$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JnRE1osju1WVb4hPXc80eWLJjtA.roa File: JnRE1osju1WVb4hPXc80eWLJjtA.roa (raw, json) Hash identifier: Ysbqti6IkBwvwvU6uDJkf+4qMNbLQ5vfHwtObxMTvF4= Subject key identifier: 26:74:44:D6:8B:23:BB:55:95:6F:88:4F:5D:CF:34:79:62:C9:8E:D0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DFA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JnRE1osju1WVb4hPXc80eWLJjtA.roa Signing time: Tue 01 Apr 2025 02:29:10 +0000 ROA not before: Tue 01 Apr 2025 02:29:10 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 219.114.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3578 (0xdfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:29:10 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=267444D68B23BB55956F884F5DCF347962C98ED0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d7:14:c9:59:f1:5d:f5:b5:36:b2:84:f9:59: c1:73:c2:42:ef:18:7a:97:19:f1:5c:28:af:9a:65: 3f:31:fa:74:e0:8a:7f:34:2b:e3:ad:c5:11:f5:83: e6:22:1a:0c:19:fe:53:c9:89:44:f6:11:05:62:ce: 64:f9:7a:ac:78:c6:29:24:06:1d:39:be:5c:20:fe: 74:70:b8:0f:90:15:9e:04:6b:4a:eb:4d:dc:ef:67: a9:6a:59:c5:45:dd:91:c0:1d:1d:b1:7e:ca:81:53: 54:3c:ca:2c:f3:fa:10:63:8b:0e:2e:a8:03:27:a7: d2:ad:df:f6:89:e4:fb:f6:76:e2:a8:4c:04:b5:e7: fc:3f:eb:c6:2a:b9:86:e2:cd:0d:28:85:a2:a9:44: a5:13:0d:1b:da:f5:5c:98:c6:4a:ae:76:e1:42:cc: 1d:3d:52:b5:b0:93:18:14:ea:19:7a:8e:2a:7c:e3: c1:0f:9f:fa:54:0e:67:cf:81:7c:ed:7c:d8:fd:1e: e2:ca:ec:16:0f:03:b9:8a:60:3e:02:15:d4:bf:d2: 02:49:2a:eb:87:2d:dd:be:fa:02:f0:49:5c:d9:09: 9e:a1:7d:78:9c:7f:a5:ac:09:37:8f:b3:1d:69:7f: 87:83:e6:22:35:80:0c:4c:1d:9c:8a:93:4a:bc:42: 5f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:74:44:D6:8B:23:BB:55:95:6F:88:4F:5D:CF:34:79:62:C9:8E:D0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JnRE1osju1WVb4hPXc80eWLJjtA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.114.176.0/21 Signature Algorithm: sha256WithRSAEncryption 44:f5:86:8b:f9:8e:fe:6a:87:f8:b6:4d:12:d9:9e:b9:19:85: 4b:26:b2:08:c6:a8:fe:28:6a:74:ae:33:a1:d3:b8:be:66:75: 79:63:a8:a9:f2:ce:72:7c:b0:1b:40:8a:fe:b3:ba:34:51:50: 57:b5:09:1b:94:56:6b:21:65:c7:f5:ff:8a:fc:b8:d1:9e:46: 6b:75:c7:c9:db:bc:cc:f2:f2:ec:2e:22:00:db:5b:33:58:f8: 7a:a7:02:fc:91:3d:11:fd:51:b6:87:99:42:b8:00:91:f2:7c: c8:d6:87:26:5a:3a:38:10:4f:c5:6c:2d:03:99:8a:67:a8:bb: 26:7a:02:60:06:28:5c:64:65:8a:cd:23:76:39:65:e4:96:60: 03:a0:f5:0f:f0:24:9d:f7:8c:96:f3:5b:06:bb:7b:41:94:4b: fe:67:c7:06:1a:c9:9e:09:95:a6:48:b5:50:32:e6:96:33:5b: 56:1e:6d:17:17:5b:e0:f7:7a:25:6b:b5:ae:65:e4:a4:1c:fc: 28:dc:19:00:a6:a6:fb:f2:25:50:21:20:7a:ab:0e:a2:a2:36: 50:c4:fc:77:e9:24:d9:ec:ce:85:9d:27:93:75:bc:da:d7:dd: 46:a8:1b:0d:28:1c:dd:c3:53:5b:e6:87:3e:05:05:1e:7f:17: b6:da:a1:76 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDfowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI5MTBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI2NzQ0NEQ2OEIyM0JC NTU5NTZGODg0RjVEQ0YzNDc5NjJDOThFRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC91xTJWfFd9bU2soT5WcFzwkLvGHqXGfFcKK+aZT8x+nTgin80 K+OtxRH1g+YiGgwZ/lPJiUT2EQVizmT5eqx4xikkBh05vlwg/nRwuA+QFZ4Ea0rr TdzvZ6lqWcVF3ZHAHR2xfsqBU1Q8yizz+hBjiw4uqAMnp9Kt3/aJ5Pv2duKoTAS1 5/w/68YquYbizQ0ohaKpRKUTDRva9VyYxkquduFCzB09UrWwkxgU6hl6jip848EP n/pUDmfPgXztfNj9HuLK7BYPA7mKYD4CFdS/0gJJKuuHLd2++gLwSVzZCZ6hfXic f6WsCTePsx1pf4eD5iI1gAxMHZyKk0q8Ql97AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJnRE1osju1WVb4hPXc80eWLJjtAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0puUkUxb3NqdTFXVmI0aFBYYzgwZVdMSmp0QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPbcrAwDQYJKoZIhvcNAQELBQADggEBAET1hov5jv5qh/i2TRLZnrkZhUsm sgjGqP4oanSuM6HTuL5mdXljqKnyznJ8sBtAiv6zujRRUFe1CRuUVmshZcf1/4r8 uNGeRmt1x8nbvMzy8uwuIgDbWzNY+HqnAvyRPRH9UbaHmUK4AJHyfMjWhyZaOjgQ T8VsLQOZimeouyZ6AmAGKFxkZYrNI3Y5ZeSWYAOg9Q/wJJ33jJbzWwa7e0GUS/5n xwYayZ4JlaZItVAy5pYzW1YebRcXW+D3eiVrta5l5KQc/CjcGQCmpvvyJVAhIHqr DqKiNlDE/HfpJNnszoWdJ5N1vNrX3UaoGw0oHN3DU1vmhz4FBR5/F7baoXY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:31 2025 by rpki-client