$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mGw6kznQfUpIawDFf7bXHznRY9A.roa File: mGw6kznQfUpIawDFf7bXHznRY9A.roa (raw, json) Hash identifier: d5KnegEaVbXk0CUuXJLcyzzlDvr1sa5MzWHlepdn3dE= Subject key identifier: 98:6C:3A:93:39:D0:7D:4A:48:6B:00:C5:7F:B6:D7:1F:39:D1:63:D0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CE5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mGw6kznQfUpIawDFf7bXHznRY9A.roa Signing time: Tue 01 Apr 2025 02:09:21 +0000 ROA not before: Tue 01 Apr 2025 02:09:21 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.50.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3301 (0xce5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:21 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=986C3A9339D07D4A486B00C57FB6D71F39D163D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ef:8a:44:f4:92:d3:63:c4:52:2d:ce:e8:bb: 5d:38:46:d8:f1:8a:2e:9a:e7:5e:59:8a:9b:c3:81: 22:12:40:50:05:7c:38:ba:ec:a2:f6:c8:2e:b0:88: 65:52:78:10:b0:16:54:04:b8:3e:c8:c8:52:2a:63: 86:18:9c:c5:b3:f2:c1:ce:ab:b7:89:a1:4f:01:ee: ba:85:05:c1:9a:6e:bf:13:6f:40:19:36:a7:30:ad: a6:05:60:7f:4b:f2:6f:48:bf:2e:83:d6:ba:8a:7a: 90:d0:f5:36:d3:c9:62:ba:71:c0:58:3f:de:df:07: 04:55:2c:52:40:73:67:a4:20:2b:97:1e:d3:02:6f: 88:81:7a:f8:14:f4:c9:55:83:8d:2b:7e:a8:62:6e: bc:2c:5c:5c:14:d7:69:b2:49:04:0c:cd:91:5a:dd: c5:41:93:7f:09:cb:02:ed:74:4f:83:21:84:a0:d7: a1:22:27:0c:ba:a0:2c:dc:7f:77:35:7f:61:53:37: 32:18:c0:85:4e:21:34:bf:7c:15:4d:3d:bf:8f:d9: 5c:38:f4:46:e1:fc:e3:d3:2f:25:af:34:d5:ec:87: 75:7f:39:f6:65:62:6e:f2:7e:f8:61:ca:bf:49:76: f9:c3:21:0e:09:70:94:36:f4:cf:ba:cc:86:2f:75: be:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6C:3A:93:39:D0:7D:4A:48:6B:00:C5:7F:B6:D7:1F:39:D1:63:D0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mGw6kznQfUpIawDFf7bXHznRY9A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.50.0/23 Signature Algorithm: sha256WithRSAEncryption 84:40:5d:75:82:71:20:53:43:e3:5c:43:1c:c1:b8:52:79:37: 94:65:54:c8:a2:f6:44:4b:c7:39:48:15:f2:7e:89:5c:4b:63: 7b:a7:ad:37:97:2c:35:a5:4f:ed:ce:2d:48:e1:ec:e3:40:30: d6:1e:6d:d9:1c:de:82:4e:04:b8:1f:36:ff:1a:7e:f7:b5:57: 2d:3e:17:4b:35:7a:be:ed:ac:26:25:a2:93:5a:47:9b:1f:f1: 57:04:03:c9:16:14:2d:c5:df:42:9d:e9:30:a6:37:cc:ab:f9: 13:c2:c5:96:6d:a8:8b:f5:6a:4e:75:9e:03:76:80:88:9d:93: 78:e8:75:29:bd:53:90:c9:b6:85:fb:52:a7:19:48:1d:24:24: e6:09:3c:8b:34:bc:e2:bb:76:4b:92:e2:18:2a:e2:c9:a1:82: 51:c8:66:d1:10:bf:26:e3:24:aa:07:ff:4b:4a:de:13:34:67: c8:65:84:c6:31:30:00:df:54:aa:b1:c7:cb:f0:87:68:e7:cd: f5:32:cc:d1:ef:34:f5:c9:e6:48:45:08:26:f5:69:53:fe:00: 94:66:52:ae:56:76:54:bf:71:12:e4:a2:d4:c6:4f:2b:0d:01: 68:89:72:d7:cd:4c:e5:71:a5:ce:d9:75:9c:6d:f4:48:26:3e: 2a:91:78:52 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDOUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MjFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk4NkMzQTkzMzlEMDdE NEE0ODZCMDBDNTdGQjZENzFGMzlEMTYzRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/74pE9JLTY8RSLc7ou104Rtjxii6a515ZipvDgSISQFAFfDi6 7KL2yC6wiGVSeBCwFlQEuD7IyFIqY4YYnMWz8sHOq7eJoU8B7rqFBcGabr8Tb0AZ NqcwraYFYH9L8m9Ivy6D1rqKepDQ9TbTyWK6ccBYP97fBwRVLFJAc2ekICuXHtMC b4iBevgU9MlVg40rfqhibrwsXFwU12mySQQMzZFa3cVBk38JywLtdE+DIYSg16Ei Jwy6oCzcf3c1f2FTNzIYwIVOITS/fBVNPb+P2Vw49Ebh/OPTLyWvNNXsh3V/OfZl Ym7yfvhhyr9JdvnDIQ4JcJQ29M+6zIYvdb4RAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmGw6kznQfUpIawDFf7bXHznRY9AwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L21HdzZrem5RZlVwSWF3REZmN2JYSHpuUlk5QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYjIwDQYJKoZIhvcNAQELBQADggEBAIRAXXWCcSBTQ+NcQxzBuFJ5N5Rl VMii9kRLxzlIFfJ+iVxLY3unrTeXLDWlT+3OLUjh7ONAMNYebdkc3oJOBLgfNv8a fve1Vy0+F0s1er7trCYlopNaR5sf8VcEA8kWFC3F30Kd6TCmN8yr+RPCxZZtqIv1 ak51ngN2gIidk3jodSm9U5DJtoX7UqcZSB0kJOYJPIs0vOK7dkuS4hgq4smhglHI ZtEQvybjJKoH/0tK3hM0Z8hlhMYxMADfVKqxx8vwh2jnzfUyzNHvNPXJ5khFCCb1 aVP+AJRmUq5WdlS/cRLkotTGTysNAWiJctfNTOVxpc7ZdZxt9EgmPiqReFI= -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:01 2025 by rpki-client on console.sobornost.net