$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/F2FP1y99PZE1sGghqTwKvGVHAXI.roa File: F2FP1y99PZE1sGghqTwKvGVHAXI.roa (raw, json) Hash identifier: FWH7xebyHKZVhbT+Eiq6N09W12Y/Q+Ly5Fpxzz/fx1A= Subject key identifier: 17:61:4F:D7:2F:7D:3D:91:35:B0:68:21:A9:3C:0A:BC:65:47:01:72 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B80 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F2FP1y99PZE1sGghqTwKvGVHAXI.roa Signing time: Tue 01 Apr 2025 01:36:51 +0000 ROA not before: Tue 01 Apr 2025 01:36:51 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2944 (0xb80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:36:51 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=17614FD72F7D3D9135B06821A93C0ABC65470172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:31:b5:bc:9f:98:21:c1:60:fb:d2:85:b7:a3: b6:68:98:e2:76:57:8b:3e:0e:99:36:54:a4:c9:d7: 8b:f4:f8:55:64:47:f2:16:55:af:23:11:4a:4b:47: 85:9b:d0:c2:f2:03:69:c5:27:0e:5e:6a:9e:25:7d: 33:61:18:5a:58:9f:92:f2:6d:7c:3e:08:85:b1:77: ff:31:5c:11:97:39:c8:f4:28:a0:10:9d:62:58:4a: d9:79:18:05:6f:e8:ba:11:69:02:8a:4c:f2:ae:b8: e0:c4:50:8f:57:50:43:6c:ea:c9:6e:a7:eb:b0:81: 69:75:f9:38:97:25:d0:ec:ed:7e:49:36:50:bc:7e: f8:52:78:c3:ee:c4:d0:49:e2:ff:4f:06:33:fc:0a: 48:ab:02:0c:4e:24:96:13:ea:63:a3:5e:02:f3:8f: 99:23:b7:83:a2:69:d6:50:67:98:06:67:e7:6f:05: 58:f2:47:0d:8a:b1:5c:29:f3:db:03:f1:ec:c4:0c: 29:dc:4c:50:bf:70:df:81:c8:2b:ac:9f:73:38:28: df:98:df:e5:a7:4f:2d:5b:13:04:24:a3:51:73:a9: 6d:7f:0e:62:10:f5:80:2a:76:54:7d:c0:df:87:8c: eb:af:01:fa:82:c4:46:b8:28:1b:da:2c:1b:91:17: 56:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:61:4F:D7:2F:7D:3D:91:35:B0:68:21:A9:3C:0A:BC:65:47:01:72 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F2FP1y99PZE1sGghqTwKvGVHAXI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.68.0/23 Signature Algorithm: sha256WithRSAEncryption 62:07:d7:e4:cf:0a:d2:1e:2b:d0:92:3e:bd:1c:3d:7a:80:94: 59:05:ce:0b:51:20:21:0e:9a:a9:4e:0c:32:c8:3d:89:b3:c5: 7e:6d:a7:df:c7:5c:a7:1b:59:f8:3b:3e:86:e1:79:8a:04:be: 1f:e2:f3:1b:9a:f1:6f:76:60:74:46:b7:4b:3d:cc:c5:1c:3a: b8:80:f4:c9:30:70:4f:43:47:0b:cf:9c:42:fa:d0:03:2f:01: 34:f2:ac:52:1d:b7:26:73:d5:39:b7:25:8b:92:54:c1:df:4f: 36:d4:8f:fa:e7:b3:95:1d:37:d9:24:ab:6c:b0:c3:b6:bd:31: 37:df:4d:71:1b:8a:04:90:94:bc:6d:51:f0:f4:43:48:c8:10: d5:8d:db:3b:8f:ca:b6:57:e9:61:e7:90:89:1c:7d:4a:e8:4b: 60:28:ca:2c:16:98:7d:a5:f8:f2:22:21:c9:3c:71:be:7a:76: 84:12:15:01:09:19:48:fb:12:fa:4d:52:16:ad:03:26:c9:42: a8:5e:83:29:3b:eb:aa:0f:1a:95:d1:16:bd:48:21:04:5d:87: bd:76:54:20:54:61:be:ad:03:7b:b1:70:1d:f7:9b:78:39:4b: c1:b8:7c:21:79:57:24:bb:39:92:a8:61:0b:44:da:e3:d0:61: ba:03:3d:a9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC4AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM2NTFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDE3NjE0RkQ3MkY3RDNE OTEzNUIwNjgyMUE5M0MwQUJDNjU0NzAxNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMMbW8n5ghwWD70oW3o7ZomOJ2V4s+Dpk2VKTJ14v0+FVkR/IW Va8jEUpLR4Wb0MLyA2nFJw5eap4lfTNhGFpYn5LybXw+CIWxd/8xXBGXOcj0KKAQ nWJYStl5GAVv6LoRaQKKTPKuuODEUI9XUENs6slup+uwgWl1+TiXJdDs7X5JNlC8 fvhSeMPuxNBJ4v9PBjP8CkirAgxOJJYT6mOjXgLzj5kjt4OiadZQZ5gGZ+dvBVjy Rw2KsVwp89sD8ezEDCncTFC/cN+ByCusn3M4KN+Y3+WnTy1bEwQko1FzqW1/DmIQ 9YAqdlR9wN+HjOuvAfqCxEa4KBvaLBuRF1YbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUF2FP1y99PZE1sGghqTwKvGVHAXIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0YyRlAxeTk5UFpFMXNHZ2hxVHdLdkdWSEFYSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT0QwDQYJKoZIhvcNAQELBQADggEBAGIH1+TPCtIeK9CSPr0cPXqAlFkF zgtRICEOmqlODDLIPYmzxX5tp9/HXKcbWfg7PobheYoEvh/i8xua8W92YHRGt0s9 zMUcOriA9MkwcE9DRwvPnEL60AMvATTyrFIdtyZz1Tm3JYuSVMHfTzbUj/rns5Ud N9kkq2yww7a9MTffTXEbigSQlLxtUfD0Q0jIENWN2zuPyrZX6WHnkIkcfUroS2Ao yiwWmH2l+PIiIck8cb56doQSFQEJGUj7EvpNUhatAybJQqhegyk766oPGpXRFr1I IQRdh712VCBUYb6tA3uxcB33m3g5S8G4fCF5VyS7OZKoYQtE2uPQYboDPak= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:58 2025 by rpki-client