$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/w1bcN4WRE3Y4YZWhyAAN0Z5algM.roa File: w1bcN4WRE3Y4YZWhyAAN0Z5algM.roa (raw, json) Hash identifier: ORAQCAxhsZUI2kkldCqomStRhzkbTYlWE7GIyCUHsEE= Subject key identifier: C3:56:DC:37:85:91:13:76:38:61:95:A1:C8:00:0D:D1:9E:5A:96:03 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CDA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w1bcN4WRE3Y4YZWhyAAN0Z5algM.roa Signing time: Tue 01 Apr 2025 02:09:17 +0000 ROA not before: Tue 01 Apr 2025 02:09:17 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.108.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3290 (0xcda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:17 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C356DC3785911376386195A1C8000DD19E5A9603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8a:43:3d:8b:59:64:97:ee:07:b1:f1:8f:92: b8:42:57:81:1e:2c:87:a8:a1:5b:4a:41:6a:9a:56: 3e:50:b3:5c:95:78:7e:f8:00:74:5d:4e:4d:41:24: 03:f0:73:6b:52:66:5b:38:9e:63:21:fb:9f:49:2d: 4b:ce:61:95:c2:2e:86:bc:4f:bf:f6:92:29:32:c6: 17:10:3a:6a:d1:63:70:a6:b0:b3:61:3c:02:22:7f: 26:7f:c1:af:74:ba:d0:cd:d4:9a:1f:43:d8:23:b2: a4:bb:4b:fa:89:99:01:9b:a5:c2:40:2a:a6:85:18: f6:03:36:8d:5f:0c:ff:3f:d0:59:81:89:69:3c:79: c3:3a:17:8a:7c:96:62:84:5b:45:3f:12:58:98:67: db:12:3b:7a:ef:c7:30:89:67:15:44:f3:0c:e9:ae: a5:1f:d8:b4:e6:76:6c:52:fa:e9:9e:d3:8e:83:2f: db:f4:c2:ce:c7:d1:16:61:01:b1:f0:05:50:f8:74: e9:1a:70:5d:8d:4f:1a:9b:3c:27:f7:ea:54:57:26: ed:58:0f:ed:90:06:99:01:4a:ed:4b:9e:aa:ec:0a: f8:90:9e:22:e8:75:61:f6:df:b8:71:16:f7:27:10: 2a:1c:7c:d3:51:d7:15:41:90:0e:6d:56:e5:f0:3a: 61:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:56:DC:37:85:91:13:76:38:61:95:A1:C8:00:0D:D1:9E:5A:96:03 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w1bcN4WRE3Y4YZWhyAAN0Z5algM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.108.128.0/18 Signature Algorithm: sha256WithRSAEncryption 26:3b:81:c2:3f:e0:13:49:3a:ed:b4:b0:bf:76:38:91:85:56: 28:2d:ea:48:95:58:c0:ee:90:d1:5f:77:b1:9b:cc:a1:e9:95: b6:7f:c0:3a:cd:cd:af:52:36:94:2a:48:86:8c:ca:e2:5e:29: 3d:58:ef:4e:5b:7f:c3:4b:97:79:89:dd:9c:58:e2:8b:f1:7f: d3:be:ad:dc:a8:1d:91:47:11:06:f2:ba:5c:6d:fe:0d:82:19: 96:04:7e:59:6f:12:52:24:3e:cc:44:f5:f3:2e:e5:86:a9:03: 56:8a:d0:ac:7f:cf:9f:8d:ad:e1:3b:f7:f0:3d:89:2b:4f:e4: 46:be:f7:39:60:95:e8:5e:c5:74:f2:99:c2:8e:5d:e1:8d:72: d3:9b:f6:8e:4b:73:e2:ff:9c:9e:03:b5:c9:41:ac:20:aa:fb: fd:ae:a9:3b:0a:59:be:fd:07:38:31:d1:99:9a:14:e5:b8:9c: ab:bc:68:63:b5:3b:15:48:96:2c:1e:a3:f3:95:a9:be:53:0f: d6:90:0f:b9:09:d3:05:e6:05:9c:d7:61:8a:6b:cf:2d:ba:9e: 46:9c:41:ff:51:3e:d3:b4:39:f4:ae:6b:71:eb:0e:d6:39:f8: c2:91:44:6f:97:69:c0:aa:27:1c:38:9c:4d:4d:3a:39:e4:03: 53:f7:16:0c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDNowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MTdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEMzNTZEQzM3ODU5MTEz NzYzODYxOTVBMUM4MDAwREQxOUU1QTk2MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqikM9i1lkl+4HsfGPkrhCV4EeLIeooVtKQWqaVj5Qs1yVeH74 AHRdTk1BJAPwc2tSZls4nmMh+59JLUvOYZXCLoa8T7/2kikyxhcQOmrRY3CmsLNh PAIifyZ/wa90utDN1JofQ9gjsqS7S/qJmQGbpcJAKqaFGPYDNo1fDP8/0FmBiWk8 ecM6F4p8lmKEW0U/EliYZ9sSO3rvxzCJZxVE8wzprqUf2LTmdmxS+ume046DL9v0 ws7H0RZhAbHwBVD4dOkacF2NTxqbPCf36lRXJu1YD+2QBpkBSu1LnqrsCviQniLo dWH237hxFvcnECocfNNR1xVBkA5tVuXwOmFlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUw1bcN4WRE3Y4YZWhyAAN0Z5algMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3cxYmNONFdSRTNZNFlaV2h5QUFOMFo1YWxnTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYxbIAwDQYJKoZIhvcNAQELBQADggEBACY7gcI/4BNJOu20sL92OJGFVigt 6kiVWMDukNFfd7GbzKHplbZ/wDrNza9SNpQqSIaMyuJeKT1Y705bf8NLl3mJ3ZxY 4ovxf9O+rdyoHZFHEQbyulxt/g2CGZYEfllvElIkPsxE9fMu5YapA1aK0Kx/z5+N reE79/A9iStP5Ea+9zlglehexXTymcKOXeGNctOb9o5Lc+L/nJ4DtclBrCCq+/2u qTsKWb79Bzgx0ZmaFOW4nKu8aGO1OxVIliweo/OVqb5TD9aQD7kJ0wXmBZzXYYpr zy26nkacQf9RPtO0OfSua3HrDtY5+MKRRG+XacCqJxw4nE1NOjnkA1P3Fgw= -----END CERTIFICATE-----Generated at Sat Apr 26 19:45:56 2025 by rpki-client