$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KCDHrrLJ-B-dmBh83p1eRDhK7u8.roa File: KCDHrrLJ-B-dmBh83p1eRDhK7u8.roa (raw, json) Hash identifier: SMy6SltqqH0YXFdiKGxcY6WStosxmw6XCwhY91jsmNQ= Subject key identifier: 28:20:C7:AE:B2:C9:F8:1F:9D:98:18:7C:DE:9D:5E:44:38:4A:EE:EF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D28 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KCDHrrLJ-B-dmBh83p1eRDhK7u8.roa Signing time: Tue 01 Apr 2025 02:13:50 +0000 ROA not before: Tue 01 Apr 2025 02:13:50 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 183.74.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3368 (0xd28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:50 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=2820C7AEB2C9F81F9D98187CDE9D5E44384AEEEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f8:df:85:83:03:28:1c:98:d3:82:85:89:91: 96:19:b0:5a:f2:b7:02:e5:bf:24:5c:7d:c7:72:2e: ca:c2:b3:7b:b2:b0:40:4a:52:80:a3:39:21:1e:67: 4c:e5:cc:3c:a9:73:ba:18:22:be:6f:20:f9:dd:6d: 4b:7d:a0:dc:b6:26:4b:b7:a3:9f:e6:c3:61:1d:e8: e4:62:46:77:7d:d6:df:3e:6e:af:19:50:3d:69:10: 02:16:99:af:00:c8:bf:57:0f:44:d6:25:ae:21:06: e0:08:6e:a6:b4:7f:67:bf:b6:5f:6d:02:41:95:07: ba:67:28:97:cf:e4:8e:b4:2d:6e:1a:e4:d9:ca:cb: 3a:16:0a:00:89:be:cb:bb:00:00:af:6c:8f:76:ed: 44:5e:2d:3a:0e:64:cd:b1:30:0f:14:95:62:fd:2c: 5b:f4:8a:fb:37:20:0d:66:a9:ee:f9:e4:90:e6:2a: 56:56:1a:be:7e:66:23:43:57:3f:4d:02:8e:43:53: e3:b9:0b:7d:05:06:66:82:df:4e:71:91:32:c7:53: 78:67:fc:08:0b:f3:7e:57:dd:28:8b:c5:c8:bc:1e: d2:77:8f:f4:6c:48:bd:66:5c:fe:d0:95:a0:45:b3: e8:ad:8e:b1:11:fc:70:d7:54:11:12:ef:3f:27:dc: e6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:20:C7:AE:B2:C9:F8:1F:9D:98:18:7C:DE:9D:5E:44:38:4A:EE:EF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KCDHrrLJ-B-dmBh83p1eRDhK7u8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.74.196.0/23 Signature Algorithm: sha256WithRSAEncryption 98:d8:d4:aa:33:2b:90:a8:f8:7a:c1:97:78:0c:67:2b:28:07: d3:ba:bf:2d:7f:bd:c3:78:8e:a8:3c:e3:b1:4f:39:5d:41:71: b1:84:46:b5:01:e6:30:a2:7a:1d:77:7b:0e:a4:2c:01:2b:f0: 87:ef:e1:0d:ba:e4:d8:36:30:ca:dc:a0:5d:80:3e:76:c0:02: ca:70:d5:6b:41:aa:43:dc:95:ca:4c:b3:9b:dd:f4:94:fa:ae: fa:2d:66:74:0f:d7:53:39:3f:98:ee:cc:41:a7:be:ac:41:e5: 2f:7c:a6:58:88:a2:09:c8:c0:35:8b:97:9b:80:75:4a:0c:0c: 39:95:9b:ba:46:10:5a:0a:f5:a3:a3:9b:87:b1:f1:cb:f5:db: ba:fb:20:25:5c:de:78:47:1c:28:70:f5:fc:b2:77:c4:5e:f7: 1b:60:ca:60:ed:a2:6f:89:8b:1c:cd:bf:b7:1a:ae:d3:53:66: 33:85:69:7e:ad:0c:32:63:e5:0c:97:9f:fc:8f:8c:fa:67:89: db:aa:72:89:92:86:8f:cd:d1:f8:65:22:49:23:d5:5f:22:41: e7:f3:25:5e:bd:e7:12:27:f1:8b:30:6f:6a:9a:ed:d6:17:4c: a8:26:c8:e9:49:0a:44:3f:30:19:6c:4b:fb:54:bd:59:bf:79: f9:b1:2c:0e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDSgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNTBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI4MjBDN0FFQjJDOUY4 MUY5RDk4MTg3Q0RFOUQ1RTQ0Mzg0QUVFRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY+N+FgwMoHJjTgoWJkZYZsFrytwLlvyRcfcdyLsrCs3uysEBK UoCjOSEeZ0zlzDypc7oYIr5vIPndbUt9oNy2Jku3o5/mw2Ed6ORiRnd91t8+bq8Z UD1pEAIWma8AyL9XD0TWJa4hBuAIbqa0f2e/tl9tAkGVB7pnKJfP5I60LW4a5NnK yzoWCgCJvsu7AACvbI927UReLToOZM2xMA8UlWL9LFv0ivs3IA1mqe755JDmKlZW Gr5+ZiNDVz9NAo5DU+O5C30FBmaC305xkTLHU3hn/AgL835X3SiLxci8HtJ3j/Rs SL1mXP7QlaBFs+itjrER/HDXVBES7z8n3OZ3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKCDHrrLJ+B+dmBh83p1eRDhK7u8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0tDREhyckxKLUItZG1CaDgzcDFlUkRoSzd1OC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAG3SsQwDQYJKoZIhvcNAQELBQADggEBAJjY1KozK5Co+HrBl3gMZysoB9O6 vy1/vcN4jqg847FPOV1BcbGERrUB5jCieh13ew6kLAEr8Ifv4Q265Ng2MMrcoF2A PnbAAspw1WtBqkPclcpMs5vd9JT6rvotZnQP11M5P5juzEGnvqxB5S98pliIognI wDWLl5uAdUoMDDmVm7pGEFoK9aOjm4ex8cv127r7ICVc3nhHHChw9fyyd8Re9xtg ymDtom+JixzNv7cartNTZjOFaX6tDDJj5QyXn/yPjPpniduqcomSho/N0fhlIkkj 1V8iQefzJV695xIn8Yswb2qa7dYXTKgmyOlJCkQ/MBlsS/tUvVm/efmxLA4= -----END CERTIFICATE-----Generated at Sat Apr 5 23:10:51 2025 by rpki-client