$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Grlxzz7QaqgJX_SoBprpFLhLb3k.roa File: Grlxzz7QaqgJX_SoBprpFLhLb3k.roa (raw, json) Hash identifier: UttPBazK7Rils6QQiX4X7xFOg1VdYOSvzpbuxX7jk5k= Subject key identifier: 1A:B9:71:CF:3E:D0:6A:A8:09:5F:F4:A8:06:9A:E9:14:B8:4B:6F:79 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C54 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Grlxzz7QaqgJX_SoBprpFLhLb3k.roa Signing time: Tue 01 Apr 2025 01:57:25 +0000 ROA not before: Tue 01 Apr 2025 01:57:25 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:57:25 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1AB971CF3ED06AA8095FF4A8069AE914B84B6F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4c:a1:8d:5f:97:35:c0:2b:76:55:5c:c8:06: bd:b5:09:91:34:e5:01:58:ac:2d:3f:33:f6:1a:c6: 6e:d3:3d:ef:d4:f5:de:e3:83:91:a6:f0:b9:fe:78: 4e:8f:0a:2b:c6:57:5e:a5:b5:fd:98:29:f1:6b:80: 38:6a:65:3c:44:aa:5f:b5:5e:e3:36:9c:1f:82:1f: 50:20:41:19:5b:89:b2:72:9e:35:21:07:84:c3:e5: 5f:b9:97:a0:4a:cf:5b:30:b1:8b:3b:54:99:6c:6a: cf:cf:44:89:d3:d5:ba:7a:99:3e:20:2b:2d:99:f0: 6a:c4:2f:83:eb:1f:13:85:2c:11:a7:f8:74:77:d7: 75:7a:68:8c:1c:42:8d:32:4d:1f:2b:15:91:37:78: 7c:45:2a:94:30:c6:0f:6e:45:d8:22:59:2f:52:39: ff:4b:0b:90:95:bb:a9:30:9d:14:1a:64:9c:ab:4b: d8:5f:88:93:e6:5f:e2:9e:dc:b9:dd:98:36:11:60: a4:c6:5a:bd:ce:5c:d9:c7:03:38:0f:04:c2:cf:ed: bb:87:44:cc:0f:45:76:c5:24:54:73:bf:a2:25:7f: 53:af:fd:c5:0c:81:ca:70:89:0f:ce:4b:24:6b:15: 44:d1:12:04:5f:ac:62:d5:85:71:df:57:f5:0d:5f: 01:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B9:71:CF:3E:D0:6A:A8:09:5F:F4:A8:06:9A:E9:14:B8:4B:6F:79 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Grlxzz7QaqgJX_SoBprpFLhLb3k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.74.0/23 Signature Algorithm: sha256WithRSAEncryption 81:87:8d:b8:b3:13:01:27:b5:c3:91:1c:84:fd:70:e9:00:43: 29:e0:8b:cf:ea:05:8a:98:80:c9:c7:c9:9b:f2:c0:1c:94:4c: ad:be:9a:8e:f9:63:33:5e:8c:22:25:59:85:0e:6b:7a:e7:1b: e5:41:c3:76:d8:db:c2:2d:54:16:25:44:04:1d:65:99:b4:c7: 3d:2a:f2:1c:52:8e:5b:23:38:39:4e:d9:93:3f:fa:dc:b9:da: 46:e3:ad:4a:d2:5d:9f:53:51:44:23:bb:a8:93:d9:ae:8e:28: c2:0c:c8:b8:1b:1f:47:f4:7b:35:06:57:51:a3:28:37:0e:47: 2d:82:d4:f9:9c:78:6d:77:c6:51:ac:cb:02:e0:46:da:d0:e6: 3e:1e:24:4c:04:6b:03:45:74:09:b7:25:e4:2a:f9:c3:6f:5b: 29:34:d7:ba:c5:7c:00:76:a4:5f:3e:a1:18:ca:3e:6c:31:98: ab:e9:cc:a8:11:eb:4a:08:ed:f9:a4:15:6d:71:08:22:1d:e2: 3a:f6:bd:e7:72:2d:94:1c:20:a9:59:6f:d6:ca:a9:4e:32:86: 02:eb:d8:42:e3:20:8a:d6:0e:92:ed:01:a5:51:32:54:18:77: cb:27:a9:57:fc:75:94:80:8f:2e:92:da:a6:3c:98:61:bc:a8: 53:27:c9:7a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU3MjVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFBQjk3MUNGM0VEMDZB QTgwOTVGRjRBODA2OUFFOTE0Qjg0QjZGNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLTKGNX5c1wCt2VVzIBr21CZE05QFYrC0/M/Yaxm7TPe/U9d7j g5Gm8Ln+eE6PCivGV16ltf2YKfFrgDhqZTxEql+1XuM2nB+CH1AgQRlbibJynjUh B4TD5V+5l6BKz1swsYs7VJlsas/PRInT1bp6mT4gKy2Z8GrEL4PrHxOFLBGn+HR3 13V6aIwcQo0yTR8rFZE3eHxFKpQwxg9uRdgiWS9SOf9LC5CVu6kwnRQaZJyrS9hf iJPmX+Ke3LndmDYRYKTGWr3OXNnHAzgPBMLP7buHRMwPRXbFJFRzv6Ilf1Ov/cUM gcpwiQ/OSyRrFUTREgRfrGLVhXHfV/UNXwEFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGrlxzz7QaqgJX/SoBprpFLhLb3kwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0dybHh6ejdRYXFnSlhfU29CcHJwRkxoTGIzay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYkowDQYJKoZIhvcNAQELBQADggEBAIGHjbizEwEntcORHIT9cOkAQyng i8/qBYqYgMnHyZvywByUTK2+mo75YzNejCIlWYUOa3rnG+VBw3bY28ItVBYlRAQd ZZm0xz0q8hxSjlsjODlO2ZM/+ty52kbjrUrSXZ9TUUQju6iT2a6OKMIMyLgbH0f0 ezUGV1GjKDcORy2C1PmceG13xlGsywLgRtrQ5j4eJEwEawNFdAm3JeQq+cNvWyk0 17rFfAB2pF8+oRjKPmwxmKvpzKgR60oI7fmkFW1xCCId4jr2vedyLZQcIKlZb9bK qU4yhgLr2ELjIIrWDpLtAaVRMlQYd8snqVf8dZSAjy6S2qY8mGG8qFMnyXo= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:45 2025 by rpki-client on console.sobornost.net