$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/W5zU-UqiHWKkhrX47SuMe8rKaQE.roa File: W5zU-UqiHWKkhrX47SuMe8rKaQE.roa (raw, json) Hash identifier: ErEb236OEeV4KXNPMQSwktmrNcNuva5bkQ3oGofTaiI= Subject key identifier: 5B:9C:D4:F9:4A:A2:1D:62:A4:86:B5:F8:ED:2B:8C:7B:CA:CA:69:01 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B41 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/W5zU-UqiHWKkhrX47SuMe8rKaQE.roa Signing time: Thu 06 Mar 2025 07:00:31 +0000 ROA not before: Thu 06 Mar 2025 07:00:31 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2881 (0xb41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 6 07:00:31 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=5B9CD4F94AA21D62A486B5F8ED2B8C7BCACA6901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a3:03:c6:d7:c6:6b:92:4e:38:58:8e:bf:04: 45:e9:21:32:b5:93:7b:85:f8:b2:bb:9d:78:d4:33: 0d:43:17:61:25:c5:35:47:9e:7d:20:1c:72:be:13: 6e:f7:f0:f4:9f:d8:62:8a:52:94:bf:fa:e6:87:d4: e1:3f:27:18:e9:1f:3a:7d:2b:5e:c6:e3:04:6a:a3: 96:8c:52:9b:84:6b:74:14:e9:0a:1f:ed:d3:c6:f9: 1c:b7:bd:30:9f:9a:0e:4e:8a:ab:69:2f:65:c2:5f: d0:45:2d:70:7a:8b:b3:bc:e8:18:64:8f:6e:5d:f1: e9:88:e4:f2:46:e5:33:26:6e:91:b4:ee:7f:76:f5: d7:4b:bd:d9:53:13:0c:12:5e:53:c8:5d:89:86:d4: c7:a5:61:b1:7f:c0:dd:dd:bd:8b:ae:92:c5:18:f8: 3e:89:5c:24:cb:f5:16:07:28:3e:7b:f5:c2:95:31: 7c:3a:c4:b5:ba:f1:be:12:e3:78:ea:5f:e9:3b:ff: 30:37:ee:fd:f0:2f:25:9e:28:94:f9:32:df:7e:4e: c4:f2:ff:75:88:a7:25:9c:51:89:76:d1:b8:37:f8: dc:d3:70:82:e6:b6:6d:ec:62:9e:58:b2:fd:40:28: 3a:d7:68:1f:35:23:ae:64:31:cd:56:59:a4:25:ea: 63:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9C:D4:F9:4A:A2:1D:62:A4:86:B5:F8:ED:2B:8C:7B:CA:CA:69:01 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/W5zU-UqiHWKkhrX47SuMe8rKaQE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.125.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:01:98:85:7b:5b:02:a2:08:28:45:75:e6:fe:5c:a2:e8:5d: b1:31:0f:5e:55:86:7a:67:8b:7f:f8:d8:b7:a1:31:62:8f:a1: 0e:55:9a:b6:0c:a9:dc:47:5d:df:1d:ba:da:9a:3a:5f:9f:12: aa:e1:42:26:93:c3:08:e2:1d:8c:fd:fd:96:b0:96:3c:15:cf: b5:92:d4:66:cd:43:03:85:fa:47:58:c9:54:99:3f:75:a7:87: 3f:9e:34:bd:39:4c:19:18:f5:61:4a:b6:36:6d:f7:5a:1b:c4: f8:a3:d1:37:7e:54:9d:29:45:44:0b:83:55:fd:fe:12:28:1b: fa:8a:3b:42:1f:9c:ac:1c:71:10:32:c5:3f:1f:61:f3:51:a9: 9b:d3:09:16:00:da:73:55:a3:13:fa:d8:96:56:f8:70:ed:1d: 4e:bf:d7:bb:31:5e:68:b5:ee:a7:46:25:70:92:d9:b5:5b:63: 9c:d7:a1:ad:23:5d:e4:9e:e8:d2:ce:a6:e9:d9:cc:50:b1:7d: 5c:e3:0a:fe:71:52:4b:50:66:55:72:13:4d:90:39:01:d1:a7: 2d:69:16:08:ed:6a:0b:e9:a2:c3:24:07:9c:32:55:ce:7e:96: 72:ee:26:39:c9:67:df:3f:58:4c:45:f4:32:3b:c3:e3:2e:a7: a0:b5:bf:d2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC0EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAzMDYw NzAwMzFaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVCOUNENEY5NEFBMjFE NjJBNDg2QjVGOEVEMkI4QzdCQ0FDQTY5MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTowPG18Zrkk44WI6/BEXpITK1k3uF+LK7nXjUMw1DF2ElxTVH nn0gHHK+E2738PSf2GKKUpS/+uaH1OE/JxjpHzp9K17G4wRqo5aMUpuEa3QU6Qof 7dPG+Ry3vTCfmg5OiqtpL2XCX9BFLXB6i7O86Bhkj25d8emI5PJG5TMmbpG07n92 9ddLvdlTEwwSXlPIXYmG1MelYbF/wN3dvYuuksUY+D6JXCTL9RYHKD579cKVMXw6 xLW68b4S43jqX+k7/zA37v3wLyWeKJT5Mt9+TsTy/3WIpyWcUYl20bg3+NzTcILm tm3sYp5Ysv1AKDrXaB81I65kMc1WWaQl6mOBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUW5zU+UqiHWKkhrX47SuMe8rKaQEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1c1elUtVXFpSFdLa2hyWDQ3U3VNZThyS2FRRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABS30wDQYJKoZIhvcNAQELBQADggEBABoBmIV7WwKiCChFdeb+XKLoXbEx D15Vhnpni3/42LehMWKPoQ5VmrYMqdxHXd8dutqaOl+fEqrhQiaTwwjiHYz9/Zaw ljwVz7WS1GbNQwOF+kdYyVSZP3Wnhz+eNL05TBkY9WFKtjZt91obxPij0Td+VJ0p RUQLg1X9/hIoG/qKO0IfnKwccRAyxT8fYfNRqZvTCRYA2nNVoxP62JZW+HDtHU6/ 17sxXmi17qdGJXCS2bVbY5zXoa0jXeSe6NLOpunZzFCxfVzjCv5xUktQZlVyE02Q OQHRpy1pFgjtagvposMkB5wyVc5+lnLuJjnJZ98/WExF9DI7w+Mup6C1v9I= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:27 2025 by rpki-client