$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7tZ2CzZUFji-c716z9OIZRX4qR4.roa File: 7tZ2CzZUFji-c716z9OIZRX4qR4.roa (raw, json) Hash identifier: +UQMWmeGAIrN6emn7UgP4eZIIhEExpIlanwiApVvALY= Subject key identifier: EE:D6:76:0B:36:54:16:38:BE:73:BD:7A:CF:D3:88:65:15:F8:A9:1E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CE2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7tZ2CzZUFji-c716z9OIZRX4qR4.roa Signing time: Tue 01 Apr 2025 02:09:20 +0000 ROA not before: Tue 01 Apr 2025 02:09:20 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 211.14.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3298 (0xce2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:20 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=EED6760B36541638BE73BD7ACFD3886515F8A91E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bf:b7:87:af:de:a4:b9:6c:b7:86:5c:e2:28: 1f:49:4a:b3:be:4d:03:5e:96:6a:be:90:a7:bd:d3: 0a:39:50:cc:8e:66:74:d9:73:42:f8:1e:c0:de:6d: 5b:8d:12:14:d6:79:9b:aa:ad:76:7e:42:0b:d6:e6: 49:54:21:d0:15:1d:cd:d5:1d:9e:6e:81:df:fb:8a: fb:ab:72:5e:2b:de:f2:f8:30:86:8b:1e:7d:c0:cc: 96:45:9f:3c:62:12:d0:c8:01:1c:3e:4d:3b:fd:5f: f1:da:56:3f:c9:96:e7:d2:76:8e:66:3d:9f:27:81: 7e:0c:26:44:84:5b:12:a2:9c:fb:70:d2:c1:f9:c2: a3:b5:4a:d3:c5:43:b6:c0:ea:bb:7f:61:c8:a2:05: 69:bb:c0:23:1a:8d:ba:a2:28:61:f8:30:25:bb:64: e2:80:dc:39:11:5d:9e:42:61:18:56:bb:b1:27:18: 9c:49:4b:21:22:4b:5d:a4:b0:20:91:f8:3f:5b:d9: 07:71:4a:e3:20:c1:e5:f0:c3:6d:b6:ad:d5:e3:0f: 47:2e:44:46:3d:7e:a0:51:81:01:a3:f2:ca:d8:a0: c5:e4:7a:68:a7:fc:ce:73:8b:4c:e7:78:35:da:0c: 7c:2e:7d:0c:fa:47:d1:63:a0:0b:08:f2:b3:34:37: 74:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D6:76:0B:36:54:16:38:BE:73:BD:7A:CF:D3:88:65:15:F8:A9:1E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7tZ2CzZUFji-c716z9OIZRX4qR4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.118.0/23 Signature Algorithm: sha256WithRSAEncryption 85:28:86:5b:78:80:c8:9d:aa:6a:47:83:92:52:69:40:db:e2: f7:5e:dc:75:c9:48:3d:79:64:27:a4:99:a5:d0:47:a5:94:e3: d1:1c:b2:5a:a3:49:70:a0:06:e2:30:d1:70:01:c4:8e:f8:1a: 2b:2a:77:5e:f1:d7:01:05:bc:e6:03:18:bc:3b:6c:77:f2:4e: a5:01:35:ba:19:cf:c7:49:80:7b:08:44:1e:d7:9e:6d:49:bd: 89:5d:da:98:b5:c0:c9:3e:3b:c7:1a:5b:20:d2:b7:90:c0:14: 7d:b1:42:e2:ce:a7:12:4c:9d:c9:31:4b:69:a5:6d:39:c5:34: ea:ee:ce:cf:82:b2:89:69:24:35:ea:fc:b4:ee:04:fe:a1:81: b8:f3:bd:6b:e6:0d:68:39:27:8c:f6:21:4d:c8:5e:1b:46:01: bf:d7:49:04:d5:50:4f:a2:3c:66:7d:68:70:1b:00:cc:6f:7f: c9:b1:f8:90:4c:9c:07:1e:49:1e:48:52:4b:9b:a6:26:66:df: 73:27:bf:f4:9d:34:18:a5:a8:a2:05:7c:aa:4d:f9:9d:18:7f: 61:68:16:56:74:ca:cf:fd:7d:73:3c:38:3b:af:b6:3f:73:12: 6d:24:68:d1:d0:68:73:12:e0:87:dd:6e:19:70:e9:3d:a3:36: b9:82:f0:a4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MjBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEVFRDY3NjBCMzY1NDE2 MzhCRTczQkQ3QUNGRDM4ODY1MTVGOEE5MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMv7eHr96kuWy3hlziKB9JSrO+TQNelmq+kKe90wo5UMyOZnTZ c0L4HsDebVuNEhTWeZuqrXZ+QgvW5klUIdAVHc3VHZ5ugd/7ivurcl4r3vL4MIaL Hn3AzJZFnzxiEtDIARw+TTv9X/HaVj/JlufSdo5mPZ8ngX4MJkSEWxKinPtw0sH5 wqO1StPFQ7bA6rt/YciiBWm7wCMajbqiKGH4MCW7ZOKA3DkRXZ5CYRhWu7EnGJxJ SyEiS12ksCCR+D9b2QdxSuMgweXww222rdXjD0cuREY9fqBRgQGj8srYoMXkemin /M5zi0zneDXaDHwufQz6R9FjoAsI8rM0N3RzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU7tZ2CzZUFji+c716z9OIZRX4qR4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Lzd0WjJDelpVRmppLWM3MTZ6OU9JWlJYNHFSNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHTDnYwDQYJKoZIhvcNAQELBQADggEBAIUohlt4gMidqmpHg5JSaUDb4vde 3HXJSD15ZCekmaXQR6WU49EcslqjSXCgBuIw0XABxI74Gisqd17x1wEFvOYDGLw7 bHfyTqUBNboZz8dJgHsIRB7Xnm1JvYld2pi1wMk+O8caWyDSt5DAFH2xQuLOpxJM nckxS2mlbTnFNOruzs+CsolpJDXq/LTuBP6hgbjzvWvmDWg5J4z2IU3IXhtGAb/X SQTVUE+iPGZ9aHAbAMxvf8mx+JBMnAceSR5IUkubpiZm33Mnv/SdNBilqKIFfKpN +Z0Yf2FoFlZ0ys/9fXM8ODuvtj9zEm0kaNHQaHMS4Ifdbhlw6T2jNrmC8KQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:34 2025 by rpki-client