$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WVPxSWv3Bd1gR1zZlxwraL4xiJk.roa File: WVPxSWv3Bd1gR1zZlxwraL4xiJk.roa (raw, json) Hash identifier: uyXAwdSJKGxOriBjkae/yjXpEHPsfJAsnADkt8ZaJZc= Subject key identifier: 59:53:F1:49:6B:F7:05:DD:60:47:5C:D9:97:1C:2B:68:BE:31:88:99 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D42 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WVPxSWv3Bd1gR1zZlxwraL4xiJk.roa Signing time: Tue 01 Apr 2025 02:17:07 +0000 ROA not before: Tue 01 Apr 2025 02:17:07 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.67.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3394 (0xd42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:17:07 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5953F1496BF705DD60475CD9971C2B68BE318899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:68:fc:a6:6b:24:d4:06:0d:09:bc:df:4b:8f: b4:cb:e5:28:be:cc:99:9b:10:48:85:a5:dd:30:fb: a7:0b:1c:db:eb:ac:c6:26:bd:51:1f:72:63:c2:be: 00:29:a6:c7:dd:4a:4f:95:d5:e8:33:0a:79:14:ae: bd:da:97:c0:25:88:1b:ec:c3:5e:98:b8:6d:55:e9: 0f:34:7a:ca:35:e3:10:e3:fe:94:e5:1a:d3:3a:48: ff:b9:77:db:68:62:ef:3a:bf:83:ca:e6:27:07:85: 32:9e:f9:55:c5:a1:a7:8e:a4:98:bc:8e:81:24:6f: 25:28:9b:3f:df:b7:da:dd:55:03:2c:42:7e:da:d7: 9f:dd:1b:14:e5:2c:9d:06:4f:57:21:5d:02:61:9d: 78:5b:ba:05:a3:20:e8:4c:ef:c8:a6:50:65:48:91: 36:28:c2:e2:93:59:5f:6e:58:ca:2a:01:9b:93:46: 50:77:31:3f:71:b2:3f:74:b9:bf:bb:96:1a:9e:fd: 4c:27:39:25:d1:8d:5f:f1:41:98:f1:95:13:79:0b: 0b:28:b9:b4:86:df:7c:17:bc:be:b8:f7:ed:65:f6: 92:8a:b1:56:7d:eb:e3:ff:c2:f4:dd:48:3b:be:b1: a9:de:aa:6f:3d:1f:ac:f9:b3:89:bb:2d:cc:d2:72: cb:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:53:F1:49:6B:F7:05:DD:60:47:5C:D9:97:1C:2B:68:BE:31:88:99 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WVPxSWv3Bd1gR1zZlxwraL4xiJk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.0.0/17 Signature Algorithm: sha256WithRSAEncryption bb:a2:00:a3:5d:c8:d9:c9:4a:87:82:65:d6:54:a0:84:8e:58: 04:0a:b3:01:68:99:2d:18:34:6e:27:8e:06:c0:3f:3f:53:d4: dc:3f:55:c9:3e:31:04:40:a5:91:ca:7d:0f:2c:69:6b:c6:b7: 5d:00:0e:6e:c1:a3:d3:49:02:d6:63:1a:b5:5e:62:41:26:d4: 85:c8:ca:c8:14:ca:ed:52:33:ef:aa:06:39:ae:ed:4c:57:18: 2c:f8:88:f6:6c:c6:f5:c2:a2:d3:8c:05:b4:5d:fd:1e:ea:cf: 16:3c:57:d9:fc:a1:dc:58:35:9a:6c:00:54:8e:fe:b2:29:ff: f1:b2:4d:53:b9:d5:ee:d4:0c:d6:de:a9:df:ef:62:89:07:f6: 4c:49:91:14:f4:33:67:58:65:81:1f:47:7e:19:a3:c9:7a:96: 09:1c:8d:e2:1e:42:4d:44:e2:1b:2b:68:b6:77:19:1e:03:0d: d4:14:05:15:26:9f:e2:55:47:82:25:84:02:55:32:b4:f9:3c: 3c:7a:8a:5e:86:47:fb:ee:57:92:a6:44:9a:11:4e:f8:bf:e8: 4e:37:1f:72:6f:a2:28:18:ed:2b:63:45:c2:1c:b8:bc:df:be: fc:92:c2:95:8a:39:20:68:36:a5:46:78:e0:27:76:b9:ad:10: f6:ec:7e:32 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDUIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE3MDdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU5NTNGMTQ5NkJGNzA1 REQ2MDQ3NUNEOTk3MUMyQjY4QkUzMTg4OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiaPymayTUBg0JvN9Lj7TL5Si+zJmbEEiFpd0w+6cLHNvrrMYm vVEfcmPCvgAppsfdSk+V1egzCnkUrr3al8AliBvsw16YuG1V6Q80eso14xDj/pTl GtM6SP+5d9toYu86v4PK5icHhTKe+VXFoaeOpJi8joEkbyUomz/ft9rdVQMsQn7a 15/dGxTlLJ0GT1chXQJhnXhbugWjIOhM78imUGVIkTYowuKTWV9uWMoqAZuTRlB3 MT9xsj90ub+7lhqe/UwnOSXRjV/xQZjxlRN5CwsoubSG33wXvL649+1l9pKKsVZ9 6+P/wvTdSDu+saneqm89H6z5s4m7LczScsulAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWVPxSWv3Bd1gR1zZlxwraL4xiJkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1dWUHhTV3YzQmQxZ1IxelpseHdyYUw0eGlKay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcBQwAwDQYJKoZIhvcNAQELBQADggEBALuiAKNdyNnJSoeCZdZUoISOWAQK swFomS0YNG4njgbAPz9T1Nw/Vck+MQRApZHKfQ8saWvGt10ADm7Bo9NJAtZjGrVe YkEm1IXIysgUyu1SM++qBjmu7UxXGCz4iPZsxvXCotOMBbRd/R7qzxY8V9n8odxY NZpsAFSO/rIp//GyTVO51e7UDNbeqd/vYokH9kxJkRT0M2dYZYEfR34Zo8l6lgkc jeIeQk1E4hsraLZ3GR4DDdQUBRUmn+JVR4IlhAJVMrT5PDx6il6GR/vuV5KmRJoR Tvi/6E43H3JvoigY7StjRcIcuLzfvvySwpWKOSBoNqVGeOAndrmtEPbsfjI= -----END CERTIFICATE-----Generated at Sat Apr 5 23:09:29 2025 by rpki-client