$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NB_RIQImM02-Zq-bNS-29yEgljA.roa File: NB_RIQImM02-Zq-bNS-29yEgljA.roa (raw, json) Hash identifier: USEYDeQqzNl9T2kwcIFh0In2c3jpx6JfS0t0F6EJBag= Subject key identifier: 34:1F:D1:21:02:26:33:4D:BE:66:AF:9B:35:2F:B6:F7:21:20:96:30 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BD5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NB_RIQImM02-Zq-bNS-29yEgljA.roa Signing time: Tue 01 Apr 2025 01:47:35 +0000 ROA not before: Tue 01 Apr 2025 01:47:35 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 61.195.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3029 (0xbd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:35 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=341FD1210226334DBE66AF9B352FB6F721209630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c4:15:8d:42:0b:61:3b:90:b4:a0:cd:61:52: 01:aa:87:bb:6e:1c:2b:ba:b1:81:37:7c:b7:c6:a2: 8a:41:69:c3:22:95:fd:b0:61:2b:9c:d4:c4:78:f1: 11:a2:fb:4c:c4:c1:c6:eb:3b:9b:fe:3b:83:9e:3f: 68:69:50:18:8d:99:32:0f:7f:ce:16:84:e7:0b:90: f7:29:53:f2:c6:07:76:d7:a8:65:f0:a7:bc:75:c0: 80:e7:ae:d5:91:8d:90:67:fa:af:da:d7:23:81:f6: 45:18:e2:1f:61:58:05:a9:cb:02:98:9a:ba:d9:c9: 16:69:cb:0f:06:94:f9:5c:1c:0f:52:0c:8e:22:26: f5:95:75:af:a9:69:4c:02:f8:9e:a0:aa:1d:49:f2: 37:9d:c2:66:0a:5b:a8:f8:c8:ee:c0:34:3b:71:2f: fd:be:bd:6e:84:20:cc:7b:43:be:15:a0:07:8e:9c: b3:b3:c4:1a:85:e4:5f:2c:f3:16:f9:f5:f6:79:4f: 91:8a:f7:6e:59:e8:cb:47:4a:6b:8e:d8:49:4f:28: 16:cf:1f:44:e4:74:7c:b8:44:d8:d7:f9:38:b8:93: 11:c0:a6:91:1b:c2:81:d2:2c:f8:82:06:8f:73:c3: d0:df:7c:32:30:1f:a3:c5:41:cf:40:21:64:b2:7a: bd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1F:D1:21:02:26:33:4D:BE:66:AF:9B:35:2F:B6:F7:21:20:96:30 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NB_RIQImM02-Zq-bNS-29yEgljA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.195.216.0/21 Signature Algorithm: sha256WithRSAEncryption 16:42:b1:79:57:eb:e7:10:32:73:a7:b9:98:e4:e5:f0:21:74: 81:5d:22:68:98:8f:b5:3d:6f:1c:cb:5b:29:bf:b4:53:8c:00: 63:91:b8:70:c0:f5:09:92:82:e1:53:96:3e:9e:e9:e9:72:7a: 07:ee:e4:44:83:e6:d2:18:93:47:7b:ae:b1:84:b9:c6:b4:6d: a0:22:93:2d:1a:b4:0b:52:24:9b:9c:d4:40:54:01:59:2d:26: 95:76:53:00:cc:8e:5e:99:52:a0:67:e4:b2:7b:69:41:bd:42: e0:81:47:9c:55:98:08:8d:8f:c7:98:3d:a2:f4:41:38:22:ed: 6d:d2:b1:81:6a:ab:d6:f3:93:db:35:c1:d7:17:f4:3d:65:cd: 33:51:78:77:2f:ab:e7:cf:69:1d:13:6e:c5:d7:ae:6d:55:55: 71:96:41:3d:4b:92:68:88:34:7c:a1:bf:60:9a:ed:13:21:65: 1e:a8:3d:15:c4:cc:3e:c8:19:37:4e:88:a2:b4:47:d8:5a:1f: bc:8f:86:0c:cd:b1:a3:b0:18:d2:7a:f1:eb:3f:1c:d6:e4:32: 6b:a1:15:4c:e8:95:2f:cb:47:ed:3d:3a:8f:54:08:d4:61:32: 33:00:b1:d0:c3:d2:a0:ae:b0:6b:a3:3d:bd:46:6c:83:34:86: 0b:f8:e3:e4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC9UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3MzVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDM0MUZEMTIxMDIyNjMz NERCRTY2QUY5QjM1MkZCNkY3MjEyMDk2MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0xBWNQgthO5C0oM1hUgGqh7tuHCu6sYE3fLfGoopBacMilf2w YSuc1MR48RGi+0zEwcbrO5v+O4OeP2hpUBiNmTIPf84WhOcLkPcpU/LGB3bXqGXw p7x1wIDnrtWRjZBn+q/a1yOB9kUY4h9hWAWpywKYmrrZyRZpyw8GlPlcHA9SDI4i JvWVda+paUwC+J6gqh1J8jedwmYKW6j4yO7ANDtxL/2+vW6EIMx7Q74VoAeOnLOz xBqF5F8s8xb59fZ5T5GK925Z6MtHSmuO2ElPKBbPH0TkdHy4RNjX+Ti4kxHAppEb woHSLPiCBo9zw9DffDIwH6PFQc9AIWSyer2fAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNB/RIQImM02+Zq+bNS+29yEgljAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05CX1JJUUltTTAyLVpxLWJOUy0yOXlFZ2xqQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM9w9gwDQYJKoZIhvcNAQELBQADggEBABZCsXlX6+cQMnOnuZjk5fAhdIFd ImiYj7U9bxzLWym/tFOMAGORuHDA9QmSguFTlj6e6elyegfu5ESD5tIYk0d7rrGE uca0baAiky0atAtSJJuc1EBUAVktJpV2UwDMjl6ZUqBn5LJ7aUG9QuCBR5xVmAiN j8eYPaL0QTgi7W3SsYFqq9bzk9s1wdcX9D1lzTNReHcvq+fPaR0TbsXXrm1VVXGW QT1LkmiINHyhv2Ca7RMhZR6oPRXEzD7IGTdOiKK0R9haH7yPhgzNsaOwGNJ68es/ HNbkMmuhFUzolS/LR+09Oo9UCNRhMjMAsdDD0qCusGujPb1GbIM0hgv44+Q= -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:40 2025 by rpki-client