$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xOh1WBkyfY3KHFEu5ANti3DHegc.roa File: xOh1WBkyfY3KHFEu5ANti3DHegc.roa (raw, json) Hash identifier: kIUWJ6Mcg1HB5OxL+bgdqZeGEC+LQfOoYrwVttYFZL8= Subject key identifier: C4:E8:75:58:19:32:7D:8D:CA:1C:51:2E:E4:03:6D:8B:70:C7:7A:07 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BB7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xOh1WBkyfY3KHFEu5ANti3DHegc.roa Signing time: Tue 01 Apr 2025 01:43:40 +0000 ROA not before: Tue 01 Apr 2025 01:43:40 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 49.102.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2999 (0xbb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:40 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C4E8755819327D8DCA1C512EE4036D8B70C77A07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6a:74:29:79:fb:4b:c2:f4:fd:07:b4:55:b4: 8a:40:bf:40:b9:67:e8:69:31:ef:f9:45:f2:aa:8f: 4f:29:70:1b:68:42:86:c2:42:b5:22:80:ac:f4:6a: bf:58:d5:01:69:9d:e2:78:bf:00:bc:96:7a:7b:62: 69:ef:4b:6c:bf:82:2d:b6:48:f8:5c:64:e5:36:a2: fd:f2:e3:40:e7:65:52:de:a5:1d:ab:b0:f3:5b:f9: 21:a9:69:02:bf:19:74:3a:b7:19:e3:0d:30:49:93: 40:fa:a3:3f:0f:9e:2c:e5:0b:58:9e:e4:fd:01:e0: 90:4c:4f:3a:8e:b2:24:c9:db:43:24:de:15:3c:cb: 9e:ba:43:86:24:1f:4f:f0:7a:c1:e4:04:66:cd:ce: 08:8a:f9:43:3b:75:03:7a:a5:5e:db:66:d1:bd:75: ad:25:20:03:b1:d2:8b:4f:59:b4:f4:9b:cd:b9:bc: 2e:82:c1:90:83:a5:fa:f7:85:3a:1f:2f:db:8d:f4: 34:b1:fd:f7:fc:ed:50:69:3a:8c:8a:ae:56:9e:4f: 75:a4:98:9a:dc:78:e2:c4:4a:a0:17:28:de:84:e7: 0e:f3:94:d6:5c:90:96:d3:b7:e8:fb:36:89:fb:af: d8:0c:78:f6:e2:97:73:94:ea:33:d4:35:e6:a8:87: 46:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E8:75:58:19:32:7D:8D:CA:1C:51:2E:E4:03:6D:8B:70:C7:7A:07 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xOh1WBkyfY3KHFEu5ANti3DHegc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.102.148.0/22 Signature Algorithm: sha256WithRSAEncryption 84:a2:14:06:d4:a9:cd:c9:57:63:fc:fe:58:33:b9:20:e6:0b: 63:0e:4c:81:e1:9c:f3:e3:51:03:48:4e:30:23:49:87:a6:c3: 31:aa:a8:71:27:f2:8a:e5:16:f5:f9:3c:a2:d9:78:65:10:ea: cf:9b:d7:01:e1:26:53:66:ce:ab:11:a3:46:7b:d3:c7:c4:4e: 00:b4:16:0e:3a:b2:80:70:c4:56:10:f3:80:b8:00:9e:f7:a3: ec:a0:a0:3b:27:55:22:a1:e5:6f:08:59:df:4f:03:39:10:91: 7c:62:96:c0:2d:87:61:5c:eb:08:ec:1d:de:db:02:2a:7d:b5: 59:f7:a0:5c:d1:e8:a4:ed:bb:9e:32:c4:f3:6b:5e:af:40:65: 29:f2:74:ec:18:a7:d4:80:82:84:f6:47:55:07:43:4c:1c:f2: e4:e4:d4:88:ce:4c:5d:9d:94:6b:c0:ca:c0:ee:22:79:44:b1: c3:b4:51:eb:f5:d9:12:8d:e4:fa:ee:18:e8:c0:7c:63:7e:6d: cd:52:5b:e1:f9:97:ec:49:2b:f0:88:0f:80:2c:d5:8c:49:85: bb:bd:53:cc:f9:b5:09:d4:dc:d6:51:be:dc:fa:3c:e7:a8:af: 70:00:02:98:da:95:0d:cc:f8:73:bd:9f:78:52:c5:3e:52:3b: 7c:0d:c5:d7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC7cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzNDBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM0RTg3NTU4MTkzMjdE OERDQTFDNTEyRUU0MDM2RDhCNzBDNzdBMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvanQpeftLwvT9B7RVtIpAv0C5Z+hpMe/5RfKqj08pcBtoQobC QrUigKz0ar9Y1QFpneJ4vwC8lnp7YmnvS2y/gi22SPhcZOU2ov3y40DnZVLepR2r sPNb+SGpaQK/GXQ6txnjDTBJk0D6oz8PnizlC1ie5P0B4JBMTzqOsiTJ20Mk3hU8 y566Q4YkH0/wesHkBGbNzgiK+UM7dQN6pV7bZtG9da0lIAOx0otPWbT0m825vC6C wZCDpfr3hTofL9uN9DSx/ff87VBpOoyKrlaeT3WkmJrceOLESqAXKN6E5w7zlNZc kJbTt+j7Non7r9gMePbil3OU6jPUNeaoh0aRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxOh1WBkyfY3KHFEu5ANti3DHegcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3hPaDFXQmt5ZlkzS0hGRXU1QU50aTNESGVnYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxZpQwDQYJKoZIhvcNAQELBQADggEBAISiFAbUqc3JV2P8/lgzuSDmC2MO TIHhnPPjUQNITjAjSYemwzGqqHEn8orlFvX5PKLZeGUQ6s+b1wHhJlNmzqsRo0Z7 08fETgC0Fg46soBwxFYQ84C4AJ73o+ygoDsnVSKh5W8IWd9PAzkQkXxilsAth2Fc 6wjsHd7bAip9tVn3oFzR6KTtu54yxPNrXq9AZSnydOwYp9SAgoT2R1UHQ0wc8uTk 1IjOTF2dlGvAysDuInlEscO0Uev12RKN5PruGOjAfGN+bc1SW+H5l+xJK/CID4As 1YxJhbu9U8z5tQnU3NZRvtz6POeor3AAApjalQ3M+HO9n3hSxT5SO3wNxdc= -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:28 2025 by rpki-client on console.sobornost.net