$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/F5OfCENuEAuqCIWaKryWRvf9ZaU.roa File: F5OfCENuEAuqCIWaKryWRvf9ZaU.roa (raw, json) Hash identifier: NBiyBj+WUB+9CT/LlIzsiUwy0mDGymrobcbqnQBzI18= Subject key identifier: 17:93:9F:08:43:6E:10:0B:AA:08:85:9A:2A:BC:96:46:F7:FD:65:A5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D84 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F5OfCENuEAuqCIWaKryWRvf9ZaU.roa Signing time: Tue 01 Apr 2025 02:21:28 +0000 ROA not before: Tue 01 Apr 2025 02:21:28 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 211.14.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:28 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=17939F08436E100BAA08859A2ABC9646F7FD65A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9b:b9:23:f3:03:a5:e6:78:f8:50:c8:6f:26: 77:15:21:9d:e1:38:0e:a8:56:6f:68:03:a9:09:6e: 4e:ff:69:88:16:d6:1d:ef:6e:ca:94:2a:b0:70:43: 9d:4d:04:7e:89:79:81:e4:21:f5:fd:49:1c:a5:20: 99:93:90:61:52:5d:86:38:dc:25:e5:8e:d9:c4:95: d7:1e:dd:de:59:01:f0:88:a5:01:44:af:dc:8c:a9: 23:94:aa:81:9b:a0:71:e7:1e:64:61:6c:cb:10:b7: 45:3e:19:8b:14:9b:85:89:c3:c6:be:7d:ff:a1:5e: 40:15:4f:4e:09:57:7c:bd:9a:6f:0d:6e:60:e1:43: a8:6f:7f:eb:65:c0:61:e9:e7:71:b2:61:b3:4f:b0: fa:37:a1:00:a0:7a:9a:f4:92:af:5a:2e:0d:6c:46: 7c:c6:1e:a1:68:38:b0:8a:0f:85:4f:0a:f4:e3:ba: a8:b5:25:de:81:3a:01:9c:1e:01:65:29:65:a2:1f: dc:29:1a:b9:90:e1:2f:0c:16:68:22:12:ed:48:1e: 71:c8:fd:7f:6f:e0:83:7d:f9:8c:c9:3c:58:05:6f: b8:2a:a1:68:1b:a4:f0:c9:3a:c1:4a:a5:7b:7e:d2: d3:0f:44:03:58:53:69:ab:09:4a:e6:40:d8:76:f9: c2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:93:9F:08:43:6E:10:0B:AA:08:85:9A:2A:BC:96:46:F7:FD:65:A5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/F5OfCENuEAuqCIWaKryWRvf9ZaU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.64.0/21 Signature Algorithm: sha256WithRSAEncryption 43:be:ea:55:81:8d:13:76:39:b2:4a:3d:d7:63:2b:46:2a:9c: 84:77:84:00:b6:39:2c:c7:46:06:d8:e9:68:63:10:c8:f9:54: ce:63:30:9d:97:86:3e:dd:4a:12:d9:74:1c:61:4e:d2:a7:b7: 29:28:1d:b3:00:46:f4:0d:8d:03:9d:89:07:08:c7:82:6d:a4: 1f:45:a9:82:92:6e:a1:93:82:6d:60:23:32:06:db:54:53:50: 8c:41:d6:3e:dc:70:d7:ba:87:4d:b8:b7:b0:f4:57:06:a2:9c: 63:7a:33:be:25:e4:d8:bc:a2:07:07:89:23:12:4b:55:2a:1d: e3:2b:35:b0:60:06:3a:a0:fa:29:d2:11:0f:db:9a:7b:9d:3f: 10:cf:6e:5b:e8:67:14:12:f5:5b:0c:97:b7:8a:3d:bd:cf:59: 08:5d:cc:49:bf:7d:e4:ca:f7:98:4e:ae:8e:a3:fb:d0:fd:6c: 59:23:8d:e6:59:a5:63:e2:1f:ab:1b:06:77:69:c9:8f:dd:32: d1:eb:d4:87:53:56:2e:27:01:56:b2:a0:1f:75:38:47:b3:cc: 92:73:97:fe:40:5c:2c:95:e9:e7:2e:25:34:c3:83:f5:45:eb: 0d:1d:4d:5d:ea:23:a7:7b:d6:ab:f3:17:a7:7a:c6:4f:f8:1d: f4:4e:ba:14 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMjhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDE3OTM5RjA4NDM2RTEw MEJBQTA4ODU5QTJBQkM5NjQ2RjdGRDY1QTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGm7kj8wOl5nj4UMhvJncVIZ3hOA6oVm9oA6kJbk7/aYgW1h3v bsqUKrBwQ51NBH6JeYHkIfX9SRylIJmTkGFSXYY43CXljtnEldce3d5ZAfCIpQFE r9yMqSOUqoGboHHnHmRhbMsQt0U+GYsUm4WJw8a+ff+hXkAVT04JV3y9mm8NbmDh Q6hvf+tlwGHp53GyYbNPsPo3oQCgepr0kq9aLg1sRnzGHqFoOLCKD4VPCvTjuqi1 Jd6BOgGcHgFlKWWiH9wpGrmQ4S8MFmgiEu1IHnHI/X9v4IN9+YzJPFgFb7gqoWgb pPDJOsFKpXt+0tMPRANYU2mrCUrmQNh2+cIvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUF5OfCENuEAuqCIWaKryWRvf9ZaUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0Y1T2ZDRU51RUF1cUNJV2FLcnlXUnZmOVphVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPTDkAwDQYJKoZIhvcNAQELBQADggEBAEO+6lWBjRN2ObJKPddjK0YqnIR3 hAC2OSzHRgbY6WhjEMj5VM5jMJ2Xhj7dShLZdBxhTtKntykoHbMARvQNjQOdiQcI x4JtpB9FqYKSbqGTgm1gIzIG21RTUIxB1j7ccNe6h024t7D0VwainGN6M74l5Ni8 ogcHiSMSS1UqHeMrNbBgBjqg+inSEQ/bmnudPxDPblvoZxQS9VsMl7eKPb3PWQhd zEm/feTK95hOro6j+9D9bFkjjeZZpWPiH6sbBndpyY/dMtHr1IdTVi4nAVayoB91 OEezzJJzl/5AXCyV6ecuJTTDg/VF6w0dTV3qI6d71qvzF6d6xk/4HfROuhQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:33 2025 by rpki-client