$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8691FBDrIEC_0JPQhKBn2TwFcFs.roa File: 8691FBDrIEC_0JPQhKBn2TwFcFs.roa (raw, json) Hash identifier: mBd4Z+wWGwkD2p2l474DmYvmhQR3Zg8mZs7ez551Iqs= Subject key identifier: F3:AF:75:14:10:EB:20:40:BF:D0:93:D0:84:A0:67:D9:3C:05:70:5B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C4F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8691FBDrIEC_0JPQhKBn2TwFcFs.roa Signing time: Tue 01 Apr 2025 01:57:23 +0000 ROA not before: Tue 01 Apr 2025 01:57:23 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 110.158.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3151 (0xc4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:57:23 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=F3AF751410EB2040BFD093D084A067D93C05705B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:65:25:37:5e:ea:0f:a6:0a:84:20:e5:59:a6: e2:bc:cb:67:65:59:be:55:73:13:a7:03:0b:ec:ac: 6d:12:39:69:20:8d:fd:14:9b:86:70:25:07:54:e1: 1d:9f:9a:fb:b1:17:c5:16:ec:a3:6d:5b:2e:fe:18: d1:e1:f2:96:49:18:ef:3b:8f:8d:31:3e:02:b7:dc: 4c:0f:43:9e:58:b4:85:8d:c7:6f:3e:4a:1e:61:4b: 86:e8:94:cf:fd:8c:46:1a:17:6b:a0:02:22:f0:39: cb:cf:dd:7f:de:3f:8f:63:92:81:cc:e8:35:3b:25: 57:d6:a0:67:47:db:cb:98:be:9a:f2:de:fc:2d:ee: 73:3a:cc:f0:5d:f9:6d:29:e3:e0:ee:4d:57:7d:33: b8:58:08:21:eb:7a:bb:7d:01:ea:ca:7c:2e:20:16: 5f:cc:85:d6:7e:0f:e6:4a:d1:df:f9:7b:16:0f:58: 16:a7:93:3e:d0:08:45:a7:80:d6:6b:ea:c1:8b:8f: 04:28:39:6f:b3:27:96:d1:e3:de:35:21:08:f9:74: 4e:a4:4c:e5:28:3b:f2:31:f6:95:d0:44:b5:23:13: 33:3a:72:3e:3f:73:08:a2:d8:96:35:38:25:39:03: 11:50:45:ad:a4:c3:e1:c8:13:1c:36:2a:04:8e:27: 3c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:AF:75:14:10:EB:20:40:BF:D0:93:D0:84:A0:67:D9:3C:05:70:5B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8691FBDrIEC_0JPQhKBn2TwFcFs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.144.0/20 Signature Algorithm: sha256WithRSAEncryption e6:66:43:1c:f9:76:e1:b4:15:3f:dc:d5:ed:b3:90:a1:e7:a9: b7:9d:81:fe:68:ae:19:88:e7:ee:11:d1:de:68:9f:6a:07:77: 0f:48:6e:ef:0f:3e:90:49:b6:7a:13:4a:43:03:ff:59:9c:53: 35:84:91:25:7f:62:f0:71:ae:36:a0:90:27:62:17:83:0c:32: 29:4a:ab:b1:f1:d7:86:75:eb:27:c0:37:12:a1:1c:9e:72:4e: 32:c5:a2:73:5b:d1:87:c1:e2:2f:0f:03:dd:be:11:d1:45:21: 85:ff:13:3e:2f:cb:9b:59:c5:b6:3b:63:40:9f:fa:77:0e:ba: 65:34:bd:56:96:a8:be:96:a9:5f:5f:59:dd:8c:43:c4:21:c4: 03:37:24:82:21:80:f5:b7:d9:54:58:ec:2c:85:40:b5:b7:a9: 11:e2:d0:5d:93:67:11:a2:14:2c:e0:f7:53:e7:52:ee:cc:b5: 99:94:ec:3b:bf:b2:d7:09:42:0b:7a:a0:03:bf:4c:b8:67:75: 20:2d:07:20:7e:4e:13:04:77:0a:36:c0:69:e5:f4:a5:19:12: 19:f2:75:8f:14:78:7d:3d:48:c7:93:e4:e3:73:a5:d6:97:46: 37:39:38:6f:85:e1:fe:77:2a:c7:ae:f9:05:e1:63:c9:8b:ea: 95:b9:48:b8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDE8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU3MjNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEYzQUY3NTE0MTBFQjIw NDBCRkQwOTNEMDg0QTA2N0Q5M0MwNTcwNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmZSU3XuoPpgqEIOVZpuK8y2dlWb5VcxOnAwvsrG0SOWkgjf0U m4ZwJQdU4R2fmvuxF8UW7KNtWy7+GNHh8pZJGO87j40xPgK33EwPQ55YtIWNx28+ Sh5hS4bolM/9jEYaF2ugAiLwOcvP3X/eP49jkoHM6DU7JVfWoGdH28uYvpry3vwt 7nM6zPBd+W0p4+DuTVd9M7hYCCHrert9AerKfC4gFl/MhdZ+D+ZK0d/5exYPWBan kz7QCEWngNZr6sGLjwQoOW+zJ5bR4941IQj5dE6kTOUoO/Ix9pXQRLUjEzM6cj4/ cwii2JY1OCU5AxFQRa2kw+HIExw2KgSOJzzvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8691FBDrIEC/0JPQhKBn2TwFcFswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5Lzg2OTFGQkRySUVDXzBKUFFoS0JuMlR3RmNGcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARunpAwDQYJKoZIhvcNAQELBQADggEBAOZmQxz5duG0FT/c1e2zkKHnqbed gf5orhmI5+4R0d5on2oHdw9Ibu8PPpBJtnoTSkMD/1mcUzWEkSV/YvBxrjagkCdi F4MMMilKq7Hx14Z16yfANxKhHJ5yTjLFonNb0YfB4i8PA92+EdFFIYX/Ez4vy5tZ xbY7Y0Cf+ncOumU0vVaWqL6WqV9fWd2MQ8QhxAM3JIIhgPW32VRY7CyFQLW3qRHi 0F2TZxGiFCzg91PnUu7MtZmU7Du/stcJQgt6oAO/TLhndSAtByB+ThMEdwo2wGnl 9KUZEhnydY8UeH09SMeT5ONzpdaXRjc5OG+F4f53Kseu+QXhY8mL6pW5SLg= -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:30 2025 by rpki-client