$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/P2PaS77NmL48J4DfRnA8909beus.roa File: P2PaS77NmL48J4DfRnA8909beus.roa (raw, json) Hash identifier: eWFtXrXLkGW4QtgjX2LHmYUENPf9JC7TvE4nWnHprfE= Subject key identifier: 3F:63:DA:4B:BE:CD:98:BE:3C:27:80:DF:46:70:3C:F7:4F:5B:7A:EB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E0E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/P2PaS77NmL48J4DfRnA8909beus.roa Signing time: Tue 01 Apr 2025 02:31:28 +0000 ROA not before: Tue 01 Apr 2025 02:31:28 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3598 (0xe0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:31:28 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=3F63DA4BBECD98BE3C2780DF46703CF74F5B7AEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bc:73:cf:b3:9f:0a:ed:47:e6:ab:2b:91:bf: 14:0f:c9:8f:25:57:ac:5c:43:1a:10:a9:5e:32:e2: 92:13:a0:d9:89:5c:11:33:87:3f:12:8a:21:d8:1d: 41:fd:f5:49:31:ee:4a:de:4d:41:af:66:0c:20:c2: b4:1f:11:0f:1a:fb:60:fa:f6:7a:09:bf:81:0d:23: 9a:fb:70:c9:e6:2a:57:45:7a:b5:9b:8c:8a:42:ae: cc:77:e3:92:ec:eb:f3:56:41:9d:44:b6:1d:7f:98: 9b:bb:7e:5c:38:36:c6:4a:12:82:75:e9:ea:38:0c: 5d:20:8e:57:c7:c7:d6:76:33:ac:9b:d0:f2:c4:ab: da:01:f3:69:1e:43:b3:8e:9f:4d:2c:bc:23:55:b1: 3b:93:90:76:0d:5c:a3:73:84:dc:ed:51:78:10:57: 33:91:e3:05:1f:2c:58:96:8a:c6:39:f3:af:84:d0: 09:e8:64:33:6f:20:18:0a:7c:0e:cc:04:bf:74:50: b5:74:6c:d5:7e:d7:c3:0c:13:5c:bc:76:e3:44:61: d7:04:b6:03:6c:1f:9c:60:31:ef:d2:6d:7c:7a:a8: 2f:14:a4:5d:b0:09:db:4b:6a:a8:5c:16:41:b8:a9: 4b:d7:9f:f4:79:ed:76:0d:5a:4e:4c:a5:c3:a5:b0: 88:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:63:DA:4B:BE:CD:98:BE:3C:27:80:DF:46:70:3C:F7:4F:5B:7A:EB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/P2PaS77NmL48J4DfRnA8909beus.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.16.0/20 Signature Algorithm: sha256WithRSAEncryption 43:b1:fa:81:2e:4d:31:72:31:0b:09:0e:ac:00:3a:1f:89:b8: ec:b4:d2:57:ce:fa:ef:c3:32:fb:0a:29:95:13:4e:9d:2b:df: f8:f3:77:1e:17:3f:d8:0b:33:c3:6f:15:ec:13:26:3e:d0:c4: 22:3d:d5:c8:29:05:d8:46:52:b6:0b:15:7b:87:33:03:15:f8: 51:4b:63:bc:8b:85:85:90:19:07:09:96:9e:5c:1a:84:ba:66: 15:2e:9b:21:76:35:52:f8:9a:13:0b:4a:a6:66:21:d7:6e:6f: 27:f0:3f:80:b5:f4:f5:50:f0:4d:98:17:61:b3:f8:a7:16:8a: 97:85:ef:ac:5b:38:91:bd:93:5e:17:ff:02:73:ab:bc:15:79: df:77:07:2a:e4:0c:b3:32:20:d1:d7:c5:1e:cf:d9:cd:25:74: c9:e0:e3:40:ec:0f:96:8f:6e:e9:f2:c0:ed:db:c1:0a:33:e3: 99:09:c4:e8:d0:a5:06:78:a9:ef:b8:0d:f2:f5:ae:c9:2f:26: f6:43:86:3a:63:af:de:41:3f:fd:5f:d8:1e:d8:73:4d:3b:1c: 92:b6:25:28:33:75:3c:d6:80:93:57:b4:80:1f:9b:d9:14:bd: a1:9f:e4:4a:dd:ac:8a:44:ba:57:6f:82:a5:da:d0:98:02:cb: 82:f1:5e:4f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDg4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMxMjhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNGNjNEQTRCQkVDRDk4 QkUzQzI3ODBERjQ2NzAzQ0Y3NEY1QjdBRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPvHPPs58K7UfmqyuRvxQPyY8lV6xcQxoQqV4y4pIToNmJXBEz hz8SiiHYHUH99Ukx7kreTUGvZgwgwrQfEQ8a+2D69noJv4ENI5r7cMnmKldFerWb jIpCrsx345Ls6/NWQZ1Eth1/mJu7flw4NsZKEoJ16eo4DF0gjlfHx9Z2M6yb0PLE q9oB82keQ7OOn00svCNVsTuTkHYNXKNzhNztUXgQVzOR4wUfLFiWisY586+E0Ano ZDNvIBgKfA7MBL90ULV0bNV+18MME1y8duNEYdcEtgNsH5xgMe/SbXx6qC8UpF2w CdtLaqhcFkG4qUvXn/R57XYNWk5MpcOlsIj3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUP2PaS77NmL48J4DfRnA8909beuswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1AyUGFTNzdObUw0OEo0RGZSbkE4OTA5YmV1cy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBSBAwDQYJKoZIhvcNAQELBQADggEBAEOx+oEuTTFyMQsJDqwAOh+JuOy0 0lfO+u/DMvsKKZUTTp0r3/jzdx4XP9gLM8NvFewTJj7QxCI91cgpBdhGUrYLFXuH MwMV+FFLY7yLhYWQGQcJlp5cGoS6ZhUumyF2NVL4mhMLSqZmIddubyfwP4C19PVQ 8E2YF2Gz+KcWipeF76xbOJG9k14X/wJzq7wVed93ByrkDLMyINHXxR7P2c0ldMng 40DsD5aPbunywO3bwQoz45kJxOjQpQZ4qe+4DfL1rskvJvZDhjpjr95BP/1f2B7Y c007HJK2JSgzdTzWgJNXtIAfm9kUvaGf5ErdrIpEuldvgqXa0JgCy4LxXk8= -----END CERTIFICATE-----Generated at Sun Apr 6 01:39:36 2025 by rpki-client