$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4A-Oq96CsEVQBi_Z6DX8IH6NCTc.roa File: 4A-Oq96CsEVQBi_Z6DX8IH6NCTc.roa (raw, json) Hash identifier: DZVlAtKNJE2tbdFLj7BhHXyxOr229eJ6PjNsHmkihjc= Subject key identifier: E0:0F:8E:AB:DE:82:B0:45:50:06:2F:D9:E8:35:FC:20:7E:8D:09:37 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D04 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4A-Oq96CsEVQBi_Z6DX8IH6NCTc.roa Signing time: Tue 01 Apr 2025 02:11:38 +0000 ROA not before: Tue 01 Apr 2025 02:11:38 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 183.74.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3332 (0xd04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:38 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E00F8EABDE82B04550062FD9E835FC207E8D0937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0c:d3:cd:93:74:6c:8f:c9:5b:93:ef:4c:ee: 88:2c:72:ed:84:8b:25:76:03:fa:58:cf:13:22:92: e7:31:9f:f0:37:b9:67:59:b7:d5:80:07:ca:42:4c: 33:bd:b3:c6:f2:12:7e:59:4f:02:17:25:0b:f6:6d: cf:4d:cd:a8:d1:18:ad:0d:9d:28:0c:46:b6:ef:e9: f2:66:54:6f:b3:c1:90:ab:01:a0:19:ca:39:1d:a8: 01:7b:9b:10:0f:c1:69:64:68:ac:d6:1e:7b:f3:a6: 91:34:b0:c5:d2:69:9b:48:8b:97:41:58:c4:c3:cf: 21:89:78:79:c6:5e:1a:f7:d6:ef:0e:8c:69:a7:14: 09:6c:04:9f:93:26:0d:aa:08:e9:20:e6:ce:e5:95: 94:3e:5a:bf:65:1c:ff:91:80:58:14:ec:3c:2a:f8: c3:97:e2:f9:58:34:55:c6:f0:35:e4:46:5a:7a:62: 2e:2c:05:5f:f5:59:e3:b7:e7:84:62:64:c9:30:73: 5b:33:a6:86:cf:35:c4:b3:c0:18:de:9d:08:4d:65: f4:a3:84:a9:79:68:fb:5d:7e:55:1a:60:ad:ef:77: a1:28:e5:08:53:d7:1e:a8:e3:5e:f2:5f:b7:f2:c9: 78:93:dc:3c:21:4c:e7:31:dd:ff:56:39:b6:18:77: a2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:0F:8E:AB:DE:82:B0:45:50:06:2F:D9:E8:35:FC:20:7E:8D:09:37 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4A-Oq96CsEVQBi_Z6DX8IH6NCTc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.74.240.0/21 Signature Algorithm: sha256WithRSAEncryption 24:6c:78:4b:66:b1:e3:ba:7b:4d:9c:1c:2d:41:ef:43:a8:0d: 05:28:9e:32:34:86:d2:af:25:08:94:59:30:71:fa:a7:de:7c: d8:58:42:a5:ce:dd:97:3b:80:7e:c5:81:d0:1e:9f:db:06:21: f8:f9:96:76:a7:45:96:ec:f1:16:b5:61:db:a3:b1:55:39:e0: 33:32:b1:d2:eb:49:e0:9c:ae:8a:c5:c7:b3:90:78:ba:d0:26: fc:62:5e:7a:62:c4:3b:6e:3e:0d:df:ee:c8:8b:93:56:c2:14: c4:9e:af:b8:3e:8a:72:3c:70:4a:21:98:ea:90:ac:d8:fe:1b: fa:06:58:cb:7e:d0:a5:5d:9a:b2:0d:91:7c:4e:a2:4d:ac:15: 48:57:48:63:1c:b8:29:1d:34:f7:6a:67:1c:b2:fb:c2:ba:46: ee:9d:fd:56:f2:79:85:c6:7c:7f:7b:fb:a4:e2:4c:61:6d:aa: 4b:2a:b2:32:be:fb:73:0e:44:eb:88:9b:e4:3d:9c:e9:b5:68: 92:de:32:ec:a9:b7:01:b9:c4:b8:ef:70:ab:9d:76:0b:a7:9b: 22:98:f4:64:fb:ce:e0:02:5e:22:8c:42:83:84:85:12:b5:4e: 2e:e5:66:de:b8:70:d7:fa:b0:fe:2c:c4:1e:99:c3:1a:a2:d5: e9:69:ee:ea -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDQQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExMzhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUwMEY4RUFCREU4MkIw NDU1MDA2MkZEOUU4MzVGQzIwN0U4RDA5MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLDNPNk3Rsj8lbk+9M7ogscu2EiyV2A/pYzxMikucxn/A3uWdZ t9WAB8pCTDO9s8byEn5ZTwIXJQv2bc9NzajRGK0NnSgMRrbv6fJmVG+zwZCrAaAZ yjkdqAF7mxAPwWlkaKzWHnvzppE0sMXSaZtIi5dBWMTDzyGJeHnGXhr31u8OjGmn FAlsBJ+TJg2qCOkg5s7llZQ+Wr9lHP+RgFgU7Dwq+MOX4vlYNFXG8DXkRlp6Yi4s BV/1WeO354RiZMkwc1szpobPNcSzwBjenQhNZfSjhKl5aPtdflUaYK3vd6Eo5QhT 1x6o417yX7fyyXiT3DwhTOcx3f9WObYYd6KvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4A+Oq96CsEVQBi/Z6DX8IH6NCTcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRBLU9xOTZDc0VWUUJpX1o2RFg4SUg2TkNUYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO3SvAwDQYJKoZIhvcNAQELBQADggEBACRseEtmseO6e02cHC1B70OoDQUo njI0htKvJQiUWTBx+qfefNhYQqXO3Zc7gH7FgdAen9sGIfj5lnanRZbs8Ra1Yduj sVU54DMysdLrSeCcrorFx7OQeLrQJvxiXnpixDtuPg3f7siLk1bCFMSer7g+inI8 cEohmOqQrNj+G/oGWMt+0KVdmrINkXxOok2sFUhXSGMcuCkdNPdqZxyy+8K6Ru6d /VbyeYXGfH97+6TiTGFtqksqsjK++3MOROuIm+Q9nOm1aJLeMuyptwG5xLjvcKud dgunmyKY9GT7zuACXiKMQoOEhRK1Ti7lZt64cNf6sP4sxB6Zwxqi1elp7uo= -----END CERTIFICATE-----Generated at Sun Apr 6 13:02:44 2025 by rpki-client