$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lHg1YxdthaGbmC6HoDjuQVu65Mo.roa File: lHg1YxdthaGbmC6HoDjuQVu65Mo.roa (raw, json) Hash identifier: Pq0eHMkNznFH64RVeWqk/hcV+IHCfv+5boHmqU5jskA= Subject key identifier: 94:78:35:63:17:6D:85:A1:9B:98:2E:87:A0:38:EE:41:5B:BA:E4:CA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C33 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lHg1YxdthaGbmC6HoDjuQVu65Mo.roa Signing time: Tue 01 Apr 2025 01:54:09 +0000 ROA not before: Tue 01 Apr 2025 01:54:09 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3123 (0xc33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:54:09 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=94783563176D85A19B982E87A038EE415BBAE4CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2e:6c:07:e0:92:a3:f1:fa:f2:b6:b8:6f:6f: 32:05:2d:71:7c:cd:88:72:e1:a2:da:a7:04:0d:d4: d7:44:75:b8:d7:25:cb:98:9d:dc:d5:4a:86:88:6e: c8:0c:88:20:00:3f:b8:ec:92:0e:50:70:e2:9b:34: d5:91:55:92:f3:50:f9:ca:0a:c8:48:cf:3e:ba:e7: 6c:b2:1a:e4:6f:c2:25:3e:3a:0c:71:19:c5:01:5f: b1:19:84:9d:50:9e:68:b7:e0:73:fd:f6:0e:82:c9: c5:a8:29:69:19:9c:45:ba:f9:92:79:5d:e1:ad:71: 4a:54:45:63:55:02:0e:8b:1c:af:1f:af:9e:16:b8: 8a:c1:7b:57:76:38:a7:8a:50:bc:1f:4b:d6:d0:39: ed:76:1d:fc:26:31:94:3e:7b:8f:22:03:77:8a:c2: fb:6a:6a:55:6a:cc:e6:05:58:06:b8:25:5f:33:90: 56:dd:f1:43:77:86:7f:d0:47:28:63:17:11:2a:6b: 47:bb:81:7a:cf:98:9a:19:67:65:b5:fe:ac:e7:fe: 08:c9:77:ac:29:df:26:ba:94:c8:6a:04:84:d6:fe: ea:67:6e:b6:9e:4e:72:7c:af:35:fb:3f:9e:a6:8b: 2c:20:84:66:79:db:68:50:97:69:aa:52:d4:af:64: b4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:78:35:63:17:6D:85:A1:9B:98:2E:87:A0:38:EE:41:5B:BA:E4:CA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lHg1YxdthaGbmC6HoDjuQVu65Mo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.172.0/23 Signature Algorithm: sha256WithRSAEncryption 35:3b:32:21:46:ea:bc:3d:32:ff:6f:fa:3b:04:fd:47:08:cb: 3e:83:10:cd:28:63:a5:32:57:c5:f6:10:5f:7f:15:ae:fa:08: 3f:99:de:29:67:cf:62:33:87:76:32:c9:0c:9e:a0:62:e8:b6: f0:47:99:70:d1:b9:39:99:f3:b3:f4:f6:ab:ee:a3:a1:3f:c2: ca:ae:2a:4b:fb:df:dd:25:f6:02:35:91:94:d5:68:65:6d:05: 8e:3d:c1:26:c8:a4:9c:87:31:90:8d:33:03:aa:32:bf:86:e8: a7:52:dc:f6:07:64:8b:4e:02:76:fe:71:b0:de:5c:78:fd:06: ad:d9:57:b6:a2:7c:e3:03:30:5e:38:c0:2e:0b:b9:59:07:67: 5b:5f:73:7a:41:5a:4b:0e:5b:4d:d3:f6:f9:b5:aa:f1:b2:bf: d6:8e:50:c6:82:46:01:76:ee:82:32:7e:88:f6:36:b2:73:2f: ad:1f:5d:79:ad:a1:88:d1:89:db:e4:a7:d9:ec:97:a6:38:9b: 6b:8f:f3:0d:3f:3a:a8:0e:4e:c6:42:13:22:66:5d:96:f7:54: a5:33:78:62:9b:c8:59:13:02:f3:b1:9a:d3:bd:c8:a0:83:45: 0e:0e:c5:12:32:cf:d8:6d:02:6b:49:c4:e0:e0:13:6b:2b:e7: 26:c3:b1:d8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU0MDlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk0NzgzNTYzMTc2RDg1 QTE5Qjk4MkU4N0EwMzhFRTQxNUJCQUU0Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjLmwH4JKj8frytrhvbzIFLXF8zYhy4aLapwQN1NdEdbjXJcuY ndzVSoaIbsgMiCAAP7jskg5QcOKbNNWRVZLzUPnKCshIzz6652yyGuRvwiU+Ogxx GcUBX7EZhJ1Qnmi34HP99g6CycWoKWkZnEW6+ZJ5XeGtcUpURWNVAg6LHK8fr54W uIrBe1d2OKeKULwfS9bQOe12HfwmMZQ+e48iA3eKwvtqalVqzOYFWAa4JV8zkFbd 8UN3hn/QRyhjFxEqa0e7gXrPmJoZZ2W1/qzn/gjJd6wp3ya6lMhqBITW/upnbrae TnJ8rzX7P56miywghGZ522hQl2mqUtSvZLR5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlHg1YxdthaGbmC6HoDjuQVu65MowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2xIZzFZeGR0aGFHYm1DNkhvRGp1UVZ1NjVNby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYqwwDQYJKoZIhvcNAQELBQADggEBADU7MiFG6rw9Mv9v+jsE/UcIyz6D EM0oY6UyV8X2EF9/Fa76CD+Z3ilnz2Izh3YyyQyeoGLotvBHmXDRuTmZ87P09qvu o6E/wsquKkv7390l9gI1kZTVaGVtBY49wSbIpJyHMZCNMwOqMr+G6KdS3PYHZItO Anb+cbDeXHj9Bq3ZV7aifOMDMF44wC4LuVkHZ1tfc3pBWksOW03T9vm1qvGyv9aO UMaCRgF27oIyfoj2NrJzL60fXXmtoYjRidvkp9nsl6Y4m2uP8w0/OqgOTsZCEyJm XZb3VKUzeGKbyFkTAvOxmtO9yKCDRQ4OxRIyz9htAmtJxODgE2sr5ybDsdg= -----END CERTIFICATE-----Generated at Sat Apr 26 20:13:16 2025 by rpki-client