$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MRkVFBHhzU5QQX1PqtQ8pWxs36s.roa File: MRkVFBHhzU5QQX1PqtQ8pWxs36s.roa (raw, json) Hash identifier: A8R10Jjn3r3qjEoYeGl9fgCY5wZ47zmyMLSqTEotZpE= Subject key identifier: 31:19:15:14:11:E1:CD:4E:50:41:7D:4F:AA:D4:3C:A5:6C:6C:DF:AB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AE0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MRkVFBHhzU5QQX1PqtQ8pWxs36s.roa Signing time: Fri 31 Jan 2025 01:28:27 +0000 ROA not before: Fri 31 Jan 2025 01:28:27 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 17:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2784 (0xae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jan 31 01:28:27 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=3119151411E1CD4E50417D4FAAD43CA56C6CDFAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d4:a5:d2:3b:ce:21:0e:42:44:33:ef:e3:d0: 3c:f2:00:ae:7e:b8:39:76:06:38:3f:42:b8:71:6d: 3a:1f:6c:54:b2:78:fb:b5:ef:04:c8:07:41:09:f6: 67:f3:9d:f1:6a:ae:7c:36:bd:33:40:c8:39:d3:6c: 40:cd:8c:4c:51:83:0e:a5:c9:05:71:4f:c4:7e:15: 71:9d:87:ac:bd:2f:0d:4e:75:df:4b:46:b0:18:9c: e1:11:af:23:13:c1:bb:37:df:5f:8b:7b:24:2c:4c: 02:9b:63:23:82:d6:ba:ca:a0:e5:11:32:cd:29:90: 19:dd:bb:45:9d:6f:1f:ef:60:b4:5d:42:67:bc:ad: 0d:d5:b3:f0:16:12:8d:0e:4c:45:a7:42:9d:a5:0b: ce:a3:db:cd:31:a3:c7:ec:20:1f:da:38:29:5b:0c: 8c:73:0a:f5:53:8b:07:19:59:86:be:1b:ea:57:fd: 39:3b:3d:53:de:fb:1b:32:af:71:01:90:bf:55:5e: 53:7e:d4:f0:65:b9:29:00:9d:0c:76:82:29:4e:1c: 6c:0d:31:79:a8:09:5f:a0:8e:e7:61:ad:ad:e2:dd: a0:f2:5b:91:a8:f6:c9:f6:34:ee:4b:e5:5b:54:f1: 91:fc:2f:cc:a5:f1:83:37:e9:39:0a:cc:9f:a7:84: e3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:19:15:14:11:E1:CD:4E:50:41:7D:4F:AA:D4:3C:A5:6C:6C:DF:AB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MRkVFBHhzU5QQX1PqtQ8pWxs36s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.11.0/24 Signature Algorithm: sha256WithRSAEncryption 09:bc:62:15:44:f2:07:29:9d:d9:19:b5:98:d0:8f:7b:13:5f: 8f:8e:15:b3:5d:b3:d4:35:10:ad:0e:92:30:69:8b:ce:0f:17: 8b:30:d5:2b:03:a1:48:42:cf:23:a4:32:7c:08:ad:fd:87:5a: 34:fb:4e:41:98:d7:86:24:22:84:68:83:f8:11:76:b0:6e:1e: 49:d9:04:a5:f6:22:51:21:73:4d:61:5c:2a:65:28:04:1b:5c: 3a:f4:36:46:db:d7:8e:2e:84:d4:49:21:af:71:e4:f7:48:20: 3d:17:5a:99:4b:a5:62:25:c3:d1:1d:0b:0b:95:cf:e1:87:52: 44:f7:e0:0a:1b:ff:17:01:d1:96:0d:88:ab:f0:09:83:95:9d: 9f:28:5d:6d:0f:5e:c9:cd:b6:0a:b1:a7:55:78:32:11:ad:36: 1f:ae:50:6a:0d:1f:ff:c2:e9:cc:02:6d:c6:2f:af:af:cc:36: b6:d3:0d:be:47:50:fa:ba:36:63:f5:1b:28:64:64:ff:c1:e3: b6:1d:31:58:72:e1:00:e2:33:87:75:ce:2c:68:6f:19:e1:d1: fd:c0:86:cd:03:09:c5:9d:c9:5c:01:bb:7d:0f:b3:4f:5e:ac: 84:f9:d6:1a:bf:fe:44:7d:d2:ae:cb:2c:9c:47:26:55:18:0a: 6c:de:1f:a4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAxMzEw MTI4MjdaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMxMTkxNTE0MTFFMUNE NEU1MDQxN0Q0RkFBRDQzQ0E1NkM2Q0RGQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCl1KXSO84hDkJEM+/j0DzyAK5+uDl2Bjg/QrhxbTofbFSyePu1 7wTIB0EJ9mfznfFqrnw2vTNAyDnTbEDNjExRgw6lyQVxT8R+FXGdh6y9Lw1Odd9L RrAYnOERryMTwbs331+LeyQsTAKbYyOC1rrKoOURMs0pkBndu0Wdbx/vYLRdQme8 rQ3Vs/AWEo0OTEWnQp2lC86j280xo8fsIB/aOClbDIxzCvVTiwcZWYa+G+pX/Tk7 PVPe+xsyr3EBkL9VXlN+1PBluSkAnQx2gilOHGwNMXmoCV+gjudhra3i3aDyW5Go 9sn2NO5L5VtU8ZH8L8yl8YM36TkKzJ+nhOMzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMRkVFBHhzU5QQX1PqtQ8pWxs36swHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L01Sa1ZGQkhoelU1UVFYMVBxdFE4cFd4czM2cy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSwswDQYJKoZIhvcNAQELBQADggEBAAm8YhVE8gcpndkZtZjQj3sTX4+O FbNds9Q1EK0OkjBpi84PF4sw1SsDoUhCzyOkMnwIrf2HWjT7TkGY14YkIoRog/gR drBuHknZBKX2IlEhc01hXCplKAQbXDr0Nkbb144uhNRJIa9x5PdIID0XWplLpWIl w9EdCwuVz+GHUkT34Aob/xcB0ZYNiKvwCYOVnZ8oXW0PXsnNtgqxp1V4MhGtNh+u UGoNH//C6cwCbcYvr6/MNrbTDb5HUPq6NmP1GyhkZP/B47YdMVhy4QDiM4d1zixo bxnh0f3Ahs0DCcWdyVwBu30Ps09erIT51hq//kR90q7LLJxHJlUYCmzeH6Q= -----END CERTIFICATE-----Generated at Thu Apr 17 19:40:42 2025 by rpki-client