$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8XYgbeR47kp_8cShGFJdis7RsBY.roa File: 8XYgbeR47kp_8cShGFJdis7RsBY.roa (raw, json) Hash identifier: FO23d+LpbedLs1OWTP/T18e4Ur/i9bi3bVf/dQvAYX0= Subject key identifier: F1:76:20:6D:E4:78:EE:4A:7F:F1:C4:A1:18:52:5D:8A:CE:D1:B0:16 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BD6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8XYgbeR47kp_8cShGFJdis7RsBY.roa Signing time: Tue 01 Apr 2025 01:47:35 +0000 ROA not before: Tue 01 Apr 2025 01:47:35 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.102.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3030 (0xbd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:35 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=F176206DE478EE4A7FF1C4A118525D8ACED1B016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:88:12:6b:a4:b7:e3:d5:6a:41:0c:62:de:f3: 93:77:57:37:4f:b2:62:88:d4:59:09:00:b1:ef:00: 03:7c:fc:47:fe:72:53:d8:08:e3:c8:90:98:29:5f: 41:ff:e1:5e:ae:3f:18:7f:09:72:36:8a:43:c0:84: f1:71:16:78:e2:79:cc:de:a1:81:1e:9c:67:fa:32: 78:11:a8:1e:f1:da:46:70:9a:86:2a:6e:e2:96:0f: b6:b8:1f:8f:81:19:e7:49:cb:e8:24:e7:d6:e0:b9: 0d:10:c9:5e:a2:b4:56:64:cb:d9:85:0f:97:b1:e8: 2e:6c:76:98:2b:ff:44:b0:21:49:09:18:5b:25:00: 6a:7f:9d:99:cc:b7:21:c6:83:3c:73:7c:c9:ae:bd: 8e:6d:e7:f8:05:53:4e:39:f8:f9:60:14:b2:c3:64: b2:94:98:03:97:9f:76:49:9b:39:c0:4d:8e:ce:9a: d7:3c:36:f5:9b:7d:81:bd:6d:14:0d:11:6e:a2:f9: f7:b6:35:47:1c:2a:94:65:d7:10:0e:98:46:0b:bb: 66:f5:45:a8:b6:d8:32:0e:b9:2e:11:a7:48:6a:e5: c7:e1:09:92:18:67:3c:eb:b5:cc:ce:10:e5:be:e4: 46:ac:64:e7:ed:03:4e:cf:c9:a8:c6:52:27:95:1e: e4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:76:20:6D:E4:78:EE:4A:7F:F1:C4:A1:18:52:5D:8A:CE:D1:B0:16 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8XYgbeR47kp_8cShGFJdis7RsBY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.102.156.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:47:b3:9a:73:9b:c5:8f:4e:ec:4c:1f:69:f0:0f:85:ed:89: e1:b8:39:82:c2:cd:da:cd:8b:60:d3:ba:32:aa:62:07:ba:56: f5:d0:c7:10:a8:1f:a7:f4:f6:29:5f:e4:a8:d4:ed:98:c7:55: ae:c5:67:d4:f0:90:f4:34:52:05:13:43:12:16:e3:08:4b:86: 01:ec:eb:fb:94:f5:35:79:41:46:bc:95:30:24:36:b1:70:7a: 1b:ed:5d:d8:a3:59:c7:97:6a:f8:68:61:b2:ad:a4:c0:c8:21: 6a:16:4d:16:0d:cb:a9:01:f0:53:5c:5e:b9:dd:45:24:e1:3f: fc:bf:2b:5c:d5:54:86:2a:85:f8:cb:a4:51:30:e6:2f:95:cd: 1e:61:f4:48:0b:ed:01:2c:8b:45:d0:ec:f4:f0:ab:98:42:6f: 3f:2c:7c:9f:b1:40:73:cc:03:ca:0a:fa:32:77:fb:27:49:a4: 10:f8:68:42:72:2a:58:60:c0:e2:9e:da:67:1f:45:f0:41:08: b4:fe:bf:d8:8b:34:ce:46:ba:ee:48:01:d3:00:d2:8a:ec:15: 2a:0c:cd:69:fb:a0:c7:09:6d:0a:8e:47:c8:da:bb:60:b9:62: 6e:af:b6:86:03:3c:9a:8a:c3:ad:ad:d5:64:4b:39:a3:0b:92: 38:9e:e8:cf -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC9YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3MzVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEYxNzYyMDZERTQ3OEVF NEE3RkYxQzRBMTE4NTI1RDhBQ0VEMUIwMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuiBJrpLfj1WpBDGLe85N3VzdPsmKI1FkJALHvAAN8/Ef+clPY COPIkJgpX0H/4V6uPxh/CXI2ikPAhPFxFnjieczeoYEenGf6MngRqB7x2kZwmoYq buKWD7a4H4+BGedJy+gk59bguQ0QyV6itFZky9mFD5ex6C5sdpgr/0SwIUkJGFsl AGp/nZnMtyHGgzxzfMmuvY5t5/gFU045+PlgFLLDZLKUmAOXn3ZJmznATY7Omtc8 NvWbfYG9bRQNEW6i+fe2NUccKpRl1xAOmEYLu2b1Rai22DIOuS4Rp0hq5cfhCZIY ZzzrtczOEOW+5EasZOftA07PyajGUieVHuRFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8XYgbeR47kp/8cShGFJdis7RsBYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzhYWWdiZVI0N2twXzhjU2hHRkpkaXM3UnNCWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExZpwwDQYJKoZIhvcNAQELBQADggEBAF9Hs5pzm8WPTuxMH2nwD4XtieG4 OYLCzdrNi2DTujKqYge6VvXQxxCoH6f09ilf5KjU7ZjHVa7FZ9TwkPQ0UgUTQxIW 4whLhgHs6/uU9TV5QUa8lTAkNrFwehvtXdijWceXavhoYbKtpMDIIWoWTRYNy6kB 8FNcXrndRSThP/y/K1zVVIYqhfjLpFEw5i+VzR5h9EgL7QEsi0XQ7PTwq5hCbz8s fJ+xQHPMA8oK+jJ3+ydJpBD4aEJyKlhgwOKe2mcfRfBBCLT+v9iLNM5Guu5IAdMA 0orsFSoMzWn7oMcJbQqOR8jau2C5Ym6vtoYDPJqKw62t1WRLOaMLkjie6M8= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:41 2025 by rpki-client on console.sobornost.net