$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/U_3aXMo1Meom_KiV93eN5UgtMYA.roa File: U_3aXMo1Meom_KiV93eN5UgtMYA.roa (raw, json) Hash identifier: SzhXlzoZymz3JXAe9ARhmokgDqH7Mrlo0Yv9dVdTGaI= Subject key identifier: 53:FD:DA:5C:CA:35:31:EA:26:FC:A8:95:F7:77:8D:E5:48:2D:31:80 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DE2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/U_3aXMo1Meom_KiV93eN5UgtMYA.roa Signing time: Tue 01 Apr 2025 02:27:28 +0000 ROA not before: Tue 01 Apr 2025 02:27:28 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 27.230.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3554 (0xde2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:27:28 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=53FDDA5CCA3531EA26FCA895F7778DE5482D3180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:63:d1:3a:ef:39:ab:c6:0a:ec:78:52:bc:17: 17:74:02:94:f3:9f:f5:77:66:33:27:a7:7c:b7:82: c8:35:94:06:e7:25:3d:98:9e:22:85:f0:39:9c:3d: 21:c0:76:22:21:86:aa:3e:b8:07:c7:16:ea:a6:31: 75:43:5a:1b:48:a5:ed:aa:73:04:a5:49:a6:e1:36: 02:1c:4d:78:5a:6c:eb:6d:ca:5e:2b:5e:ec:88:0d: 94:4c:79:f9:3b:d8:7a:bc:5a:6e:bc:fb:11:ba:56: ba:bd:a6:99:8e:2f:43:7a:a0:9f:99:27:98:96:04: 09:6a:b7:84:06:f3:08:e9:bf:ba:2a:d9:d1:f3:4a: 83:93:47:dc:de:47:9e:73:ab:c1:ad:72:63:cf:2a: ac:9f:4c:28:43:f4:2d:ef:49:04:f1:5b:f5:13:ff: 61:82:bd:5d:d0:6b:98:df:ca:e2:13:eb:50:4b:4a: 72:52:51:ec:41:9e:76:12:83:79:95:f5:bb:da:9f: 4b:ea:51:4c:79:e8:4d:5b:ad:42:2d:0c:25:3f:73: 76:2a:39:cc:6a:54:4f:6d:c6:59:6f:3b:55:6f:3f: 83:0b:f7:f9:c4:99:d9:38:f7:87:7f:1f:cc:9c:56: e9:d5:65:33:cc:6e:b1:e8:b7:0a:70:a6:22:30:86: 04:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:FD:DA:5C:CA:35:31:EA:26:FC:A8:95:F7:77:8D:E5:48:2D:31:80 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/U_3aXMo1Meom_KiV93eN5UgtMYA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.192.0/18 Signature Algorithm: sha256WithRSAEncryption 53:29:d8:5a:14:dd:81:64:b7:a1:1e:ac:68:64:25:89:3e:f7: 15:99:f3:05:a9:b0:31:fc:37:39:f7:ea:cb:13:cf:09:dc:1c: 6c:b3:1e:76:a2:43:f8:da:82:36:21:66:00:72:9f:85:5d:3a: 53:0b:34:03:98:23:f8:32:f7:15:99:5b:38:77:ed:82:92:e8: 98:0c:af:bb:db:1b:e2:c8:14:83:6d:a8:4f:53:17:cf:0b:cc: 28:a0:e8:9c:bf:df:26:37:f7:ed:93:32:c8:4d:ad:a7:98:7b: d1:02:9d:65:99:b1:2b:e0:bb:69:18:e2:9a:59:7b:bd:f9:ee: b9:dd:55:d6:ea:60:0e:40:62:e5:47:ed:32:2a:13:ad:f2:00: da:a7:ba:7b:a8:70:6a:c2:fe:72:63:35:aa:1e:c2:56:f5:c7: 2c:c1:fd:60:a4:bc:0d:9f:13:41:e8:0e:24:f6:01:75:ca:b0: c1:87:c9:aa:49:1c:a0:15:b4:68:f0:9b:1f:6a:81:40:44:4e: 0a:cf:4c:00:ad:3e:68:51:b1:c8:4e:0a:43:46:2c:42:cc:be: 94:8e:a7:87:32:33:40:74:b7:f7:39:09:65:8e:95:1d:fc:7c: ce:f7:1c:70:f0:36:ee:23:d5:b0:ea:b1:f5:a7:45:bb:48:99: b2:08:ba:67 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDeIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI3MjhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDUzRkREQTVDQ0EzNTMx RUEyNkZDQTg5NUY3Nzc4REU1NDgyRDMxODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYY9E67zmrxgrseFK8Fxd0ApTzn/V3ZjMnp3y3gsg1lAbnJT2Y niKF8DmcPSHAdiIhhqo+uAfHFuqmMXVDWhtIpe2qcwSlSabhNgIcTXhabOttyl4r XuyIDZRMefk72Hq8Wm68+xG6Vrq9ppmOL0N6oJ+ZJ5iWBAlqt4QG8wjpv7oq2dHz SoOTR9zeR55zq8GtcmPPKqyfTChD9C3vSQTxW/UT/2GCvV3Qa5jfyuIT61BLSnJS UexBnnYSg3mV9bvan0vqUUx56E1brUItDCU/c3YqOcxqVE9txllvO1VvP4ML9/nE mdk494d/H8ycVunVZTPMbrHotwpwpiIwhgRhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUU/3aXMo1Meom/KiV93eN5UgtMYAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VfM2FYTW8xTWVvbV9LaVY5M2VONVVndE1ZQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYb5sAwDQYJKoZIhvcNAQELBQADggEBAFMp2FoU3YFkt6EerGhkJYk+9xWZ 8wWpsDH8Nzn36ssTzwncHGyzHnaiQ/jagjYhZgByn4VdOlMLNAOYI/gy9xWZWzh3 7YKS6JgMr7vbG+LIFINtqE9TF88LzCig6Jy/3yY39+2TMshNraeYe9ECnWWZsSvg u2kY4ppZe7357rndVdbqYA5AYuVH7TIqE63yANqnunuocGrC/nJjNaoewlb1xyzB /WCkvA2fE0HoDiT2AXXKsMGHyapJHKAVtGjwmx9qgUBETgrPTACtPmhRschOCkNG LELMvpSOp4cyM0B0t/c5CWWOlR38fM73HHDwNu4j1bDqsfWnRbtImbIIumc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:35 2025 by rpki-client