$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/M-zBGUmVMpvAJL-UjD7L4IBHQkg.roa File: M-zBGUmVMpvAJL-UjD7L4IBHQkg.roa (raw, json) Hash identifier: huha7bCKoy1PyrhmJbAEDssTXyvp8tRYH0/N3OgKNDQ= Subject key identifier: 33:EC:C1:19:49:95:32:9B:C0:24:BF:94:8C:3E:CB:E0:80:47:42:48 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CC6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/M-zBGUmVMpvAJL-UjD7L4IBHQkg.roa Signing time: Tue 01 Apr 2025 02:09:08 +0000 ROA not before: Tue 01 Apr 2025 02:09:08 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3270 (0xcc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:08 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=33ECC1194995329BC024BF948C3ECBE080474248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:47:8f:16:7f:6f:59:ab:1e:f7:ce:59:b6:30: 09:f3:b0:15:15:52:56:c1:5d:31:5c:2a:1c:c5:e6: de:43:e1:c4:a6:77:72:5c:d8:04:16:9c:c4:9d:83: c6:2a:6c:22:c2:97:24:22:1d:8e:4c:7f:40:ec:d2: e5:49:1a:e8:71:8e:72:58:95:01:ea:22:5b:50:03: 86:4f:0a:28:d3:e3:65:aa:e5:79:d7:9f:7f:d4:37: 26:6d:d4:48:06:b0:f9:97:a9:aa:de:a5:4e:85:98: d6:77:a6:cf:b2:3c:a7:67:1f:8e:6c:dc:db:39:70: b2:1d:e9:5b:d3:74:59:e2:3e:2d:4b:fe:d1:3e:ec: c5:0d:c9:8c:8c:56:33:4d:0d:9a:37:dd:6a:bd:91: 8b:c5:fc:6e:cd:b9:ba:a4:29:e1:15:03:48:21:d0: 92:df:0b:d3:de:6c:fa:ab:84:bf:a3:a2:95:e5:af: df:68:11:85:4c:30:76:d0:d5:5e:3e:ac:f1:29:b6: 9d:b3:24:a2:9f:bb:02:1e:b8:ac:4a:65:6e:95:8d: 7f:3f:4d:78:50:99:4a:c7:2f:43:55:52:2a:7a:28: e6:93:b2:57:90:4a:42:82:16:18:30:f8:a1:5d:ec: a9:aa:cd:c0:9f:a1:e4:43:c2:37:20:fd:f9:00:7c: 4b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:EC:C1:19:49:95:32:9B:C0:24:BF:94:8C:3E:CB:E0:80:47:42:48 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/M-zBGUmVMpvAJL-UjD7L4IBHQkg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.218.0/23 Signature Algorithm: sha256WithRSAEncryption 04:26:5b:e7:e8:22:62:40:e5:bc:68:90:38:8f:f4:9e:ed:b3: 47:a8:f4:91:d8:14:ba:ba:15:8a:b0:30:e8:73:97:8b:ee:a6: bc:80:25:80:da:78:72:48:2a:fd:3e:52:5d:6c:15:d7:bb:a3: d4:cc:80:09:c1:40:2f:0a:85:4f:78:ba:7a:c8:f4:d4:5c:3b: 77:b4:83:02:72:15:3d:9e:92:32:a8:53:f9:39:5a:28:b7:9f: 49:bb:1a:70:47:95:5c:a6:1f:ce:f6:6c:9d:65:a7:61:13:58: e6:e7:60:52:b9:d3:43:ce:fd:23:1d:6c:1d:2c:94:aa:99:02: c5:00:7e:28:e5:59:47:60:50:f6:5d:43:0f:db:be:1b:5a:b0: 2e:76:89:18:9a:61:fb:1e:95:23:56:a2:5a:8d:da:c0:c8:f5: 80:bd:66:e4:ef:36:31:19:ab:18:33:c7:3b:52:d3:e0:ec:9b: b4:eb:c3:c0:66:c0:fa:8e:7a:af:4e:0a:7f:f5:09:74:5d:90: be:68:c1:cd:49:ef:9f:2e:04:00:97:62:67:df:4e:c5:bc:12: 28:80:69:9a:83:b8:0f:2f:b4:57:5f:4e:d5:64:1e:6d:60:1c: c2:ee:b4:f0:72:66:f9:da:60:fc:d5:b7:bc:e7:2f:c8:fa:f6: 3b:fe:8f:7e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MDhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMzRUNDMTE5NDk5NTMy OUJDMDI0QkY5NDhDM0VDQkUwODA0NzQyNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4R48Wf29Zqx73zlm2MAnzsBUVUlbBXTFcKhzF5t5D4cSmd3Jc 2AQWnMSdg8YqbCLClyQiHY5Mf0Ds0uVJGuhxjnJYlQHqIltQA4ZPCijT42Wq5XnX n3/UNyZt1EgGsPmXqarepU6FmNZ3ps+yPKdnH45s3Ns5cLId6VvTdFniPi1L/tE+ 7MUNyYyMVjNNDZo33Wq9kYvF/G7NubqkKeEVA0gh0JLfC9PebPqrhL+jopXlr99o EYVMMHbQ1V4+rPEptp2zJKKfuwIeuKxKZW6VjX8/TXhQmUrHL0NVUip6KOaTsleQ SkKCFhgw+KFd7KmqzcCfoeRDwjcg/fkAfEstAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUM+zBGUmVMpvAJL+UjD7L4IBHQkgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L00tekJHVW1WTXB2QUpMLVVqRDdMNElCSFFrZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExatowDQYJKoZIhvcNAQELBQADggEBAAQmW+foImJA5bxokDiP9J7ts0eo 9JHYFLq6FYqwMOhzl4vupryAJYDaeHJIKv0+Ul1sFde7o9TMgAnBQC8KhU94unrI 9NRcO3e0gwJyFT2ekjKoU/k5Wii3n0m7GnBHlVymH872bJ1lp2ETWObnYFK500PO /SMdbB0slKqZAsUAfijlWUdgUPZdQw/bvhtasC52iRiaYfselSNWolqN2sDI9YC9 ZuTvNjEZqxgzxztS0+Dsm7Trw8BmwPqOeq9OCn/1CXRdkL5owc1J758uBACXYmff TsW8EiiAaZqDuA8vtFdfTtVkHm1gHMLutPByZvnaYPzVt7znL8j69jv+j34= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:48 2025 by rpki-client on console.sobornost.net