$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4ek0eD2Z76-jv5eQC65W5Z3KpZM.roa File: 4ek0eD2Z76-jv5eQC65W5Z3KpZM.roa (raw, json) Hash identifier: jv2YVFh87TzhLgd3CaHJ3h4X/bZKZklIE8LZKDkNEl0= Subject key identifier: E1:E9:34:78:3D:99:EF:AF:A3:BF:97:90:0B:AE:56:E5:9D:CA:A5:93 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C27 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4ek0eD2Z76-jv5eQC65W5Z3KpZM.roa Signing time: Tue 01 Apr 2025 01:54:03 +0000 ROA not before: Tue 01 Apr 2025 01:54:03 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:54:03 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E1E934783D99EFAFA3BF97900BAE56E59DCAA593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2d:7e:b1:c2:4e:a7:10:63:a0:ce:ef:2f:fa: e3:3e:53:9e:01:b2:24:69:0a:bb:cd:15:a1:64:fc: 7f:12:89:46:42:92:e8:45:f8:7c:1d:75:c3:db:aa: 0e:ed:82:3c:5a:6b:27:18:f4:65:2f:d4:65:90:99: 4c:76:0e:ca:5a:e0:ae:32:f5:ee:ec:0a:2b:4e:7e: 16:7b:bd:37:90:17:f2:35:98:d3:cc:47:8a:77:42: e6:1d:97:76:ff:7c:fe:2b:6f:82:12:94:c2:71:8c: 30:66:32:db:66:65:bf:e6:81:54:d5:e0:21:4c:4c: ab:7b:8f:87:86:7b:35:8b:78:1f:9a:65:63:24:63: 3b:e5:8f:53:34:3b:0e:69:a5:35:b2:e4:d7:87:2c: 65:e4:7c:da:26:38:bb:b3:4e:83:3c:40:49:12:5f: ce:81:df:b8:fb:0d:7c:0e:56:a2:13:7b:59:a7:69: bd:6e:54:ce:46:f4:33:1e:74:8b:f4:f3:dc:e3:92: 95:99:27:bb:06:04:28:44:3a:4b:6a:c1:1a:64:5e: 66:e7:2f:c6:e5:3c:95:47:a8:06:7a:8a:a9:6d:8f: 2a:3b:8e:99:f8:ed:da:21:a9:92:01:ac:78:20:ae: 86:7c:37:7c:ff:dd:07:b6:6d:b9:34:9d:87:be:9f: b3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E9:34:78:3D:99:EF:AF:A3:BF:97:90:0B:AE:56:E5:9D:CA:A5:93 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4ek0eD2Z76-jv5eQC65W5Z3KpZM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.88.0/22 Signature Algorithm: sha256WithRSAEncryption 41:c9:0f:2e:ef:a3:92:01:26:18:e8:6f:21:c3:fa:13:fa:77: 50:15:8c:2c:89:64:08:09:20:ae:18:28:23:7e:fe:47:af:ed: 59:15:15:61:98:ce:e4:52:0a:6a:49:90:83:7b:2d:45:80:8a: e0:c1:87:a0:e4:c4:90:12:8d:02:51:eb:78:83:9f:0e:e0:ad: 3d:17:54:c8:44:a5:b7:13:d1:0e:6c:69:1a:2c:66:d2:ce:2f: 1e:ed:0d:2d:67:16:e1:a4:23:6b:48:8a:5a:6b:78:e7:6d:68: c2:c5:11:54:4a:25:df:ed:6c:ae:c2:cc:3d:b2:b9:ee:86:ad: 97:0c:5c:4f:c2:c0:c9:e9:25:a4:47:88:50:6d:e2:0a:28:95: a2:b5:f1:68:8b:7d:1b:58:5f:2e:4f:65:f1:3f:cf:bb:75:77: f3:8a:96:da:bf:40:5e:a7:9a:da:41:cc:e6:0d:a0:f6:ec:38: 39:9b:57:6f:71:ba:17:d3:25:82:18:c6:7b:6b:61:d1:91:a4: 29:30:27:5a:80:9f:68:c7:4a:18:2d:6b:32:15:3e:53:fc:ac: f6:6d:59:9a:af:f9:eb:ac:09:8a:03:cb:16:bf:d9:ad:0c:4c: fb:14:6e:8c:4f:04:fa:99:1b:af:19:ab:27:9c:cd:20:0b:e5: bf:41:45:7b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU0MDNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUxRTkzNDc4M0Q5OUVG QUZBM0JGOTc5MDBCQUU1NkU1OURDQUE1OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoLX6xwk6nEGOgzu8v+uM+U54BsiRpCrvNFaFk/H8SiUZCkuhF +HwddcPbqg7tgjxaaycY9GUv1GWQmUx2Dspa4K4y9e7sCitOfhZ7vTeQF/I1mNPM R4p3QuYdl3b/fP4rb4ISlMJxjDBmMttmZb/mgVTV4CFMTKt7j4eGezWLeB+aZWMk Yzvlj1M0Ow5ppTWy5NeHLGXkfNomOLuzToM8QEkSX86B37j7DXwOVqITe1mnab1u VM5G9DMedIv089zjkpWZJ7sGBChEOktqwRpkXmbnL8blPJVHqAZ6iqltjyo7jpn4 7dohqZIBrHggroZ8N3z/3Qe2bbk0nYe+n7NHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4ek0eD2Z76+jv5eQC65W5Z3KpZMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRlazBlRDJaNzYtanY1ZVFDNjVXNVozS3BaTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYlgwDQYJKoZIhvcNAQELBQADggEBAEHJDy7vo5IBJhjobyHD+hP6d1AV jCyJZAgJIK4YKCN+/kev7VkVFWGYzuRSCmpJkIN7LUWAiuDBh6DkxJASjQJR63iD nw7grT0XVMhEpbcT0Q5saRosZtLOLx7tDS1nFuGkI2tIilpreOdtaMLFEVRKJd/t bK7CzD2yue6GrZcMXE/CwMnpJaRHiFBt4goolaK18WiLfRtYXy5PZfE/z7t1d/OK ltq/QF6nmtpBzOYNoPbsODmbV29xuhfTJYIYxntrYdGRpCkwJ1qAn2jHShgtazIV PlP8rPZtWZqv+eusCYoDyxa/2a0MTPsUboxPBPqZG68ZqyeczSAL5b9BRXs= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:39 2025 by rpki-client on console.sobornost.net