$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8k2j3BMiOhegIIHrFYbGQtsyw04.roa File: 8k2j3BMiOhegIIHrFYbGQtsyw04.roa (raw, json) Hash identifier: mnEnOay2rlmBVpEgT1MWy3QHtwmooUmS/wvKFdZkc5U= Subject key identifier: F2:4D:A3:DC:13:22:3A:17:A0:20:81:EB:15:86:C6:42:DB:32:C3:4E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E28 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8k2j3BMiOhegIIHrFYbGQtsyw04.roa Signing time: Tue 01 Apr 2025 02:33:30 +0000 ROA not before: Tue 01 Apr 2025 02:33:30 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 183.74.8.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3624 (0xe28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:33:30 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=F24DA3DC13223A17A02081EB1586C642DB32C34E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:14:a9:cb:af:2d:b1:f4:8e:d7:8d:2a:bd:2d: a4:0b:4d:40:57:d5:9a:78:6a:79:e8:3a:84:15:30: ed:bf:58:27:1b:c3:54:b6:3a:06:0a:28:16:9b:0b: 72:74:27:b9:02:db:0d:d6:5e:78:9d:52:0e:32:1e: 56:1b:f2:80:6b:a8:5d:75:05:9c:79:aa:d2:b4:c9: 3d:a3:d2:81:12:64:34:74:e6:b6:ee:a3:11:f4:85: b7:d7:36:2d:ca:ef:2e:8b:4f:81:73:85:48:c0:3f: 06:26:18:f6:84:2c:1a:fc:5a:61:d7:47:1a:3c:7c: 2e:72:71:db:b9:50:c7:d7:1f:32:6f:63:a1:34:9f: f6:46:60:b0:af:70:5a:65:99:7d:d1:d8:1e:9d:df: cd:fd:90:2e:e7:95:4b:b1:5e:ba:b9:b9:f9:6a:b9: 2a:c1:00:38:4b:e2:5f:29:11:e3:39:46:dc:4e:f6: 50:c8:12:0e:e1:8e:2b:59:d8:3c:dc:bc:d6:e8:3e: 29:73:69:e8:f8:3b:4e:07:9e:e4:ad:77:f9:5a:25: 74:d7:53:d9:08:53:cf:bd:09:31:29:4b:35:26:7c: 51:df:d9:64:6a:56:eb:e1:c7:9d:22:c2:f4:ec:87: ac:6d:4d:2a:12:bc:33:59:e0:f8:22:f2:98:b8:78: 34:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:4D:A3:DC:13:22:3A:17:A0:20:81:EB:15:86:C6:42:DB:32:C3:4E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8k2j3BMiOhegIIHrFYbGQtsyw04.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.74.8.0/23 Signature Algorithm: sha256WithRSAEncryption d2:ef:b8:5b:53:dc:9f:86:4c:8b:c3:b3:3e:eb:d2:69:1c:23: 6b:25:5d:4a:69:6a:66:c8:09:98:3a:c5:d9:2e:2a:ac:0f:ad: 46:3c:31:85:49:59:00:47:61:a1:8c:f1:6c:4f:fa:af:bc:9a: c4:6e:11:2b:5e:ec:97:e6:16:3c:f1:0b:3e:77:45:c6:c5:4b: 2a:1a:28:5b:f3:01:dc:b7:92:ac:a2:21:49:a3:52:2f:68:b2: cf:00:ce:65:d2:f1:85:7f:5f:74:7b:85:65:b9:38:01:b2:18: 3a:45:d6:39:0b:4e:10:e4:f9:03:36:24:ab:91:6c:e2:a4:13: 67:f2:77:a6:7e:6e:e9:fb:74:f8:ea:5e:72:aa:cd:f0:15:24: b9:c7:08:9c:f8:83:d4:d8:39:56:8d:be:69:ea:0f:0e:66:cc: 8b:01:f9:90:57:b4:5c:ad:89:1d:2c:be:81:e8:af:e1:5f:06: 93:03:1e:4d:ea:02:73:5b:66:f3:3a:4e:57:66:7c:98:f8:74: ef:ca:85:34:11:8c:09:e2:b6:4b:3c:12:3c:34:38:c9:29:a7: 7a:4b:a8:6b:df:ec:9f:9d:f0:ea:e9:99:b9:0d:28:ee:39:de: e9:a4:57:1a:2e:3f:93:2f:1e:ed:2b:d3:12:c8:6d:1f:16:60: 65:dc:59:65 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDigwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMzMzBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEYyNERBM0RDMTMyMjNB MTdBMDIwODFFQjE1ODZDNjQyREIzMkMzNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnFKnLry2x9I7XjSq9LaQLTUBX1Zp4annoOoQVMO2/WCcbw1S2 OgYKKBabC3J0J7kC2w3WXnidUg4yHlYb8oBrqF11BZx5qtK0yT2j0oESZDR05rbu oxH0hbfXNi3K7y6LT4FzhUjAPwYmGPaELBr8WmHXRxo8fC5ycdu5UMfXHzJvY6E0 n/ZGYLCvcFplmX3R2B6d3839kC7nlUuxXrq5uflquSrBADhL4l8pEeM5RtxO9lDI Eg7hjitZ2DzcvNboPilzaej4O04HnuStd/laJXTXU9kIU8+9CTEpSzUmfFHf2WRq Vuvhx50iwvTsh6xtTSoSvDNZ4Pgi8pi4eDS9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8k2j3BMiOhegIIHrFYbGQtsyw04wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzhrMmozQk1pT2hlZ0lJSHJGWWJHUXRzeXcwNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAG3SggwDQYJKoZIhvcNAQELBQADggEBANLvuFtT3J+GTIvDsz7r0mkcI2sl XUppambICZg6xdkuKqwPrUY8MYVJWQBHYaGM8WxP+q+8msRuESte7JfmFjzxCz53 RcbFSyoaKFvzAdy3kqyiIUmjUi9oss8AzmXS8YV/X3R7hWW5OAGyGDpF1jkLThDk +QM2JKuRbOKkE2fyd6Z+bun7dPjqXnKqzfAVJLnHCJz4g9TYOVaNvmnqDw5mzIsB +ZBXtFytiR0svoHor+FfBpMDHk3qAnNbZvM6TldmfJj4dO/KhTQRjAnitks8Ejw0 OMkpp3pLqGvf7J+d8OrpmbkNKO453umkVxouP5MvHu0r0xLIbR8WYGXcWWU= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:18 2025 by rpki-client