$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nQNAuMNFTkAgcub1dB1C7m-nBDs.roa File: nQNAuMNFTkAgcub1dB1C7m-nBDs.roa (raw, json) Hash identifier: HvdOqjqmyAwaNcgCwEM8Nbtp0kreTclUKdsCj442t10= Subject key identifier: 9D:03:40:B8:C3:45:4E:40:20:72:E6:F5:74:1D:42:EE:6F:A7:04:3B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BD1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nQNAuMNFTkAgcub1dB1C7m-nBDs.roa Signing time: Tue 01 Apr 2025 01:47:33 +0000 ROA not before: Tue 01 Apr 2025 01:47:33 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3025 (0xbd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:33 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=9D0340B8C3454E402072E6F5741D42EE6FA7043B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2e:b7:2b:b6:12:06:db:dc:0e:00:b1:be:d9: 2d:80:cc:c9:39:a9:cc:ca:c7:49:3f:d0:a6:22:a8: bb:54:58:e6:c4:b9:99:a5:b7:01:be:20:3d:77:91: 1c:ba:08:7d:8d:8b:a7:15:8b:2b:54:17:94:e3:71: 2a:17:7e:4e:26:bb:c3:8c:99:01:99:f0:db:a9:a0: 20:d1:01:02:3a:fb:c6:3d:aa:ff:d9:e0:b4:64:3e: 2e:dc:54:5c:34:d7:41:d1:03:f9:12:e1:73:b5:8f: 4d:ad:17:fb:d4:d7:31:46:96:94:ab:c7:6d:02:85: 0c:25:5f:40:39:aa:79:cd:a0:04:c3:fb:14:96:ed: 39:37:50:db:34:9e:3c:d4:b8:e8:52:60:57:e5:fb: a0:0b:71:b1:a0:d9:33:42:4d:04:d8:2d:62:49:64: e9:37:5b:ab:58:30:08:5d:59:54:34:bc:8f:14:ef: 86:72:ab:c4:98:b2:28:d6:23:4e:6d:5a:38:40:9a: ee:8b:c7:81:60:33:5a:f2:ce:d6:2f:b3:ae:4a:f0: 01:1d:8a:17:7b:d6:dc:c6:c3:7a:52:f3:e3:17:78: f3:12:c0:41:6d:93:2d:fc:0d:75:86:03:5d:d2:d5: 5d:d9:c7:35:0c:80:d0:b4:df:07:e5:ee:50:06:18: 20:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:03:40:B8:C3:45:4E:40:20:72:E6:F5:74:1D:42:EE:6F:A7:04:3B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nQNAuMNFTkAgcub1dB1C7m-nBDs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.88.0/21 Signature Algorithm: sha256WithRSAEncryption 81:99:e4:ba:ee:6f:62:06:6c:32:1d:7a:16:4e:02:c4:14:8f: 12:fd:76:e1:c7:ed:d0:01:cc:8d:4e:4d:f0:33:90:80:7b:5c: af:6a:cb:6f:99:b9:5d:14:cb:29:22:79:5d:bc:d4:13:64:fa: 9c:3a:d0:ac:23:54:d1:85:ac:ae:b4:72:69:64:ac:44:6b:bb: c8:3d:45:44:80:71:62:61:f6:e6:4e:8d:fd:d6:77:d6:d5:97: 72:75:d1:a8:1b:86:ba:2c:c3:3e:5c:24:01:fe:ff:d8:5a:20: 19:b0:e9:8b:be:2b:9a:59:dd:17:de:54:5c:67:96:83:55:0f: c2:fd:66:cc:e8:43:ee:4c:dd:e0:b7:14:35:09:12:b3:0a:02: 12:a4:ba:37:dc:7f:2d:22:dc:2f:fa:f2:5a:07:5b:c2:bb:43: a3:e5:5f:2f:58:8b:df:f9:7b:fa:7e:2b:f0:ac:47:86:ba:49: c1:de:fd:1f:f9:0c:66:aa:2c:6f:ba:06:02:10:29:d5:77:03: 5f:e1:64:c8:63:49:f5:f0:e6:77:b2:b3:12:57:d5:80:73:34: 55:d2:f4:e6:20:e2:c6:6c:9d:d1:aa:2b:af:7a:05:ed:b3:84: cf:51:dc:48:9d:b2:27:25:a3:5a:92:be:d7:df:73:67:ad:6a: c8:2e:46:99 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC9EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3MzNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDlEMDM0MEI4QzM0NTRF NDAyMDcyRTZGNTc0MUQ0MkVFNkZBNzA0M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7LrcrthIG29wOALG+2S2AzMk5qczKx0k/0KYiqLtUWObEuZml twG+ID13kRy6CH2Ni6cViytUF5TjcSoXfk4mu8OMmQGZ8NupoCDRAQI6+8Y9qv/Z 4LRkPi7cVFw010HRA/kS4XO1j02tF/vU1zFGlpSrx20ChQwlX0A5qnnNoATD+xSW 7Tk3UNs0njzUuOhSYFfl+6ALcbGg2TNCTQTYLWJJZOk3W6tYMAhdWVQ0vI8U74Zy q8SYsijWI05tWjhAmu6Lx4FgM1ryztYvs65K8AEdihd71tzGw3pS8+MXePMSwEFt ky38DXWGA13S1V3ZxzUMgNC03wfl7lAGGCCzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUnQNAuMNFTkAgcub1dB1C7m+nBDswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L25RTkF1TU5GVGtBZ2N1YjFkQjFDN20tbkJEcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxaFgwDQYJKoZIhvcNAQELBQADggEBAIGZ5Lrub2IGbDIdehZOAsQUjxL9 duHH7dABzI1OTfAzkIB7XK9qy2+ZuV0UyykieV281BNk+pw60KwjVNGFrK60cmlk rERru8g9RUSAcWJh9uZOjf3Wd9bVl3J10agbhroswz5cJAH+/9haIBmw6Yu+K5pZ 3RfeVFxnloNVD8L9ZszoQ+5M3eC3FDUJErMKAhKkujfcfy0i3C/68loHW8K7Q6Pl Xy9Yi9/5e/p+K/CsR4a6ScHe/R/5DGaqLG+6BgIQKdV3A1/hZMhjSfXw5neysxJX 1YBzNFXS9OYg4sZsndGqK696Be2zhM9R3Eidsiclo1qSvtffc2etasguRpk= -----END CERTIFICATE-----Generated at Sat Apr 26 18:22:56 2025 by rpki-client