$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-SxPS8RJvIH9Yi-u_GtMxMQw5F8.roa File: -SxPS8RJvIH9Yi-u_GtMxMQw5F8.roa (raw, json) Hash identifier: bKDP0VU0KyHrtKQWy/B4C4sQ5V3xybOaMeoZCkl50Jo= Subject key identifier: F9:2C:4F:4B:C4:49:BC:81:FD:62:2F:AE:FC:6B:4C:C4:C4:30:E4:5F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C7A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-SxPS8RJvIH9Yi-u_GtMxMQw5F8.roa Signing time: Tue 01 Apr 2025 02:00:39 +0000 ROA not before: Tue 01 Apr 2025 02:00:39 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:00:39 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=F92C4F4BC449BC81FD622FAEFC6B4CC4C430E45F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:46:f8:20:88:37:49:a9:b8:64:ab:78:91:f7: 15:88:e8:7f:19:c8:46:40:fd:45:b5:fb:fe:4e:fd: 4d:20:cc:0d:55:13:e3:d9:d4:1e:e8:b6:91:eb:5a: ca:41:d3:5a:06:0e:92:c5:ba:f2:39:6a:ef:b9:ac: 98:d0:fb:07:15:f7:51:2a:7a:9a:d8:84:b0:00:27: 0e:a7:a8:a9:7c:a7:7c:17:74:ea:92:8d:00:34:9d: 0b:7d:8b:d5:0b:ce:32:be:b4:56:a0:b3:25:f5:24: 9a:11:ce:ed:40:3c:fb:0d:60:72:ad:17:ee:e6:f1: f9:ec:ef:aa:dd:6a:f1:a4:e8:e0:db:56:9f:f2:0a: a3:96:b4:e6:e1:ec:60:3b:8a:3c:ef:85:32:e3:cd: 9f:b4:47:11:e9:c6:34:cc:22:64:60:5c:7c:83:e9: 32:0b:87:b6:9b:e0:5b:f5:21:cc:1a:a4:87:e1:84: e7:e4:bc:2e:75:84:53:89:fc:a2:c2:9e:d0:87:f2: 97:ec:ba:4f:ef:1b:d1:8c:5f:37:ed:ab:a1:d8:08: c8:76:77:fa:fa:48:0f:2b:71:5c:3c:62:b1:b3:c6: 31:c5:10:a4:2e:9a:21:2d:33:96:db:2b:42:82:f7: 12:d4:54:08:bb:ea:5a:31:2e:74:b4:75:40:c8:9d: b0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:2C:4F:4B:C4:49:BC:81:FD:62:2F:AE:FC:6B:4C:C4:C4:30:E4:5F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-SxPS8RJvIH9Yi-u_GtMxMQw5F8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.75.0/24 Signature Algorithm: sha256WithRSAEncryption 59:a5:0d:1b:48:f8:61:88:34:da:0e:7f:d6:7e:c8:19:ac:66: bc:6c:73:2f:29:47:ce:1c:80:c0:17:1f:7a:e8:61:c2:3f:07: e1:c5:3f:59:12:70:dc:a8:0a:e2:40:0e:c6:9e:18:49:97:8d: 0d:fe:63:35:d1:0a:20:5e:dc:86:27:84:89:4b:ee:8d:a6:9f: 8f:d1:53:80:52:41:8e:33:57:9a:8e:a1:e9:b1:98:12:e6:61: 8f:2a:8f:03:9d:b9:c5:23:9b:be:1d:f2:bd:ec:5a:25:e6:5c: a2:dd:af:d7:5d:9c:fa:9e:3b:ca:33:70:ad:70:1a:ad:f8:bc: aa:cf:6d:98:eb:9e:ca:c2:36:93:45:06:83:8c:12:ea:9e:ba: 00:6d:ed:5c:fe:c0:c7:61:60:8b:31:c0:7f:a6:a0:fd:43:f2: 87:d2:ee:93:ee:ac:6e:5a:c7:4f:53:ef:2d:e0:e6:d7:24:a1: 06:de:c1:8c:74:82:f8:c4:2c:a1:95:f3:ab:13:4c:15:65:9b: a0:a3:3a:b3:ff:c0:07:22:c7:69:73:8d:2f:2e:2d:51:79:bd: c2:21:eb:04:fd:4f:ee:c0:ab:a3:7f:f5:67:5c:b9:c5:8e:3b: 9b:f6:8e:b7:1f:6b:b4:83:97:c1:08:1d:d6:f0:5e:81:ea:05: d5:c4:9f:39 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAwMzlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEY5MkM0RjRCQzQ0OUJD ODFGRDYyMkZBRUZDNkI0Q0M0QzQzMEU0NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0RvggiDdJqbhkq3iR9xWI6H8ZyEZA/UW1+/5O/U0gzA1VE+PZ 1B7otpHrWspB01oGDpLFuvI5au+5rJjQ+wcV91EqeprYhLAAJw6nqKl8p3wXdOqS jQA0nQt9i9ULzjK+tFagsyX1JJoRzu1APPsNYHKtF+7m8fns76rdavGk6ODbVp/y CqOWtObh7GA7ijzvhTLjzZ+0RxHpxjTMImRgXHyD6TILh7ab4Fv1IcwapIfhhOfk vC51hFOJ/KLCntCH8pfsuk/vG9GMXzftq6HYCMh2d/r6SA8rcVw8YrGzxjHFEKQu miEtM5bbK0KC9xLUVAi76loxLnS0dUDInbAfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU+SxPS8RJvIH9Yi+u/GtMxMQw5F8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Ly1TeFBTOFJKdklIOVlpLXVfR3RNeE1RdzVGOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABT0swDQYJKoZIhvcNAQELBQADggEBAFmlDRtI+GGINNoOf9Z+yBmsZrxs cy8pR84cgMAXH3roYcI/B+HFP1kScNyoCuJADsaeGEmXjQ3+YzXRCiBe3IYnhIlL 7o2mn4/RU4BSQY4zV5qOoemxmBLmYY8qjwOducUjm74d8r3sWiXmXKLdr9ddnPqe O8ozcK1wGq34vKrPbZjrnsrCNpNFBoOMEuqeugBt7Vz+wMdhYIsxwH+moP1D8ofS 7pPurG5ax09T7y3g5tckoQbewYx0gvjELKGV86sTTBVlm6CjOrP/wAcix2lzjS8u LVF5vcIh6wT9T+7Aq6N/9WdcucWOO5v2jrcfa7SDl8EIHdbwXoHqBdXEnzk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:49 2025 by rpki-client