$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3PbGYLqLJuWFACzZHiKNlbmSIyU.roa File: 3PbGYLqLJuWFACzZHiKNlbmSIyU.roa (raw, json) Hash identifier: hEuf902JM9E24TZzJThyVSwzkfMTM+WuIRXgJsLr/6E= Subject key identifier: DC:F6:C6:60:BA:8B:26:E5:85:00:2C:D9:1E:22:8D:95:B9:92:23:25 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BE6 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3PbGYLqLJuWFACzZHiKNlbmSIyU.roa Signing time: Tue 01 Apr 2025 01:47:42 +0000 ROA not before: Tue 01 Apr 2025 01:47:42 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.67.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3046 (0xbe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:42 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=DCF6C660BA8B26E585002CD91E228D95B9922325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:20:e8:57:ab:56:9f:99:d6:51:44:67:22:b8: 35:1d:42:25:48:10:da:2b:86:a9:35:4c:16:b6:46: b6:2f:38:08:7d:f1:c6:41:86:0c:d9:95:21:c7:d4: a6:dc:f5:da:78:10:f5:2b:3a:91:e4:d3:39:b3:3d: f2:64:b2:ea:30:cd:3a:c9:0d:97:2d:09:23:7a:71: b5:49:37:e6:a9:a1:de:04:a3:7e:4c:62:70:47:8d: 5a:4f:ed:6a:5f:51:19:f8:db:c7:9d:aa:90:d5:d6: 04:08:dd:dc:82:95:e9:09:60:a0:c0:82:da:1c:27: f8:b9:e3:fa:2b:6d:11:9b:f7:79:5a:2b:64:f3:2b: d7:b0:72:d5:3a:e8:6e:0e:74:c0:5c:db:38:c9:c2: 36:88:53:2a:9f:70:40:b2:56:43:72:03:97:b2:d9: 7b:d0:fc:d8:ce:04:dc:11:3b:2a:81:22:fd:79:44: 1b:37:6f:79:6c:2b:6c:1c:23:85:11:b5:fd:52:33: d6:13:93:2b:0b:48:ce:ba:4d:bd:3c:f5:ba:b4:a1: 00:41:b5:33:14:72:67:cc:0a:7b:c0:3c:39:23:ab: a0:7b:63:9b:dc:b3:0a:45:04:18:62:d9:3e:78:ad: 8c:39:c8:8b:5c:56:72:87:ad:bc:07:8b:6b:84:87: 7f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F6:C6:60:BA:8B:26:E5:85:00:2C:D9:1E:22:8D:95:B9:92:23:25 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3PbGYLqLJuWFACzZHiKNlbmSIyU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.240.0/20 Signature Algorithm: sha256WithRSAEncryption 45:a1:22:06:9e:17:1c:7d:dc:2e:fc:1b:26:ef:62:36:cc:8d: 4e:cf:f6:5b:86:14:7a:d5:d0:05:c9:6c:8e:dd:dd:fc:f5:35: 6f:e7:08:03:8f:2f:ed:a0:ca:93:b0:51:23:3b:65:da:dc:05: a3:3e:18:69:05:5c:c0:aa:6e:e1:e0:1e:42:de:e9:5d:2a:2d: 66:10:18:b0:da:8f:51:94:dd:8a:d3:cb:b8:aa:64:1e:3a:88: b2:e3:91:7b:80:3a:54:b6:96:e3:0b:6d:c2:76:de:67:cf:77: 54:1d:4f:3e:b4:55:da:3f:d1:07:57:f5:28:ea:8b:82:cf:dc: f5:99:af:88:13:03:68:ef:b9:25:c7:84:6e:e2:55:58:23:1f: 43:76:20:3b:55:08:e7:6c:4b:1a:c1:27:f3:5c:42:eb:5b:ed: 24:f6:94:47:85:3c:16:89:58:4b:d0:b6:de:61:7b:8a:1d:a1: d6:9d:80:9c:47:fe:c1:54:2e:c8:47:db:79:7c:15:a2:6f:51: 3b:d5:b3:c8:d2:b9:4b:57:f7:a9:49:3f:6f:6e:f2:bc:bd:04: ee:1b:7b:cc:dc:83:e3:42:9e:9f:ec:ac:df:ee:ba:b1:72:1f: f1:1e:2c:f6:39:00:46:8a:be:d9:d4:22:11:e2:de:06:7b:e2: e8:5c:0b:b3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC+YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3NDJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERDRjZDNjYwQkE4QjI2 RTU4NTAwMkNEOTFFMjI4RDk1Qjk5MjIzMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjIOhXq1afmdZRRGciuDUdQiVIENorhqk1TBa2RrYvOAh98cZB hgzZlSHH1Kbc9dp4EPUrOpHk0zmzPfJksuowzTrJDZctCSN6cbVJN+apod4Eo35M YnBHjVpP7WpfURn428edqpDV1gQI3dyClekJYKDAgtocJ/i54/orbRGb93laK2Tz K9ewctU66G4OdMBc2zjJwjaIUyqfcECyVkNyA5ey2XvQ/NjOBNwROyqBIv15RBs3 b3lsK2wcI4URtf1SM9YTkysLSM66Tb089bq0oQBBtTMUcmfMCnvAPDkjq6B7Y5vc swpFBBhi2T54rYw5yItcVnKHrbwHi2uEh395AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3PbGYLqLJuWFACzZHiKNlbmSIyUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzNQYkdZTHFMSnVXRkFDelpIaUtObGJtU0l5VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBQ/AwDQYJKoZIhvcNAQELBQADggEBAEWhIgaeFxx93C78GybvYjbMjU7P 9luGFHrV0AXJbI7d3fz1NW/nCAOPL+2gypOwUSM7ZdrcBaM+GGkFXMCqbuHgHkLe 6V0qLWYQGLDaj1GU3YrTy7iqZB46iLLjkXuAOlS2luMLbcJ23mfPd1QdTz60Vdo/ 0QdX9Sjqi4LP3PWZr4gTA2jvuSXHhG7iVVgjH0N2IDtVCOdsSxrBJ/NcQutb7ST2 lEeFPBaJWEvQtt5he4ododadgJxH/sFULshH23l8FaJvUTvVs8jSuUtX96lJP29u 8ry9BO4be8zcg+NCnp/srN/uurFyH/EeLPY5AEaKvtnUIhHi3gZ74uhcC7M= -----END CERTIFICATE-----Generated at Sat Apr 5 17:42:05 2025 by rpki-client