$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/k3zP5YS_xLA-YGb7Rrn6kUXZ0oM.roa File: k3zP5YS_xLA-YGb7Rrn6kUXZ0oM.roa (raw, json) Hash identifier: DZ8fk65rxdAZ8sRbtw/tXRmUrBfA0JwQ/Jz0ECtOfLk= Subject key identifier: 93:7C:CF:E5:84:BF:C4:B0:3E:60:66:FB:46:B9:FA:91:45:D9:D2:83 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D71 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/k3zP5YS_xLA-YGb7Rrn6kUXZ0oM.roa Signing time: Tue 01 Apr 2025 02:19:23 +0000 ROA not before: Tue 01 Apr 2025 02:19:23 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3441 (0xd71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:19:23 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=937CCFE584BFC4B03E6066FB46B9FA9145D9D283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5d:5a:a9:58:8c:4f:ca:ab:67:83:cd:08:a6: 69:32:34:53:35:de:ee:a7:f6:32:6a:a9:0e:ed:b4: 3a:c4:c2:a7:ca:56:a5:70:63:78:f9:62:89:e8:82: d5:02:15:da:fe:5e:28:e1:01:67:44:3d:aa:8b:d9: 14:19:7b:83:35:c4:6f:13:39:db:3c:aa:28:5e:8b: e5:e3:29:a4:e7:b3:e0:bf:e5:5b:ec:9d:db:4b:55: ef:94:7c:de:45:a7:70:82:f4:e0:c1:23:fa:da:d2: fb:24:0b:97:06:af:fb:8c:b0:97:ac:1b:d3:4d:c2: 60:60:a3:fa:51:e3:c4:d8:50:27:bf:62:14:52:9e: e4:2c:72:89:a0:04:0f:5e:a4:f7:78:e5:04:29:ed: 7c:1a:f4:e6:d5:1c:0d:2b:35:2c:50:25:0b:a4:d3: 6c:c1:80:e5:88:af:03:4c:a7:ed:d5:e6:f5:61:c0: b5:9e:a7:89:cf:63:9e:ab:19:21:69:a2:df:36:f6: d3:f3:4a:33:53:ad:35:1e:52:a7:df:c8:d6:4e:68: e2:a4:e5:15:f6:a8:9a:ec:35:be:f7:d0:2f:9e:5f: 34:d2:c4:b9:d0:27:26:a0:50:c2:cc:3f:12:80:24: 4d:cf:61:42:42:44:6d:47:23:20:bb:fd:7b:5d:b0: 20:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:7C:CF:E5:84:BF:C4:B0:3E:60:66:FB:46:B9:FA:91:45:D9:D2:83 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/k3zP5YS_xLA-YGb7Rrn6kUXZ0oM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.156.0/23 Signature Algorithm: sha256WithRSAEncryption b3:6b:ac:c2:0b:71:a4:f1:f0:12:20:3f:e6:94:c3:70:ed:b0: 00:ac:20:28:67:76:3a:fa:c3:a3:82:79:1c:22:e2:2c:ff:28: 11:8c:ee:72:9d:49:68:23:d0:9d:c0:a4:3a:ee:be:a3:56:82: 81:f8:4d:d8:b6:b0:d0:a0:3f:d1:81:b0:65:64:f0:01:ec:47: 55:13:24:e7:d1:fa:98:a6:40:1a:ec:66:b4:a1:05:90:5f:49: ec:fb:8f:6b:cc:4b:c7:55:19:fa:71:d7:1a:53:40:39:f6:4f: 9e:c3:3f:ec:c6:4a:18:a0:08:96:66:58:c6:0b:ed:0f:5d:83: 09:26:b1:2c:5c:4d:36:da:80:a7:f0:4a:3d:3f:0f:e7:a0:72: d4:80:4d:a0:96:f2:a0:38:2e:27:f7:c1:ca:eb:ab:01:d3:a6: 01:7e:bc:3b:58:8d:35:5e:da:31:dd:7a:f3:76:00:a0:6b:77: ca:77:fa:0c:d7:39:96:1e:0f:88:8f:5d:c0:c6:2c:39:74:69: d6:46:ec:4e:cd:8a:53:d6:91:ee:dc:e7:59:e9:c1:88:f8:e0: 55:b8:d6:f6:0c:aa:81:97:61:53:3d:af:77:00:51:05:1c:cd: d4:b4:62:14:be:65:90:91:f5:af:68:15:00:0d:3e:31:27:50: 59:79:69:42 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE5MjNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDkzN0NDRkU1ODRCRkM0 QjAzRTYwNjZGQjQ2QjlGQTkxNDVEOUQyODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCXVqpWIxPyqtng80IpmkyNFM13u6n9jJqqQ7ttDrEwqfKVqVw Y3j5YonogtUCFdr+XijhAWdEPaqL2RQZe4M1xG8TOds8qihei+XjKaTns+C/5Vvs ndtLVe+UfN5Fp3CC9ODBI/ra0vskC5cGr/uMsJesG9NNwmBgo/pR48TYUCe/YhRS nuQscomgBA9epPd45QQp7Xwa9ObVHA0rNSxQJQuk02zBgOWIrwNMp+3V5vVhwLWe p4nPY56rGSFpot829tPzSjNTrTUeUqffyNZOaOKk5RX2qJrsNb730C+eXzTSxLnQ JyagUMLMPxKAJE3PYUJCRG1HIyC7/XtdsCAbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUk3zP5YS/xLA+YGb7Rrn6kUXZ0oMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2szelA1WVNfeExBLVlHYjdScm42a1VYWjBvTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYpwwDQYJKoZIhvcNAQELBQADggEBALNrrMILcaTx8BIgP+aUw3DtsACs IChndjr6w6OCeRwi4iz/KBGM7nKdSWgj0J3ApDruvqNWgoH4Tdi2sNCgP9GBsGVk 8AHsR1UTJOfR+pimQBrsZrShBZBfSez7j2vMS8dVGfpx1xpTQDn2T57DP+zGShig CJZmWMYL7Q9dgwkmsSxcTTbagKfwSj0/D+egctSATaCW8qA4Lif3wcrrqwHTpgF+ vDtYjTVe2jHdevN2AKBrd8p3+gzXOZYeD4iPXcDGLDl0adZG7E7NilPWke7c51np wYj44FW41vYMqoGXYVM9r3cAUQUczdS0YhS+ZZCR9a9oFQANPjEnUFl5aUI= -----END CERTIFICATE-----Generated at Sat Apr 26 18:25:34 2025 by rpki-client