$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ErKTqf0BqQWNW33aLLck7tUgd3A.roa File: ErKTqf0BqQWNW33aLLck7tUgd3A.roa (raw, json) Hash identifier: qFhPe8HiQrW0k6+noLb1F3TwgxGsko6zZIoOq3mhvCs= Subject key identifier: 12:B2:93:A9:FD:01:A9:05:8D:5B:7D:DA:2C:B7:24:EE:D5:20:77:70 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B62 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ErKTqf0BqQWNW33aLLck7tUgd3A.roa Signing time: Tue 01 Apr 2025 01:33:25 +0000 ROA not before: Tue 01 Apr 2025 01:33:25 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 219.122.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2914 (0xb62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:25 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=12B293A9FD01A9058D5B7DDA2CB724EED5207770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:73:21:ad:80:87:7f:91:c7:af:6d:73:0f:79: ea:35:03:b1:cd:f1:3a:4d:6d:33:7b:fb:25:c4:5c: 89:2c:cf:3f:f4:67:5b:5d:29:60:bd:e3:e0:33:84: 95:91:c9:61:00:14:81:b0:04:37:bf:65:71:f1:0c: c3:0c:9f:8b:8a:ba:43:c5:99:5e:2d:12:c6:c3:9d: 8c:fd:1e:cb:49:2d:0e:f0:37:7e:d6:d5:c4:25:33: 0b:b9:31:4a:f0:2e:2f:0a:42:57:65:eb:b6:06:26: f4:7a:56:2d:f2:2f:32:70:1f:a0:66:05:1d:9f:2a: c0:b2:28:48:fe:78:7a:2b:2b:9e:8c:71:b2:02:bb: a4:56:61:82:4c:2d:ce:70:2e:69:a9:37:2f:de:88: fc:a4:ce:16:a2:77:69:04:d6:0c:a5:35:d9:38:dd: 6a:4b:46:72:f9:f9:23:fb:45:4b:ab:05:18:1d:44: 8b:2b:0a:5a:3f:e2:1f:c5:0a:fa:3d:78:82:b6:c5: 0c:64:3c:e7:e0:db:ed:b4:f0:d6:b2:bf:f7:e7:c2: 7e:00:7d:5a:d0:52:1c:e2:af:7c:c5:e8:56:d4:8a: 5f:17:8a:47:73:b7:33:34:5a:ca:4d:62:5e:9d:95: 37:f3:99:5a:c8:27:20:0c:78:4d:64:dd:89:6e:df: c5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B2:93:A9:FD:01:A9:05:8D:5B:7D:DA:2C:B7:24:EE:D5:20:77:70 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ErKTqf0BqQWNW33aLLck7tUgd3A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.122.72.0/21 Signature Algorithm: sha256WithRSAEncryption 24:9b:aa:f3:a6:31:68:18:94:95:a9:3c:a9:79:ce:74:a2:fc: f1:85:5a:e6:37:db:ae:85:a6:26:98:99:98:5d:d5:6f:e9:2b: 58:0c:6f:26:67:11:bf:2a:0e:14:32:74:1d:27:ed:38:d8:27: 9a:3b:5c:fa:03:6e:99:2d:92:3d:16:fe:8b:81:d1:3e:d4:6a: d3:2a:77:0d:67:79:ff:16:8c:3f:34:cf:7c:98:3e:69:57:7d: 6a:c1:b2:0b:98:af:d1:5b:c1:38:fb:2f:ec:13:bb:ef:57:9c: d3:b1:8f:22:1b:36:8e:7a:a3:a5:d8:4b:28:d9:de:6f:c8:fa: 3e:db:06:16:7a:4e:d0:87:55:30:18:34:cc:7d:62:2b:22:ff: 81:13:f2:26:4b:35:5f:e1:3b:60:ce:d7:98:8c:21:a9:e0:1a: 48:18:7b:7b:2b:c7:ae:3a:bf:21:29:a2:a7:43:ba:d7:ff:ed: ca:46:0e:6c:c4:09:86:af:83:fa:92:83:d4:6e:bf:66:e8:33: ba:39:02:26:50:90:47:bc:66:ba:6b:08:ac:94:1d:f7:3d:35: f3:99:28:c7:b1:5a:45:c1:f1:8f:f0:c0:2f:31:0c:5a:e7:dd: 6e:6c:fa:5b:62:c6:0f:5a:dd:6d:9f:ee:31:94:3d:4a:74:d3: 67:07:6d:14 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMjVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDEyQjI5M0E5RkQwMUE5 MDU4RDVCN0REQTJDQjcyNEVFRDUyMDc3NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDccyGtgId/kcevbXMPeeo1A7HN8TpNbTN7+yXEXIkszz/0Z1td KWC94+AzhJWRyWEAFIGwBDe/ZXHxDMMMn4uKukPFmV4tEsbDnYz9HstJLQ7wN37W 1cQlMwu5MUrwLi8KQldl67YGJvR6Vi3yLzJwH6BmBR2fKsCyKEj+eHorK56McbIC u6RWYYJMLc5wLmmpNy/eiPykzhaid2kE1gylNdk43WpLRnL5+SP7RUurBRgdRIsr Clo/4h/FCvo9eIK2xQxkPOfg2+208Nayv/fnwn4AfVrQUhzir3zF6FbUil8Xikdz tzM0WspNYl6dlTfzmVrIJyAMeE1k3Ylu38XtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUErKTqf0BqQWNW33aLLck7tUgd3AwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0VyS1RxZjBCcVFXTlczM2FMTGNrN3RVZ2QzQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPbekgwDQYJKoZIhvcNAQELBQADggEBACSbqvOmMWgYlJWpPKl5znSi/PGF WuY3266FpiaYmZhd1W/pK1gMbyZnEb8qDhQydB0n7TjYJ5o7XPoDbpktkj0W/ouB 0T7UatMqdw1nef8WjD80z3yYPmlXfWrBsguYr9FbwTj7L+wTu+9XnNOxjyIbNo56 o6XYSyjZ3m/I+j7bBhZ6TtCHVTAYNMx9Yisi/4ET8iZLNV/hO2DO15iMIangGkgY e3srx646vyEpoqdDutf/7cpGDmzECYavg/qSg9Ruv2boM7o5AiZQkEe8ZrprCKyU Hfc9NfOZKMexWkXB8Y/wwC8xDFrn3W5s+ltixg9a3W2f7jGUPUp002cHbRQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:16 2025 by rpki-client