$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/X4BvUY0RaShMOTvTpdqgnyv_Dy8.roa File: X4BvUY0RaShMOTvTpdqgnyv_Dy8.roa (raw, json) Hash identifier: 9a84N64bU33zqEOPa/ydhDodwXuhqYP5ryNI6v7frUg= Subject key identifier: 5F:80:6F:51:8D:11:69:28:4C:39:3B:D3:A5:DA:A0:9F:2B:FF:0F:2F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C8B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/X4BvUY0RaShMOTvTpdqgnyv_Dy8.roa Signing time: Tue 01 Apr 2025 02:03:20 +0000 ROA not before: Tue 01 Apr 2025 02:03:20 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.76.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3211 (0xc8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:20 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5F806F518D1169284C393BD3A5DAA09F2BFF0F2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f8:6d:61:a6:31:9b:0a:a0:99:f3:74:05:64: 35:c9:b2:44:7c:e1:99:b6:85:24:ee:22:ae:b2:86: 7d:e9:99:28:92:58:8a:d2:74:dd:57:9f:f0:30:c6: 34:e8:bd:cd:9f:05:bc:d5:df:fa:ae:7c:e5:35:2e: 72:64:65:60:47:35:bc:f1:9a:71:2b:55:be:b4:30: 81:f1:24:6d:ef:d6:e8:72:b2:79:1a:b3:3e:b9:57: 7d:bc:ee:2d:54:05:19:d0:b9:a8:b4:4e:87:22:14: 36:c5:e9:50:95:61:45:5f:6d:61:7c:c3:94:45:5c: ae:0e:c3:e8:d0:84:5b:62:e4:74:7f:0a:1d:b8:30: 75:93:b1:1e:53:c4:30:79:7e:bf:01:49:06:ab:93: 13:5c:82:97:43:b4:cb:d1:92:fe:d9:97:8b:b9:c4: f7:56:e1:1e:f6:6c:6b:a4:84:74:2b:37:51:c5:ea: 12:b9:d3:fe:ad:99:c8:7b:a8:1d:ec:ae:66:4f:5f: f7:ec:5e:6d:42:ff:21:8b:63:f2:43:2d:80:05:8e: 0c:a1:f4:d7:90:ac:2a:d3:c5:42:91:a7:de:6c:4f: 67:a1:4a:5e:8f:10:38:d9:08:e8:f7:46:93:76:e6: 37:50:5b:30:1d:4a:e9:7c:9b:f5:80:8a:06:00:1c: fe:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:80:6F:51:8D:11:69:28:4C:39:3B:D3:A5:DA:A0:9F:2B:FF:0F:2F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/X4BvUY0RaShMOTvTpdqgnyv_Dy8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.72.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:14:a9:02:1f:96:b6:f3:15:df:2a:54:ae:8f:5c:88:3b:3b: ca:a5:b9:a1:13:90:51:59:5d:a5:28:f3:b8:d5:15:ef:f4:55: 00:b6:f0:d3:2e:2a:b7:02:a3:b6:f1:67:59:46:f5:99:96:c4: 49:cb:92:ae:ce:75:d9:b6:59:f4:00:a8:a3:68:ef:50:38:b6: e3:28:0e:67:78:18:f9:55:6e:3a:88:2c:a4:03:f9:4c:49:07: c4:eb:37:81:ec:c7:68:27:ea:7d:ac:ae:51:87:e5:f2:82:36: d8:8a:3b:39:30:f8:54:a7:71:8f:32:0d:77:cf:8b:f8:46:1d: dc:a7:4c:1a:9f:bd:21:24:99:50:5e:5f:cd:53:58:5f:23:ac: 82:5a:88:02:8b:ff:b3:f3:61:cb:04:9f:ca:8b:ed:58:c8:77: d0:7e:15:94:73:de:c5:de:50:41:f5:45:c5:51:9c:5e:81:fd: 0a:41:01:fe:26:8d:9f:21:db:81:35:5e:5d:52:59:91:07:89: de:a7:ee:bc:fa:9c:d6:bc:bb:71:f9:d7:d8:ba:62:53:6c:56: 25:f9:14:c1:f6:b0:14:dd:7d:62:04:f8:cc:cf:2f:1c:82:fe: b6:dd:32:72:f2:4b:9c:ad:ae:63:04:3d:e1:62:0f:39:05:df: 5b:41:d4:4d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMjBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVGODA2RjUxOEQxMTY5 Mjg0QzM5M0JEM0E1REFBMDlGMkJGRjBGMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4+G1hpjGbCqCZ83QFZDXJskR84Zm2hSTuIq6yhn3pmSiSWIrS dN1Xn/AwxjTovc2fBbzV3/qufOU1LnJkZWBHNbzxmnErVb60MIHxJG3v1uhysnka sz65V3287i1UBRnQuai0TociFDbF6VCVYUVfbWF8w5RFXK4Ow+jQhFti5HR/Ch24 MHWTsR5TxDB5fr8BSQarkxNcgpdDtMvRkv7Zl4u5xPdW4R72bGukhHQrN1HF6hK5 0/6tmch7qB3srmZPX/fsXm1C/yGLY/JDLYAFjgyh9NeQrCrTxUKRp95sT2ehSl6P EDjZCOj3RpN25jdQWzAdSul8m/WAigYAHP5xAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUX4BvUY0RaShMOTvTpdqgnyv/Dy8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1g0QnZVWTBSYVNoTU9UdlRwZHFnbnl2X0R5OC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTEgwDQYJKoZIhvcNAQELBQADggEBAG4UqQIflrbzFd8qVK6PXIg7O8ql uaETkFFZXaUo87jVFe/0VQC28NMuKrcCo7bxZ1lG9ZmWxEnLkq7Oddm2WfQAqKNo 71A4tuMoDmd4GPlVbjqILKQD+UxJB8TrN4Hsx2gn6n2srlGH5fKCNtiKOzkw+FSn cY8yDXfPi/hGHdynTBqfvSEkmVBeX81TWF8jrIJaiAKL/7PzYcsEn8qL7VjId9B+ FZRz3sXeUEH1RcVRnF6B/QpBAf4mjZ8h24E1Xl1SWZEHid6n7rz6nNa8u3H519i6 YlNsViX5FMH2sBTdfWIE+MzPLxyC/rbdMnLyS5ytrmMEPeFiDzkF31tB1E0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:36 2025 by rpki-client