86:dd:bd:04:ed:80:ee:eb:62:74:46:ee:ea: 16:5f:56:3a:07:bc:8c:b2:b8:4b:9d:e1:4b:7c:99: 21:0e:1b:c6:6d:e4:fc:36:74:5e:38:29:a6:23:f7: 9b:46:c5:f1:c4:7b:59:be:26:37:3a:50:49:52:c1: e7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:AA:6F:7C:3D:A3:5B:29:4A:3E:0F:75:2C:5A:AA:46:AB:3E:3E:8C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iapvfD2jWylKPg91LFqqRqs-Pow.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.88.0/22 Signature Algorithm: sha256WithRSAEncryption ce:7a:6d:27:7e:c1:97:13:24:95:dc:91:5b:a3:ad:f2:54:f9: 35:59:53:7e:85:e1:e2:e3:e0:d3:2e:d8:17:e2:d4:77:79:1f: c0:b8:36:fb:f8:98:49:da:c6:6f:3d:61:8c:c4:ef:d6:9f:60: 48:11:7f:5c:24:54:f1:00:34:31:98:28:5f:63:90:34:66:41: 5d:6b:c6:73:e0:fa:6a:6a:5f:e4:9e:1e:ee:bb:35:35:6d:29: 07:38:61:72:7b:d4:2b:5a:59:1e:ca:4b:6a:b2:63:a8:b5:85: 20:06:7a:f9:d6:24:e0:8a:87:39:f1:9f:ca:01:1d:8a:00:1f: 08:d6:e7:14:e2:26:58:2d:cd:46:f3:d6:2b:7a:3f:61:42:71: 1a:82:d8:66:95:c5:5b:64:e0:b9:56:0d:0c:d8:07:de:67:04: d9:e8:8f:88:3d:95:55:79:05:7b:37:d8:b7:49:67:87:54:de: fb:4a:65:6f:45:0b:6b:b1:83:0f:26:28:45:55:f8:42:cb:44: d8:4a:03:f4:bb:81:57:a6:a3:8f:d0:0d:2d:db:b2:5a:ae:94: 35:ed:59:3e:3a:cd:c2:80:fd:f4:b7:fc:a3:4a:3f:1e:bf:7e: 5c:6a:65:6c:c4:17:c0:1f:1e:a7:2a:46:83:1f:b6:a6:f0:85: 96:1e:3b:2e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MTNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg5QUE2RjdDM0RBMzVC Mjk0QTNFMEY3NTJDNUFBQTQ2QUIzRTNFOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpscsJ13hcl9ymkNrYbnO/bDm2lW8Bh/TKXbb2fJl8JKIB71p6 9ALN/jLC7xU6/tYuh1HmloP3J7ivZ+5jNBLk3okkoXg1PtnOD4kD4RnzkA7jluMY WsVR2YcNTJstBIY0RNGLquslNBYTR1F840zHtIXCYfNGRhEh2I/W6jb7yKc99BRg MSnfMN5UknIrb+kcAFqp8EV2sD6zwrv4bTQYWBHR+4yhhVmHznMW5cn7LWww2Dhf BtPEiGZkLwj9B3KbO0FDht29BO2A7utidEbu6hZfVjoHvIyyuEud4Ut8mSEOG8Zt 5Pw2dF44KaYj95tGxfHEe1m+Jjc6UElSwedVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiapvfD2jWylKPg91LFqqRqs+PowwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lhcHZmRDJqV3lsS1BnOTFMRnFxUnFzLVBvdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYVgwDQYJKoZIhvcNAQELBQADggEBAM56bSd+wZcTJJXckVujrfJU+TVZ U36F4eLj4NMu2Bfi1Hd5H8C4Nvv4mEnaxm89YYzE79afYEgRf1wkVPEANDGYKF9j kDRmQV1rxnPg+mpqX+SeHu67NTVtKQc4YXJ71CtaWR7KS2qyY6i1hSAGevnWJOCK hznxn8oBHYoAHwjW5xTiJlgtzUbz1it6P2FCcRqC2GaVxVtk4LlWDQzYB95nBNno j4g9lVV5BXs32LdJZ4dU3vtKZW9FC2uxgw8mKEVV+ELLRNhKA/S7gVemo4/QDS3b slqulDXtWT46zcKA/fS3/KNKPx6/flxqZWzEF8AfHqcqRoMftqbwhZYeOy4= -----END CERTIFICATE-----Generated at Sat Apr 26 20:13:25 2025 by rpki-client