$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZW3y0eyXKvS3cWcTV9tP9EcDNA.roa File: LZW3y0eyXKvS3cWcTV9tP9EcDNA.roa (raw, json) Hash identifier: 7apv2corpU+ekloXtwoKDGgtQEFxWHsS1tX+0NxDHOc= Subject key identifier: 2D:95:B7:CB:47:B2:5C:AB:D2:DD:C5:9C:4D:5F:6D:3F:D1:1C:0C:D0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0FB2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZW3y0eyXKvS3cWcTV9tP9EcDNA.roa Signing time: Tue 10 Jun 2025 11:44:10 +0000 ROA not before: Tue 10 Jun 2025 11:44:10 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 49.103.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4018 (0xfb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 10 11:44:10 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=2D95B7CB47B25CABD2DDC59C4D5F6D3FD11C0CD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8a:69:65:77:50:b5:91:85:cc:69:b3:7d:51: d4:eb:05:91:1f:e0:cf:64:76:97:1b:1e:f1:40:4c: d3:68:e7:dd:74:3f:e9:82:a4:6d:bd:b3:0a:ce:a5: c4:d8:41:f3:b9:b4:a9:3d:75:36:b7:94:58:9a:04: 56:13:32:92:20:6b:a6:5b:46:da:9c:76:73:3e:6c: 8f:0d:85:89:d2:f5:a2:5d:fa:a2:df:37:64:93:0a: f5:5a:a4:a1:45:10:12:2e:7b:ba:b3:71:59:96:51: 48:20:49:eb:12:19:d7:7e:fb:27:87:9b:2f:37:ba: d2:3c:48:4b:6e:49:eb:d1:3f:11:20:a3:8d:09:4c: a7:c4:e8:ab:44:b9:e9:7c:18:95:0d:65:39:80:1f: 52:3d:59:2e:1c:a7:75:1b:0f:04:f4:06:f4:86:3e: 2a:48:1d:aa:f8:ed:95:3f:20:35:fa:ea:6e:87:1c: 20:49:26:58:98:43:ef:fd:cc:6b:d5:ab:61:09:30: f9:6b:b2:8d:a1:ac:75:9a:f6:c4:57:16:e3:8c:a9: 06:e1:eb:9b:f8:b2:c2:23:44:6f:05:c2:f8:5d:e9: 62:9d:a0:6a:13:09:a9:18:1b:47:ad:4b:29:e5:83: c0:39:66:c5:6c:2c:25:c6:d8:13:aa:d5:e4:0c:c1: bf:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:95:B7:CB:47:B2:5C:AB:D2:DD:C5:9C:4D:5F:6D:3F:D1:1C:0C:D0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZW3y0eyXKvS3cWcTV9tP9EcDNA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.103.48.0/20 Signature Algorithm: sha256WithRSAEncryption 74:1a:47:b1:f9:78:69:e1:c3:15:82:cb:60:19:ad:38:d1:bf: 1d:aa:fd:fe:e8:d1:e3:9c:f2:38:e1:77:89:86:87:27:2e:8e: 95:26:72:b7:99:db:ac:6a:3c:86:a1:2b:9c:21:06:8b:28:ea: d9:dc:80:73:42:b8:55:06:cc:5c:3d:5e:e6:db:b2:56:67:89: 2b:e6:6e:c6:61:ed:7d:e7:98:f3:1f:12:5e:83:84:60:3c:f3: cd:ff:83:12:62:47:56:be:b3:12:b3:bf:b1:78:1d:19:a5:20: a1:d9:e5:62:8a:4a:17:71:38:3e:79:4c:04:09:f4:de:31:73: 09:0f:af:ec:41:84:71:d1:73:09:61:4f:db:56:b5:32:47:04: 03:7f:9f:56:68:90:c0:1b:e2:d9:81:d8:62:cb:a7:df:51:7d: f4:d8:d5:90:15:80:25:fd:8f:a5:7a:2a:ab:e1:23:b8:d8:0c: 2b:56:04:d8:41:59:39:1f:26:ef:c8:46:6a:39:68:b7:a4:5d: 77:89:98:db:c9:2e:ee:c7:85:27:42:f5:d4:c6:55:c0:c1:fb: 81:b5:93:a9:e3:15:8c:ac:23:5d:fe:b3:45:0c:40:95:d4:22: 30:ca:5b:7e:fa:42:f5:9d:c5:04:3a:82:0c:9a:ba:f4:5e:fe: 27:b2:5b:7f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICD7IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA2MTAx MTQ0MTBaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDJEOTVCN0NCNDdCMjVD QUJEMkREQzU5QzRENUY2RDNGRDExQzBDRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXimlld1C1kYXMabN9UdTrBZEf4M9kdpcbHvFATNNo5910P+mC pG29swrOpcTYQfO5tKk9dTa3lFiaBFYTMpIga6ZbRtqcdnM+bI8NhYnS9aJd+qLf N2STCvVapKFFEBIue7qzcVmWUUggSesSGdd++yeHmy83utI8SEtuSevRPxEgo40J TKfE6KtEuel8GJUNZTmAH1I9WS4cp3UbDwT0BvSGPipIHar47ZU/IDX66m6HHCBJ JliYQ+/9zGvVq2EJMPlrso2hrHWa9sRXFuOMqQbh65v4ssIjRG8Fwvhd6WKdoGoT CakYG0etSynlg8A5ZsVsLCXG2BOq1eQMwb/3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULZW3y0eyXKvS3cWcTV9tP9EcDNAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0xaVzN5MGV5WEt2UzNjV2NUVjl0UDlFY0ROQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxZzAwDQYJKoZIhvcNAQELBQADggEBAHQaR7H5eGnhwxWCy2AZrTjRvx2q /f7o0eOc8jjhd4mGhycujpUmcreZ26xqPIahK5whBoso6tncgHNCuFUGzFw9Xubb slZniSvmbsZh7X3nmPMfEl6DhGA8883/gxJiR1a+sxKzv7F4HRmlIKHZ5WKKShdx OD55TAQJ9N4xcwkPr+xBhHHRcwlhT9tWtTJHBAN/n1ZokMAb4tmB2GLLp99RffTY 1ZAVgCX9j6V6KqvhI7jYDCtWBNhBWTkfJu/IRmo5aLekXXeJmNvJLu7HhSdC9dTG VcDB+4G1k6njFYysI13+s0UMQJXUIjDKW376QvWdxQQ6ggyauvRe/ieyW38= -----END CERTIFICATE-----Generated at Thu Jul 3 12:31:31 2025 by rpki-client