$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/RkQhT8Whmrc-M9GCNQw3uFR5RIM.roa File: RkQhT8Whmrc-M9GCNQw3uFR5RIM.roa (raw, json) Hash identifier: ZNJHcx9P6fvtGny+0hgC85UuAR/NHrflMBu29C78zkQ= Subject key identifier: 46:44:21:4F:C5:A1:9A:B7:3E:33:D1:82:35:0C:37:B8:54:79:44:83 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CAB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RkQhT8Whmrc-M9GCNQw3uFR5RIM.roa Signing time: Tue 01 Apr 2025 02:05:39 +0000 ROA not before: Tue 01 Apr 2025 02:05:39 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.74.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3243 (0xcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:05:39 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=4644214FC5A19AB73E33D182350C37B854794483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7e:d9:c0:db:68:29:22:e4:0c:5e:57:0c:57: 2b:46:46:99:4c:53:7c:99:89:26:48:ef:dd:9e:02: 1d:c3:cd:ac:ff:87:a2:93:7b:a6:55:41:73:a7:d0: 3c:da:12:2a:2b:ee:53:f8:89:38:4a:4f:18:ac:07: 48:fa:b0:a7:6b:ec:41:39:2e:a7:4f:f8:4f:3f:6d: c0:08:5c:d6:14:c0:b1:05:de:d9:60:f6:91:bc:1f: ed:d9:4e:cd:07:1e:61:51:d6:5a:00:4d:2b:ba:bc: 6b:91:ca:61:ba:f1:18:38:b0:4e:08:7b:73:6d:d9: b3:fd:41:30:c6:b5:99:9a:48:ba:66:65:f5:20:ce: 97:7e:76:f2:13:66:11:14:42:64:b2:c0:be:30:27: bc:61:29:01:44:19:4b:df:90:ba:6e:05:0c:7f:ae: df:93:d8:e7:ea:41:63:43:80:40:e8:3a:71:e9:23: 1d:a7:83:df:91:82:70:5b:d0:4b:01:5b:aa:7f:2c: e9:56:18:20:72:c1:de:a2:a3:9d:36:6e:f4:d5:60: dc:18:69:8f:b0:b3:a0:1e:d2:79:2b:fd:20:29:16: 0d:0d:d6:f9:07:20:56:31:6c:ea:8e:3f:8b:53:4f: c3:d7:31:5e:ef:71:7e:15:d3:8b:23:48:6a:ed:4d: dd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:44:21:4F:C5:A1:9A:B7:3E:33:D1:82:35:0C:37:B8:54:79:44:83 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RkQhT8Whmrc-M9GCNQw3uFR5RIM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.240.0/20 Signature Algorithm: sha256WithRSAEncryption 4f:41:d3:a6:20:9e:96:06:f9:6b:8f:0a:2d:b4:c1:4d:00:27: 5f:55:c6:82:3b:e7:e6:4c:88:fe:0d:9a:77:33:0f:29:d0:aa: 4a:7e:88:19:7f:0e:7a:76:0a:6b:a6:f5:3b:b9:67:d9:0f:4e: 2b:cd:29:41:05:f9:d4:ab:67:0a:ce:22:26:06:79:ef:18:7f: e9:65:24:21:d1:50:59:28:23:5a:4f:29:c5:fa:15:dd:5a:e9: 94:fd:b8:79:d1:a4:80:29:7d:69:15:c8:9c:45:12:09:43:6d: 1c:0c:75:d6:36:08:5b:dc:4a:ca:67:a8:66:34:cd:3e:90:9f: ae:b8:fa:68:b2:a4:db:d1:da:36:e6:8e:96:04:5e:95:e4:a6: 12:2a:e4:4a:7b:fa:7d:ed:06:d8:3e:09:bc:cb:67:68:54:a4: c1:8d:0a:f3:c3:76:77:02:c5:bd:fb:3e:57:ab:52:f9:1d:31: e2:36:4f:f5:fb:6b:9e:c1:a1:51:fd:e1:94:35:c7:85:cc:7e: 6b:af:49:19:33:ce:62:1e:c3:2a:69:2d:11:56:2a:cd:01:6d: 35:6f:53:3d:ca:f6:e3:f4:7a:a3:50:95:5e:b9:aa:5e:bf:00: a4:cf:b2:c1:70:ee:9d:7a:09:c8:42:6c:5b:8c:77:b3:70:73: bd:36:94:d4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDKswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA1MzlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQ2NDQyMTRGQzVBMTlB QjczRTMzRDE4MjM1MEMzN0I4NTQ3OTQ0ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVftnA22gpIuQMXlcMVytGRplMU3yZiSZI792eAh3Dzaz/h6KT e6ZVQXOn0DzaEior7lP4iThKTxisB0j6sKdr7EE5LqdP+E8/bcAIXNYUwLEF3tlg 9pG8H+3ZTs0HHmFR1loATSu6vGuRymG68Rg4sE4Ie3Nt2bP9QTDGtZmaSLpmZfUg zpd+dvITZhEUQmSywL4wJ7xhKQFEGUvfkLpuBQx/rt+T2OfqQWNDgEDoOnHpIx2n g9+RgnBb0EsBW6p/LOlWGCBywd6io502bvTVYNwYaY+ws6Ae0nkr/SApFg0N1vkH IFYxbOqOP4tTT8PXMV7vcX4V04sjSGrtTd0RAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQURkQhT8Whmrc+M9GCNQw3uFR5RIMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1JrUWhUOFdobXJjLU05R0NOUXczdUZSNVJJTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBSvAwDQYJKoZIhvcNAQELBQADggEBAE9B06YgnpYG+WuPCi20wU0AJ19V xoI75+ZMiP4NmnczDynQqkp+iBl/Dnp2Cmum9Tu5Z9kPTivNKUEF+dSrZwrOIiYG ee8Yf+llJCHRUFkoI1pPKcX6Fd1a6ZT9uHnRpIApfWkVyJxFEglDbRwMddY2CFvc SspnqGY0zT6Qn664+miypNvR2jbmjpYEXpXkphIq5Ep7+n3tBtg+CbzLZ2hUpMGN CvPDdncCxb37PlerUvkdMeI2T/X7a57BoVH94ZQ1x4XMfmuvSRkzzmIewyppLRFW Ks0BbTVvUz3K9uP0eqNQlV65ql6/AKTPssFw7p16CchCbFuMd7Nwc702lNQ= -----END CERTIFICATE-----Generated at Sat Apr 5 23:09:13 2025 by rpki-client