$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UJ0BWYynI323HDmtnYDXIvc1ZNM.roa File: UJ0BWYynI323HDmtnYDXIvc1ZNM.roa (raw, json) Hash identifier: jlro6hhUBLJ8FMIVvgVqHS33TlYYXRDRkq4/kkQXmIE= Subject key identifier: 50:9D:01:59:8C:A7:23:7D:B7:1C:39:AD:9D:80:D7:22:F7:35:64:D3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B76 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UJ0BWYynI323HDmtnYDXIvc1ZNM.roa Signing time: Tue 01 Apr 2025 01:36:47 +0000 ROA not before: Tue 01 Apr 2025 01:36:47 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.73.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2934 (0xb76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:36:47 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=509D01598CA7237DB71C39AD9D80D722F73564D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:eb:12:2b:97:9d:0c:79:3b:f8:4f:d3:c8:67: 08:da:52:68:fd:f3:24:64:70:30:4d:63:d7:79:6f: 34:d1:f7:52:52:84:01:87:dd:f9:1d:a7:c1:af:83: c5:d1:aa:97:4a:74:4e:bf:b1:6c:ac:87:80:a3:68: e0:15:e8:ec:63:c9:66:be:fb:6f:0c:dc:72:7a:71: f1:c3:77:38:93:85:2f:09:c1:33:6f:cd:cf:45:9e: 82:54:9a:70:03:95:ee:21:b4:af:63:5a:da:bb:b9: 43:b6:36:21:38:b3:c7:e2:c3:49:af:ac:2e:b6:03: 7c:43:d9:c8:4a:fb:27:6a:6f:86:2c:48:7a:06:f3: bb:4c:ee:6a:97:2a:7a:9b:7f:1e:49:ab:c9:ed:7d: a9:88:6f:2c:7a:0b:83:30:ee:8a:00:73:35:7d:f9: 8e:30:a3:7a:10:f3:19:cb:56:98:68:f7:d4:a4:89: 8f:a2:5d:e5:53:0b:b4:b7:06:d5:4b:27:01:09:10: db:e4:36:7c:da:8d:17:03:8a:31:58:a7:64:24:57: 01:c4:24:f4:a1:a1:bb:8e:96:1a:27:47:b9:3f:05: fe:b9:d6:eb:c9:ff:24:00:f2:b7:ed:d7:f6:e9:8a: e2:32:06:57:09:17:0f:01:ab:f5:11:2e:9e:6e:d4: 45:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:9D:01:59:8C:A7:23:7D:B7:1C:39:AD:9D:80:D7:22:F7:35:64:D3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UJ0BWYynI323HDmtnYDXIvc1ZNM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.73.236.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:4a:34:e2:92:d3:96:32:f2:47:73:6b:44:5d:fd:23:d3:e8: b2:7d:8a:2c:7f:c3:10:88:e5:a1:c5:a6:b5:4c:99:bc:8c:9d: fc:e4:40:74:9a:26:34:d2:7a:01:89:ed:ce:e0:32:0c:8d:32: 7f:fa:e7:39:48:fe:53:e8:56:57:b6:86:17:e6:08:c4:9b:bd: 08:92:69:05:d2:3b:6c:a1:22:6e:bc:90:9c:9e:31:d5:b4:b7: 2b:e8:70:0c:08:23:4c:05:f8:ce:e0:86:97:e0:16:11:a9:b4: 01:7e:fe:3b:63:e9:9b:36:11:9f:49:90:27:f1:74:38:0b:27: f8:c7:e8:1b:bb:07:d4:12:11:d7:e9:81:08:04:a3:bc:05:85: cb:60:ee:4d:2c:3a:9d:2f:94:c1:ea:f2:42:a0:9b:33:34:e9: d0:a7:ab:41:ba:d3:25:84:22:8a:36:12:d6:d8:64:ca:ab:25: 27:c6:01:bb:b0:3a:48:fe:41:c6:2e:57:ab:eb:7b:e6:ca:af: ba:1e:f9:9d:05:ff:77:02:3e:c4:1e:ba:8d:6d:f4:14:75:75: 20:d6:ee:02:2d:b1:b8:b4:84:b1:c3:dd:cb:09:af:09:7a:45: 05:32:f0:9f:78:ce:29:2c:8f:bd:1d:f2:35:be:ad:84:7c:20: 55:83:13:22 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC3YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM2NDdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDUwOUQwMTU5OENBNzIz N0RCNzFDMzlBRDlEODBENzIyRjczNTY0RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT6xIrl50MeTv4T9PIZwjaUmj98yRkcDBNY9d5bzTR91JShAGH 3fkdp8Gvg8XRqpdKdE6/sWysh4CjaOAV6OxjyWa++28M3HJ6cfHDdziThS8JwTNv zc9FnoJUmnADle4htK9jWtq7uUO2NiE4s8fiw0mvrC62A3xD2chK+ydqb4YsSHoG 87tM7mqXKnqbfx5Jq8ntfamIbyx6C4Mw7ooAczV9+Y4wo3oQ8xnLVpho99SkiY+i XeVTC7S3BtVLJwEJENvkNnzajRcDijFYp2QkVwHEJPShobuOlhonR7k/Bf651uvJ /yQA8rft1/bpiuIyBlcJFw8Bq/URLp5u1EXBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUJ0BWYynI323HDmtnYDXIvc1ZNMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VKMEJXWXluSTMyM0hEbXRuWURYSXZjMVpOTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSewwDQYJKoZIhvcNAQELBQADggEBABxKNOKS05Yy8kdza0Rd/SPT6LJ9 iix/wxCI5aHFprVMmbyMnfzkQHSaJjTSegGJ7c7gMgyNMn/65zlI/lPoVle2hhfm CMSbvQiSaQXSO2yhIm68kJyeMdW0tyvocAwII0wF+M7ghpfgFhGptAF+/jtj6Zs2 EZ9JkCfxdDgLJ/jH6Bu7B9QSEdfpgQgEo7wFhctg7k0sOp0vlMHq8kKgmzM06dCn q0G60yWEIoo2EtbYZMqrJSfGAbuwOkj+QcYuV6vre+bKr7oe+Z0F/3cCPsQeuo1t 9BR1dSDW7gItsbi0hLHD3csJrwl6RQUy8J94ziksj70d8jW+rYR8IFWDEyI= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:21 2025 by rpki-client