$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zYhh4YipIYBGhy1ejz7Mut7u6nQ.roa File: zYhh4YipIYBGhy1ejz7Mut7u6nQ.roa (raw, json) Hash identifier: zitfIS8vtlnviPPQqkJ790MBB23mqOAc9gqS/HIwT18= Subject key identifier: CD:88:61:E1:88:A9:21:80:46:87:2D:5E:8F:3E:CC:BA:DE:EE:EA:74 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D34 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zYhh4YipIYBGhy1ejz7Mut7u6nQ.roa Signing time: Tue 01 Apr 2025 02:13:54 +0000 ROA not before: Tue 01 Apr 2025 02:13:54 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3380 (0xd34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:54 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CD8861E188A9218046872D5E8F3ECCBADEEEEA74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b3:ae:6f:6b:12:96:2e:69:8d:2a:ae:d4:5a: 80:8b:75:fe:0a:9b:b9:8c:01:13:ab:a3:9a:3f:ca: d9:81:0f:fd:f2:69:be:27:41:47:d8:37:31:5a:db: 09:6b:cf:7b:89:1c:7d:4e:69:75:86:30:9b:67:5a: 69:8c:86:a8:00:3d:91:da:c0:51:67:2c:b8:31:08: 72:a0:11:ba:41:16:b9:05:09:fe:f1:4d:c9:eb:c8: 8e:c2:49:5a:eb:35:96:fa:30:ce:ca:9d:6c:79:9a: c5:d0:ca:af:4e:54:5c:5b:92:9c:89:97:92:11:be: fc:86:ca:e8:02:cf:bc:ec:da:b6:08:97:5f:97:3a: 2f:92:68:9f:35:d5:c0:7e:6d:1e:71:16:fa:93:72: 80:0c:00:29:92:3a:8d:72:75:95:8b:00:6a:73:4d: 3b:db:dc:b0:48:35:8b:e6:17:7e:c4:bf:1d:41:67: bf:9f:02:13:ee:68:a1:70:f0:b1:51:e9:af:b6:6d: 11:91:e0:0f:26:d2:d8:48:47:65:b6:4c:57:ad:93: ae:19:91:80:28:80:89:e3:d1:11:a3:12:33:2e:96: c1:ea:61:a0:37:68:3a:75:82:c2:f3:75:8e:0d:c2: ee:ca:61:4b:41:cd:42:8b:aa:2b:1e:32:86:a1:98: 7c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:88:61:E1:88:A9:21:80:46:87:2D:5E:8F:3E:CC:BA:DE:EE:EA:74 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zYhh4YipIYBGhy1ejz7Mut7u6nQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.115.0/24 Signature Algorithm: sha256WithRSAEncryption 00:76:7a:04:32:ae:7b:64:80:9d:31:fa:94:7b:55:4c:13:fb: 68:af:18:79:67:ce:51:d0:a6:b9:85:05:8d:a4:b0:df:5f:80: c7:f0:50:00:44:1d:69:85:14:b1:bf:33:e1:ca:7b:9f:4c:87: b0:ed:8a:e2:dd:9e:e2:b7:02:83:a4:82:07:2c:dc:97:71:1b: 10:29:6d:7a:db:de:03:ff:a7:55:82:78:63:e6:2c:04:6b:f3: 20:e8:5e:f7:6a:21:c6:b7:d2:34:5f:83:47:06:a3:46:cc:dd: 63:3f:bf:9e:d4:f1:5b:6f:65:69:c3:9d:f6:c3:c1:67:54:69: 5c:86:e1:d2:62:c3:91:7d:bd:e5:fb:62:71:c5:56:3c:0a:61: 5f:ef:28:7c:6f:01:fa:2b:11:e2:6e:f9:48:e7:fc:cd:d3:ac: 34:b0:37:7e:86:4b:63:29:4d:ed:d2:c6:63:c7:31:b0:55:54: e0:55:cb:91:4f:72:b3:3d:06:53:ab:29:c7:a7:21:89:37:ef: b2:44:23:1a:bb:13:74:36:84:87:24:5d:f3:d0:7a:57:2b:84: be:20:18:cd:2a:14:e0:c0:37:e3:8f:57:aa:4c:bc:64:2e:d7: 73:60:fe:4d:dc:52:10:83:86:63:89:b5:e3:9f:77:32:1f:a1: 33:96:76:7f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDTQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNTRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENEODg2MUUxODhBOTIx ODA0Njg3MkQ1RThGM0VDQ0JBREVFRUVBNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbs65vaxKWLmmNKq7UWoCLdf4Km7mMAROro5o/ytmBD/3yab4n QUfYNzFa2wlrz3uJHH1OaXWGMJtnWmmMhqgAPZHawFFnLLgxCHKgEbpBFrkFCf7x TcnryI7CSVrrNZb6MM7KnWx5msXQyq9OVFxbkpyJl5IRvvyGyugCz7zs2rYIl1+X Oi+SaJ811cB+bR5xFvqTcoAMACmSOo1ydZWLAGpzTTvb3LBINYvmF37Evx1BZ7+f AhPuaKFw8LFR6a+2bRGR4A8m0thIR2W2TFetk64ZkYAogInj0RGjEjMulsHqYaA3 aDp1gsLzdY4Nwu7KYUtBzUKLqiseMoahmHwtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzYhh4YipIYBGhy1ejz7Mut7u6nQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3pZaGg0WWlwSVlCR2h5MWVqejdNdXQ3dTZuUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYnMwDQYJKoZIhvcNAQELBQADggEBAAB2egQyrntkgJ0x+pR7VUwT+2iv GHlnzlHQprmFBY2ksN9fgMfwUABEHWmFFLG/M+HKe59Mh7DtiuLdnuK3AoOkggcs 3JdxGxApbXrb3gP/p1WCeGPmLARr8yDoXvdqIca30jRfg0cGo0bM3WM/v57U8Vtv ZWnDnfbDwWdUaVyG4dJiw5F9veX7YnHFVjwKYV/vKHxvAforEeJu+Ujn/M3TrDSw N36GS2MpTe3SxmPHMbBVVOBVy5FPcrM9BlOrKcenIYk377JEIxq7E3Q2hIckXfPQ elcrhL4gGM0qFODAN+OPV6pMvGQu13Ng/k3cUhCDhmOJteOfdzIfoTOWdn8= -----END CERTIFICATE-----Generated at Sat Apr 26 20:15:07 2025 by rpki-client