$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/RPSGEpw5_FnRA3XTZ-zYvrSfhNY.roa File: RPSGEpw5_FnRA3XTZ-zYvrSfhNY.roa (raw, json) Hash identifier: TSjBRKzxF7Yn8/BM5bNkKwe/30tF/TDIJpAQQJcLNTc= Subject key identifier: 44:F4:86:12:9C:39:FC:59:D1:03:75:D3:67:EC:D8:BE:B4:9F:84:D6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C53 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RPSGEpw5_FnRA3XTZ-zYvrSfhNY.roa Signing time: Tue 01 Apr 2025 01:57:24 +0000 ROA not before: Tue 01 Apr 2025 01:57:24 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3155 (0xc53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:57:24 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=44F486129C39FC59D10375D367ECD8BEB49F84D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:88:73:62:be:78:52:40:17:33:67:8f:83:81: 37:74:e3:f1:8b:f4:65:14:db:57:d9:c2:98:48:01: f3:2c:0c:bc:3b:3d:02:63:8b:46:40:4c:a1:9c:7f: 3e:fa:c1:d6:2d:bd:e3:47:e3:9c:d6:60:7a:31:78: eb:08:22:d0:f4:2b:9c:39:5f:c3:fe:9c:f0:a6:c8: 59:34:33:a3:53:9e:6b:eb:c7:5d:df:f5:5c:a9:be: 76:cf:c7:9f:10:b6:2d:63:dd:53:c4:a3:49:48:50: e9:d7:f6:ef:9f:23:d9:2e:07:fc:0a:0c:5a:be:b5: 09:82:63:9d:dc:0b:c2:5b:56:60:75:d8:d9:b0:28: 9c:7b:89:e5:a6:c7:7c:df:02:7d:46:db:17:cf:23: a1:64:ab:3b:4d:9b:13:e7:d2:94:17:bc:26:9c:9b: ef:3e:88:04:fc:d1:25:83:65:53:05:cd:c2:67:f4: 49:45:04:d2:1b:8d:ee:e9:04:31:e8:25:74:24:45: 30:89:ed:d4:ea:0a:24:4f:c1:e7:33:c5:cd:d5:4e: 06:ea:8a:e3:45:8a:6a:ab:fe:a6:a6:a0:65:ef:da: 04:d3:c5:8d:d0:80:c9:6a:f9:80:06:61:50:fb:35: 3d:2f:57:00:b2:d1:46:69:d9:5f:da:45:cc:2a:9b: bb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F4:86:12:9C:39:FC:59:D1:03:75:D3:67:EC:D8:BE:B4:9F:84:D6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RPSGEpw5_FnRA3XTZ-zYvrSfhNY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.192.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:30:71:45:51:8a:82:18:e8:2a:1a:2f:7c:2e:71:f3:58:d8: d0:c0:f2:9b:df:ee:60:7d:0e:38:ac:81:2f:47:72:02:dd:16: 72:90:cd:56:b4:b2:0c:f9:d0:94:21:a4:df:12:ef:2d:15:a1: 5c:03:bc:07:51:19:56:32:e1:e6:8b:9d:79:4f:04:2f:da:2a: 34:40:e6:42:06:ae:88:86:37:8e:f0:08:d1:5c:e4:8e:8a:7d: 05:7c:5e:e1:96:6f:a8:39:ae:2c:71:cf:2b:70:3a:62:4e:ac: 76:ae:45:0d:01:1e:ba:91:2e:41:62:59:b6:e1:96:58:9f:31: 68:b4:16:8d:d3:e6:2e:17:8c:9b:3a:65:e5:46:81:1b:6c:cc: 67:4d:20:36:74:b7:91:de:84:06:92:74:60:64:33:1f:f9:0c: 40:30:3c:e5:d3:6a:9b:8f:7b:50:e5:a3:a2:f6:a2:26:a7:10: 47:44:16:43:bd:51:5c:54:77:94:e5:99:96:1f:96:5d:7f:f8: e1:03:44:f7:13:a5:2e:32:9c:6c:51:5f:8d:7a:03:a2:c8:0e: 86:59:59:94:6c:6c:c9:2a:d0:be:25:45:b6:4c:38:fb:44:b5: 96:3a:16:9d:0b:f1:7f:4c:1d:b6:bb:0d:6f:7a:45:a2:95:a6: 3b:c8:43:30 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDFMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU3MjRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQ0RjQ4NjEyOUMzOUZD NTlEMTAzNzVEMzY3RUNEOEJFQjQ5Rjg0RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxiHNivnhSQBczZ4+DgTd04/GL9GUU21fZwphIAfMsDLw7PQJj i0ZATKGcfz76wdYtveNH45zWYHoxeOsIItD0K5w5X8P+nPCmyFk0M6NTnmvrx13f 9VypvnbPx58Qti1j3VPEo0lIUOnX9u+fI9kuB/wKDFq+tQmCY53cC8JbVmB12Nmw KJx7ieWmx3zfAn1G2xfPI6FkqztNmxPn0pQXvCacm+8+iAT80SWDZVMFzcJn9ElF BNIbje7pBDHoJXQkRTCJ7dTqCiRPweczxc3VTgbqiuNFimqr/qamoGXv2gTTxY3Q gMlq+YAGYVD7NT0vVwCy0UZp2V/aRcwqm7sJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQURPSGEpw5/FnRA3XTZ+zYvrSfhNYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1JQU0dFcHc1X0ZuUkEzWFRaLXpZdnJTZmhOWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYBSMAwDQYJKoZIhvcNAQELBQADggEBAC4wcUVRioIY6CoaL3wucfNY2NDA 8pvf7mB9DjisgS9HcgLdFnKQzVa0sgz50JQhpN8S7y0VoVwDvAdRGVYy4eaLnXlP BC/aKjRA5kIGroiGN47wCNFc5I6KfQV8XuGWb6g5rixxzytwOmJOrHauRQ0BHrqR LkFiWbbhllifMWi0Fo3T5i4XjJs6ZeVGgRtszGdNIDZ0t5HehAaSdGBkMx/5DEAw POXTapuPe1Dlo6L2oianEEdEFkO9UVxUd5TlmZYfll1/+OEDRPcTpS4ynGxRX416 A6LIDoZZWZRsbMkq0L4lRbZMOPtEtZY6Fp0L8X9MHba7DW96RaKVpjvIQzA= -----END CERTIFICATE-----Generated at Sat Apr 5 17:19:30 2025 by rpki-client