$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NlBlNXtBhWuaeNgGVdkoIwyfQlI.roa File: NlBlNXtBhWuaeNgGVdkoIwyfQlI.roa (raw, json) Hash identifier: KSxnC+RbTgPZSIprz+ZKnLwIQe878vQ067Z0BkzCm8A= Subject key identifier: 36:50:65:35:7B:41:85:6B:9A:78:D8:06:55:D9:28:23:0C:9F:42:52 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D82 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NlBlNXtBhWuaeNgGVdkoIwyfQlI.roa Signing time: Tue 01 Apr 2025 02:21:27 +0000 ROA not before: Tue 01 Apr 2025 02:21:27 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3458 (0xd82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:27 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=365065357B41856B9A78D80655D928230C9F4252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:32:28:aa:5f:40:87:d5:e8:e6:10:31:3a:1c: 7b:0d:b7:45:12:88:0d:f9:1e:28:9a:fd:a6:7b:43: 81:b6:86:1e:fa:f0:9b:62:b5:1a:f4:13:5b:17:0a: 1e:70:86:ec:10:a3:cd:a6:16:f2:47:63:8c:a8:98: 39:36:7a:b0:57:77:d6:0d:ab:fc:e3:ed:5e:6b:ee: a2:89:db:91:77:19:02:89:62:86:95:4f:81:5f:35: b7:b2:e6:df:a8:e8:a4:1f:dd:66:87:15:35:95:b9: 77:4c:29:c3:31:fb:7a:53:39:1d:b2:f6:73:25:0f: 1d:e4:50:91:04:92:78:d6:8b:74:cf:03:03:81:38: 88:7e:bd:6e:2a:58:b5:dc:68:9a:34:9c:a8:0e:55: ea:8c:4b:35:3e:fc:d1:a0:5d:e4:d6:85:a9:5d:3b: b2:3f:42:a5:f7:6a:92:4e:13:50:d0:33:9e:0e:b1: 7b:f5:a1:70:0c:42:7c:11:e5:3f:fa:68:0a:a2:0a: 85:b3:54:e9:77:a9:56:ab:09:7b:e3:8f:50:71:61: 44:7a:1e:f9:f3:37:3d:3f:93:a7:ad:81:93:36:ab: 3c:89:d1:e1:4d:18:df:53:86:60:9c:4c:68:0b:36: 57:ff:a3:e0:1c:a7:b1:4b:7e:54:9c:d0:34:a1:dc: f2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:50:65:35:7B:41:85:6B:9A:78:D8:06:55:D9:28:23:0C:9F:42:52 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NlBlNXtBhWuaeNgGVdkoIwyfQlI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.128.0/18 Signature Algorithm: sha256WithRSAEncryption 19:a2:ed:2b:6f:ec:67:4d:b5:bc:03:de:30:dd:13:5a:ab:32: 78:c7:2e:df:fa:7f:71:8d:78:8a:ca:71:bd:07:5b:9c:cf:03: 57:11:99:5a:3a:5c:16:5a:86:0e:58:9f:29:3a:31:d7:c7:d6: 7f:45:20:1a:3b:4a:e4:22:b0:7a:e5:bd:fe:cc:f6:36:10:f5: 4f:f2:0d:b2:ad:39:03:c0:b7:a3:32:3a:6f:52:db:4f:e4:fd: a2:1a:5d:eb:2c:ed:a0:8f:3d:ac:74:1a:70:05:df:23:0a:57: 95:b2:4a:d0:51:0b:1a:be:c5:56:7a:62:57:a2:87:df:17:b6: 4e:6c:75:07:f9:87:b8:f1:70:73:0c:34:a1:c4:a7:19:bf:0d: b8:e6:68:dd:4c:5b:40:91:75:34:2b:f2:ee:f3:38:f8:7e:97: 87:c6:30:aa:29:78:fc:bc:a0:41:a9:6d:26:7d:82:55:42:d3: 64:30:5c:92:a6:f8:5a:e8:c4:d4:0b:b1:38:6b:b9:b8:00:84: 9c:fe:79:ac:fd:25:b7:9b:f7:e1:8b:93:b8:0f:73:03:a1:ab: 15:e4:4f:53:10:03:29:f1:00:0a:53:d2:34:69:bc:eb:92:83: 50:34:8e:e5:e3:88:d4:4a:38:dc:2b:35:e4:b0:68:5c:90:3e: e5:50:14:07 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMjdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDM2NTA2NTM1N0I0MTg1 NkI5QTc4RDgwNjU1RDkyODIzMEM5RjQyNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGMiiqX0CH1ejmEDE6HHsNt0USiA35Hiia/aZ7Q4G2hh768Jti tRr0E1sXCh5whuwQo82mFvJHY4yomDk2erBXd9YNq/zj7V5r7qKJ25F3GQKJYoaV T4FfNbey5t+o6KQf3WaHFTWVuXdMKcMx+3pTOR2y9nMlDx3kUJEEknjWi3TPAwOB OIh+vW4qWLXcaJo0nKgOVeqMSzU+/NGgXeTWhaldO7I/QqX3apJOE1DQM54OsXv1 oXAMQnwR5T/6aAqiCoWzVOl3qVarCXvjj1BxYUR6HvnzNz0/k6etgZM2qzyJ0eFN GN9ThmCcTGgLNlf/o+Acp7FLflSc0DSh3PJdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNlBlNXtBhWuaeNgGVdkoIwyfQlIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05sQmxOWHRCaFd1YWVOZ0dWZGtvSXd5ZlFsSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbcn4AwDQYJKoZIhvcNAQELBQADggEBABmi7Stv7GdNtbwD3jDdE1qrMnjH Lt/6f3GNeIrKcb0HW5zPA1cRmVo6XBZahg5Ynyk6MdfH1n9FIBo7SuQisHrlvf7M 9jYQ9U/yDbKtOQPAt6MyOm9S20/k/aIaXess7aCPPax0GnAF3yMKV5WyStBRCxq+ xVZ6Yleih98Xtk5sdQf5h7jxcHMMNKHEpxm/DbjmaN1MW0CRdTQr8u7zOPh+l4fG MKopePy8oEGpbSZ9glVC02QwXJKm+FroxNQLsThrubgAhJz+eaz9Jbeb9+GLk7gP cwOhqxXkT1MQAynxAApT0jRpvOuSg1A0juXjiNRKONwrNeSwaFyQPuVQFAc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:41:55 2025 by rpki-client