$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lIyvNlAaVRlPlAv1vNbGpIfI6wI.roa File: lIyvNlAaVRlPlAv1vNbGpIfI6wI.roa (raw, json) Hash identifier: 4Kw/msL17o2mTABAZGnd60FZUjibF+roW+uxPCNsUXQ= Subject key identifier: 94:8C:AF:36:50:1A:55:19:4F:94:0B:F5:BC:D6:C6:A4:87:C8:EB:02 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D7E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lIyvNlAaVRlPlAv1vNbGpIfI6wI.roa Signing time: Tue 01 Apr 2025 02:21:26 +0000 ROA not before: Tue 01 Apr 2025 02:21:26 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3454 (0xd7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:26 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=948CAF36501A55194F940BF5BCD6C6A487C8EB02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:66:64:a8:68:b1:10:da:cf:14:f2:48:66:a5: cd:b9:80:c8:28:44:3f:96:83:79:90:61:91:71:51: 15:93:e4:74:58:2a:9f:19:ac:76:af:d5:16:1a:41: a7:96:67:34:0e:3c:14:f3:47:38:0d:b4:35:d3:c6: 34:25:ad:db:1f:04:be:26:96:48:15:4f:c7:6f:da: c7:37:69:17:9f:d5:a1:03:8a:9a:96:14:93:7c:76: f9:cd:e0:e1:2f:79:fb:b8:12:7a:06:6a:85:8f:25: c6:ed:b9:fa:81:ba:e3:b8:8b:93:05:8c:8a:74:18: 7f:90:0c:54:48:38:53:05:3d:42:0f:32:4e:67:72: bf:d6:fc:39:ee:4d:d2:f2:4a:33:43:a8:0b:fe:ad: 62:5c:a4:f6:62:6b:77:16:36:4c:29:bd:c6:fe:26: 26:91:3a:cb:37:79:0d:9b:8e:13:3a:0e:0a:12:fb: 54:9c:84:7d:90:09:66:5e:f7:bb:76:66:5e:8a:32: 14:bb:2a:ca:61:ce:e7:74:a9:89:f0:2e:65:d2:76: 47:9a:4f:86:3a:79:66:cf:2d:ed:9c:40:d8:89:2f: 49:cd:55:24:c8:8c:64:d3:1e:e8:48:6b:d9:d7:d0: b9:e5:ba:c1:97:fd:70:38:9c:4d:45:bd:5f:13:c0: 29:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8C:AF:36:50:1A:55:19:4F:94:0B:F5:BC:D6:C6:A4:87:C8:EB:02 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lIyvNlAaVRlPlAv1vNbGpIfI6wI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.0.0/23 Signature Algorithm: sha256WithRSAEncryption 67:3b:82:9a:20:20:48:ad:2d:5e:e7:93:40:ef:11:30:cf:14: fd:36:cc:80:a1:da:38:8a:3f:58:07:9a:af:85:21:35:1a:3a: ee:7a:fd:70:f5:e6:5c:0c:4e:ea:cd:aa:e1:02:fc:6e:02:c9: 06:e6:1f:0e:1d:a7:1a:79:14:ad:25:73:1a:74:42:f9:a2:12: 59:9c:69:6a:fd:7e:79:72:9d:84:50:43:b7:13:9b:e8:25:22: c5:9e:9c:b4:29:fb:47:7c:69:0c:42:5b:42:c8:3c:cc:c1:ca: 82:91:0d:48:f4:03:66:85:1e:2b:da:92:c6:93:ad:d6:32:f0: 45:c6:66:c0:73:5a:e1:e5:18:d0:63:1c:31:c7:4f:2f:bb:53: bc:eb:db:33:f9:b6:37:ed:0a:c7:a1:18:1e:cc:67:38:b5:39: e4:dc:32:4d:16:72:42:3c:fa:30:7a:b9:0e:b2:12:3d:04:5e: fe:25:69:f2:42:9d:6f:bc:20:85:5a:80:88:14:5f:cb:34:0b: e9:6e:4a:62:b1:ff:68:56:b5:ed:12:dc:f4:b4:d2:21:38:b4: 35:04:a8:73:aa:a0:49:65:8c:7a:a6:12:97:28:79:51:8e:65: 69:42:50:03:35:8b:16:c8:da:4e:0c:c4:75:1b:02:b5:df:12: 62:5b:54:d0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDX4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMjZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk0OENBRjM2NTAxQTU1 MTk0Rjk0MEJGNUJDRDZDNkE0ODdDOEVCMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnZmSoaLEQ2s8U8khmpc25gMgoRD+Wg3mQYZFxURWT5HRYKp8Z rHav1RYaQaeWZzQOPBTzRzgNtDXTxjQlrdsfBL4mlkgVT8dv2sc3aRef1aEDipqW FJN8dvnN4OEvefu4EnoGaoWPJcbtufqBuuO4i5MFjIp0GH+QDFRIOFMFPUIPMk5n cr/W/DnuTdLySjNDqAv+rWJcpPZia3cWNkwpvcb+JiaROss3eQ2bjhM6DgoS+1Sc hH2QCWZe97t2Zl6KMhS7Ksphzud0qYnwLmXSdkeaT4Y6eWbPLe2cQNiJL0nNVSTI jGTTHuhIa9nX0LnlusGX/XA4nE1FvV8TwCkJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlIyvNlAaVRlPlAv1vNbGpIfI6wIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2xJeXZObEFhVlJsUGxBdjF2TmJHcElmSTZ3SS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYAAwDQYJKoZIhvcNAQELBQADggEBAGc7gpogIEitLV7nk0DvETDPFP02 zICh2jiKP1gHmq+FITUaOu56/XD15lwMTurNquEC/G4CyQbmHw4dpxp5FK0lcxp0 QvmiElmcaWr9fnlynYRQQ7cTm+glIsWenLQp+0d8aQxCW0LIPMzByoKRDUj0A2aF HivaksaTrdYy8EXGZsBzWuHlGNBjHDHHTy+7U7zr2zP5tjftCsehGB7MZzi1OeTc Mk0WckI8+jB6uQ6yEj0EXv4lafJCnW+8IIVagIgUX8s0C+luSmKx/2hWte0S3PS0 0iE4tDUEqHOqoElljHqmEpcoeVGOZWlCUAM1ixbI2k4MxHUbArXfEmJbVNA= -----END CERTIFICATE-----Generated at Sat Apr 26 19:43:54 2025 by rpki-client