$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/B5YQDsUYjb-g6gkLScIG_JELnqs.roa File: B5YQDsUYjb-g6gkLScIG_JELnqs.roa (raw, json) Hash identifier: N/NZHCbUpA+s2L/95HYOy6m6r7imrbyhNcCByZZ+rzE= Subject key identifier: 07:96:10:0E:C5:18:8D:BF:A0:EA:09:0B:49:C2:06:FC:91:0B:9E:AB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B43 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/B5YQDsUYjb-g6gkLScIG_JELnqs.roa Signing time: Thu 06 Mar 2025 07:08:36 +0000 ROA not before: Thu 06 Mar 2025 07:08:36 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2883 (0xb43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 6 07:08:36 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=0796100EC5188DBFA0EA090B49C206FC910B9EAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c9:1f:e9:82:19:15:6a:ad:c4:11:a4:88:e4: 50:55:e6:39:5f:96:16:89:9d:a9:6c:5b:7c:e8:3c: fe:02:29:9a:da:d5:3c:e6:a3:4c:dd:7a:11:7e:28: 8a:19:95:de:5e:36:85:a9:2f:bc:23:8f:01:36:cc: 08:63:62:83:17:74:66:b2:f8:fd:73:b7:07:cd:52: 09:9a:36:b4:1f:47:f0:d1:5c:1d:7e:b3:e4:33:4d: c3:06:e8:3c:f9:ef:69:e4:99:ae:54:98:16:7c:3b: 54:1b:80:11:e0:17:8f:9a:b4:19:97:fe:6e:80:2e: 18:a3:ef:f7:43:ce:98:55:41:37:a4:70:bd:c1:78: 54:20:82:cc:2e:d5:15:a6:ed:d9:70:5a:21:ef:b5: 75:4e:de:15:74:12:17:24:41:0c:23:49:ab:86:72: 74:49:78:3c:8c:3d:ab:af:87:2b:51:5c:4c:54:37: b3:55:d4:9c:f5:7a:2f:9d:11:e7:7f:98:8b:5f:dd: 5a:7f:85:ef:81:16:dd:fa:2b:42:1f:d5:01:e8:10: 4a:9e:f6:6c:13:4c:a7:10:ea:f9:70:29:b1:d9:19: 8f:42:16:51:16:bd:93:f2:b8:91:30:59:5a:d3:21: ce:7d:72:7f:ac:ce:b4:bd:8c:ed:e9:ee:72:92:b0: 9e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:96:10:0E:C5:18:8D:BF:A0:EA:09:0B:49:C2:06:FC:91:0B:9E:AB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/B5YQDsUYjb-g6gkLScIG_JELnqs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.127.0/24 Signature Algorithm: sha256WithRSAEncryption d4:35:68:c5:15:e7:98:e1:f5:0f:52:12:87:ae:cb:a3:0f:70: 25:6b:0d:1e:1e:bb:67:57:43:21:e0:86:14:d1:03:64:4a:a2: 1a:66:b3:15:ee:a3:9a:40:1a:fd:4a:69:90:e1:56:7c:b1:48: e3:d0:7c:4b:66:d6:b8:f2:8c:8a:bb:8d:e7:52:35:02:bc:22: a5:0b:79:9a:95:54:59:56:a0:89:a5:45:7b:99:fa:41:97:7d: a7:79:c1:df:54:45:77:71:e0:55:48:43:44:75:f7:d3:5a:9b: 7e:a3:b6:b6:b9:d3:60:a2:89:44:c3:36:83:3f:b2:d2:9b:2a: ab:75:a6:1a:1b:8a:c4:f3:7c:c6:ae:9f:08:a7:90:e2:43:a7: c8:fc:3b:08:d5:b3:53:68:a4:4f:43:8b:65:f3:2a:fa:82:36: a6:67:36:10:d3:61:91:69:10:aa:c0:4b:f3:13:48:71:76:6d: f9:30:3d:0a:a2:e3:d5:35:08:73:ae:55:e8:1c:27:57:b8:4f: 2d:01:ae:c0:61:58:99:bf:81:c5:e0:05:d8:da:a8:ab:9a:18: ee:2a:28:b0:13:68:e1:08:d3:64:b6:4d:04:b0:f5:c0:bc:a2: 89:aa:7b:e6:40:42:62:f1:25:7b:42:3b:05:f6:7e:b0:5e:d0: 28:c4:4a:91 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC0MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAzMDYw NzA4MzZaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA3OTYxMDBFQzUxODhE QkZBMEVBMDkwQjQ5QzIwNkZDOTEwQjlFQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuyR/pghkVaq3EEaSI5FBV5jlflhaJnalsW3zoPP4CKZra1Tzm o0zdehF+KIoZld5eNoWpL7wjjwE2zAhjYoMXdGay+P1ztwfNUgmaNrQfR/DRXB1+ s+QzTcMG6Dz572nkma5UmBZ8O1QbgBHgF4+atBmX/m6ALhij7/dDzphVQTekcL3B eFQggswu1RWm7dlwWiHvtXVO3hV0EhckQQwjSauGcnRJeDyMPauvhytRXExUN7NV 1Jz1ei+dEed/mItf3Vp/he+BFt36K0If1QHoEEqe9mwTTKcQ6vlwKbHZGY9CFlEW vZPyuJEwWVrTIc59cn+szrS9jO3p7nKSsJ5NAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUB5YQDsUYjb+g6gkLScIG/JELnqswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0I1WVFEc1VZamItZzZna0xTY0lHX0pFTG5xcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABS38wDQYJKoZIhvcNAQELBQADggEBANQ1aMUV55jh9Q9SEoeuy6MPcCVr DR4eu2dXQyHghhTRA2RKohpmsxXuo5pAGv1KaZDhVnyxSOPQfEtm1rjyjIq7jedS NQK8IqULeZqVVFlWoImlRXuZ+kGXfad5wd9URXdx4FVIQ0R199Nam36jtra502Ci iUTDNoM/stKbKqt1phobisTzfMaunwinkOJDp8j8OwjVs1NopE9Di2XzKvqCNqZn NhDTYZFpEKrAS/MTSHF2bfkwPQqi49U1CHOuVegcJ1e4Ty0BrsBhWJm/gcXgBdja qKuaGO4qKLATaOEI02S2TQSw9cC8oomqe+ZAQmLxJXtCOwX2frBe0CjESpE= -----END CERTIFICATE-----Generated at Sun Apr 6 12:25:48 2025 by rpki-client