$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zQsR0hpfRTWga2i7LXR8aMNg_Kw.roa File: zQsR0hpfRTWga2i7LXR8aMNg_Kw.roa (raw, json) Hash identifier: +gj1tvylzwQthZ8JY+bCGsbfCDO8wUnug6cyVpMtfaQ= Subject key identifier: CD:0B:11:D2:1A:5F:45:35:A0:6B:68:BB:2D:74:7C:68:C3:60:FC:AC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C52 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zQsR0hpfRTWga2i7LXR8aMNg_Kw.roa Signing time: Tue 01 Apr 2025 01:57:24 +0000 ROA not before: Tue 01 Apr 2025 01:57:24 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.105.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3154 (0xc52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:57:24 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CD0B11D21A5F4535A06B68BB2D747C68C360FCAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0f:86:1d:4c:e8:de:03:75:33:79:03:f6:66: ae:1a:86:d6:6f:3f:89:43:f6:c6:bf:ce:06:51:9d: fd:4b:59:a0:88:84:a0:9a:aa:3e:33:0d:1d:9f:61: 45:b2:ee:46:f8:ae:e6:e5:71:8a:8e:f2:4b:b8:1c: c2:cc:8e:51:1a:8e:90:16:67:f2:a6:21:9b:a1:d9: 1a:b1:8e:14:d0:92:1a:bf:84:cb:c6:55:43:e9:b6: 32:7c:43:f6:eb:07:23:58:04:1c:c4:50:46:a6:0b: fa:e6:32:ad:9a:19:08:a2:fb:41:27:ca:92:ab:e5: 2c:66:15:f6:96:2f:9c:24:68:06:83:14:33:7b:d4: 2d:b4:ae:5a:82:7d:59:29:8d:56:61:6f:5f:c5:bc: e7:a4:5a:1c:72:bc:0d:86:2b:12:ab:78:ce:0a:fc: 33:25:b4:08:62:be:e6:1f:75:44:1c:21:f9:0d:c3: 56:b8:04:4e:f0:b6:2e:74:c8:13:39:23:52:e7:d8: 4a:0a:51:c6:55:fe:c3:51:99:d3:2e:84:75:9c:7b: 95:42:b5:7f:b0:cc:c2:7d:ca:bc:83:64:c2:1f:a8: 90:33:25:3d:2b:cb:ea:41:55:fd:d7:83:87:a6:ed: 41:aa:8f:a0:1f:8e:60:8d:c2:b7:88:ad:e9:85:a1: 69:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:0B:11:D2:1A:5F:45:35:A0:6B:68:BB:2D:74:7C:68:C3:60:FC:AC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zQsR0hpfRTWga2i7LXR8aMNg_Kw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.92.0/22 Signature Algorithm: sha256WithRSAEncryption 16:b4:64:f5:0a:c9:be:1c:a8:b2:8c:04:dc:b7:af:e1:0a:59: d7:8c:31:de:fa:9a:2c:bf:30:a9:07:49:3d:72:39:b7:c0:3f: fd:22:38:11:c8:40:b3:d4:d9:64:29:f5:3e:9e:0b:50:16:32: 32:db:6b:f0:f7:08:d5:6a:1d:0c:97:b0:fd:1f:cf:ab:82:0e: c8:d1:91:33:eb:22:c1:52:26:3f:49:ed:2b:eb:72:ed:ac:47: f4:62:48:23:5e:22:43:60:a3:f3:02:90:04:d0:fe:37:b7:6f: 56:df:4e:d0:b4:bd:8b:8d:64:f7:c5:ad:ab:25:63:7b:a4:82: f5:7e:73:90:a3:1e:61:44:d7:12:1e:1f:63:16:6d:4e:c0:4a: ca:e9:2f:25:1b:2e:4d:ea:7f:02:bf:cf:e7:20:e6:d9:ec:3c: 5d:b2:d1:00:ed:c0:d4:6b:0d:e5:99:ca:48:7f:8b:dc:89:fe: a6:a9:48:36:29:f3:73:c9:31:ba:f0:65:15:1b:02:61:75:18: 28:6f:41:0e:36:e9:c0:ca:20:35:b5:53:40:d0:35:7e:94:35: 84:15:65:18:10:e2:2b:9d:ae:65:19:d6:a3:45:76:62:26:ab: e1:06:73:cb:03:3b:32:3a:3d:22:a9:94:74:51:b8:6b:38:b8: 25:68:4d:c2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDFIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU3MjRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENEMEIxMUQyMUE1RjQ1 MzVBMDZCNjhCQjJENzQ3QzY4QzM2MEZDQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClD4YdTOjeA3UzeQP2Zq4ahtZvP4lD9sa/zgZRnf1LWaCIhKCa qj4zDR2fYUWy7kb4rublcYqO8ku4HMLMjlEajpAWZ/KmIZuh2RqxjhTQkhq/hMvG VUPptjJ8Q/brByNYBBzEUEamC/rmMq2aGQii+0EnypKr5SxmFfaWL5wkaAaDFDN7 1C20rlqCfVkpjVZhb1/FvOekWhxyvA2GKxKreM4K/DMltAhivuYfdUQcIfkNw1a4 BE7wti50yBM5I1Ln2EoKUcZV/sNRmdMuhHWce5VCtX+wzMJ9yryDZMIfqJAzJT0r y+pBVf3Xg4em7UGqj6AfjmCNwreIremFoWm5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzQsR0hpfRTWga2i7LXR8aMNg/KwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3pRc1IwaHBmUlRXZ2EyaTdMWFI4YU1OZ19Ldy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxaVwwDQYJKoZIhvcNAQELBQADggEBABa0ZPUKyb4cqLKMBNy3r+EKWdeM Md76miy/MKkHST1yObfAP/0iOBHIQLPU2WQp9T6eC1AWMjLba/D3CNVqHQyXsP0f z6uCDsjRkTPrIsFSJj9J7Svrcu2sR/RiSCNeIkNgo/MCkATQ/je3b1bfTtC0vYuN ZPfFraslY3ukgvV+c5CjHmFE1xIeH2MWbU7ASsrpLyUbLk3qfwK/z+cg5tnsPF2y 0QDtwNRrDeWZykh/i9yJ/qapSDYp83PJMbrwZRUbAmF1GChvQQ426cDKIDW1U0DQ NX6UNYQVZRgQ4iudrmUZ1qNFdmImq+EGc8sDOzI6PSKplHRRuGs4uCVoTcI= -----END CERTIFICATE-----Generated at Sat Apr 26 20:12:50 2025 by rpki-client