$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oPaa4IaHVY3xqG8ARklSxDaNaxE.roa File: oPaa4IaHVY3xqG8ARklSxDaNaxE.roa (raw, json) Hash identifier: kSI+gquBCBRyMOKo5j3rZCEycOy4XjhLpmIwynXOSnA= Subject key identifier: A0:F6:9A:E0:86:87:55:8D:F1:A8:6F:00:46:49:52:C4:36:8D:6B:11 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CF5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oPaa4IaHVY3xqG8ARklSxDaNaxE.roa Signing time: Tue 01 Apr 2025 02:11:32 +0000 ROA not before: Tue 01 Apr 2025 02:11:32 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.98.160.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3317 (0xcf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:32 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A0F69AE08687558DF1A86F00464952C4368D6B11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7e:e8:82:78:a6:dd:d4:88:c5:37:b0:d5:49: 3f:0d:31:40:c2:5a:37:0d:fa:ed:e7:04:4c:18:91: 32:ee:07:34:3c:41:89:e4:10:51:e0:db:dc:65:f1: 26:a9:ea:7b:a8:79:ed:69:3a:de:83:60:c1:2f:67: b3:41:1e:7e:02:53:c3:39:c3:ed:af:79:f5:78:ec: 29:19:92:60:6f:7b:b1:2e:fc:3e:21:84:57:6a:cd: 84:d6:8d:f7:28:ba:d4:e8:b0:d2:91:84:b0:86:b3: c5:72:2a:5e:73:f8:2b:c1:91:0d:53:f4:dd:02:8f: 34:af:c1:91:c5:ab:1c:9e:c5:85:19:0c:bc:77:99: fa:98:31:3b:e2:14:96:f1:b3:f6:46:7c:b3:55:0d: 98:68:27:1f:86:f5:8c:3d:23:99:a5:6a:38:53:91: 1b:9c:82:32:47:e6:b1:2d:34:3b:d6:01:fb:1e:a9: 12:78:ed:c3:93:c0:17:20:6d:5c:45:77:2a:55:41: 6b:cd:9d:2b:c9:88:b6:88:55:00:4f:87:99:43:ac: 60:b1:84:56:58:2e:31:17:90:d4:a3:dc:89:05:07: e7:ce:4c:97:0a:f0:e8:58:b9:6b:f4:a4:2b:7a:68: 7d:ca:2e:bf:69:f6:70:03:e5:96:b1:61:7f:bf:56: d8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F6:9A:E0:86:87:55:8D:F1:A8:6F:00:46:49:52:C4:36:8D:6B:11 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oPaa4IaHVY3xqG8ARklSxDaNaxE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.160.0/23 Signature Algorithm: sha256WithRSAEncryption c0:55:37:02:8e:53:05:15:97:c2:b0:16:4d:29:0f:76:bd:f2: 01:d7:1f:5f:a9:11:18:f7:fc:8c:f7:11:d7:8b:52:95:00:41: a2:49:7c:f7:fa:f0:4a:12:26:3c:3f:f8:ee:5f:c2:ea:76:da: e3:db:cc:8b:7f:ac:3c:6d:a8:60:25:d4:50:56:02:d8:f1:aa: ec:f9:60:50:30:38:05:53:67:02:b0:d8:d3:b8:e2:36:a8:d6: 91:84:21:54:34:3e:69:fd:8f:41:7a:fe:1e:e6:19:e0:6a:7e: 75:68:15:e8:fb:ec:9d:c5:ac:92:2e:46:cf:04:f9:c7:e9:e7: 17:f0:83:9d:93:68:01:8b:99:e4:a9:b0:88:97:cb:95:d3:3f: 4c:41:94:c3:31:40:da:67:a7:eb:16:9e:2c:8c:1a:c0:ae:1e: bd:23:a3:63:c3:8f:30:35:f4:ac:c3:e4:40:c5:f1:48:52:86: ad:e9:90:54:ad:40:3b:29:3b:bf:b1:aa:e1:76:e3:cf:3d:53: 0a:8e:0a:7b:d5:60:89:58:21:45:12:22:43:3b:5f:da:13:a2: 82:8f:ed:80:49:49:a2:79:f5:5d:25:17:b2:5f:77:5e:56:99: 6a:87:8b:69:5e:17:17:3a:34:da:e4:9f:21:67:5b:5f:1a:4e: 8b:44:d8:ca -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExMzJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEEwRjY5QUUwODY4NzU1 OERGMUE4NkYwMDQ2NDk1MkM0MzY4RDZCMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmfuiCeKbd1IjFN7DVST8NMUDCWjcN+u3nBEwYkTLuBzQ8QYnk EFHg29xl8Sap6nuoee1pOt6DYMEvZ7NBHn4CU8M5w+2vefV47CkZkmBve7Eu/D4h hFdqzYTWjfcoutTosNKRhLCGs8VyKl5z+CvBkQ1T9N0CjzSvwZHFqxyexYUZDLx3 mfqYMTviFJbxs/ZGfLNVDZhoJx+G9Yw9I5mlajhTkRucgjJH5rEtNDvWAfseqRJ4 7cOTwBcgbVxFdypVQWvNnSvJiLaIVQBPh5lDrGCxhFZYLjEXkNSj3IkFB+fOTJcK 8OhYuWv0pCt6aH3KLr9p9nAD5ZaxYX+/Vtj9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoPaa4IaHVY3xqG8ARklSxDaNaxEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29QYWE0SWFIVlkzeHFHOEFSa2xTeERhTmF4RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYqAwDQYJKoZIhvcNAQELBQADggEBAMBVNwKOUwUVl8KwFk0pD3a98gHX H1+pERj3/Iz3EdeLUpUAQaJJfPf68EoSJjw/+O5fwup22uPbzIt/rDxtqGAl1FBW Atjxquz5YFAwOAVTZwKw2NO44jao1pGEIVQ0Pmn9j0F6/h7mGeBqfnVoFej77J3F rJIuRs8E+cfp5xfwg52TaAGLmeSpsIiXy5XTP0xBlMMxQNpnp+sWniyMGsCuHr0j o2PDjzA19KzD5EDF8UhShq3pkFStQDspO7+xquF24889UwqOCnvVYIlYIUUSIkM7 X9oTooKP7YBJSaJ59V0lF7Jfd15WmWqHi2leFxc6NNrknyFnW18aTotE2Mo= -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:02 2025 by rpki-client on console.sobornost.net