$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kP9u-EcWDF2gdhccJAFu5FSYunQ.roa File: kP9u-EcWDF2gdhccJAFu5FSYunQ.roa (raw, json) Hash identifier: OSCBeoOaWZpv61t2Fu3xRtSKTLdSXQD1h/4jUIU3Gxc= Subject key identifier: 90:FF:6E:F8:47:16:0C:5D:A0:76:17:1C:24:01:6E:E4:54:98:BA:74 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C22 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kP9u-EcWDF2gdhccJAFu5FSYunQ.roa Signing time: Tue 01 Apr 2025 01:54:01 +0000 ROA not before: Tue 01 Apr 2025 01:54:01 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:54:01 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=90FF6EF847160C5DA076171C24016EE45498BA74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b2:d9:59:cb:28:c1:db:c0:b7:28:b1:70:6c: ea:56:7f:e1:75:58:86:49:3b:22:e2:f1:ff:75:c8: 9f:70:5b:75:7b:a4:51:01:a1:63:28:55:83:51:f1: 28:c5:c0:2c:2e:ff:87:cc:c7:99:6a:39:18:a2:8f: 05:76:a9:c8:f0:a3:c4:2d:5e:69:d4:97:19:dc:43: 77:8d:63:a1:62:58:bc:1e:54:f3:6c:6c:ef:b5:49: 0c:07:b8:57:bb:c6:ba:1d:35:fd:39:38:49:b9:61: e3:22:0a:9d:e9:80:25:70:ec:27:99:2f:37:4b:28: e2:cb:80:32:51:76:fc:cc:98:85:db:d2:f0:0e:12: 63:c0:2b:e8:cb:73:0f:74:d8:b0:8f:a6:60:f8:a8: f1:90:06:f1:9e:20:a1:6a:24:59:9d:9d:22:a4:69: 1d:95:06:fd:52:68:e1:ff:92:88:49:83:98:fb:42: 37:3c:63:7e:24:28:a3:7f:bf:45:be:2c:48:88:bf: cb:d3:da:33:17:1d:4a:24:4b:d9:b4:a2:1a:8b:53: d3:b1:03:dc:02:77:05:fa:16:5c:d8:ef:de:fb:85: 7a:ba:03:b1:92:24:0e:71:b4:1d:38:52:e9:57:e5: e0:01:e0:55:92:e9:e7:f9:de:dc:2f:51:77:64:e7: 8d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FF:6E:F8:47:16:0C:5D:A0:76:17:1C:24:01:6E:E4:54:98:BA:74 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kP9u-EcWDF2gdhccJAFu5FSYunQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.206.0/23 Signature Algorithm: sha256WithRSAEncryption e1:63:f2:e5:a7:96:17:00:0c:26:f6:bd:9b:f8:24:a2:fd:3f: 44:43:67:8d:9e:21:2d:3f:df:0b:63:8f:bf:27:8e:4b:2a:b2: 6d:1b:7e:17:84:dc:ed:06:00:85:69:21:69:78:e1:c8:c1:0e: 36:d6:8b:41:24:c5:b6:81:c8:cc:76:1c:11:cf:53:06:3d:46: 7a:61:ea:3d:e0:d0:75:7f:ef:8a:59:ed:6b:60:5a:31:e3:51: 97:23:6f:91:5d:a9:b0:ea:1a:6f:e9:7c:4a:7e:3d:12:a0:a4: ad:5a:e8:c9:52:d6:d8:be:91:32:d4:02:66:5b:5d:99:6e:fe: f1:db:e2:d7:57:01:2d:6c:d9:41:9b:02:0c:c8:89:2b:4f:a7: 40:bc:19:79:e9:55:52:ab:d4:f6:81:27:50:a3:f2:c3:a8:df: 91:58:c9:81:67:60:2f:a5:4d:70:86:52:78:9a:f5:93:af:54: c4:e9:42:e5:99:21:5b:61:9c:04:a9:6d:10:41:99:be:76:05: d4:93:36:f3:eb:a2:0d:ad:26:7c:8b:05:8b:70:1d:83:71:7b: 6b:f5:dc:83:d2:93:13:02:b9:7d:d3:36:07:f0:9b:e7:c5:ce: 06:6b:86:59:cc:f8:cb:21:3e:8f:5f:4b:8f:f5:28:e5:3d:30: df:db:af:e3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU0MDFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDkwRkY2RUY4NDcxNjBD NURBMDc2MTcxQzI0MDE2RUU0NTQ5OEJBNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKstlZyyjB28C3KLFwbOpWf+F1WIZJOyLi8f91yJ9wW3V7pFEB oWMoVYNR8SjFwCwu/4fMx5lqORiijwV2qcjwo8QtXmnUlxncQ3eNY6FiWLweVPNs bO+1SQwHuFe7xrodNf05OEm5YeMiCp3pgCVw7CeZLzdLKOLLgDJRdvzMmIXb0vAO EmPAK+jLcw902LCPpmD4qPGQBvGeIKFqJFmdnSKkaR2VBv1SaOH/kohJg5j7Qjc8 Y34kKKN/v0W+LEiIv8vT2jMXHUokS9m0ohqLU9OxA9wCdwX6FlzY7977hXq6A7GS JA5xtB04UulX5eAB4FWS6ef53twvUXdk5419AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkP9u+EcWDF2gdhccJAFu5FSYunQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2tQOXUtRWNXREYyZ2RoY2NKQUZ1NUZTWXVuUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExas4wDQYJKoZIhvcNAQELBQADggEBAOFj8uWnlhcADCb2vZv4JKL9P0RD Z42eIS0/3wtjj78njksqsm0bfheE3O0GAIVpIWl44cjBDjbWi0EkxbaByMx2HBHP UwY9Rnph6j3g0HV/74pZ7WtgWjHjUZcjb5FdqbDqGm/pfEp+PRKgpK1a6MlS1ti+ kTLUAmZbXZlu/vHb4tdXAS1s2UGbAgzIiStPp0C8GXnpVVKr1PaBJ1Cj8sOo35FY yYFnYC+lTXCGUnia9ZOvVMTpQuWZIVthnASpbRBBmb52BdSTNvProg2tJnyLBYtw HYNxe2v13IPSkxMCuX3TNgfwm+fFzgZrhlnM+MshPo9fS4/1KOU9MN/br+M= -----END CERTIFICATE-----Generated at Sat Apr 26 20:10:29 2025 by rpki-client