$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/G9Wg-iUIBQAKLHr_3M9KIo5El-8.roa File: G9Wg-iUIBQAKLHr_3M9KIo5El-8.roa (raw, json) Hash identifier: SFu4ldhUeRVbUENHbfiqwb4LnuUn0HOU7DvQ3lQpRTk= Subject key identifier: 1B:D5:A0:FA:25:08:05:00:0A:2C:7A:FF:DC:CF:4A:22:8E:44:97:EF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BB8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/G9Wg-iUIBQAKLHr_3M9KIo5El-8.roa Signing time: Tue 01 Apr 2025 01:43:41 +0000 ROA not before: Tue 01 Apr 2025 01:43:41 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.210.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3000 (0xbb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:41 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=1BD5A0FA250805000A2C7AFFDCCF4A228E4497EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:53:8a:14:e4:87:bf:ea:27:d0:d7:d7:0e:ce: 4b:fd:82:e6:4b:35:31:26:03:1d:91:3b:21:36:df: 44:06:bb:ac:2e:35:bf:38:a0:2f:80:bf:0d:9d:f6: c4:0e:78:e5:41:a9:b6:13:6d:71:55:69:ce:49:63: 38:e4:4a:2a:22:96:da:36:db:97:0e:37:78:dc:48: 27:df:5d:b2:13:2e:85:b0:55:95:66:83:ee:49:21: 93:a6:18:47:33:16:d5:b7:8d:e9:02:68:a5:cd:9d: 28:cb:ad:0c:7a:81:ce:ba:04:36:50:8d:4e:e9:56: 07:a8:62:18:f1:40:1e:db:5b:2f:9b:30:25:68:64: d5:38:99:c1:52:2d:52:cd:b8:0a:24:4b:02:62:af: 29:e4:c2:e3:f0:ef:93:65:05:fc:2c:07:4f:1a:a1: 5a:88:1d:3e:fe:04:15:b0:e2:19:ac:10:6e:79:b9: 62:05:74:32:82:10:11:0f:d0:cb:87:54:df:cb:8b: 60:49:a6:b7:88:02:3d:b1:bf:8d:de:d1:3b:20:bb: 29:0c:7c:ad:56:77:ad:cc:9f:b0:cd:90:09:73:79: 52:0f:92:b2:99:7e:56:03:99:b1:a0:22:e7:98:7b: 81:ec:dd:ab:10:79:41:0a:cc:41:3e:81:43:27:2f: f7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D5:A0:FA:25:08:05:00:0A:2C:7A:FF:DC:CF:4A:22:8E:44:97:EF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/G9Wg-iUIBQAKLHr_3M9KIo5El-8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.72.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:9e:60:f4:58:d9:51:c2:aa:8e:24:39:11:aa:64:e8:a1:ad: d7:e7:1e:34:c5:60:84:f4:65:38:76:90:e5:ce:65:db:9a:e6: 1c:a8:aa:30:4b:e7:74:de:ad:46:67:ff:01:bc:17:a2:ee:b0: 2d:fb:a3:e7:b6:c1:76:44:2f:71:08:f0:e4:2e:b6:5e:8c:c1: 22:22:63:8e:80:35:70:d5:b5:4e:a8:22:11:25:71:b0:c0:35: 1f:8c:99:e7:96:59:b0:58:a1:d1:07:8c:15:04:c2:dc:51:21: 8e:fa:ea:3a:ae:47:80:29:09:78:e3:50:4d:ba:23:74:ea:86: 81:d9:ed:6c:a5:c4:31:b4:39:4c:39:62:8c:55:ff:d1:d8:74: b1:10:31:e8:64:49:54:c5:a5:8a:d4:be:1f:9a:e7:60:d1:c5: 8d:ff:51:35:2d:f2:e9:55:63:1a:90:3f:d1:b4:52:f2:08:6c: a8:7b:c9:fc:c5:75:8c:5b:b3:27:cc:ab:77:68:ed:7b:b6:3e: b0:b2:d2:3b:67:ad:9b:70:a4:85:66:ef:3c:ae:9a:93:20:2d: f6:1e:cd:bf:89:e9:57:7e:39:80:fb:1f:f5:bd:9c:4c:0a:8f: eb:be:60:e6:63:09:a0:49:b1:fd:7c:be:95:74:e1:4a:62:c9: 2d:1b:9a:61 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC7gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzNDFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFCRDVBMEZBMjUwODA1 MDAwQTJDN0FGRkRDQ0Y0QTIyOEU0NDk3RUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYU4oU5Ie/6ifQ19cOzkv9guZLNTEmAx2ROyE230QGu6wuNb84 oC+Avw2d9sQOeOVBqbYTbXFVac5JYzjkSioilto225cON3jcSCffXbITLoWwVZVm g+5JIZOmGEczFtW3jekCaKXNnSjLrQx6gc66BDZQjU7pVgeoYhjxQB7bWy+bMCVo ZNU4mcFSLVLNuAokSwJirynkwuPw75NlBfwsB08aoVqIHT7+BBWw4hmsEG55uWIF dDKCEBEP0MuHVN/Li2BJpreIAj2xv43e0TsguykMfK1Wd63Mn7DNkAlzeVIPkrKZ flYDmbGgIueYe4Hs3asQeUEKzEE+gUMnL/eFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUG9Wg+iUIBQAKLHr/3M9KIo5El+8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0c5V2ctaVVJQlFBS0xIcl8zTTlLSW81RWwtOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0kgwDQYJKoZIhvcNAQELBQADggEBABqeYPRY2VHCqo4kORGqZOihrdfn HjTFYIT0ZTh2kOXOZdua5hyoqjBL53TerUZn/wG8F6LusC37o+e2wXZEL3EI8OQu tl6MwSIiY46ANXDVtU6oIhElcbDANR+MmeeWWbBYodEHjBUEwtxRIY766jquR4Ap CXjjUE26I3TqhoHZ7WylxDG0OUw5YoxV/9HYdLEQMehkSVTFpYrUvh+a52DRxY3/ UTUt8ulVYxqQP9G0UvIIbKh7yfzFdYxbsyfMq3do7Xu2PrCy0jtnrZtwpIVm7zyu mpMgLfYezb+J6Vd+OYD7H/W9nEwKj+u+YOZjCaBJsf18vpV04UpiyS0bmmE= -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:20 2025 by rpki-client