$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zbaIjY86JnlNETggVPOMOPkgiKU.roa File: zbaIjY86JnlNETggVPOMOPkgiKU.roa (raw, json) Hash identifier: 0aDMJFuWCMoc3lsD+OQqYYEBcOIOR800SWylLJTMDxc= Subject key identifier: CD:B6:88:8D:8F:3A:26:79:4D:11:38:20:54:F3:8C:38:F9:20:88:A5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CC0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zbaIjY86JnlNETggVPOMOPkgiKU.roa Signing time: Tue 01 Apr 2025 02:05:49 +0000 ROA not before: Tue 01 Apr 2025 02:05:49 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:05:49 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CDB6888D8F3A26794D11382054F38C38F92088A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c4:cb:1b:68:0e:50:59:5b:74:9b:e7:35:40: 52:a7:e3:8e:81:6b:26:2a:a2:80:62:43:9e:9a:92: 33:82:dd:a0:bd:10:e6:3c:9f:b0:1a:bb:db:19:e4: a1:3c:a9:25:17:94:84:25:18:c7:0c:5e:42:34:6f: 76:b2:2b:b8:5c:4f:16:05:9c:c4:71:77:cc:49:ba: 40:14:7d:a3:67:7a:16:d4:4a:d9:c0:ba:c4:25:ea: 69:37:f3:d7:a5:f4:d6:6f:82:4d:11:2e:e9:b9:9e: 1c:a6:11:2e:f6:08:2f:61:1c:61:44:2b:2a:0d:84: dc:7e:af:6a:c9:72:13:d7:1a:59:b3:d1:11:b0:1c: de:16:16:ab:8f:e4:8e:db:bc:bd:d4:f0:03:26:83: 16:91:40:7c:4c:00:f2:38:dc:82:45:87:47:76:74: dc:25:93:3b:e3:f7:e0:f2:1b:a4:43:59:c9:fe:2d: 4e:90:07:80:9f:7b:fa:3d:8b:78:fc:c1:57:9f:bd: 98:f1:91:54:84:4f:07:1f:66:59:31:4e:55:d2:ab: 86:cb:e4:46:11:85:95:e3:ce:97:96:dd:c0:48:db: b4:a4:cd:b4:04:3d:9a:08:97:47:f7:ad:7d:79:a1: b4:5c:1a:7e:81:f7:74:a1:b2:7b:b3:36:8a:1b:dc: 26:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B6:88:8D:8F:3A:26:79:4D:11:38:20:54:F3:8C:38:F9:20:88:A5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zbaIjY86JnlNETggVPOMOPkgiKU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.216.0/21 Signature Algorithm: sha256WithRSAEncryption 90:14:9f:c0:9f:5e:de:55:36:e2:8a:bd:a6:08:27:c1:cc:c2: c2:a4:80:02:89:26:02:a6:80:84:7d:25:22:cd:e7:0f:8a:5a: 0f:61:02:19:6d:66:5d:25:e9:16:66:82:5c:9f:94:ee:6b:ef: b9:d1:27:33:f6:b1:44:54:aa:32:6b:57:f3:a1:ed:60:01:94: fe:83:11:b3:14:a7:ad:19:fb:0c:58:c8:cd:de:e3:02:85:60: 6d:a5:90:0c:bb:71:dd:0d:94:59:32:c4:a3:5b:a2:2e:16:e0: c6:91:69:ba:2b:55:e8:45:ee:6c:6f:89:a8:9e:64:c6:78:d3: 39:23:77:fe:c7:b6:51:66:02:3b:24:41:b0:46:16:35:f7:ce: a2:80:fe:56:59:cf:21:b1:e3:fc:ad:77:ca:29:ed:51:99:cf: 95:d0:af:60:05:fd:00:96:79:29:0a:bb:cf:2c:26:f9:51:c8: 93:2d:74:c6:e8:fa:58:bf:8c:50:b6:83:8e:d9:4d:9f:ea:fc: db:e1:b4:8b:c3:e8:fc:95:89:7e:29:6e:58:8c:65:21:07:f5: 64:f3:41:c7:d2:ad:a2:22:fe:17:27:aa:a4:b8:1a:68:95:78: e2:bd:83:0b:76:48:96:af:23:cd:96:6c:bb:0f:18:01:70:be: 42:e6:90:bc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA1NDlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENEQjY4ODhEOEYzQTI2 Nzk0RDExMzgyMDU0RjM4QzM4RjkyMDg4QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsxMsbaA5QWVt0m+c1QFKn446BayYqooBiQ56akjOC3aC9EOY8 n7Aau9sZ5KE8qSUXlIQlGMcMXkI0b3ayK7hcTxYFnMRxd8xJukAUfaNnehbUStnA usQl6mk389el9NZvgk0RLum5nhymES72CC9hHGFEKyoNhNx+r2rJchPXGlmz0RGw HN4WFquP5I7bvL3U8AMmgxaRQHxMAPI43IJFh0d2dNwlkzvj9+DyG6RDWcn+LU6Q B4Cfe/o9i3j8wVefvZjxkVSETwcfZlkxTlXSq4bL5EYRhZXjzpeW3cBI27SkzbQE PZoIl0f3rX15obRcGn6B93ShsnuzNoob3CbhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzbaIjY86JnlNETggVPOMOPkgiKUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3piYUlqWTg2Sm5sTkVUZ2dWUE9NT1BrZ2lLVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxYtgwDQYJKoZIhvcNAQELBQADggEBAJAUn8CfXt5VNuKKvaYIJ8HMwsKk gAKJJgKmgIR9JSLN5w+KWg9hAhltZl0l6RZmglyflO5r77nRJzP2sURUqjJrV/Oh 7WABlP6DEbMUp60Z+wxYyM3e4wKFYG2lkAy7cd0NlFkyxKNboi4W4MaRaborVehF 7mxviaieZMZ40zkjd/7HtlFmAjskQbBGFjX3zqKA/lZZzyGx4/ytd8op7VGZz5XQ r2AF/QCWeSkKu88sJvlRyJMtdMbo+li/jFC2g47ZTZ/q/NvhtIvD6PyViX4pbliM ZSEH9WTzQcfSraIi/hcnqqS4GmiVeOK9gwt2SJavI82WbLsPGAFwvkLmkLw= -----END CERTIFICATE-----Generated at Sat Apr 26 18:22:29 2025 by rpki-client