$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3kChpw50AZYxf-x48V4FDx4dicA.roa File: 3kChpw50AZYxf-x48V4FDx4dicA.roa (raw, json) Hash identifier: g9GbAdsekVFh1e+44/SKIqxy0ZESAUxQ1tSOipl0JeA= Subject key identifier: DE:40:A1:A7:0E:74:01:96:31:7F:EC:78:F1:5E:05:0F:1E:1D:89:C0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E27 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3kChpw50AZYxf-x48V4FDx4dicA.roa Signing time: Tue 01 Apr 2025 02:33:29 +0000 ROA not before: Tue 01 Apr 2025 02:33:29 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3623 (0xe27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:33:29 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=DE40A1A70E740196317FEC78F15E050F1E1D89C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:32:3a:7c:14:32:95:24:24:42:ef:41:d7:8a: 25:3c:8b:87:db:41:98:4f:89:dd:1c:fa:a5:32:00: 25:bd:b9:ce:7e:77:e8:cf:e4:3a:22:c9:71:d7:1f: d5:0b:e8:d6:ec:b7:f5:9c:ed:2d:47:c7:23:9f:3e: 60:11:ac:92:b8:ee:27:5e:1d:47:35:ec:f1:48:b6: ee:f6:03:ff:9b:e0:e0:bc:6b:c7:b9:78:7f:3b:4f: b2:95:1b:c9:62:9b:4f:26:94:3c:5e:88:9d:f9:37: 0c:1e:f1:7a:9c:e9:68:f3:fb:28:0a:93:81:5a:de: b5:a3:c2:72:e6:97:ae:77:e8:97:9a:6a:5d:66:27: 8c:ca:63:db:9f:c6:50:6a:56:4b:05:95:26:f8:54: c6:74:4f:1c:79:a3:ae:1a:39:26:04:02:3e:6c:7c: 15:e3:ed:3a:09:8d:be:c3:b8:53:87:68:90:7f:d4: c7:5f:d1:a0:a1:7d:5a:6d:b7:e8:a8:e9:ff:0a:ef: e6:e6:3e:1d:40:96:39:5d:ce:67:46:4a:62:68:e4: 3e:ff:53:38:a6:1f:03:b8:b7:91:eb:ea:24:f7:17: bd:7b:6f:59:7a:af:7a:78:57:52:07:76:21:f0:e3: 34:1a:91:f2:4a:13:79:06:d8:78:97:ea:22:ab:42: fd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:40:A1:A7:0E:74:01:96:31:7F:EC:78:F1:5E:05:0F:1E:1D:89:C0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3kChpw50AZYxf-x48V4FDx4dicA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.120.0/23 Signature Algorithm: sha256WithRSAEncryption d5:3f:b1:22:72:c6:ff:a7:0a:7b:59:31:7e:53:55:5b:ad:08: 3f:cb:d5:18:ce:55:80:83:fb:69:76:be:1b:24:88:27:46:fc: b8:1f:29:67:90:45:52:5b:e6:01:dd:80:9f:b7:22:ba:96:44: 56:4f:29:59:66:d0:33:a5:68:66:7b:a4:db:69:3c:06:d6:18: bb:e5:b4:02:52:fb:29:27:11:b9:e6:c8:bd:6c:1b:b8:8f:27: 75:3d:24:38:d5:67:ed:38:90:e9:00:94:9a:1e:82:a3:f3:5b: 24:57:03:6c:47:a7:71:88:4a:57:6f:f7:de:f2:16:c9:86:c0: 10:ec:51:21:51:da:1b:8d:d3:2b:40:5b:b5:41:78:5a:ff:60: fb:8e:5b:c5:68:7e:37:80:eb:f4:2d:fd:06:7b:b1:93:36:f0: ac:59:cb:f6:c7:63:84:d7:c8:46:d3:f2:e8:10:a3:0a:c8:5b: 8a:4a:79:61:65:ee:8d:01:ee:3d:56:c5:98:26:43:ba:cf:52: 2a:6f:93:29:7b:75:11:b6:7f:17:fd:b7:b6:f3:bc:c8:c4:ff: b4:dd:ea:ff:87:9a:71:03:22:63:ff:81:eb:ed:41:60:f1:3b: 90:6e:ea:07:11:06:36:f8:73:91:d1:99:60:02:73:af:eb:fd: 54:03:fa:ed -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDicwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMzMjlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERFNDBBMUE3MEU3NDAx OTYzMTdGRUM3OEYxNUUwNTBGMUUxRDg5QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfMjp8FDKVJCRC70HXiiU8i4fbQZhPid0c+qUyACW9uc5+d+jP 5DoiyXHXH9UL6Nbst/Wc7S1HxyOfPmARrJK47ideHUc17PFItu72A/+b4OC8a8e5 eH87T7KVG8lim08mlDxeiJ35Nwwe8Xqc6Wjz+ygKk4Fa3rWjwnLml6536Jeaal1m J4zKY9ufxlBqVksFlSb4VMZ0Txx5o64aOSYEAj5sfBXj7ToJjb7DuFOHaJB/1Mdf 0aChfVptt+io6f8K7+bmPh1AljldzmdGSmJo5D7/UzimHwO4t5Hr6iT3F717b1l6 r3p4V1IHdiHw4zQakfJKE3kG2HiX6iKrQv37AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3kChpw50AZYxf+x48V4FDx4dicAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNrQ2hwdzUwQVpZeGYteDQ4VjRGRHg0ZGljQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYngwDQYJKoZIhvcNAQELBQADggEBANU/sSJyxv+nCntZMX5TVVutCD/L 1RjOVYCD+2l2vhskiCdG/LgfKWeQRVJb5gHdgJ+3IrqWRFZPKVlm0DOlaGZ7pNtp PAbWGLvltAJS+yknEbnmyL1sG7iPJ3U9JDjVZ+04kOkAlJoegqPzWyRXA2xHp3GI Sldv997yFsmGwBDsUSFR2huN0ytAW7VBeFr/YPuOW8VofjeA6/Qt/QZ7sZM28KxZ y/bHY4TXyEbT8ugQowrIW4pKeWFl7o0B7j1WxZgmQ7rPUipvkyl7dRG2fxf9t7bz vMjE/7Td6v+HmnEDImP/gevtQWDxO5Bu6gcRBjb4c5HRmWACc6/r/VQD+u0= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:39 2025 by rpki-client on console.sobornost.net