$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/9E6vyEX9VjUmiuEnlzqrLQR3L10.roa File: 9E6vyEX9VjUmiuEnlzqrLQR3L10.roa (raw, json) Hash identifier: BiL60TXW88umq44vOK6H32hBOvgfOmEtnLswpBPvinI= Subject key identifier: F4:4E:AF:C8:45:FD:56:35:26:8A:E1:27:97:3A:AB:2D:04:77:2F:5D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D2A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9E6vyEX9VjUmiuEnlzqrLQR3L10.roa Signing time: Tue 01 Apr 2025 02:13:51 +0000 ROA not before: Tue 01 Apr 2025 02:13:51 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.78.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3370 (0xd2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:51 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=F44EAFC845FD5635268AE127973AAB2D04772F5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6a:64:29:0a:cc:2b:32:9d:47:35:19:64:52: 0c:98:1e:ad:77:3e:7d:9c:d4:67:d0:a3:bb:a8:cf: 77:62:91:2e:ce:ac:5e:91:f0:de:53:ea:8e:fd:b6: a7:1e:4c:73:b4:22:82:56:f9:cf:de:45:ee:a7:a0: 34:ca:64:63:2d:f5:6b:4f:ea:02:b8:46:9b:fe:c4: e4:0a:f4:20:b1:da:66:26:30:3c:bb:91:c9:82:dd: 36:65:09:c4:01:b5:c5:b5:f3:0f:eb:3f:8f:c1:15: 7d:21:63:5f:6e:44:1e:e6:e7:9e:a9:20:12:21:0b: cc:66:f4:8e:3e:26:1e:aa:12:eb:49:47:46:7b:ad: 92:fb:91:40:58:29:78:70:ae:9a:57:4a:16:95:b8: da:59:b7:38:1e:2c:e7:d5:2b:09:67:3f:16:ad:b0: e0:db:b0:f1:90:7b:54:ef:6b:82:29:a0:b8:bc:1f: 3d:10:af:91:f8:a5:30:f2:4f:7f:b2:90:a8:26:94: 5c:4f:43:5f:c4:69:10:1c:01:95:cb:11:5b:1b:c0: 55:48:d1:55:c2:e8:9d:e2:3d:83:be:62:17:9e:59: 01:0b:ac:55:09:d8:3f:f0:4d:21:19:87:db:78:16: a3:54:1c:71:a6:44:6c:5f:51:44:ad:62:62:d0:ce: 4a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:4E:AF:C8:45:FD:56:35:26:8A:E1:27:97:3A:AB:2D:04:77:2F:5D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9E6vyEX9VjUmiuEnlzqrLQR3L10.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.96.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:e4:fa:62:0e:b8:88:14:5d:13:a4:43:ed:11:e1:76:e4:62: 51:19:7c:02:c2:92:dd:99:47:73:ec:2d:48:fb:56:8b:bd:a2: e8:9a:ce:c8:68:00:60:fc:0d:b7:35:52:32:cd:f2:fb:1f:c2: 3d:2d:d4:43:40:76:0c:a0:97:4e:56:0c:b1:e5:96:f9:c9:d4: d6:cc:79:84:24:a1:4b:80:cb:5c:44:2a:0b:fa:14:b5:96:1d: a7:45:fc:81:cd:3f:96:1e:7c:04:aa:5b:9e:c7:7d:cd:44:de: 38:4c:d9:2c:fe:bd:27:3d:0d:cf:8e:ca:5f:34:92:79:c5:5b: 58:34:55:54:0c:cb:af:b5:c9:8a:3f:1e:0b:d7:58:07:d2:53: 70:5c:95:34:09:94:5c:62:1b:23:e0:cc:38:5c:d6:e6:dd:4d: b2:f7:44:26:ea:21:81:8a:21:a9:59:4d:ce:c9:6d:46:17:35: 3a:29:0a:46:5e:c6:cf:c8:70:d3:65:68:e0:11:8f:4d:34:5a: 61:9a:8b:7f:9f:94:a4:cb:0d:a5:6b:85:a9:11:cf:b5:0c:9a: a9:ee:4d:b5:ea:86:7a:f4:43:59:e8:62:cc:28:df:e9:f3:50: 67:5b:2d:9a:ec:5b:9a:f3:b2:b2:66:39:ea:26:ff:55:34:e6: 2f:f6:9c:a4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDSowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNTFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEY0NEVBRkM4NDVGRDU2 MzUyNjhBRTEyNzk3M0FBQjJEMDQ3NzJGNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaamQpCswrMp1HNRlkUgyYHq13Pn2c1GfQo7uoz3dikS7OrF6R 8N5T6o79tqceTHO0IoJW+c/eRe6noDTKZGMt9WtP6gK4Rpv+xOQK9CCx2mYmMDy7 kcmC3TZlCcQBtcW18w/rP4/BFX0hY19uRB7m556pIBIhC8xm9I4+Jh6qEutJR0Z7 rZL7kUBYKXhwrppXShaVuNpZtzgeLOfVKwlnPxatsODbsPGQe1Tva4IpoLi8Hz0Q r5H4pTDyT3+ykKgmlFxPQ1/EaRAcAZXLEVsbwFVI0VXC6J3iPYO+YheeWQELrFUJ 2D/wTSEZh9t4FqNUHHGmRGxfUUStYmLQzkrjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU9E6vyEX9VjUmiuEnlzqrLQR3L10wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzlFNnZ5RVg5VmpVbWl1RW5senFyTFFSM0wxMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTmAwDQYJKoZIhvcNAQELBQADggEBAE7k+mIOuIgUXROkQ+0R4XbkYlEZ fALCkt2ZR3PsLUj7Vou9ouiazshoAGD8Dbc1UjLN8vsfwj0t1ENAdgygl05WDLHl lvnJ1NbMeYQkoUuAy1xEKgv6FLWWHadF/IHNP5YefASqW57Hfc1E3jhM2Sz+vSc9 Dc+Oyl80knnFW1g0VVQMy6+1yYo/HgvXWAfSU3BclTQJlFxiGyPgzDhc1ubdTbL3 RCbqIYGKIalZTc7JbUYXNTopCkZexs/IcNNlaOARj000WmGai3+flKTLDaVrhakR z7UMmqnuTbXqhnr0Q1noYswo3+nzUGdbLZrsW5rzsrJmOeom/1U05i/2nKQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:02 2025 by rpki-client