$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/xqWCL997_Oiz1d00xysM2Pba_ME.roa File: xqWCL997_Oiz1d00xysM2Pba_ME.roa (raw, json) Hash identifier: HqMgEtzJMRshMmsaCc0hNczVQBQ/vESm7YvQYEW5OPQ= Subject key identifier: C6:A5:82:2F:DF:7B:FC:E8:B3:D5:DD:34:C7:2B:0C:D8:F6:DA:FC:C1 Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0441 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/xqWCL997_Oiz1d00xysM2Pba_ME.roa Signing time: Tue 01 Apr 2025 01:39:32 +0000 ROA not before: Tue 01 Apr 2025 01:39:32 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 240a:6b:a200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1089 (0x441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Apr 1 01:39:32 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C6A5822FDF7BFCE8B3D5DD34C72B0CD8F6DAFCC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c5:96:2b:15:7a:e2:ae:2e:0c:dd:1d:cd:93: 89:7b:b9:63:43:81:fc:ab:2b:d9:02:ed:92:bd:8b: 4b:d9:35:70:4b:af:60:78:34:fc:b2:f1:86:5c:ec: 14:79:b7:33:bb:ca:dc:4f:47:9e:52:d3:18:f8:fb: c0:da:1e:85:69:6e:0d:6c:6e:38:a0:c6:b2:53:f9: e4:76:97:e8:1f:1f:01:43:34:bf:82:8e:5c:eb:ef: 6f:27:ea:37:9c:2a:24:13:d1:d7:41:58:53:8a:f2: dd:3d:22:f7:c5:a7:a2:4c:ad:8a:34:43:0d:d2:46: d3:6f:7b:1e:61:c1:90:a8:97:88:9d:92:43:ad:47: ec:66:d3:43:3c:e0:f9:df:f9:b1:62:9e:f3:55:7b: c5:83:53:84:ba:94:e6:45:85:8f:e2:8b:51:32:4f: 73:7c:08:2a:93:99:ef:8c:89:3f:fe:9b:42:ac:b5: e6:dc:50:0d:79:e8:e6:e7:16:dc:95:d1:34:cb:99: f2:77:41:dd:51:e6:9e:a1:bd:8c:a2:55:24:d2:94: 0c:e2:50:ce:4c:9b:9b:6e:a8:99:21:0f:0d:b8:0e: a5:29:db:76:02:d9:46:35:c7:af:de:ba:e1:ec:65: 5d:8c:23:88:a3:5d:87:0d:62:05:dc:c5:90:50:53: 2b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A5:82:2F:DF:7B:FC:E8:B3:D5:DD:34:C7:2B:0C:D8:F6:DA:FC:C1 X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/xqWCL997_Oiz1d00xysM2Pba_ME.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:6b:a200::/40 Signature Algorithm: sha256WithRSAEncryption 28:60:de:2f:8b:51:ce:2f:76:66:fa:60:c0:16:01:d8:32:8e: 94:2e:83:75:8b:48:1b:bb:9a:3e:63:77:8b:73:aa:25:1f:92: 79:11:12:1a:0f:ed:2a:4e:a8:53:b8:a8:9e:f9:3c:c2:6f:46: 39:d3:d2:4e:0d:2e:0a:d3:d7:e6:bf:01:3c:45:1d:d2:b1:dc: 87:c1:17:5b:27:c9:29:32:e1:64:89:e9:ca:6a:c1:a2:50:74: 38:d5:75:b1:6a:9c:35:15:79:1f:33:3f:d5:c4:44:cb:f1:87: 71:be:bb:7f:ed:8a:4d:da:f2:6d:86:88:3e:4f:b6:ac:3f:76: 60:bf:2e:94:70:fb:02:1b:e8:02:b9:c3:3b:99:35:69:29:0f: e1:85:75:ff:e1:eb:74:1b:5c:14:76:d6:c3:55:e9:5a:69:41: d8:94:e9:4a:bd:c0:01:ff:cb:46:2c:40:9d:5c:d4:60:52:de: 98:d7:21:d8:13:8b:37:b4:fd:f8:6b:f2:39:87:89:4f:9d:42: 81:09:15:71:c2:e8:69:08:77:bd:ac:94:55:ac:c7:36:0d:18: e5:1b:ba:51:0c:71:5a:1f:97:24:27:13:b4:3d:67:60:be:7b: 1e:c0:0a:0e:2e:54:fa:9d:e3:45:26:e3:a6:50:f1:90:d8:ab: 3e:06:48:91 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgICBEEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA0MDEw MTM5MzJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM2QTU4MjJGREY3QkZD RThCM0Q1REQzNEM3MkIwQ0Q4RjZEQUZDQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjxZYrFXriri4M3R3Nk4l7uWNDgfyrK9kC7ZK9i0vZNXBLr2B4 NPyy8YZc7BR5tzO7ytxPR55S0xj4+8DaHoVpbg1sbjigxrJT+eR2l+gfHwFDNL+C jlzr728n6jecKiQT0ddBWFOK8t09IvfFp6JMrYo0Qw3SRtNvex5hwZCol4idkkOt R+xm00M84Pnf+bFinvNVe8WDU4S6lOZFhY/ii1EyT3N8CCqTme+MiT/+m0Kstebc UA156ObnFtyV0TTLmfJ3Qd1R5p6hvYyiVSTSlAziUM5Mm5tuqJkhDw24DqUp23YC 2UY1x6/euuHsZV2MI4ijXYcNYgXcxZBQUyuNAgMBAAGjggIqMIICJjAdBgNVHQ4E FgQUxqWCL997/Oiz1d00xysM2Pba/MEwHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS94cVdDTDk5N19PaXoxZDAweHlzTTJQYmFfTUUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAoAa6IwDQYJKoZIhvcNAQELBQADggEBAChg3i+LUc4vdmb6YMAW AdgyjpQug3WLSBu7mj5jd4tzqiUfknkREhoP7SpOqFO4qJ75PMJvRjnT0k4NLgrT 1+a/ATxFHdKx3IfBF1snySky4WSJ6cpqwaJQdDjVdbFqnDUVeR8zP9XERMvxh3G+ u3/tik3a8m2GiD5Ptqw/dmC/LpRw+wIb6AK5wzuZNWkpD+GFdf/h63QbXBR21sNV 6VppQdiU6Uq9wAH/y0YsQJ1c1GBS3pjXIdgTize0/fhr8jmHiU+dQoEJFXHC6GkI d72slFWsxzYNGOUbulEMcVoflyQnE7Q9Z2C+ex7ACg4uVPqd40Um46ZQ8ZDYqz4G SJE= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:29 2025 by rpki-client on console.sobornost.net