$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/py9xEO2erd7L86kCwSF5ydzTFww.roa File: py9xEO2erd7L86kCwSF5ydzTFww.roa (raw, json) Hash identifier: 7T0ld0zPp5Hfyvehhhq72S2w0XwjDU+Hfhzruydrt6s= Subject key identifier: A7:2F:71:10:ED:9E:AD:DE:CB:F3:A9:02:C1:21:79:C9:DC:D3:17:0C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D8C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/py9xEO2erd7L86kCwSF5ydzTFww.roa Signing time: Tue 01 Apr 2025 02:21:32 +0000 ROA not before: Tue 01 Apr 2025 02:21:32 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 23:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3468 (0xd8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:32 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A72F7110ED9EADDECBF3A902C12179C9DCD3170C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e2:58:b5:34:70:b5:62:95:bc:80:91:99:fb: e1:0d:f1:10:b0:e8:fa:f8:bf:19:3e:11:88:f1:c0: 2a:3a:2f:b5:86:0c:17:94:ca:af:c2:39:03:93:4d: f3:56:52:9b:8f:ff:e5:96:b8:f3:16:94:38:03:67: a3:34:86:a5:84:dd:ff:a2:0e:2d:27:1f:2c:e4:70: 9f:a0:e1:ee:7a:0d:9a:82:e3:a2:a4:6d:44:2b:93: 87:f9:c7:02:af:94:21:44:14:05:6b:01:dd:21:48: b3:e1:7a:1b:bb:57:a1:9d:00:ed:ff:e5:77:e7:ac: f6:d1:4a:2b:20:c3:79:0f:c4:ab:87:f8:0b:60:56: c4:5b:88:ae:59:09:05:ea:00:c0:ef:7d:f3:45:9c: 1d:89:b9:96:e2:fe:45:bc:38:34:6c:4d:79:a1:b8: bd:04:42:eb:43:ac:37:9f:40:00:ad:00:0e:b5:de: fe:be:e1:8b:db:89:b3:7d:2f:04:71:5b:8b:72:f8: 59:cb:5f:3c:1d:e9:83:a0:a1:14:c8:9f:a0:1b:71: 9d:06:8c:a3:29:ef:e8:a0:c2:36:f5:d4:c7:9b:89: 16:36:44:34:5b:d0:b7:21:ef:55:94:50:90:eb:43: cb:04:b3:69:00:98:b1:37:2a:43:5d:7e:73:bb:af: ff:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:2F:71:10:ED:9E:AD:DE:CB:F3:A9:02:C1:21:79:C9:DC:D3:17:0C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/py9xEO2erd7L86kCwSF5ydzTFww.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.36.0/23 Signature Algorithm: sha256WithRSAEncryption 53:4b:9f:60:80:28:ce:94:34:1b:47:ca:a3:e5:05:3b:22:99: b6:a9:17:3c:03:65:f4:27:ca:85:f6:03:0a:49:88:f0:9a:83: 7c:89:d4:20:8f:75:9b:2c:48:05:65:8c:ec:d1:35:fd:5b:32: 1f:17:dd:f8:68:db:8a:fc:81:a3:26:30:55:9c:c5:8b:9f:e6: c5:37:47:f2:02:3c:22:97:dc:9e:ed:13:82:86:be:73:c9:5b: dd:97:d0:76:68:0c:f0:dc:eb:be:0c:ce:2e:67:39:ef:99:21: 7c:19:c7:f8:20:aa:24:17:46:13:2e:62:98:e7:70:1c:e6:9f: 82:4d:3c:b6:39:7d:5a:87:e5:f7:9c:61:49:df:15:b7:59:12: 1d:6d:bb:22:4c:33:47:23:c9:9c:7e:7d:dd:c3:3b:e6:3e:c1: ea:c1:e7:53:60:cb:e9:8f:51:34:5a:b0:87:63:2a:af:c2:40: 86:59:d0:32:f6:83:72:40:f8:3d:0d:bd:e0:af:df:f9:11:4a: 36:b8:9a:10:27:f0:9a:03:cf:08:49:20:63:b9:69:4e:c8:58: 88:d2:54:c1:03:8c:4a:83:53:d5:f2:24:d2:f0:e5:f3:52:33: fa:4a:c6:3d:f5:1d:e3:39:58:3a:e2:ff:e4:a0:ad:0e:5b:a0: ff:4a:08:69 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMzJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE3MkY3MTEwRUQ5RUFE REVDQkYzQTkwMkMxMjE3OUM5RENEMzE3MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL4li1NHC1YpW8gJGZ++EN8RCw6Pr4vxk+EYjxwCo6L7WGDBeU yq/COQOTTfNWUpuP/+WWuPMWlDgDZ6M0hqWE3f+iDi0nHyzkcJ+g4e56DZqC46Kk bUQrk4f5xwKvlCFEFAVrAd0hSLPhehu7V6GdAO3/5XfnrPbRSisgw3kPxKuH+Atg VsRbiK5ZCQXqAMDvffNFnB2JuZbi/kW8ODRsTXmhuL0EQutDrDefQACtAA613v6+ 4YvbibN9LwRxW4ty+FnLXzwd6YOgoRTIn6AbcZ0GjKMp7+igwjb11MebiRY2RDRb 0Lch71WUUJDrQ8sEs2kAmLE3KkNdfnO7r/8dAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUpy9xEO2erd7L86kCwSF5ydzTFwwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3B5OXhFTzJlcmQ3TDg2a0N3U0Y1eWR6VEZ3dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYSQwDQYJKoZIhvcNAQELBQADggEBAFNLn2CAKM6UNBtHyqPlBTsimbap FzwDZfQnyoX2AwpJiPCag3yJ1CCPdZssSAVljOzRNf1bMh8X3fho24r8gaMmMFWc xYuf5sU3R/ICPCKX3J7tE4KGvnPJW92X0HZoDPDc674Mzi5nOe+ZIXwZx/ggqiQX RhMuYpjncBzmn4JNPLY5fVqH5fecYUnfFbdZEh1tuyJMM0cjyZx+fd3DO+Y+werB 51Ngy+mPUTRasIdjKq/CQIZZ0DL2g3JA+D0NveCv3/kRSja4mhAn8JoDzwhJIGO5 aU7IWIjSVMEDjEqDU9XyJNLw5fNSM/pKxj31HeM5WDri/+SgrQ5boP9KCGk= -----END CERTIFICATE-----Generated at Wed May 7 08:23:13 2025 by rpki-client