$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CylAD7oAoIN8ZvMn_dvo08Y5VKE.roa File: CylAD7oAoIN8ZvMn_dvo08Y5VKE.roa (raw, json) Hash identifier: qlxMrIwLxhBVoqQp0gwOKZegMVfsxSQg1nsKj3/NC7w= Subject key identifier: 0B:29:40:0F:BA:00:A0:83:7C:66:F3:27:FD:DB:E8:D3:C6:39:54:A1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BD4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CylAD7oAoIN8ZvMn_dvo08Y5VKE.roa Signing time: Tue 01 Apr 2025 01:47:34 +0000 ROA not before: Tue 01 Apr 2025 01:47:34 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3028 (0xbd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:34 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=0B29400FBA00A0837C66F327FDDBE8D3C63954A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:81:8b:db:fa:88:db:68:22:6c:34:f4:10:f7: 9a:75:a5:e4:76:95:1b:02:2e:1d:b4:6a:43:b4:29: 63:59:d5:00:7b:84:1e:18:e6:65:cc:90:90:e8:74: 2c:67:e3:8a:23:cc:72:d2:f8:82:6a:ab:46:fb:4c: 15:e8:28:e2:e7:00:a9:64:91:6a:ae:19:6b:93:30: 6f:35:09:d7:fd:95:a8:8d:21:98:1b:de:5f:65:75: a0:b7:97:88:48:f0:53:66:0b:d9:4b:50:28:01:40: 50:cb:73:b0:17:79:60:08:01:2f:4b:ca:3a:e3:ff: cb:38:14:23:f5:50:b8:4f:0f:7b:c6:dd:65:36:8e: a8:3e:a5:b3:d5:77:5d:3e:ad:8e:f5:c6:7a:93:c7: 93:66:ba:26:99:58:e7:75:2e:4a:13:6d:d6:0c:24: 57:1f:48:bc:e1:b0:3f:f7:19:15:15:29:51:80:08: ce:e9:d8:bb:a6:2e:8a:6f:30:81:58:44:25:aa:e9: 97:77:ea:c0:5f:80:59:7b:61:ac:74:06:14:b8:fa: 6e:e3:70:2a:34:bd:41:a7:6e:12:fe:ab:74:5b:3e: 3c:53:26:84:b6:4b:a8:91:67:21:47:f9:b6:9f:dd: c0:0e:4e:aa:65:14:1b:21:f7:3e:4c:c0:9a:fd:6a: c5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:29:40:0F:BA:00:A0:83:7C:66:F3:27:FD:DB:E8:D3:C6:39:54:A1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CylAD7oAoIN8ZvMn_dvo08Y5VKE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.204.0/22 Signature Algorithm: sha256WithRSAEncryption 96:dd:5a:b1:53:77:03:f7:41:da:fe:2b:26:25:d9:cb:0d:2a: dc:be:b8:49:35:e1:63:3e:e8:9e:d3:58:9f:6a:2a:6f:e3:f3: 2d:4f:87:95:96:be:18:e7:b1:d7:4b:03:0f:80:de:4c:73:83: 18:19:ad:2e:4a:41:94:88:b2:33:39:0d:61:00:27:3f:7e:b7: 72:dd:35:cc:74:31:d2:dd:a9:de:b1:7a:1d:b0:f6:71:fd:ec: a6:d8:5a:ee:04:4a:dd:72:3e:c6:4a:0a:8c:a5:59:31:c9:05: cc:6f:c0:b3:52:a0:a4:77:e1:af:ad:c7:50:f4:4a:f7:88:19: 35:b2:d2:ae:b3:d5:e9:6a:2d:3f:ad:43:94:ee:9b:e1:f2:c4: 75:a0:e6:8c:46:bf:bd:57:3b:44:44:72:b9:f5:ed:16:05:a1: 62:96:d6:bc:b7:0e:7f:f3:f5:df:de:9b:ea:61:24:3e:8d:ef: 12:a1:a0:c4:09:ec:66:22:76:ce:12:5b:dd:44:da:6d:f7:25: 9e:87:c3:90:4b:6b:19:52:3e:e3:aa:63:4b:66:fe:e8:fd:2f: 84:1e:7f:4f:21:9f:9e:38:f1:b0:2f:00:29:4b:c9:48:d1:f3: ce:ed:d4:16:87:00:99:ee:71:b9:a2:c9:2c:4f:4c:30:b3:ef: 2e:68:3f:0c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC9QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3MzRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBCMjk0MDBGQkEwMEEw ODM3QzY2RjMyN0ZEREJFOEQzQzYzOTU0QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClgYvb+ojbaCJsNPQQ95p1peR2lRsCLh20akO0KWNZ1QB7hB4Y 5mXMkJDodCxn44ojzHLS+IJqq0b7TBXoKOLnAKlkkWquGWuTMG81Cdf9laiNIZgb 3l9ldaC3l4hI8FNmC9lLUCgBQFDLc7AXeWAIAS9Lyjrj/8s4FCP1ULhPD3vG3WU2 jqg+pbPVd10+rY71xnqTx5NmuiaZWOd1LkoTbdYMJFcfSLzhsD/3GRUVKVGACM7p 2LumLopvMIFYRCWq6Zd36sBfgFl7Yax0BhS4+m7jcCo0vUGnbhL+q3RbPjxTJoS2 S6iRZyFH+baf3cAOTqplFBsh9z5MwJr9asU/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCylAD7oAoIN8ZvMn/dvo08Y5VKEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0N5bEFEN29Bb0lOOFp2TW5fZHZvMDhZNVZLRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS8wwDQYJKoZIhvcNAQELBQADggEBAJbdWrFTdwP3Qdr+KyYl2csNKty+ uEk14WM+6J7TWJ9qKm/j8y1Ph5WWvhjnsddLAw+A3kxzgxgZrS5KQZSIsjM5DWEA Jz9+t3LdNcx0MdLdqd6xeh2w9nH97KbYWu4ESt1yPsZKCoylWTHJBcxvwLNSoKR3 4a+tx1D0SveIGTWy0q6z1elqLT+tQ5Tum+HyxHWg5oxGv71XO0REcrn17RYFoWKW 1ry3Dn/z9d/em+phJD6N7xKhoMQJ7GYids4SW91E2m33JZ6Hw5BLaxlSPuOqY0tm /uj9L4Qef08hn5448bAvAClLyUjR887t1BaHAJnucbmiySxPTDCz7y5oPww= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:49 2025 by rpki-client