$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UKI-xXIuDX_4Cid6Kb-Of3Y0w4o.roa File: UKI-xXIuDX_4Cid6Kb-Of3Y0w4o.roa (raw, json) Hash identifier: 0xC92tUnp81LQNzQsc+5rjlBR14vWBmsPFBMjbSqHjA= Subject key identifier: 50:A2:3E:C5:72:2E:0D:7F:F8:0A:27:7A:29:BF:8E:7F:76:34:C3:8A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DE7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UKI-xXIuDX_4Cid6Kb-Of3Y0w4o.roa Signing time: Tue 01 Apr 2025 02:29:02 +0000 ROA not before: Tue 01 Apr 2025 02:29:02 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3559 (0xde7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:29:02 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=50A23EC5722E0D7FF80A277A29BF8E7F7634C38A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e6:2b:a4:50:55:c4:c4:51:e5:56:45:3a:d9: e6:fe:43:25:a8:e3:11:e3:42:bf:f1:2a:d1:bd:0b: 66:68:2b:4a:b4:42:c6:0f:c1:f3:cb:c3:f3:ca:fb: 8d:36:92:42:52:d4:e7:88:cb:0c:78:36:bb:c8:2b: 52:80:e1:85:ef:a8:7b:48:75:39:a8:79:21:d5:1c: c5:52:cf:9c:10:7a:ba:97:44:4f:70:28:7a:a4:e0: 9c:b8:7a:43:d0:52:fb:bc:d1:d4:19:5e:b4:f8:4b: 02:f4:40:3c:dc:08:f6:2e:20:ca:b5:57:c0:62:78: d8:46:89:96:3e:8e:1f:b2:51:44:40:42:94:40:7b: da:7d:32:3f:11:5c:57:af:bd:0e:b1:5d:3a:e7:fc: 81:8f:2f:ed:31:af:31:b9:48:07:e6:92:65:7a:fa: 5c:7b:b7:b9:14:47:93:05:15:62:80:f3:0c:8d:0c: a4:e8:1a:5b:a4:7f:f4:d7:03:dc:40:a5:ff:06:48: c6:a0:4c:7f:b3:59:5e:18:4c:be:85:09:f3:49:c5: d8:cb:73:4d:4f:ac:74:e8:18:4d:a4:11:c7:47:3a: 72:8e:f5:07:fa:bf:01:08:20:ae:9c:a2:91:d1:b8: 38:a7:d0:e1:ba:a8:9c:ed:a4:0d:ff:d2:15:83:60: d4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A2:3E:C5:72:2E:0D:7F:F8:0A:27:7A:29:BF:8E:7F:76:34:C3:8A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UKI-xXIuDX_4Cid6Kb-Of3Y0w4o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.250.0/23 Signature Algorithm: sha256WithRSAEncryption 98:f4:02:e1:0d:3b:49:ed:ad:8e:b0:eb:06:34:cd:2f:00:22: 9f:35:69:d7:0c:c2:6e:2c:de:58:d5:d5:cc:8b:e9:67:16:2b: c8:38:b6:33:4b:54:4f:0d:29:c5:8a:1c:65:7a:bd:02:7b:bb: 68:4d:cc:c4:21:cf:38:62:fa:13:80:c1:83:8d:5e:af:cb:1c: 37:73:ed:24:83:bd:30:92:c2:42:55:83:c9:51:b0:77:25:b9: e0:ed:04:23:5a:26:a7:f0:d8:20:18:7c:c6:b8:aa:43:22:cd: 11:50:ac:23:2a:42:f5:78:fa:ba:4f:56:20:85:e8:bb:95:50: 84:0a:b8:c2:d2:8c:b1:a7:6d:56:7e:0d:5a:ec:07:e4:bc:9a: 37:99:12:4c:5f:65:53:1a:5f:22:31:91:48:bc:40:ea:2f:71: 49:11:37:67:f8:83:c2:16:89:f0:1b:24:39:f3:2f:1c:34:15: f2:f3:cb:75:b9:87:74:47:70:fb:ee:29:7c:02:7f:d4:a1:89: 13:74:03:63:78:f2:27:fe:35:8b:15:cb:12:b0:a4:04:bb:54: 4c:53:4e:a3:79:8e:cd:3e:44:f2:7e:67:3d:2c:f6:64:3c:c9: 90:56:8e:e5:9c:b3:46:f9:85:a4:4b:1d:4e:0c:eb:56:d9:00: 30:4a:d8:3a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI5MDJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDUwQTIzRUM1NzIyRTBE N0ZGODBBMjc3QTI5QkY4RTdGNzYzNEMzOEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq5iukUFXExFHlVkU62eb+QyWo4xHjQr/xKtG9C2ZoK0q0QsYP wfPLw/PK+402kkJS1OeIywx4NrvIK1KA4YXvqHtIdTmoeSHVHMVSz5wQerqXRE9w KHqk4Jy4ekPQUvu80dQZXrT4SwL0QDzcCPYuIMq1V8BieNhGiZY+jh+yUURAQpRA e9p9Mj8RXFevvQ6xXTrn/IGPL+0xrzG5SAfmkmV6+lx7t7kUR5MFFWKA8wyNDKTo Glukf/TXA9xApf8GSMagTH+zWV4YTL6FCfNJxdjLc01PrHToGE2kEcdHOnKO9Qf6 vwEIIK6copHRuDin0OG6qJztpA3/0hWDYNRZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUKI+xXIuDX/4Cid6Kb+Of3Y0w4owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VLSS14WEl1RFhfNENpZDZLYi1PZjNZMHc0by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcn/owDQYJKoZIhvcNAQELBQADggEBAJj0AuENO0ntrY6w6wY0zS8AIp81 adcMwm4s3ljV1cyL6WcWK8g4tjNLVE8NKcWKHGV6vQJ7u2hNzMQhzzhi+hOAwYON Xq/LHDdz7SSDvTCSwkJVg8lRsHclueDtBCNaJqfw2CAYfMa4qkMizRFQrCMqQvV4 +rpPViCF6LuVUIQKuMLSjLGnbVZ+DVrsB+S8mjeZEkxfZVMaXyIxkUi8QOovcUkR N2f4g8IWifAbJDnzLxw0FfLzy3W5h3RHcPvuKXwCf9ShiRN0A2N48if+NYsVyxKw pAS7VExTTqN5js0+RPJ+Zz0s9mQ8yZBWjuWcs0b5haRLHU4M61bZADBK2Do= -----END CERTIFICATE-----Generated at Sat Apr 5 17:48:18 2025 by rpki-client