$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LzakHyMVUN74bnL2DqAjOgyO2YM.roa File: LzakHyMVUN74bnL2DqAjOgyO2YM.roa (raw, json) Hash identifier: 9zI+SvJDV/QxcqyT+nOdFmkiEY89GNq5Q+X6cVn8fiY= Subject key identifier: 2F:36:A4:1F:23:15:50:DE:F8:6E:72:F6:0E:A0:23:3A:0C:8E:D9:83 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D38 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LzakHyMVUN74bnL2DqAjOgyO2YM.roa Signing time: Tue 01 Apr 2025 02:13:57 +0000 ROA not before: Tue 01 Apr 2025 02:13:57 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.99.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3384 (0xd38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:57 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=2F36A41F231550DEF86E72F60EA0233A0C8ED983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:61:f5:73:2a:9f:cc:e9:db:65:bf:95:d7:b7: 8c:cb:4e:a5:6a:b7:9b:5b:c1:b8:b1:97:10:c5:b4: ff:e6:78:ad:da:96:cd:b5:4d:2f:3f:7f:42:7e:b4: b7:16:16:88:8d:b3:70:3d:25:3d:72:e4:c1:00:ed: 1c:17:e8:27:df:65:b7:be:b2:07:28:a8:c3:e3:2a: 95:a4:78:17:b4:ca:59:17:44:58:12:f8:62:dc:33: 60:2a:38:e7:78:6c:6c:8c:0b:48:dd:00:cd:ac:ec: 50:15:a2:54:61:f4:7f:f6:50:00:52:bd:72:53:75: e8:71:a9:52:20:6d:05:05:18:3c:a1:23:cd:09:39: 73:55:30:95:c1:72:34:6c:8d:68:56:35:c2:76:cd: 39:50:fc:31:3f:a2:b7:18:c5:34:19:e1:a6:53:a5: 28:31:96:db:5a:f9:ce:3b:12:d2:43:d5:6f:2d:77: 4a:7b:60:e8:31:14:40:6b:ac:f5:7c:57:ec:60:e0: 60:0a:9a:6d:72:8d:34:5c:01:c4:bd:a9:89:35:d2: 1a:84:9d:a4:ec:3a:05:3a:c4:34:64:3b:21:3d:c1: 96:19:7d:14:68:32:dc:76:f0:1c:c1:9a:68:f5:c7: ad:85:02:d5:de:75:51:ea:9a:15:6f:5d:45:69:2b: 3c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:36:A4:1F:23:15:50:DE:F8:6E:72:F6:0E:A0:23:3A:0C:8E:D9:83 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LzakHyMVUN74bnL2DqAjOgyO2YM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.99.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:e6:57:f5:d8:95:81:ed:37:29:5f:ec:8f:ca:d5:5f:1c:79: 12:79:2b:bc:14:4f:0b:e9:36:b3:dc:96:13:11:29:4d:c5:e1: a5:e1:84:00:7b:46:a3:1c:59:a4:c3:d0:95:31:e1:8d:2f:ad: f4:10:76:f7:17:64:66:d1:30:c1:6a:5b:4c:90:76:54:02:3e: ef:fa:e4:04:6e:aa:fa:03:51:56:ce:15:22:c7:df:9d:0e:28: 46:49:ae:27:81:91:b8:bf:75:e5:69:da:a4:b6:44:8f:22:49: a8:ed:9d:1a:dc:80:45:d4:48:91:a3:c2:64:91:90:3a:5a:6c: 89:92:df:4b:2b:6a:59:66:58:22:f5:32:41:25:4d:db:20:89: dd:28:54:47:d0:c7:eb:c3:72:cc:e2:8e:83:06:17:f0:e3:73: 10:51:f9:0c:fb:20:05:d5:82:f4:2d:5a:b0:30:4c:e5:77:d0: 72:0d:87:fd:82:53:23:97:64:9c:13:4d:56:0d:54:fc:ef:1d: 1e:87:44:ca:c0:cd:80:34:39:2d:8e:22:7d:88:72:85:ca:1b: dc:4d:0e:17:d4:72:e8:3b:91:83:89:bb:44:7c:65:a4:51:4e: 08:eb:93:86:70:25:32:22:df:33:82:84:15:4c:cf:34:9e:e1: 51:2a:5a:80 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICDTgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNTdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJGMzZBNDFGMjMxNTUw REVGODZFNzJGNjBFQTAyMzNBMEM4RUQ5ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyYfVzKp/M6dtlv5XXt4zLTqVqt5tbwbixlxDFtP/meK3als21 TS8/f0J+tLcWFoiNs3A9JT1y5MEA7RwX6CffZbe+sgcoqMPjKpWkeBe0ylkXRFgS +GLcM2AqOOd4bGyMC0jdAM2s7FAVolRh9H/2UABSvXJTdehxqVIgbQUFGDyhI80J OXNVMJXBcjRsjWhWNcJ2zTlQ/DE/orcYxTQZ4aZTpSgxltta+c47EtJD1W8td0p7 YOgxFEBrrPV8V+xg4GAKmm1yjTRcAcS9qYk10hqEnaTsOgU6xDRkOyE9wZYZfRRo Mtx28BzBmmj1x62FAtXedVHqmhVvXUVpKzw/AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQULzakHyMVUN74bnL2DqAjOgyO2YMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0x6YWtIeU1WVU43NGJuTDJEcUFqT2d5TzJZTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAxYzANBgkqhkiG9w0BAQsFAAOCAQEAaOZX9diVge03KV/sj8rVXxx5Enkr vBRPC+k2s9yWExEpTcXhpeGEAHtGoxxZpMPQlTHhjS+t9BB29xdkZtEwwWpbTJB2 VAI+7/rkBG6q+gNRVs4VIsffnQ4oRkmuJ4GRuL915WnapLZEjyJJqO2dGtyARdRI kaPCZJGQOlpsiZLfSytqWWZYIvUyQSVN2yCJ3ShUR9DH68NyzOKOgwYX8ONzEFH5 DPsgBdWC9C1asDBM5XfQcg2H/YJTI5dknBNNVg1U/O8dHodEysDNgDQ5LY4ifYhy hcob3E0OF9Ry6DuRg4m7RHxlpFFOCOuThnAlMiLfM4KEFUzPNJ7hUSpagA== -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:48 2025 by rpki-client on console.sobornost.net