$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IzGttnSkBEXT87SDoqBcjKVLhVQ.roa File: IzGttnSkBEXT87SDoqBcjKVLhVQ.roa (raw, json) Hash identifier: mNGTb3PDtsaMDbh8xC7QfhHfi5ecX8lv93fP8gg9Z7M= Subject key identifier: 23:31:AD:B6:74:A4:04:45:D3:F3:B4:83:A2:A0:5C:8C:A5:4B:85:54 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BC1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IzGttnSkBEXT87SDoqBcjKVLhVQ.roa Signing time: Tue 01 Apr 2025 01:43:46 +0000 ROA not before: Tue 01 Apr 2025 01:43:46 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3009 (0xbc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:46 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=2331ADB674A40445D3F3B483A2A05C8CA54B8554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:8e:36:68:4c:b6:8c:c7:76:3a:6b:13:65: f2:d5:de:64:1d:7a:dd:5e:ca:2e:59:26:a3:a3:b0: 63:b2:80:cf:26:76:71:a6:66:45:fe:c6:3f:52:bc: 88:a0:be:70:b7:85:fa:dc:6a:04:9c:22:57:d9:e7: 45:99:00:29:0f:25:ba:3c:24:a5:94:e2:25:18:4a: 01:fb:40:fc:1d:ff:f7:44:cd:07:cb:25:bb:d0:b1: e8:79:f9:76:a6:f9:79:6d:5f:69:db:97:9e:1b:cc: d1:06:88:96:63:9d:c9:9c:a9:00:30:a1:52:89:7e: b8:e8:f4:34:ad:ff:75:29:e9:67:74:b2:fa:d8:7f: 41:c2:8b:64:6a:68:72:c8:f9:b0:c3:59:63:c9:d7: 66:4d:59:23:90:ff:b3:5c:7c:61:d0:b4:b9:9b:37: 43:e5:a7:94:99:4f:40:cf:1e:39:9d:f9:4b:29:68: c3:03:1e:c7:6f:60:31:63:ba:63:d4:bc:78:a2:42: 70:2d:10:91:bd:a4:3a:a9:94:b4:79:ba:ed:7f:ed: a7:98:ee:fb:a7:9c:e2:a8:5f:74:35:f5:9a:dc:40: 7b:02:11:06:09:b0:b7:1e:da:49:a7:ce:8b:1e:2c: 7b:35:e0:bd:c1:0a:c0:0f:fd:82:51:c0:0a:82:b7: 5b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:31:AD:B6:74:A4:04:45:D3:F3:B4:83:A2:A0:5C:8C:A5:4B:85:54 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IzGttnSkBEXT87SDoqBcjKVLhVQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.168.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:72:95:75:62:a3:76:45:b2:11:ba:bb:69:23:b2:c5:6d:49: 40:58:23:b1:4b:b2:f9:80:7f:31:84:3a:0e:9a:a9:7c:24:93: d4:84:f1:7d:e3:14:2e:93:19:af:4d:d7:d0:0c:00:08:a3:5d: f2:42:d4:14:c6:4c:82:3e:d0:bf:27:41:8a:e4:1d:6d:7a:3d: af:ae:1d:6e:60:35:46:47:5b:1b:10:4e:b5:8e:74:82:ea:d3: 49:0a:e6:44:d5:4a:9f:20:06:84:d4:c8:cf:69:8c:25:2b:c1: ea:b7:28:e1:59:88:99:ad:06:f4:89:65:46:c6:64:49:7f:6a: 26:f6:3c:3a:7b:e1:6c:34:7d:9b:48:c0:c1:56:1b:7d:9d:c5: 3d:7e:e9:ab:61:27:1c:7d:da:ba:94:6c:95:ce:0b:51:ca:2e: c7:3e:83:f6:6d:38:90:25:65:22:19:71:44:36:56:68:8b:26: 50:ee:02:93:23:48:56:f0:06:00:f7:11:fa:99:26:b6:e8:8d: 9a:ba:cb:6f:d3:39:38:07:ec:8a:50:ae:08:2b:bb:1f:58:16: 7e:a8:ad:40:51:a5:47:8a:51:19:23:7d:36:0f:6b:06:af:b7: d0:1c:9a:ce:fc:63:59:4e:7b:e7:cf:9b:2d:fc:21:5d:4d:a1: 3e:25:8b:5c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC8EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzNDZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDIzMzFBREI2NzRBNDA0 NDVEM0YzQjQ4M0EyQTA1QzhDQTU0Qjg1NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEZ442aEy2jMd2OmsTZfLV3mQdet1eyi5ZJqOjsGOygM8mdnGm ZkX+xj9SvIigvnC3hfrcagScIlfZ50WZACkPJbo8JKWU4iUYSgH7QPwd//dEzQfL JbvQseh5+Xam+XltX2nbl54bzNEGiJZjncmcqQAwoVKJfrjo9DSt/3Up6Wd0svrY f0HCi2RqaHLI+bDDWWPJ12ZNWSOQ/7NcfGHQtLmbN0Plp5SZT0DPHjmd+UspaMMD HsdvYDFjumPUvHiiQnAtEJG9pDqplLR5uu1/7aeY7vunnOKoX3Q19ZrcQHsCEQYJ sLce2kmnzoseLHs14L3BCsAP/YJRwAqCt1tjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIzGttnSkBEXT87SDoqBcjKVLhVQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0l6R3R0blNrQkVYVDg3U0RvcUJjaktWTGhWUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBT6gwDQYJKoZIhvcNAQELBQADggEBAA1ylXVio3ZFshG6u2kjssVtSUBY I7FLsvmAfzGEOg6aqXwkk9SE8X3jFC6TGa9N19AMAAijXfJC1BTGTII+0L8nQYrk HW16Pa+uHW5gNUZHWxsQTrWOdILq00kK5kTVSp8gBoTUyM9pjCUrweq3KOFZiJmt BvSJZUbGZEl/aib2PDp74Ww0fZtIwMFWG32dxT1+6athJxx92rqUbJXOC1HKLsc+ g/ZtOJAlZSIZcUQ2VmiLJlDuApMjSFbwBgD3EfqZJrbojZq6y2/TOTgH7IpQrggr ux9YFn6orUBRpUeKURkjfTYPawavt9Acms78Y1lOe+fPmy38IV1NoT4li1w= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:33 2025 by rpki-client