$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3E5wHZ3PRAqBNMdXnUOYhGXyqnc.roa File: 3E5wHZ3PRAqBNMdXnUOYhGXyqnc.roa (raw, json) Hash identifier: xQYDDUkiXP8+HfocoihrC5AU1M1EcOKTrjD3Qhfrsb0= Subject key identifier: DC:4E:70:1D:9D:CF:44:0A:81:34:C7:57:9D:43:98:84:65:F2:AA:77 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D70 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3E5wHZ3PRAqBNMdXnUOYhGXyqnc.roa Signing time: Tue 01 Apr 2025 02:19:23 +0000 ROA not before: Tue 01 Apr 2025 02:19:23 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 211.14.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3440 (0xd70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:19:23 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=DC4E701D9DCF440A8134C7579D43988465F2AA77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9d:33:58:27:f1:b2:5c:43:0e:75:7d:bd:d8: 42:95:12:f3:16:d9:36:27:94:ef:6f:c1:d4:95:15: da:bc:12:27:66:be:2e:72:7a:f4:91:1d:23:af:d7: 8d:c2:1d:18:fb:59:ce:ef:75:d3:75:0d:d9:85:8b: 5b:33:7e:7b:30:27:7b:34:ef:37:64:ff:e2:e5:ba: 27:25:87:b2:f8:4d:a5:8d:36:78:c4:9e:13:48:57: b2:b3:eb:d9:d1:f1:c7:a0:ec:ea:d7:b5:80:21:13: 4d:68:a3:d0:8c:b6:46:2b:d7:3c:af:5d:39:5c:82: 41:4f:e4:c6:76:2d:04:e8:57:bd:9d:58:ec:db:73: 51:fd:ce:87:c3:cd:2b:98:3e:d3:4c:c8:82:30:0e: 80:75:d7:9a:43:a7:f8:5b:64:72:9e:cb:d2:5b:a8: 22:a0:b3:2b:61:30:69:df:17:44:d5:35:26:c4:81: eb:b5:bb:65:22:f8:71:e9:9b:80:a8:6e:ce:3d:38: 36:b5:68:50:d5:37:5e:bb:e2:30:c8:04:05:62:3f: 4a:f4:39:5d:e0:c8:b4:0d:46:9f:68:68:31:11:b6: 08:2c:f4:18:77:1d:9f:cb:70:f2:ee:d0:ef:9b:bb: 14:3b:ae:58:d5:64:da:f1:80:5e:e5:49:18:8e:c2: 38:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4E:70:1D:9D:CF:44:0A:81:34:C7:57:9D:43:98:84:65:F2:AA:77 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3E5wHZ3PRAqBNMdXnUOYhGXyqnc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.112.0/22 Signature Algorithm: sha256WithRSAEncryption ae:0a:24:29:51:1f:d8:3c:80:56:47:dd:34:04:21:ce:e4:4f: 32:89:ae:37:03:1c:a8:04:02:02:bd:e9:af:d3:ef:89:f5:47: 9d:80:75:9c:37:9c:7d:40:b5:35:cb:2c:32:66:b5:e0:b7:20: c0:40:73:cd:72:46:11:84:3d:cd:39:50:22:dc:8f:04:ea:64: e3:2c:e8:14:40:e4:ae:79:87:9c:c5:0d:5f:e2:b8:63:54:c7: 10:d0:b0:1d:43:ad:08:82:2d:20:bf:b0:76:1b:53:a8:82:f7: 38:6b:5c:d5:d0:cf:39:6f:63:dd:ae:c5:71:70:e9:ef:96:04: 48:81:fb:77:36:ec:24:0d:4f:b2:71:18:9e:7a:39:84:2e:2b: 75:86:f9:90:8d:0e:69:49:82:17:e8:fc:59:fc:97:39:4f:c9: 50:ea:4d:b4:35:f3:84:33:a6:19:cd:58:eb:dd:37:7a:0a:18: 18:97:a5:f2:e8:56:76:0a:7a:0a:cd:b0:49:68:b5:17:aa:2a: 0e:ab:97:83:9e:e5:20:3d:57:e3:fc:ea:8c:d2:05:ce:2b:4c: ce:7e:51:bb:70:26:28:7a:09:97:ad:84:01:d1:e4:d4:ce:12: cb:89:7c:43:a8:32:6f:ba:5b:7c:78:75:a7:67:fe:03:e6:51: 4c:8a:11:4e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE5MjNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERDNEU3MDFEOURDRjQ0 MEE4MTM0Qzc1NzlENDM5ODg0NjVGMkFBNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3nTNYJ/GyXEMOdX292EKVEvMW2TYnlO9vwdSVFdq8Eidmvi5y evSRHSOv143CHRj7Wc7vddN1DdmFi1szfnswJ3s07zdk/+Lluiclh7L4TaWNNnjE nhNIV7Kz69nR8ceg7OrXtYAhE01oo9CMtkYr1zyvXTlcgkFP5MZ2LQToV72dWOzb c1H9zofDzSuYPtNMyIIwDoB115pDp/hbZHKey9JbqCKgsythMGnfF0TVNSbEgeu1 u2Ui+HHpm4Cobs49ODa1aFDVN1674jDIBAViP0r0OV3gyLQNRp9oaDERtggs9Bh3 HZ/LcPLu0O+buxQ7rljVZNrxgF7lSRiOwjirAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3E5wHZ3PRAqBNMdXnUOYhGXyqncwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNFNXdIWjNQUkFxQk5NZFhuVU9ZaEdYeXFuYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALTDnAwDQYJKoZIhvcNAQELBQADggEBAK4KJClRH9g8gFZH3TQEIc7kTzKJ rjcDHKgEAgK96a/T74n1R52AdZw3nH1AtTXLLDJmteC3IMBAc81yRhGEPc05UCLc jwTqZOMs6BRA5K55h5zFDV/iuGNUxxDQsB1DrQiCLSC/sHYbU6iC9zhrXNXQzzlv Y92uxXFw6e+WBEiB+3c27CQNT7JxGJ56OYQuK3WG+ZCNDmlJghfo/Fn8lzlPyVDq TbQ184QzphnNWOvdN3oKGBiXpfLoVnYKegrNsElotReqKg6rl4Oe5SA9V+P86ozS Bc4rTM5+UbtwJih6CZethAHR5NTOEsuJfEOoMm+6W3x4dadn/gPmUUyKEU4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:05 2025 by rpki-client