$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Eo2asCA29t9ScxgScS6qq-V4PZg.roa File: Eo2asCA29t9ScxgScS6qq-V4PZg.roa (raw, json) Hash identifier: 5L9/u3gcOM0cGbtgFzhWuybmejShvkCvCFv85cbvxzY= Subject key identifier: 12:8D:9A:B0:20:36:F6:DF:52:73:18:12:71:2E:AA:AB:E5:78:3D:98 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D8D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Eo2asCA29t9ScxgScS6qq-V4PZg.roa Signing time: Tue 01 Apr 2025 02:21:32 +0000 ROA not before: Tue 01 Apr 2025 02:21:32 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 110.163.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3469 (0xd8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:32 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=128D9AB02036F6DF52731812712EAAABE5783D98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:42:23:51:b3:1d:08:0d:7b:d5:33:57:e9:23: f3:ad:c6:4a:22:1f:87:34:75:4e:b5:92:b8:ed:34: 94:e9:07:f0:d8:61:3d:0d:3f:e3:11:37:d7:0a:1e: a3:88:28:b6:4d:9f:77:47:91:6d:c1:90:f0:7b:03: 52:f3:15:fd:f6:14:c0:38:d4:b7:2a:d1:4f:8a:a7: 3d:44:e0:08:0a:8a:cc:07:a0:f6:69:52:eb:a0:b7: ec:43:9d:df:96:b1:05:9c:aa:2b:90:99:12:3e:e9: 84:86:1b:dd:e4:a6:df:58:d7:00:12:79:4d:03:8b: 9d:db:0e:8c:2d:dd:87:de:40:b4:cb:8a:4e:17:65: a8:66:cb:0c:47:75:37:dd:ad:0a:92:47:17:19:b9: 65:80:c5:58:ab:0d:53:ad:9b:53:45:3b:3e:17:b0: 6c:d6:68:98:fd:04:fd:a5:39:a6:19:04:d0:66:72: cb:3f:ea:7b:d3:36:09:7a:d0:08:57:0a:1c:45:8d: c4:f9:aa:2a:1a:35:00:cc:52:d3:10:82:a8:3b:e1: e0:d8:f5:60:bb:96:52:ff:ad:68:0c:7c:38:d0:30: 01:9c:96:89:fc:ed:b9:8f:9c:0c:39:5d:43:ad:4f: be:f6:16:b2:c8:dd:14:a8:70:b1:0a:79:0a:8b:3a: e2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8D:9A:B0:20:36:F6:DF:52:73:18:12:71:2E:AA:AB:E5:78:3D:98 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Eo2asCA29t9ScxgScS6qq-V4PZg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.163.24.0/21 Signature Algorithm: sha256WithRSAEncryption c7:b0:1f:37:54:62:94:2a:e0:b6:8d:b6:0c:a3:7d:9c:63:19: 11:5a:b1:5e:40:7f:8a:e7:99:60:e5:31:98:8e:82:5d:18:e2: 93:d5:a3:d2:fd:47:c9:64:54:9d:1e:6a:a4:1c:a1:bc:0d:2a: 3f:18:0f:80:60:49:c9:88:00:b1:e8:d1:6a:a1:2a:97:ce:c1: ab:fe:ee:7b:cf:7c:8c:3f:37:98:dd:e3:14:4c:f8:d6:ad:db: 98:ea:89:89:39:21:51:8f:77:7e:4a:9d:21:1b:44:4d:33:dc: a0:c8:24:1d:26:26:48:df:8d:3e:e8:3d:f1:54:29:7b:19:c3: 71:d9:1f:e7:77:7f:d7:6f:4a:47:34:88:00:0b:a4:88:1b:10: 1c:04:ff:ca:09:3b:f2:5e:44:1a:41:ff:84:07:82:d5:f9:a6: a1:2b:a9:91:5d:c8:a2:78:71:00:03:a9:f6:00:3e:24:f7:8a: c6:f3:dc:f0:d8:cb:54:d5:32:2c:4e:28:43:5e:82:1d:99:9e: b4:1d:51:3d:09:06:c7:07:01:ac:73:a5:6c:45:69:dc:ea:97: 91:52:42:9f:1d:90:5b:4f:39:23:58:0d:2d:45:31:a0:8f:0e: 0a:e5:eb:08:15:b1:35:08:32:19:3d:f7:77:64:c5:d3:79:4d: af:1e:c2:ae -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDY0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMzJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDEyOEQ5QUIwMjAzNkY2 REY1MjczMTgxMjcxMkVBQUFCRTU3ODNEOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSQiNRsx0IDXvVM1fpI/OtxkoiH4c0dU61krjtNJTpB/DYYT0N P+MRN9cKHqOIKLZNn3dHkW3BkPB7A1LzFf32FMA41Lcq0U+Kpz1E4AgKiswHoPZp Uuugt+xDnd+WsQWcqiuQmRI+6YSGG93kpt9Y1wASeU0Di53bDowt3YfeQLTLik4X ZahmywxHdTfdrQqSRxcZuWWAxVirDVOtm1NFOz4XsGzWaJj9BP2lOaYZBNBmcss/ 6nvTNgl60AhXChxFjcT5qioaNQDMUtMQgqg74eDY9WC7llL/rWgMfDjQMAGclon8 7bmPnAw5XUOtT772FrLI3RSocLEKeQqLOuI9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUEo2asCA29t9ScxgScS6qq+V4PZgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0VvMmFzQ0EyOXQ5U2N4Z1NjUzZxcS1WNFBaZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANuoxgwDQYJKoZIhvcNAQELBQADggEBAMewHzdUYpQq4LaNtgyjfZxjGRFa sV5Af4rnmWDlMZiOgl0Y4pPVo9L9R8lkVJ0eaqQcobwNKj8YD4BgScmIALHo0Wqh KpfOwav+7nvPfIw/N5jd4xRM+Nat25jqiYk5IVGPd35KnSEbRE0z3KDIJB0mJkjf jT7oPfFUKXsZw3HZH+d3f9dvSkc0iAALpIgbEBwE/8oJO/JeRBpB/4QHgtX5pqEr qZFdyKJ4cQADqfYAPiT3isbz3PDYy1TVMixOKENegh2ZnrQdUT0JBscHAaxzpWxF adzql5FSQp8dkFtPOSNYDS1FMaCPDgrl6wgVsTUIMhk993dkxdN5Ta8ewq4= -----END CERTIFICATE-----Generated at Sat Apr 5 19:18:34 2025 by rpki-client