$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JmH5OI-se2Kq5oPUmK0LT-GNM9U.roa File: JmH5OI-se2Kq5oPUmK0LT-GNM9U.roa (raw, json) Hash identifier: WxJ8MckwvMtbEIDuBn8fOSPvkLDLMU/xEjBgcIBNoxM= Subject key identifier: 26:61:F9:38:8F:AC:7B:62:AA:E6:83:D4:98:AD:0B:4F:E1:8D:33:D5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D4B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JmH5OI-se2Kq5oPUmK0LT-GNM9U.roa Signing time: Tue 01 Apr 2025 02:17:11 +0000 ROA not before: Tue 01 Apr 2025 02:17:11 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.78.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3403 (0xd4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:17:11 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=2661F9388FAC7B62AAE683D498AD0B4FE18D33D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0c:1a:7c:03:b3:29:df:2d:0c:b5:6f:da:b7: c4:5e:36:89:1a:68:d4:e0:3b:77:f7:39:45:95:8d: 42:63:2f:46:3c:f6:be:36:68:52:83:25:b7:02:c4: dd:af:98:d9:ea:78:b0:36:56:98:4b:be:7f:e7:c9: 6e:c0:d8:7b:58:02:f2:1b:33:f5:b0:ff:28:dc:be: f7:b7:1d:17:1a:4c:5f:ba:d7:55:aa:54:c1:76:e2: 80:40:66:13:17:32:0d:0c:e2:6f:97:e5:fa:ab:c9: 3c:4f:57:9e:00:e2:ba:64:a0:1f:cf:2a:55:4d:02: d5:16:8f:ca:f6:4a:75:b0:aa:00:51:f7:b3:71:ef: 60:10:87:76:58:7c:49:98:68:12:fe:a7:5f:14:cb: 6d:12:ea:fa:ea:0a:73:2a:76:49:f6:14:92:f8:45: a5:45:1d:c6:b5:0e:6d:71:44:80:0c:30:1a:82:4b: 4e:14:15:3c:f6:a4:99:4a:9f:50:d8:32:f1:c5:1d: f4:f5:a0:54:87:cc:32:74:24:45:7d:9f:27:cb:71: ac:85:c1:ad:6b:ed:78:e5:e9:29:95:39:b5:a3:11: 18:c6:a4:78:70:17:6c:b8:fb:be:79:b9:78:13:2f: ce:3b:05:7c:68:fe:d1:be:23:8f:88:0b:94:60:e8: ff:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:61:F9:38:8F:AC:7B:62:AA:E6:83:D4:98:AD:0B:4F:E1:8D:33:D5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JmH5OI-se2Kq5oPUmK0LT-GNM9U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.20.0/22 Signature Algorithm: sha256WithRSAEncryption a3:26:bc:27:ce:49:e6:bc:86:93:6c:4f:4b:c8:e3:54:da:f6: 40:17:76:91:0c:09:50:95:b6:13:dd:00:25:e1:17:33:72:6c: 54:ef:97:9a:dc:4b:2c:4b:3f:be:38:04:39:de:88:eb:c4:99: 38:54:b2:e1:6e:e2:7c:3a:87:8e:97:d6:9e:8f:ab:28:23:44: 00:df:46:e5:98:d3:75:9a:8b:c5:ec:97:ff:a5:9b:0e:e6:85: 8f:cf:c4:ac:fd:c4:85:26:67:da:59:f1:4c:54:76:1c:fa:a3: 0a:d3:95:67:f6:1e:84:78:8a:1e:70:21:a6:89:4a:9b:32:b4: eb:b0:0f:2e:b3:ff:11:2a:23:a2:66:dd:eb:78:2b:a9:6a:91: de:f6:0e:76:35:59:ea:86:2c:55:07:d9:4f:51:9e:aa:86:36: bd:a3:1a:ff:e7:c6:a8:a7:e2:52:38:92:8f:53:ad:59:06:b8: 67:0b:81:87:2d:88:10:43:8b:f4:8d:64:b8:b3:4c:09:3d:8a: f9:ef:d7:1f:32:9d:41:09:14:a0:64:ae:dc:ec:d1:d9:ec:90: 1c:f5:19:5e:23:c4:4c:84:0d:1a:45:f7:03:54:b3:85:d8:28: 59:23:38:69:be:27:09:13:1b:84:20:5a:0c:8d:9a:ab:5d:68: 29:15:31:a0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDUswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE3MTFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI2NjFGOTM4OEZBQzdC NjJBQUU2ODNENDk4QUQwQjRGRTE4RDMzRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6DBp8A7Mp3y0MtW/at8ReNokaaNTgO3f3OUWVjUJjL0Y89r42 aFKDJbcCxN2vmNnqeLA2VphLvn/nyW7A2HtYAvIbM/Ww/yjcvve3HRcaTF+611Wq VMF24oBAZhMXMg0M4m+X5fqryTxPV54A4rpkoB/PKlVNAtUWj8r2SnWwqgBR97Nx 72AQh3ZYfEmYaBL+p18Uy20S6vrqCnMqdkn2FJL4RaVFHca1Dm1xRIAMMBqCS04U FTz2pJlKn1DYMvHFHfT1oFSHzDJ0JEV9nyfLcayFwa1r7Xjl6SmVObWjERjGpHhw F2y4+755uXgTL847BXxo/tG+I4+IC5Rg6P8PAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJmH5OI+se2Kq5oPUmK0LT+GNM9UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0ptSDVPSS1zZTJLcTVvUFVtSzBMVC1HTk05VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBThQwDQYJKoZIhvcNAQELBQADggEBAKMmvCfOSea8hpNsT0vI41Ta9kAX dpEMCVCVthPdACXhFzNybFTvl5rcSyxLP744BDneiOvEmThUsuFu4nw6h46X1p6P qygjRADfRuWY03Wai8Xsl/+lmw7mhY/PxKz9xIUmZ9pZ8UxUdhz6owrTlWf2HoR4 ih5wIaaJSpsytOuwDy6z/xEqI6Jm3et4K6lqkd72DnY1WeqGLFUH2U9RnqqGNr2j Gv/nxqin4lI4ko9TrVkGuGcLgYctiBBDi/SNZLizTAk9ivnv1x8ynUEJFKBkrtzs 0dnskBz1GV4jxEyEDRpF9wNUs4XYKFkjOGm+JwkTG4QgWgyNmqtdaCkVMaA= -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:00 2025 by rpki-client