$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/R-xgEUDSrTwD3KsDal1IfKRN8oU.roa File: R-xgEUDSrTwD3KsDal1IfKRN8oU.roa (raw, json) Hash identifier: k4B+8PMEGFb7d+RbLObhekgZZ8gLjPYfE+1uLdzJwZk= Subject key identifier: 47:EC:60:11:40:D2:AD:3C:03:DC:AB:03:6A:5D:48:7C:A4:4D:F2:85 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DD1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/R-xgEUDSrTwD3KsDal1IfKRN8oU.roa Signing time: Tue 01 Apr 2025 02:27:21 +0000 ROA not before: Tue 01 Apr 2025 02:27:21 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 183.74.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3537 (0xdd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:27:21 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=47EC601140D2AD3C03DCAB036A5D487CA44DF285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5d:51:3a:2c:cf:37:cc:ad:b7:9a:a5:24:d7: 13:fd:34:ff:e0:78:34:5c:cf:e5:1d:7b:47:cb:75: f7:34:01:c5:3f:7e:71:bc:31:8a:ee:37:cd:7c:66: fd:4d:b6:49:69:f5:83:89:a1:02:3d:c5:58:ec:a5: 5c:1b:d3:27:96:af:8b:6a:0f:e5:ff:19:6c:b4:e2: fa:02:19:3b:07:a1:d5:d0:ef:d8:0b:40:e7:c1:96: db:6d:a6:06:df:b7:e4:6f:80:4d:be:f6:0c:30:46: 1b:31:b4:f9:04:f0:ca:b3:3a:ce:5a:85:42:0c:c0: 07:9c:a6:36:41:13:af:66:9b:a1:7b:73:4e:67:75: 2e:e7:08:87:e6:8d:40:3d:d5:9f:8a:5d:c6:d0:13: f5:8b:62:1b:b7:d5:3b:98:39:64:70:2f:72:2e:6c: c4:12:62:1a:dc:87:da:1a:06:a3:f1:45:c8:ea:14: 78:47:6c:b6:7e:7f:e3:d4:0d:87:65:fb:f8:44:e5: 41:85:db:66:dd:ab:22:de:32:7f:8d:38:66:47:63: 17:96:52:f9:48:7f:76:b5:6a:1a:20:57:61:d2:f0: ac:b4:03:a5:ab:ef:60:c1:c0:75:ec:26:ce:e2:64: c0:d2:8f:41:60:0f:64:dc:d1:4a:80:53:42:37:0d: 0d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:EC:60:11:40:D2:AD:3C:03:DC:AB:03:6A:5D:48:7C:A4:4D:F2:85 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/R-xgEUDSrTwD3KsDal1IfKRN8oU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.74.224.0/20 Signature Algorithm: sha256WithRSAEncryption d0:68:de:bc:f0:2f:f7:9d:20:8c:99:d2:b4:ad:75:31:ec:48: be:e9:5e:96:29:d1:d5:35:21:db:04:e2:7a:a0:3d:41:b7:48: 39:9d:b1:ea:f8:9f:56:72:3a:66:14:dd:4d:ef:c8:5d:52:47: 86:be:6b:a2:c9:2a:8d:14:88:a2:f6:55:60:a7:de:9a:10:ca: f0:94:45:95:d5:e6:a0:ce:21:94:a0:27:5f:52:77:00:9a:00: 28:fd:99:bb:08:b8:72:44:e6:b3:0f:86:f6:48:0a:63:2e:5b: 46:73:50:10:a3:60:04:f5:6b:cf:07:70:9a:1f:5f:17:53:f3: 68:5f:45:90:93:e2:76:a5:9d:9e:be:00:78:cb:e7:ab:03:e7: 5d:c1:1a:a2:b9:0f:b3:38:e8:6e:cb:09:49:c0:27:b5:64:66: ad:54:2d:1a:92:28:05:5a:ae:88:fc:a2:60:53:8c:68:3a:5d: a1:cc:bb:0f:d6:1e:27:9d:b6:b8:18:4a:eb:05:7f:b8:61:ff: 0f:af:ed:8f:13:17:00:8e:a1:84:2c:34:e7:e1:7b:3b:20:24: db:c9:9b:30:9f:22:bb:58:ca:89:93:10:c4:e6:77:de:ac:12: fe:0a:3b:27:0f:25:9a:66:3c:00:08:8b:ff:42:9f:4a:73:81: ee:6b:27:70 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDdEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI3MjFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQ3RUM2MDExNDBEMkFE M0MwM0RDQUIwMzZBNUQ0ODdDQTQ0REYyODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+XVE6LM83zK23mqUk1xP9NP/geDRcz+Ude0fLdfc0AcU/fnG8 MYruN818Zv1Ntklp9YOJoQI9xVjspVwb0yeWr4tqD+X/GWy04voCGTsHodXQ79gL QOfBltttpgbft+RvgE2+9gwwRhsxtPkE8MqzOs5ahUIMwAecpjZBE69mm6F7c05n dS7nCIfmjUA91Z+KXcbQE/WLYhu31TuYOWRwL3IubMQSYhrch9oaBqPxRcjqFHhH bLZ+f+PUDYdl+/hE5UGF22bdqyLeMn+NOGZHYxeWUvlIf3a1ahogV2HS8Ky0A6Wr 72DBwHXsJs7iZMDSj0FgD2Tc0UqAU0I3DQ3fAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUR+xgEUDSrTwD3KsDal1IfKRN8oUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1IteGdFVURTclR3RDNLc0RhbDFJZktSTjhvVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS3SuAwDQYJKoZIhvcNAQELBQADggEBANBo3rzwL/edIIyZ0rStdTHsSL7p XpYp0dU1IdsE4nqgPUG3SDmdser4n1ZyOmYU3U3vyF1SR4a+a6LJKo0UiKL2VWCn 3poQyvCURZXV5qDOIZSgJ19SdwCaACj9mbsIuHJE5rMPhvZICmMuW0ZzUBCjYAT1 a88HcJofXxdT82hfRZCT4nalnZ6+AHjL56sD513BGqK5D7M46G7LCUnAJ7VkZq1U LRqSKAVaroj8omBTjGg6XaHMuw/WHiedtrgYSusFf7hh/w+v7Y8TFwCOoYQsNOfh ezsgJNvJmzCfIrtYyomTEMTmd96sEv4KOycPJZpmPAAIi/9Cn0pzge5rJ3A= -----END CERTIFICATE-----Generated at Sat Apr 5 17:42:24 2025 by rpki-client