$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-Tn9Ih9ugsB72gw5YHcNgupVGVM.roa File: -Tn9Ih9ugsB72gw5YHcNgupVGVM.roa (raw, json) Hash identifier: ZAiArQ+MMb23+2g+9PoeppD66Ym5d+FdT9spSo+2HI8= Subject key identifier: F9:39:FD:22:1F:6E:82:C0:7B:DA:0C:39:60:77:0D:82:EA:55:19:53 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D8F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-Tn9Ih9ugsB72gw5YHcNgupVGVM.roa Signing time: Tue 01 Apr 2025 02:21:34 +0000 ROA not before: Tue 01 Apr 2025 02:21:34 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.210.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3471 (0xd8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:34 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=F939FD221F6E82C07BDA0C3960770D82EA551953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:07:0b:99:69:c3:77:09:b2:47:e7:b1:c1:16: 18:9a:a4:a4:e6:c7:05:a9:f1:3a:98:19:70:df:b5: bb:54:83:96:fe:96:c5:df:28:dd:62:63:31:18:5c: fe:aa:68:aa:7f:5e:77:15:da:a8:0c:f2:ac:d9:ac: 6f:37:a9:7a:40:ba:1a:99:96:a8:de:70:d3:b9:1d: 7a:2c:62:e8:8f:a4:66:a5:f7:09:9a:79:e3:2c:69: e4:fb:e2:de:b5:8f:0e:f2:b0:88:e3:36:6f:f0:77: 12:e1:73:57:d6:e3:80:fa:19:22:57:31:9e:bd:f6: c2:b2:3d:57:c4:95:2d:2e:0d:26:8e:8b:35:86:57: e8:c3:01:ab:dd:a7:b5:5b:83:3f:5c:c2:c2:ed:ce: 3d:b8:4f:3f:51:76:87:ae:35:82:d4:6d:2e:e8:d2: 0c:b2:07:4e:f7:8d:e3:f0:dd:41:03:c9:74:86:d8: 56:d2:b6:cc:17:a8:d7:56:96:49:0a:c7:04:b3:5c: a9:55:39:b7:54:62:c7:84:4e:df:96:f2:df:1e:81: 1c:6e:cd:fe:33:48:0a:8c:24:db:39:3d:e4:1d:6e: 6a:83:f1:ff:59:0c:3d:65:f4:d5:7f:c9:a1:7e:bd: d7:4a:31:77:f9:2b:88:61:7b:cb:83:e3:84:51:73: 0c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:39:FD:22:1F:6E:82:C0:7B:DA:0C:39:60:77:0D:82:EA:55:19:53 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-Tn9Ih9ugsB72gw5YHcNgupVGVM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.0.0/20 Signature Algorithm: sha256WithRSAEncryption ba:5a:de:6e:cd:06:13:a2:5a:93:24:82:fd:de:4b:15:cf:dd: 02:f2:22:98:b2:78:2f:be:25:77:43:72:ea:cb:ae:c0:ba:82: dd:69:80:ec:69:00:26:cf:91:08:9f:a3:29:33:04:77:32:1f: 6d:e8:1c:1b:24:38:d5:23:fb:fb:86:ba:14:d4:43:7b:68:c9: 11:2b:c9:34:ff:1d:68:02:91:81:22:71:ff:72:1b:c6:43:74: f0:a0:f3:99:87:4f:81:be:b2:62:b0:35:30:e6:b2:65:15:f4: a9:cf:13:18:76:ed:a6:71:86:e4:c1:7c:d7:2b:4c:85:30:60: 33:3a:2a:ba:4d:86:72:49:74:09:d6:03:82:6b:74:49:65:87: dd:b6:a4:ba:e8:1d:c3:b3:79:b1:20:3b:71:c2:07:ba:20:b8: a5:d2:33:59:66:08:2e:c0:90:57:cd:03:33:eb:68:6c:54:b0: 5a:50:c5:33:0c:a0:f9:fc:aa:04:f1:c7:55:59:db:7b:66:7a: 89:a4:74:9d:8a:6f:25:6b:0a:3f:c4:3d:79:ae:c0:f2:ed:2c: 87:88:c0:e2:65:41:c0:f7:b2:55:8c:f5:e3:10:dc:f1:44:2e: a3:15:af:69:a4:44:44:7a:68:b1:16:b5:c7:ae:19:31:95:07: eb:18:51:de -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMzRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEY5MzlGRDIyMUY2RTgy QzA3QkRBMEMzOTYwNzcwRDgyRUE1NTE5NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/BwuZacN3CbJH57HBFhiapKTmxwWp8TqYGXDftbtUg5b+lsXf KN1iYzEYXP6qaKp/XncV2qgM8qzZrG83qXpAuhqZlqjecNO5HXosYuiPpGal9wma eeMsaeT74t61jw7ysIjjNm/wdxLhc1fW44D6GSJXMZ699sKyPVfElS0uDSaOizWG V+jDAavdp7Vbgz9cwsLtzj24Tz9RdoeuNYLUbS7o0gyyB073jePw3UEDyXSG2FbS tswXqNdWlkkKxwSzXKlVObdUYseETt+W8t8egRxuzf4zSAqMJNs5PeQdbmqD8f9Z DD1l9NV/yaF+vddKMXf5K4hhe8uD44RRcwwFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU+Tn9Ih9ugsB72gw5YHcNgupVGVMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Ly1UbjlJaDl1Z3NCNzJndzVZSGNOZ3VwVkdWTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATc0gAwDQYJKoZIhvcNAQELBQADggEBALpa3m7NBhOiWpMkgv3eSxXP3QLy IpiyeC++JXdDcurLrsC6gt1pgOxpACbPkQifoykzBHcyH23oHBskONUj+/uGuhTU Q3toyREryTT/HWgCkYEicf9yG8ZDdPCg85mHT4G+smKwNTDmsmUV9KnPExh27aZx huTBfNcrTIUwYDM6KrpNhnJJdAnWA4JrdEllh922pLroHcOzebEgO3HCB7oguKXS M1lmCC7AkFfNAzPraGxUsFpQxTMMoPn8qgTxx1VZ23tmeomkdJ2KbyVrCj/EPXmu wPLtLIeIwOJlQcD3slWM9eMQ3PFELqMVr2mkRER6aLEWtceuGTGVB+sYUd4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:48:23 2025 by rpki-client