$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/0mnB9iR3JzsyPyrnrd5Ztiu4Puw.roa File: 0mnB9iR3JzsyPyrnrd5Ztiu4Puw.roa (raw, json) Hash identifier: bK6VfrfRgkWlm60xxe2OBay9N1dRY45SEPww+GnG0e8= Subject key identifier: D2:69:C1:F6:24:77:27:3B:32:3F:2A:E7:AD:DE:59:B6:2B:B8:3E:EC Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0487 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/0mnB9iR3JzsyPyrnrd5Ztiu4Puw.roa Signing time: Tue 01 Apr 2025 01:45:39 +0000 ROA not before: Tue 01 Apr 2025 01:45:39 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:2a00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:45:39 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=D269C1F62477273B323F2AE7ADDE59B62BB83EEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7d:e7:6a:8f:73:27:a7:98:f8:7d:ee:db:7e: 84:6b:46:3a:37:2c:51:42:02:8d:c0:f7:36:f0:1e: 06:ce:e7:f2:5f:53:36:ac:5a:5e:4d:4f:6b:8d:98: 9f:8b:14:06:78:23:0b:5a:b1:68:cc:b2:25:4a:5c: b0:7a:b5:e2:ed:af:0a:7f:d1:81:1c:cc:08:0b:80: d3:e6:e9:3c:81:0d:82:57:a5:a8:b8:9e:75:04:2a: 3e:7a:08:a4:b1:32:5c:eb:56:04:99:b8:99:11:f7: 9b:46:26:eb:45:fd:be:40:3b:56:15:5b:bd:2e:ea: 5b:c2:fb:c7:73:08:fb:14:09:32:d7:66:70:85:37: 13:2d:62:b7:6e:80:f8:9e:68:d5:0a:a4:f2:fb:0b: 06:b0:8e:27:ed:70:ad:5d:d0:9f:5b:4f:05:6b:6c: c8:52:e1:c4:ac:64:71:d5:3d:e7:fd:41:89:04:4a: 95:79:57:d0:7e:48:eb:42:5a:5d:d4:f0:ac:a1:33: 8c:f1:76:79:94:80:19:af:e4:f5:66:98:b4:f9:70: a2:74:f1:e9:38:76:d4:df:d2:be:ea:e9:ed:83:26: 0f:2c:f2:f7:28:f3:09:38:9f:ef:ed:e0:24:b7:df: ac:fe:75:67:0e:55:8c:3a:e5:f9:36:65:67:6d:75: 45:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:69:C1:F6:24:77:27:3B:32:3F:2A:E7:AD:DE:59:B6:2B:B8:3E:EC X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/0mnB9iR3JzsyPyrnrd5Ztiu4Puw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:2a00::/40 Signature Algorithm: sha256WithRSAEncryption a6:a7:71:de:2d:a7:bb:2e:7f:c7:2c:20:34:b7:62:e5:d3:f4: 01:b6:13:17:ca:66:6d:07:3c:9d:ce:59:1f:cd:1d:cd:f7:bb: 2f:ac:2a:bd:84:04:68:75:87:62:84:b5:5d:9c:79:62:39:dd: c6:ec:54:cd:31:13:83:b3:8d:50:f6:08:72:3c:be:06:a3:89: 88:bc:44:ad:a8:bd:b0:1f:a6:0e:e4:32:2d:a8:75:06:e6:39: 71:2e:4f:4c:0a:21:0f:72:90:8d:a8:92:92:b4:84:78:d9:4b: c5:2d:fb:90:03:eb:6a:16:80:60:06:51:73:21:f4:b1:ec:02: d3:bc:0e:0c:0e:bf:19:ee:18:14:ee:60:f6:75:d7:6c:4e:68: 37:ff:33:d8:4b:e7:41:13:6d:fa:d7:b9:41:e9:c8:6d:8c:54: 60:78:bf:b1:7c:18:f7:e8:36:69:7c:ec:7e:5a:58:d8:1e:1a: 28:c1:cd:ff:5b:f7:1c:0a:ba:8f:f9:d9:e1:f9:b2:86:03:75: fa:9e:db:09:ef:59:2d:33:4e:09:aa:d0:9c:41:13:2e:76:06: 33:60:24:59:54:ab:ae:0e:84:8b:df:a1:a4:65:75:e3:a5:a9: ee:d7:ed:89:6a:9d:03:60:d5:f8:57:1a:20:83:ca:78:8a:65: ae:ad:18:7f -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTQ1MzlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQyNjlDMUY2MjQ3NzI3 M0IzMjNGMkFFN0FEREU1OUI2MkJCODNFRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkfedqj3Mnp5j4fe7bfoRrRjo3LFFCAo3A9zbwHgbO5/JfUzas Wl5NT2uNmJ+LFAZ4IwtasWjMsiVKXLB6teLtrwp/0YEczAgLgNPm6TyBDYJXpai4 nnUEKj56CKSxMlzrVgSZuJkR95tGJutF/b5AO1YVW70u6lvC+8dzCPsUCTLXZnCF NxMtYrdugPieaNUKpPL7CwawjiftcK1d0J9bTwVrbMhS4cSsZHHVPef9QYkESpV5 V9B+SOtCWl3U8KyhM4zxdnmUgBmv5PVmmLT5cKJ08ek4dtTf0r7q6e2DJg8s8vco 8wk4n+/t4CS336z+dWcOVYw65fk2ZWdtdUVHAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQU0mnB9iR3JzsyPyrnrd5Ztiu4PuwwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS8wbW5COWlSM0p6c3lQeXJucmQ1WnRpdTRQdXcu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAayowDQYJKoZIhvcNAQELBQADggEBAKancd4tp7suf8csIDS3 YuXT9AG2ExfKZm0HPJ3OWR/NHc33uy+sKr2EBGh1h2KEtV2ceWI53cbsVM0xE4Oz jVD2CHI8vgajiYi8RK2ovbAfpg7kMi2odQbmOXEuT0wKIQ9ykI2okpK0hHjZS8Ut +5AD62oWgGAGUXMh9LHsAtO8DgwOvxnuGBTuYPZ112xOaDf/M9hL50ETbfrXuUHp yG2MVGB4v7F8GPfoNml87H5aWNgeGijBzf9b9xwKuo/52eH5soYDdfqe2wnvWS0z Tgmq0JxBEy52BjNgJFlUq64OhIvfoaRldeOlqe7X7YlqnQNg1fhXGiCDyniKZa6t GH8= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:24 2025 by rpki-client on console.sobornost.net