$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/knjHV58cyZuerc4WRO944jlgd3E.roa File: knjHV58cyZuerc4WRO944jlgd3E.roa (raw, json) Hash identifier: 3bqYKcYRlhTsO6NdGzNARtDXpBwrWvXOBgrU33V/vmI= Subject key identifier: 92:78:C7:57:9F:1C:C9:9B:9E:AD:CE:16:44:EF:78:E2:39:60:77:71 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D5D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/knjHV58cyZuerc4WRO944jlgd3E.roa Signing time: Tue 01 Apr 2025 02:19:15 +0000 ROA not before: Tue 01 Apr 2025 02:19:15 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 23:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3421 (0xd5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:19:15 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=9278C7579F1CC99B9EADCE1644EF78E239607771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:02:c7:ba:92:5e:18:3a:a2:42:db:7b:2d:b5: 65:3c:45:72:d9:e2:03:26:81:41:fe:3d:c1:e5:d4: da:b9:19:54:4e:3d:8e:7a:05:63:bf:31:54:cd:ce: 6c:4e:fa:8d:91:ec:2d:49:4b:26:0b:be:aa:1a:d7: 33:b7:97:a1:23:c6:36:21:3c:61:14:62:75:00:f4: b3:cb:59:6a:58:fd:8a:1a:5d:fb:4d:e3:d7:b8:04: 46:99:89:07:00:02:bd:74:d0:50:25:10:66:de:e2: fb:e9:75:fe:d3:9c:c6:34:8d:eb:83:5f:e6:50:24: 21:2b:bc:55:9b:c0:86:31:97:37:a5:47:eb:c9:2d: 26:c1:ab:8d:5e:af:5e:80:89:02:3b:da:f1:d0:b3: 16:a3:99:59:64:67:32:3c:0b:51:d2:ce:d7:c2:c3: 2a:9e:b3:c6:ee:4b:9c:c6:73:62:01:10:7e:64:d2: 7f:c9:f1:1c:92:0d:62:50:a6:dd:ec:55:08:0b:b1: 93:a8:e6:78:e9:bd:6b:eb:a9:fd:cf:71:fe:ce:d7: fa:95:3c:c7:83:56:95:7b:ff:0a:53:6d:90:3f:46: b7:ff:a7:29:55:cd:74:14:0a:f2:cc:a6:15:54:21: 58:e0:0e:39:d1:80:0b:f0:e3:10:2b:5e:9b:dc:1d: a2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:78:C7:57:9F:1C:C9:9B:9E:AD:CE:16:44:EF:78:E2:39:60:77:71 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/knjHV58cyZuerc4WRO944jlgd3E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.100.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:27:1d:67:c1:ba:cd:a9:98:a1:d5:2f:86:1d:4a:4a:f0:3c: 87:58:97:01:e3:80:e6:f2:96:67:38:70:89:8f:23:2c:7e:3b: a1:5b:8f:a7:18:ea:39:fd:04:c9:08:e5:ee:54:2e:de:25:c5: c3:6f:c5:77:e8:50:68:4b:ef:37:81:ab:87:5b:ad:75:5d:e9: e3:07:af:43:1c:1a:ba:be:3d:8d:1a:05:74:2c:b4:12:9f:30: 87:64:96:b7:39:68:9f:17:af:06:d0:7d:7e:42:72:4f:87:0e: 85:99:f8:cd:7f:f7:8b:16:ae:9d:59:53:f3:3c:e0:fe:13:8c: 11:72:2d:c8:fd:fc:b0:01:a1:0b:d0:1c:ad:51:3c:47:38:c3: 47:97:78:98:f1:fd:33:71:a5:73:6a:4d:71:a5:2f:92:39:d7: d0:b7:6a:9f:e8:b4:84:23:e1:4e:eb:8e:06:2a:bc:73:5d:eb: fe:a5:b1:e7:b0:f8:5a:07:86:ab:f8:c0:1d:90:bb:97:c2:48: b9:37:2e:79:ef:3f:ef:54:4c:08:35:87:6b:12:3f:03:fa:a3: 73:f4:a3:e2:35:4a:5c:16:84:8a:73:1f:66:07:86:3d:a2:a5: c9:e2:93:9e:d9:35:59:40:22:ac:a7:48:fd:7f:46:d7:92:08: d7:42:63:b1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDV0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE5MTVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDkyNzhDNzU3OUYxQ0M5 OUI5RUFEQ0UxNjQ0RUY3OEUyMzk2MDc3NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7Ase6kl4YOqJC23sttWU8RXLZ4gMmgUH+PcHl1Nq5GVROPY56 BWO/MVTNzmxO+o2R7C1JSyYLvqoa1zO3l6EjxjYhPGEUYnUA9LPLWWpY/YoaXftN 49e4BEaZiQcAAr100FAlEGbe4vvpdf7TnMY0jeuDX+ZQJCErvFWbwIYxlzelR+vJ LSbBq41er16AiQI72vHQsxajmVlkZzI8C1HSztfCwyqes8buS5zGc2IBEH5k0n/J 8RySDWJQpt3sVQgLsZOo5njpvWvrqf3Pcf7O1/qVPMeDVpV7/wpTbZA/Rrf/pylV zXQUCvLMphVUIVjgDjnRgAvw4xArXpvcHaKlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUknjHV58cyZuerc4WRO944jlgd3EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2tuakhWNThjeVp1ZXJjNFdSTzk0NGpsZ2QzRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYmQwDQYJKoZIhvcNAQELBQADggEBADwnHWfBus2pmKHVL4YdSkrwPIdY lwHjgObylmc4cImPIyx+O6Fbj6cY6jn9BMkI5e5ULt4lxcNvxXfoUGhL7zeBq4db rXVd6eMHr0McGrq+PY0aBXQstBKfMIdklrc5aJ8XrwbQfX5Cck+HDoWZ+M1/94sW rp1ZU/M84P4TjBFyLcj9/LABoQvQHK1RPEc4w0eXeJjx/TNxpXNqTXGlL5I519C3 ap/otIQj4U7rjgYqvHNd6/6lseew+FoHhqv4wB2Qu5fCSLk3LnnvP+9UTAg1h2sS PwP6o3P0o+I1SlwWhIpzH2YHhj2ipcnik57ZNVlAIqynSP1/RteSCNdCY7E= -----END CERTIFICATE-----Generated at Wed May 7 14:16:41 2025 by rpki-client