$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ce0I_gMLhn9eci3nqM7pC9Cx8yY.roa File: ce0I_gMLhn9eci3nqM7pC9Cx8yY.roa (raw, json) Hash identifier: GhpLw8Po2mc0bSfsQgopOHBJdx/IrjBSjtRmCzkUIsg= Subject key identifier: 71:ED:08:FE:03:0B:86:7F:5E:72:2D:E7:A8:CE:E9:0B:D0:B1:F3:26 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C95 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ce0I_gMLhn9eci3nqM7pC9Cx8yY.roa Signing time: Tue 01 Apr 2025 02:03:24 +0000 ROA not before: Tue 01 Apr 2025 02:03:24 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:24 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=71ED08FE030B867F5E722DE7A8CEE90BD0B1F326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:01:c4:94:de:ff:17:6e:40:17:e5:b7:90:03: 6d:28:d5:61:97:42:f2:97:87:7f:86:98:65:d6:ea: 4d:7c:7a:25:72:c9:64:84:ae:d1:d4:44:be:0f:0d: 50:6e:9e:ad:52:d6:b2:0a:cd:8b:37:0e:23:83:29: 50:d8:cf:4d:36:93:5e:8b:91:f8:b6:64:27:49:9c: 63:fd:0c:ad:81:32:00:1b:70:ab:71:f0:78:17:89: df:a3:83:99:c2:a7:3c:b7:fa:7b:ea:57:bd:10:ce: 55:25:d6:ba:27:76:a8:85:19:bc:39:8b:0e:7f:bb: a3:db:43:2c:45:44:1e:51:7e:88:b4:6b:cd:01:0c: 8c:72:d2:74:80:6f:66:23:38:a8:b8:10:c6:ad:9b: 03:8b:2f:e2:b3:ca:38:43:14:2a:6b:09:c2:bd:bc: 5b:66:5e:58:a5:ba:c3:79:f0:51:b2:14:5e:39:95: 08:08:a4:35:e6:b8:24:5e:c8:fb:80:22:dc:2c:26: dd:54:b3:09:89:f4:1d:23:79:a3:55:6c:db:e8:1a: e9:0d:1d:90:2a:50:45:2e:78:f7:41:f1:82:09:cf: 0f:17:ea:1d:a3:ac:ec:74:3f:80:0f:57:c3:cb:e6: 47:06:5a:71:c8:13:24:7c:5a:f4:9f:68:f1:c9:64: a9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:ED:08:FE:03:0B:86:7F:5E:72:2D:E7:A8:CE:E9:0B:D0:B1:F3:26 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ce0I_gMLhn9eci3nqM7pC9Cx8yY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.51.0/24 Signature Algorithm: sha256WithRSAEncryption 54:28:6c:88:8d:2e:23:2a:a4:b8:e8:65:74:66:da:7c:f2:8c: 16:43:9a:d0:da:6e:f7:f5:0d:5a:0a:09:f1:72:6a:20:81:01: 0c:5c:f5:0f:7b:82:6a:49:4a:6c:73:bb:78:5c:23:1e:7f:c2: 7f:11:fb:b7:c3:ab:f6:a3:59:25:5c:b9:ca:09:32:ee:d8:78: 9f:1f:0f:88:95:81:77:58:38:1d:ac:16:63:c4:38:ed:bb:53: 43:0d:aa:4e:7c:51:45:44:53:ad:ed:a4:34:f0:1e:3f:1a:95: 11:38:5f:2d:ea:a3:9b:ef:25:9a:28:c0:ce:5f:d7:30:ce:e0: eb:4d:c1:27:a6:9c:49:22:86:a2:b5:84:bf:79:86:36:93:1e: 6a:47:19:23:d1:27:90:81:95:fc:d1:ab:ea:e0:4f:cf:4c:5e: af:de:bc:07:1d:73:c0:3e:0c:3e:c8:42:65:ed:7f:24:75:8b: 08:66:6f:43:52:6a:7d:78:2d:08:4d:50:f2:30:00:df:86:3c: 5d:e4:9e:24:94:27:2f:e4:84:4d:e7:ce:74:ea:af:f6:52:24: b3:fc:94:8a:df:75:ff:fa:00:db:21:b8:00:ac:44:6b:48:f0: 76:3e:7f:43:64:b5:46:d5:e7:a1:48:06:34:89:94:88:1a:24: fe:30:50:6b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMjRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcxRUQwOEZFMDMwQjg2 N0Y1RTcyMkRFN0E4Q0VFOTBCRDBCMUYzMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLAcSU3v8XbkAX5beQA20o1WGXQvKXh3+GmGXW6k18eiVyyWSE rtHURL4PDVBunq1S1rIKzYs3DiODKVDYz002k16Lkfi2ZCdJnGP9DK2BMgAbcKtx 8HgXid+jg5nCpzy3+nvqV70QzlUl1rondqiFGbw5iw5/u6PbQyxFRB5Rfoi0a80B DIxy0nSAb2YjOKi4EMatmwOLL+KzyjhDFCprCcK9vFtmXlilusN58FGyFF45lQgI pDXmuCReyPuAItwsJt1UswmJ9B0jeaNVbNvoGukNHZAqUEUuePdB8YIJzw8X6h2j rOx0P4APV8PL5kcGWnHIEyR8WvSfaPHJZKnNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUce0I/gMLhn9eci3nqM7pC9Cx8yYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NlMElfZ01MaG45ZWNpM25xTTdwQzlDeDh5WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYTMwDQYJKoZIhvcNAQELBQADggEBAFQobIiNLiMqpLjoZXRm2nzyjBZD mtDabvf1DVoKCfFyaiCBAQxc9Q97gmpJSmxzu3hcIx5/wn8R+7fDq/ajWSVcucoJ Mu7YeJ8fD4iVgXdYOB2sFmPEOO27U0MNqk58UUVEU63tpDTwHj8alRE4Xy3qo5vv JZoowM5f1zDO4OtNwSemnEkihqK1hL95hjaTHmpHGSPRJ5CBlfzRq+rgT89MXq/e vAcdc8A+DD7IQmXtfyR1iwhmb0NSan14LQhNUPIwAN+GPF3kniSUJy/khE3nznTq r/ZSJLP8lIrfdf/6ANshuACsRGtI8HY+f0NktUbV56FIBjSJlIgaJP4wUGs= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:57 2025 by rpki-client on console.sobornost.net