$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fCMtaFuT0CfYy1R0uNp942Sbiss.roa File: fCMtaFuT0CfYy1R0uNp942Sbiss.roa (raw, json) Hash identifier: CpagbS2wPmCrDZ1s8eQo07GMt+JDa+X/OYQC9NCsY4o= Subject key identifier: 7C:23:2D:68:5B:93:D0:27:D8:CB:54:74:B8:DA:7D:E3:64:9B:8A:CB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DE6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fCMtaFuT0CfYy1R0uNp942Sbiss.roa Signing time: Tue 01 Apr 2025 02:29:02 +0000 ROA not before: Tue 01 Apr 2025 02:29:02 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3558 (0xde6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:29:02 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=7C232D685B93D027D8CB5474B8DA7DE3649B8ACB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c8:0a:64:c0:1f:ba:eb:75:f9:5c:a2:80:30: 79:db:b4:70:1b:fd:c5:46:3c:2f:6a:f7:e9:15:2b: 25:45:11:d1:5b:0c:5f:88:7a:05:2b:30:1b:3b:16: df:6d:10:d8:73:30:87:9d:c2:83:d9:14:0d:20:6c: 85:83:ee:6b:11:6b:05:bc:24:64:92:3a:89:86:c4: ae:70:e9:9c:61:d0:3e:4d:15:69:36:f6:19:d7:02: 43:06:f6:29:6b:fb:d9:ec:a6:25:ab:79:4b:66:cd: 69:38:d5:08:dc:1f:e2:f2:2b:6a:23:35:71:47:f1: 64:f6:00:dc:6b:f8:7a:06:0b:29:c6:d6:61:e6:b0: 27:67:ee:b5:bd:54:cb:15:df:7b:74:8e:24:e8:f4: 2c:46:49:69:53:a6:0a:1c:bc:aa:55:75:92:e8:38: 29:f8:11:64:7a:03:e4:ec:11:36:53:db:df:46:ec: 17:9c:9c:78:7d:00:2d:a3:1c:a1:46:2e:8a:02:c1: e1:19:26:9b:64:ca:7b:70:b1:85:44:8c:a3:f0:30: b8:3b:ce:66:93:5f:b5:5f:ac:65:a4:50:9c:0d:a8: 65:23:5b:18:78:0d:ca:da:ca:e6:c8:92:de:e9:72: 79:27:a1:9a:0d:51:60:f4:69:16:10:ac:73:6e:c5: d0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:23:2D:68:5B:93:D0:27:D8:CB:54:74:B8:DA:7D:E3:64:9B:8A:CB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fCMtaFuT0CfYy1R0uNp942Sbiss.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.174.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:26:d4:e8:5f:6f:79:62:93:58:36:34:6f:e9:a5:ce:02:3f: 04:38:0c:85:88:1c:c3:30:65:cc:05:65:9c:33:62:28:ca:5a: a0:17:1e:21:a8:7b:3c:59:dd:d5:ee:3a:a9:33:96:d3:fd:cd: 7b:53:da:6d:1a:d5:bc:35:dd:91:bc:4f:1b:c2:55:a1:3f:3d: c7:71:79:95:37:85:a6:08:5b:c0:40:a4:fc:42:ce:1c:8b:6d: 51:4b:8c:60:c0:e9:e0:bf:d5:f7:e9:b4:4a:fa:7a:bc:c8:ae: 01:c2:85:5f:41:49:26:6a:b5:e2:5d:a5:dc:fd:3b:c1:5e:47: 61:00:7c:18:7e:54:46:b9:12:2c:bc:3b:1e:a3:27:0b:81:3e: 36:79:10:3e:f6:84:11:b8:d6:90:2b:74:14:b8:ef:74:21:37: b6:65:0a:0b:c1:0a:d2:f6:b1:0a:c7:41:a9:07:9b:a2:6a:2d: d1:ee:b7:1e:cd:5d:d6:18:87:8e:68:5b:f1:4b:50:c6:3b:c4: 68:4b:22:64:cd:e9:2c:89:0b:24:d1:53:d9:4a:47:2b:30:50: 15:00:bb:44:9e:90:a9:97:ee:fb:8e:dc:52:15:4c:27:cc:3f: 5a:6d:77:82:71:ee:2e:27:7c:a7:1d:7b:1f:68:6f:ba:02:51: 72:a1:2c:82 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDeYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI5MDJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDdDMjMyRDY4NUI5M0Qw MjdEOENCNTQ3NEI4REE3REUzNjQ5QjhBQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCyApkwB+663X5XKKAMHnbtHAb/cVGPC9q9+kVKyVFEdFbDF+I egUrMBs7Ft9tENhzMIedwoPZFA0gbIWD7msRawW8JGSSOomGxK5w6Zxh0D5NFWk2 9hnXAkMG9ilr+9nspiWreUtmzWk41QjcH+LyK2ojNXFH8WT2ANxr+HoGCynG1mHm sCdn7rW9VMsV33t0jiTo9CxGSWlTpgocvKpVdZLoOCn4EWR6A+TsETZT299G7Bec nHh9AC2jHKFGLooCweEZJptkyntwsYVEjKPwMLg7zmaTX7VfrGWkUJwNqGUjWxh4 DcrayubIkt7pcnknoZoNUWD0aRYQrHNuxdDZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUfCMtaFuT0CfYy1R0uNp942SbisswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2ZDTXRhRnVUMENmWXkxUjB1TnA5NDJTYmlzcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYq4wDQYJKoZIhvcNAQELBQADggEBAIom1Ohfb3lik1g2NG/ppc4CPwQ4 DIWIHMMwZcwFZZwzYijKWqAXHiGoezxZ3dXuOqkzltP9zXtT2m0a1bw13ZG8TxvC VaE/PcdxeZU3haYIW8BApPxCzhyLbVFLjGDA6eC/1ffptEr6erzIrgHChV9BSSZq teJdpdz9O8FeR2EAfBh+VEa5Eiy8Ox6jJwuBPjZ5ED72hBG41pArdBS473QhN7Zl CgvBCtL2sQrHQakHm6JqLdHutx7NXdYYh45oW/FLUMY7xGhLImTN6SyJCyTRU9lK RyswUBUAu0SekKmX7vuO3FIVTCfMP1ptd4Jx7i4nfKcdex9ob7oCUXKhLII= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:58 2025 by rpki-client on console.sobornost.net