$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5FueFu5lCpSU3rLxequ-zw0awNA.roa File: 5FueFu5lCpSU3rLxequ-zw0awNA.roa (raw, json) Hash identifier: tbCcH9EsauKwPqUvqMHWNYLm/k4K0Lg5QqILnhAhiI0= Subject key identifier: E4:5B:9E:16:EE:65:0A:94:94:DE:B2:F1:7A:AB:BE:CF:0D:1A:C0:D0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C61 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5FueFu5lCpSU3rLxequ-zw0awNA.roa Signing time: Tue 01 Apr 2025 02:00:27 +0000 ROA not before: Tue 01 Apr 2025 02:00:27 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3169 (0xc61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:00:27 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E45B9E16EE650A9494DEB2F17AABBECF0D1AC0D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:19:a6:0d:25:d3:48:fe:10:e5:ef:0c:0e:1e: 6a:ad:b9:86:36:f0:53:04:e5:ed:b7:0e:a7:3b:5d: 4f:27:2a:18:d1:91:b3:8b:39:c6:c3:58:df:ec:80: 53:5c:61:a1:6e:50:7c:e5:e5:2a:dc:ea:fb:87:48: 44:e1:ce:40:52:c8:bd:9b:20:4f:a9:59:e7:2b:37: e0:95:e5:8a:19:ad:87:31:cc:86:16:69:35:ed:db: 3c:e2:b3:4b:f4:04:c5:79:e3:fc:c2:10:c4:f0:8b: e7:c0:8b:36:f9:f4:c7:89:bd:c2:a1:67:ae:ea:02: fe:44:d4:00:4f:ba:a0:01:d9:a7:1f:cf:5a:ed:cf: 98:85:e0:9f:18:db:8a:15:c6:5e:ef:1c:11:96:10: c9:f3:41:2d:62:6c:6e:02:19:fe:49:ee:93:48:de: 66:d8:3b:0b:51:3b:00:48:ca:19:eb:4f:74:1d:61: e3:db:a0:53:d5:71:3f:cb:c7:ae:95:58:c9:1f:93: 12:3e:a4:d4:3e:39:ea:4c:78:22:f2:09:a9:67:4b: 08:79:34:60:23:5f:d8:6f:b1:a2:15:57:db:ec:26: 38:b7:2b:9f:1d:df:f7:f9:9f:20:da:cb:6d:12:81: 32:04:6b:58:af:7b:ce:d3:5a:96:85:68:0f:1f:d4: 2d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:5B:9E:16:EE:65:0A:94:94:DE:B2:F1:7A:AB:BE:CF:0D:1A:C0:D0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5FueFu5lCpSU3rLxequ-zw0awNA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.28.0/24 Signature Algorithm: sha256WithRSAEncryption a1:b1:fc:0a:0a:7a:89:3a:eb:fe:8e:73:27:53:0d:68:08:33: f3:0c:f2:17:29:c9:53:7b:0e:ae:d6:69:9b:be:c5:af:6b:1d: 8f:70:c2:09:8c:aa:4d:f9:6f:c5:52:a8:27:5d:6b:de:f1:c1: 01:89:6e:9c:0b:33:8a:d6:4f:d3:86:3a:77:61:70:16:5f:60: 0c:4a:b0:c2:e5:3c:16:c6:55:ff:1f:50:c7:af:57:fe:4d:1c: c9:ec:53:22:39:32:40:27:44:a6:01:80:df:8f:cd:b0:37:d8: 12:7a:d7:b1:3f:97:48:db:3f:a4:95:56:d6:ef:e7:c5:09:ac: 92:e4:24:9e:9f:8f:ae:e7:22:34:5b:c7:98:48:ed:fc:15:83: 23:cb:f6:38:bb:7a:20:d8:cf:fc:aa:87:16:a3:a9:1c:26:e7: 37:ec:c9:06:0e:3c:f6:06:aa:8b:9e:fa:c6:ae:09:5d:13:5c: 94:e7:4a:f7:74:69:86:85:92:68:3f:c1:7e:db:c8:cd:e7:22: 60:92:de:ce:2b:42:13:66:a4:ac:5e:da:fc:af:65:e2:12:56: 08:dc:27:de:10:9b:f8:be:61:fd:bb:5b:ff:95:38:3b:28:e7: bf:0a:ef:85:e0:e1:66:7c:eb:0a:81:09:5b:d9:bd:23:ce:99: 95:99:33:ce -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDGEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAwMjdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU0NUI5RTE2RUU2NTBB OTQ5NERFQjJGMTdBQUJCRUNGMEQxQUMwRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTGaYNJdNI/hDl7wwOHmqtuYY28FME5e23Dqc7XU8nKhjRkbOL OcbDWN/sgFNcYaFuUHzl5Src6vuHSEThzkBSyL2bIE+pWecrN+CV5YoZrYcxzIYW aTXt2zzis0v0BMV54/zCEMTwi+fAizb59MeJvcKhZ67qAv5E1ABPuqAB2acfz1rt z5iF4J8Y24oVxl7vHBGWEMnzQS1ibG4CGf5J7pNI3mbYOwtROwBIyhnrT3QdYePb oFPVcT/Lx66VWMkfkxI+pNQ+OepMeCLyCalnSwh5NGAjX9hvsaIVV9vsJji3K58d 3/f5nyDay20SgTIEa1ive87TWpaFaA8f1C2vAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5FueFu5lCpSU3rLxequ+zw0awNAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzVGdWVGdTVsQ3BTVTNyTHhlcXUtencwYXdOQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYBwwDQYJKoZIhvcNAQELBQADggEBAKGx/AoKeok66/6OcydTDWgIM/MM 8hcpyVN7Dq7WaZu+xa9rHY9wwgmMqk35b8VSqCdda97xwQGJbpwLM4rWT9OGOndh cBZfYAxKsMLlPBbGVf8fUMevV/5NHMnsUyI5MkAnRKYBgN+PzbA32BJ617E/l0jb P6SVVtbv58UJrJLkJJ6fj67nIjRbx5hI7fwVgyPL9ji7eiDYz/yqhxajqRwm5zfs yQYOPPYGqoue+sauCV0TXJTnSvd0aYaFkmg/wX7byM3nImCS3s4rQhNmpKxe2vyv ZeISVgjcJ94Qm/i+Yf27W/+VODso578K74Xg4WZ86wqBCVvZvSPOmZWZM84= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:39 2025 by rpki-client on console.sobornost.net