$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4UNlL5HkgA8xL5ybST0hYYpSyZQ.roa File: 4UNlL5HkgA8xL5ybST0hYYpSyZQ.roa (raw, json) Hash identifier: VhIIm6s6aciyJQEpjXrEmvCKvM9FiEXmZBVbxZ2s6ZQ= Subject key identifier: E1:43:65:2F:91:E4:80:0F:31:2F:9C:9B:49:3D:21:61:8A:52:C9:94 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DB3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4UNlL5HkgA8xL5ybST0hYYpSyZQ.roa Signing time: Tue 01 Apr 2025 02:24:43 +0000 ROA not before: Tue 01 Apr 2025 02:24:43 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.104.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3507 (0xdb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:24:43 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E143652F91E4800F312F9C9B493D21618A52C994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f5:99:98:ba:69:4f:91:f3:e5:c4:46:13:49: 8c:05:d4:17:f9:5d:a3:a7:64:7d:81:09:b6:fe:92: 9a:98:29:d0:2d:ee:08:f5:c6:11:56:43:0c:d5:8d: 6d:f9:0a:ba:d2:96:b0:9e:b7:f8:e0:cb:22:ab:58: a2:b6:5d:fb:96:f8:38:54:a5:f0:21:1d:9b:cf:f8: ca:8b:26:39:90:26:d1:69:3c:6f:4b:a7:4a:c8:f3: 3f:26:26:93:5d:80:a2:0d:e3:3c:93:cf:31:d4:75: 36:91:0d:7b:27:8a:33:49:66:db:b5:50:ae:cf:9b: e4:2f:75:39:ab:93:1e:8c:29:29:c4:96:6b:7d:52: 9a:4c:e1:d2:af:49:f2:50:64:1e:c0:7b:13:7d:14: 7c:bc:ba:a4:c7:d4:9e:c5:94:84:36:20:40:2c:e0: 47:89:1a:a0:58:6d:93:f1:64:97:fd:c8:83:30:eb: 70:62:80:6d:5c:35:98:ce:0e:5a:39:df:ed:d3:61: f9:54:ef:99:96:d4:4f:69:a3:f5:ff:6b:08:1a:28: 10:31:62:e8:3e:3c:39:d6:63:ef:04:34:e2:7f:94: 91:fd:00:16:d9:db:97:dd:43:dd:3e:c5:88:5a:25: a2:96:42:f9:dc:e1:6b:8e:ae:01:a1:d2:d7:15:e7: c4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:43:65:2F:91:E4:80:0F:31:2F:9C:9B:49:3D:21:61:8A:52:C9:94 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4UNlL5HkgA8xL5ybST0hYYpSyZQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.20.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:63:ff:e2:25:55:10:fe:a2:8c:69:50:bb:7d:1f:98:48:ee: 17:8f:7c:d9:fe:9f:bd:f7:2b:7a:0c:00:4f:7c:bf:93:d2:8a: f8:34:5e:f7:74:0e:6c:8c:f0:e9:8e:e3:b6:d2:35:83:d6:12: a7:eb:32:e6:11:3c:96:fb:a2:8f:dc:61:d0:81:2d:5e:a6:2e: a1:2a:bd:a5:de:a3:bb:43:0d:8e:f2:18:35:07:88:6c:50:d6: be:36:e4:63:4c:03:96:7f:ed:25:54:1d:0e:1e:8a:fe:4d:7a: 5f:61:74:f8:c3:76:d7:61:10:1d:1d:34:73:e4:e0:80:be:23: 4d:e5:96:73:4a:98:24:ce:f1:c0:32:1f:3b:ff:09:bc:92:f3: d6:cd:fe:ca:cc:8a:89:f5:82:0b:73:57:f5:d1:76:52:82:79: 9c:3a:55:1b:aa:92:c2:66:86:64:c3:fd:eb:6f:40:c4:9e:a4: 53:e4:06:d3:62:4d:1f:45:33:72:43:bc:1c:87:6e:5d:b2:ce: 34:df:2c:d0:82:93:42:28:fc:a8:57:03:60:b9:36:a0:b4:a5: a3:8d:64:9e:a7:0b:55:ef:8f:d9:1b:22:f7:81:1c:b6:bb:24: 49:49:33:38:99:99:7f:66:dd:37:61:75:7b:ab:a7:b0:da:c3: 0f:d6:95:69 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDbMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI0NDNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUxNDM2NTJGOTFFNDgw MEYzMTJGOUM5QjQ5M0QyMTYxOEE1MkM5OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx9ZmYumlPkfPlxEYTSYwF1Bf5XaOnZH2BCbb+kpqYKdAt7gj1 xhFWQwzVjW35CrrSlrCet/jgyyKrWKK2XfuW+DhUpfAhHZvP+MqLJjmQJtFpPG9L p0rI8z8mJpNdgKIN4zyTzzHUdTaRDXsnijNJZtu1UK7Pm+QvdTmrkx6MKSnElmt9 UppM4dKvSfJQZB7AexN9FHy8uqTH1J7FlIQ2IEAs4EeJGqBYbZPxZJf9yIMw63Bi gG1cNZjODlo53+3TYflU75mW1E9po/X/awgaKBAxYug+PDnWY+8ENOJ/lJH9ABbZ 25fdQ90+xYhaJaKWQvnc4WuOrgGh0tcV58SxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4UNlL5HkgA8xL5ybST0hYYpSyZQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRVTmxMNUhrZ0E4eEw1eWJTVDBoWVlwU3laUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaBQwDQYJKoZIhvcNAQELBQADggEBAC9j/+IlVRD+ooxpULt9H5hI7heP fNn+n733K3oMAE98v5PSivg0Xvd0DmyM8OmO47bSNYPWEqfrMuYRPJb7oo/cYdCB LV6mLqEqvaXeo7tDDY7yGDUHiGxQ1r425GNMA5Z/7SVUHQ4eiv5Nel9hdPjDdtdh EB0dNHPk4IC+I03llnNKmCTO8cAyHzv/CbyS89bN/srMion1ggtzV/XRdlKCeZw6 VRuqksJmhmTD/etvQMSepFPkBtNiTR9FM3JDvByHbl2yzjTfLNCCk0Io/KhXA2C5 NqC0paONZJ6nC1Xvj9kbIveBHLa7JElJMziZmX9m3TdhdXurp7Daww/WlWk= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:39 2025 by rpki-client on console.sobornost.net