$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MZ5mv4Ry8gu2oc4weYUqIfkt810.roa File: MZ5mv4Ry8gu2oc4weYUqIfkt810.roa (raw, json) Hash identifier: WOtJQa87H/CLSi7iTmn3JzCYHKO0qoUAbhAUnDfABCs= Subject key identifier: 31:9E:66:BF:84:72:F2:0B:B6:A1:CE:30:79:85:2A:21:F9:2D:F3:5D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B42 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MZ5mv4Ry8gu2oc4weYUqIfkt810.roa Signing time: Thu 06 Mar 2025 07:04:28 +0000 ROA not before: Thu 06 Mar 2025 07:04:28 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 6 07:04:28 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=319E66BF8472F20BB6A1CE3079852A21F92DF35D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:71:f5:fe:ab:89:2f:7c:5b:6f:f2:45:dd:87: b5:6f:70:c9:14:09:cd:f2:58:fc:9e:c5:ab:15:28: b4:e6:96:6a:0f:13:4d:82:eb:4d:42:ea:df:a3:de: 08:83:9c:6f:1c:2f:c6:f0:dd:df:aa:d3:e7:f6:97: db:20:99:da:a8:0d:69:46:be:86:0d:2d:ba:52:06: 83:d9:d9:55:64:21:de:ba:75:7e:0a:d2:d1:f3:57: bc:54:57:a6:69:7c:a4:26:2d:a4:b8:11:ff:77:99: 74:88:9b:0c:c3:86:0d:bd:7a:d8:1d:ea:d7:4e:91: 94:d7:6e:0b:5d:8f:37:2e:8c:bd:ca:b3:b5:39:8b: 03:07:dc:d9:92:58:a3:8a:1b:c0:a1:9f:a4:46:77: 4a:01:26:b7:c7:21:88:c9:ab:67:6b:dd:30:c3:16: 7f:3a:a2:3e:65:9e:5d:be:f3:06:1a:f8:52:04:46: 65:66:ed:58:d9:93:9e:1c:5a:5b:fd:dc:d9:9f:95: 1b:0e:fc:45:41:03:e3:a4:e9:61:83:4e:94:45:07: b5:bd:3a:d1:ed:0e:1d:df:11:c3:77:32:e5:3f:78: e8:05:a7:89:9f:bd:20:0b:03:dd:2b:de:ea:1c:46: f6:b5:d9:56:ff:3a:c4:f4:d8:aa:be:4b:6b:c9:a0: f1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9E:66:BF:84:72:F2:0B:B6:A1:CE:30:79:85:2A:21:F9:2D:F3:5D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MZ5mv4Ry8gu2oc4weYUqIfkt810.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.126.0/24 Signature Algorithm: sha256WithRSAEncryption 01:28:f9:30:bb:39:d0:65:49:8a:34:a2:e7:43:87:4f:0e:05: 69:f5:28:d8:4f:88:d1:bd:73:ac:13:6e:6a:5f:70:04:86:b9: 2a:c6:79:e6:33:38:6a:a7:e9:6f:80:7b:59:64:8a:c5:18:43: 5f:12:0c:8a:16:cb:86:39:5d:cd:a5:1f:ac:d8:f2:0b:42:6d: 89:24:92:70:28:b7:3c:82:95:75:ab:b0:58:f1:f9:c9:b2:6a: 9e:e3:78:88:6d:07:61:21:f8:ed:a2:94:36:c2:a8:57:2e:0d: 00:d4:af:05:f3:28:0c:96:ae:42:4d:70:3f:6e:3b:9b:9d:53: 94:91:32:99:84:4e:cd:ff:d9:6f:f3:69:67:d1:c2:1a:db:54: 1f:cf:e9:7a:3c:26:66:9f:e7:55:c5:4d:ca:8a:7e:d3:c0:d6: 47:d4:d6:81:09:98:5a:89:9e:5d:33:69:19:48:34:a9:32:46: bb:58:70:4e:fb:5f:0b:f0:c2:b7:c8:09:2f:76:d4:38:d1:e7: b3:c7:53:2c:2b:74:69:d2:92:d7:35:8e:76:c2:f5:73:93:a2: 3d:f5:ce:50:b9:8c:06:74:82:e8:a9:58:97:a5:69:01:92:63: 8d:40:8e:5a:28:c3:ad:29:72:a6:70:77:f6:54:15:2e:c1:e2: b0:84:db:9b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAzMDYw NzA0MjhaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMxOUU2NkJGODQ3MkYy MEJCNkExQ0UzMDc5ODUyQTIxRjkyREYzNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIcfX+q4kvfFtv8kXdh7VvcMkUCc3yWPyexasVKLTmlmoPE02C 601C6t+j3giDnG8cL8bw3d+q0+f2l9sgmdqoDWlGvoYNLbpSBoPZ2VVkId66dX4K 0tHzV7xUV6ZpfKQmLaS4Ef93mXSImwzDhg29etgd6tdOkZTXbgtdjzcujL3Ks7U5 iwMH3NmSWKOKG8Chn6RGd0oBJrfHIYjJq2dr3TDDFn86oj5lnl2+8wYa+FIERmVm 7VjZk54cWlv93NmflRsO/EVBA+Ok6WGDTpRFB7W9OtHtDh3fEcN3MuU/eOgFp4mf vSALA90r3uocRva12Vb/OsT02Kq+S2vJoPFNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMZ5mv4Ry8gu2oc4weYUqIfkt810wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L01aNW12NFJ5OGd1Mm9jNHdlWVVxSWZrdDgxMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABS34wDQYJKoZIhvcNAQELBQADggEBAAEo+TC7OdBlSYo0oudDh08OBWn1 KNhPiNG9c6wTbmpfcASGuSrGeeYzOGqn6W+Ae1lkisUYQ18SDIoWy4Y5Xc2lH6zY 8gtCbYkkknAotzyClXWrsFjx+cmyap7jeIhtB2Eh+O2ilDbCqFcuDQDUrwXzKAyW rkJNcD9uO5udU5SRMpmETs3/2W/zaWfRwhrbVB/P6Xo8Jmaf51XFTcqKftPA1kfU 1oEJmFqJnl0zaRlINKkyRrtYcE77XwvwwrfICS921DjR57PHUywrdGnSktc1jnbC 9XOToj31zlC5jAZ0guipWJelaQGSY41Ajloow60pcqZwd/ZUFS7B4rCE25s= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:10 2025 by rpki-client