$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mtR_anvDRnG-Djpf5r84J_u3-18.roa File: mtR_anvDRnG-Djpf5r84J_u3-18.roa (raw, json) Hash identifier: LtIUKAIeMdbw+kg2Hkj7m6YrxiBtfH8vQ2VX1rcw8xg= Subject key identifier: 9A:D4:7F:6A:7B:C3:46:71:BE:0E:3A:5F:E6:BF:38:27:FB:B7:FB:5F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D08 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mtR_anvDRnG-Djpf5r84J_u3-18.roa Signing time: Tue 01 Apr 2025 02:11:40 +0000 ROA not before: Tue 01 Apr 2025 02:11:40 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3336 (0xd08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:40 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=9AD47F6A7BC34671BE0E3A5FE6BF3827FBB7FB5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:11:fa:1a:28:04:9c:a9:4b:69:05:ac:2e:02: 61:dc:fc:78:cf:5c:b1:aa:50:bd:cd:e1:e4:f8:36: d0:3c:8b:0d:d6:d8:63:16:20:fd:fe:dc:cb:ee:5c: 16:5f:ea:c4:bf:cf:9a:2c:d3:f2:5e:5d:d8:6c:d2: aa:63:92:5a:12:44:3d:6e:ba:b2:14:80:87:43:d6: dc:b4:43:a5:21:93:74:fa:83:a3:38:9b:50:85:53: de:74:36:b9:c7:e0:79:10:ec:8d:ff:da:64:ca:98: 8c:fc:e3:b3:92:ed:8e:d4:b8:30:5e:c3:1e:64:fd: e6:44:c8:cf:fd:ad:39:fb:c3:81:04:f6:b3:2e:c1: 4b:a3:8f:f8:c8:39:eb:c9:fb:dc:68:dd:35:ba:ba: d1:e1:dc:a4:23:91:e9:bb:24:e7:66:29:d9:cc:14: 53:81:30:71:f2:b5:29:0a:30:64:be:8c:9b:5f:f1: f1:92:85:05:8e:c3:5a:8b:f4:2b:3f:fc:94:a7:cb: be:e8:92:23:39:f5:b3:84:d0:28:5f:80:ad:e1:54: 3a:51:04:89:dd:b3:a8:17:a7:33:92:f2:ed:c7:10: 37:53:fb:35:df:90:2b:ae:3c:83:9b:0e:bf:5c:36: db:c0:bd:f1:09:f4:68:7c:29:35:d3:98:2c:fa:9d: b4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D4:7F:6A:7B:C3:46:71:BE:0E:3A:5F:E6:BF:38:27:FB:B7:FB:5F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mtR_anvDRnG-Djpf5r84J_u3-18.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.160.0/21 Signature Algorithm: sha256WithRSAEncryption dd:df:7d:27:bb:06:ce:54:3a:9f:7c:4e:4f:fd:37:bc:34:34: 07:ef:84:33:56:17:18:87:bc:0b:fa:52:78:df:c6:16:4d:34: b3:00:60:00:fc:9a:18:c9:81:4d:2b:54:16:ef:ff:00:40:63: 7a:63:2c:dc:c4:71:ac:63:21:5a:34:86:06:c0:74:fe:c6:eb: 6b:4f:37:04:de:c5:e2:57:3e:37:17:ca:1a:64:0c:35:e7:a8: 66:c5:35:44:00:58:35:71:2b:46:57:e6:24:51:e2:22:5d:cb: 02:b4:34:20:72:83:f1:42:f4:a8:ec:84:09:bb:55:88:b6:77: 6e:b0:20:3c:3e:4b:89:c1:31:bd:48:de:c3:9e:48:de:68:cd: 94:0e:fa:1b:83:8b:11:14:6d:5a:09:ca:3b:b4:0c:cb:47:3b: 27:a0:2e:6a:83:e1:27:06:38:9b:41:b7:63:40:fe:33:3f:1a: 16:d1:76:cf:13:56:31:67:62:3b:0d:d9:56:1d:13:d6:c5:d2: 0a:50:47:3b:27:b4:ff:01:88:57:eb:fe:1b:d8:df:57:77:e1: 20:26:16:36:3f:46:72:65:09:2f:62:87:3c:91:99:73:de:39: 0b:44:23:ab:d5:ae:e1:11:86:22:f8:0c:85:00:1b:9e:bf:b3: 99:79:3b:6f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDQgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExNDBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDlBRDQ3RjZBN0JDMzQ2 NzFCRTBFM0E1RkU2QkYzODI3RkJCN0ZCNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqEfoaKAScqUtpBawuAmHc/HjPXLGqUL3N4eT4NtA8iw3W2GMW IP3+3MvuXBZf6sS/z5os0/JeXdhs0qpjkloSRD1uurIUgIdD1ty0Q6Uhk3T6g6M4 m1CFU950NrnH4HkQ7I3/2mTKmIz847OS7Y7UuDBewx5k/eZEyM/9rTn7w4EE9rMu wUujj/jIOevJ+9xo3TW6utHh3KQjkem7JOdmKdnMFFOBMHHytSkKMGS+jJtf8fGS hQWOw1qL9Cs//JSny77okiM59bOE0ChfgK3hVDpRBInds6gXpzOS8u3HEDdT+zXf kCuuPIObDr9cNtvAvfEJ9Gh8KTXTmCz6nbTZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmtR/anvDRnG+Djpf5r84J/u3+18wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L210Ul9hbnZEUm5HLURqcGY1cjg0Sl91My0xOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxaqAwDQYJKoZIhvcNAQELBQADggEBAN3ffSe7Bs5UOp98Tk/9N7w0NAfv hDNWFxiHvAv6UnjfxhZNNLMAYAD8mhjJgU0rVBbv/wBAY3pjLNzEcaxjIVo0hgbA dP7G62tPNwTexeJXPjcXyhpkDDXnqGbFNUQAWDVxK0ZX5iRR4iJdywK0NCByg/FC 9KjshAm7VYi2d26wIDw+S4nBMb1I3sOeSN5ozZQO+huDixEUbVoJyju0DMtHOyeg LmqD4ScGOJtBt2NA/jM/GhbRds8TVjFnYjsN2VYdE9bF0gpQRzsntP8BiFfr/hvY 31d34SAmFjY/RnJlCS9ihzyRmXPeOQtEI6vVruERhiL4DIUAG56/s5l5O28= -----END CERTIFICATE-----Generated at Sat Apr 26 19:39:55 2025 by rpki-client