$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QD5o5cG9E74FuUMq9fiA7T83keg.roa File: QD5o5cG9E74FuUMq9fiA7T83keg.roa (raw, json) Hash identifier: 7BHk3g2WwNu/2C6qdF+pMtX0avWpnu0UAfQQO2Fsf94= Subject key identifier: 40:3E:68:E5:C1:BD:13:BE:05:B9:43:2A:F5:F8:80:ED:3F:37:91:E8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B47 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QD5o5cG9E74FuUMq9fiA7T83keg.roa Signing time: Thu 06 Mar 2025 07:16:30 +0000 ROA not before: Thu 06 Mar 2025 07:16:30 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2887 (0xb47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 6 07:16:30 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=403E68E5C1BD13BE05B9432AF5F880ED3F3791E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ec:65:58:73:ba:1e:b9:bc:93:39:50:ed:b9: e1:c8:64:c7:46:55:6f:e9:03:b4:ee:13:32:9d:24: 22:44:4d:1b:de:b6:e0:ee:e3:18:cc:3b:30:40:56: e4:4a:79:6d:d7:81:29:d9:d2:ca:a5:41:f7:36:8f: b7:5b:f7:6b:e9:82:d2:ff:b2:16:b9:ae:0e:8b:19: bc:6c:66:03:8b:da:21:c3:9d:3f:6f:68:ec:a3:2a: 39:ac:fe:46:52:ad:72:10:12:fa:b6:93:df:33:9f: 94:45:f9:14:76:c3:0f:95:70:00:88:6f:07:8e:ce: c4:bc:52:9a:54:00:50:47:4d:d8:41:a2:4a:51:63: 83:9b:2e:e7:b0:5e:2b:58:97:b4:1c:28:13:fb:8e: c9:18:77:aa:a5:15:3b:7c:cd:c5:6c:6f:35:36:04: af:92:37:f9:7b:7f:4f:e0:d7:87:8f:aa:34:f6:f6: 1d:ed:d1:cd:17:8e:cb:99:94:5f:7e:90:8b:b7:c3: 86:de:98:2e:83:e2:96:a9:a8:f4:7f:b6:fa:ac:8f: c4:6e:c6:29:2f:56:58:35:54:2f:1f:93:4b:ea:36: 55:f1:ad:40:2e:cd:56:b0:d0:ba:c9:3b:31:d0:61: 8f:67:37:1d:d9:04:ac:c5:b1:c0:39:b7:b7:c3:c5: 3d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:3E:68:E5:C1:BD:13:BE:05:B9:43:2A:F5:F8:80:ED:3F:37:91:E8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QD5o5cG9E74FuUMq9fiA7T83keg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.146.0/24 Signature Algorithm: sha256WithRSAEncryption d5:c0:2d:3b:dc:26:40:e3:52:6a:4a:2e:7d:cf:73:6c:90:b2: 55:10:5c:a7:46:17:31:49:37:f3:84:e8:4f:62:6d:82:eb:17: 93:9c:3a:8b:8b:0f:72:54:4a:48:6f:07:85:dd:b4:da:0a:8a: 68:73:2a:74:f2:2e:80:1e:d9:ac:9f:ee:52:e9:62:41:ad:f0: 5c:1b:25:9e:53:c7:d4:c8:86:5d:b4:df:19:cc:ca:2b:50:85: a3:c3:78:17:f2:0b:4f:01:70:28:bf:97:90:6c:cc:3a:a0:44: d8:a2:c7:a8:ba:48:bc:1d:3c:0b:e2:c8:08:79:60:41:c1:29: 63:6f:06:6b:df:4a:a7:1d:74:eb:b7:f4:43:bb:59:c6:83:fc: 3c:89:0f:4d:00:e6:22:7d:07:72:59:49:8f:a9:ce:04:ca:f4: c8:b1:be:41:db:00:2e:04:95:e5:a1:33:48:61:78:96:3b:26: 95:2e:a6:1d:af:3d:f9:e8:86:59:49:39:d8:b8:52:2a:48:2a: fb:51:b9:3e:0e:a0:40:fd:af:af:23:c0:ac:a5:b2:cc:54:01: 9e:e3:db:2c:c3:fa:d2:af:c4:a8:1a:8b:72:45:cd:e2:5a:37: 93:36:b7:e3:4a:a9:86:c8:c1:39:52:38:65:10:40:7c:bc:85: b4:60:26:54 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC0cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAzMDYw NzE2MzBaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQwM0U2OEU1QzFCRDEz QkUwNUI5NDMyQUY1Rjg4MEVEM0YzNzkxRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt7GVYc7oeubyTOVDtueHIZMdGVW/pA7TuEzKdJCJETRvetuDu 4xjMOzBAVuRKeW3XgSnZ0sqlQfc2j7db92vpgtL/sha5rg6LGbxsZgOL2iHDnT9v aOyjKjms/kZSrXIQEvq2k98zn5RF+RR2ww+VcACIbweOzsS8UppUAFBHTdhBokpR Y4ObLuewXitYl7QcKBP7jskYd6qlFTt8zcVsbzU2BK+SN/l7f0/g14ePqjT29h3t 0c0XjsuZlF9+kIu3w4bemC6D4papqPR/tvqsj8RuxikvVlg1VC8fk0vqNlXxrUAu zVaw0LrJOzHQYY9nNx3ZBKzFscA5t7fDxT0vAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQD5o5cG9E74FuUMq9fiA7T83kegwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1FENW81Y0c5RTc0RnVVTXE5ZmlBN1Q4M2tlZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABS5IwDQYJKoZIhvcNAQELBQADggEBANXALTvcJkDjUmpKLn3Pc2yQslUQ XKdGFzFJN/OE6E9ibYLrF5OcOouLD3JUSkhvB4XdtNoKimhzKnTyLoAe2ayf7lLp YkGt8FwbJZ5Tx9TIhl203xnMyitQhaPDeBfyC08BcCi/l5BszDqgRNiix6i6SLwd PAviyAh5YEHBKWNvBmvfSqcddOu39EO7WcaD/DyJD00A5iJ9B3JZSY+pzgTK9Mix vkHbAC4EleWhM0hheJY7JpUuph2vPfnohllJOdi4UipIKvtRuT4OoED9r68jwKyl ssxUAZ7j2yzD+tKvxKgai3JFzeJaN5M2t+NKqYbIwTlSOGUQQHy8hbRgJlQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:49 2025 by rpki-client