$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Xafv80xD6jhuQRkUZO0ESLrGhFM.roa File: Xafv80xD6jhuQRkUZO0ESLrGhFM.roa (raw, json) Hash identifier: hSbqYmwImU9LeIj9rkG1cD3VgUJz7iyNgyJQSTc2FXM= Subject key identifier: 5D:A7:EF:F3:4C:43:EA:38:6E:41:19:14:64:ED:04:48:BA:C6:84:53 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B48 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Xafv80xD6jhuQRkUZO0ESLrGhFM.roa Signing time: Thu 06 Mar 2025 07:16:31 +0000 ROA not before: Thu 06 Mar 2025 07:16:31 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2888 (0xb48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 6 07:16:31 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=5DA7EFF34C43EA386E41191464ED0448BAC68453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:33:cc:92:40:f3:41:47:92:c9:c6:d1:9f:92: 29:d8:a5:78:c9:04:1f:be:45:85:56:92:c7:df:31: c9:8f:2f:04:99:3d:4a:98:55:f8:b8:11:4a:7a:2a: 9b:f6:ec:32:9b:8f:f4:69:f4:8d:4d:a0:d9:df:4b: a0:38:5b:1a:a9:e7:8f:25:6f:0a:93:79:34:39:7a: 83:18:60:96:e4:c2:4c:e0:01:69:16:16:c5:a2:74: b5:1b:8f:18:0d:29:13:1d:ad:c1:19:4b:d6:9c:fc: a9:4a:1f:ac:7a:92:fb:64:fd:20:61:6b:22:ac:9f: 8f:f7:8e:02:2f:b4:98:d6:e5:17:9e:a1:d6:57:ae: 85:7b:b3:22:e9:a7:02:2f:ba:49:21:4f:91:bf:6b: 4a:50:ce:7c:81:ab:71:54:67:27:57:ac:51:44:03: f7:2e:7c:51:df:9c:55:f6:50:69:34:d3:de:da:34: f9:f9:a8:ac:e3:56:e0:39:62:dc:be:2e:46:1b:80: b7:ab:d0:70:a2:66:4d:23:c4:23:55:4a:87:ca:ef: 3f:7a:72:3c:71:c0:31:16:9d:38:a2:ef:70:d6:c7: cf:2b:ae:05:2e:0c:b0:17:5e:62:2a:bf:de:62:99: 59:7e:5a:76:07:90:6f:42:f0:1c:92:42:4d:9d:66: 30:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A7:EF:F3:4C:43:EA:38:6E:41:19:14:64:ED:04:48:BA:C6:84:53 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Xafv80xD6jhuQRkUZO0ESLrGhFM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.147.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:08:36:15:e5:24:e2:cf:68:99:c4:c0:2b:58:3b:0d:aa:5c: b3:67:63:0b:70:fd:a8:4c:a4:c5:91:57:1b:22:58:f6:8b:e9: bd:f7:32:38:9c:c7:30:34:70:83:ae:53:86:7b:e2:d3:1c:55: 0b:ac:09:2a:37:8a:bb:59:0e:d0:f8:a1:dc:6d:cc:02:d6:bf: ea:d2:87:6d:15:65:89:5e:47:51:11:3a:f8:90:e2:2f:05:5a: 2c:53:09:71:2f:19:b0:c3:96:29:54:e9:5f:9c:06:f4:7f:85: 1d:6e:54:51:a8:2d:ef:6f:69:5f:58:ac:a6:57:ed:7b:88:a7: 8b:63:ea:30:5a:b1:f5:b9:8a:06:34:bc:18:c1:47:22:78:c2: ef:19:e7:28:b0:6c:c8:0c:47:75:7e:b9:7a:74:9b:b8:7e:bc: 7e:be:37:55:c9:af:bd:c4:37:6c:59:ae:0d:60:dd:01:ec:7d: 0f:4f:73:fd:9f:5e:50:c5:7d:82:25:90:d6:89:cc:57:24:3e: 29:26:05:f8:05:63:94:01:b9:70:1a:78:a6:e7:3a:21:e5:a6: 66:49:fc:44:37:b8:a7:7e:c0:1b:90:51:6f:87:4d:be:97:0d: c6:91:38:c3:df:d9:7c:31:24:ea:22:a1:c3:70:5c:06:eb:ce: 52:54:d5:60 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC0gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAzMDYw NzE2MzFaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVEQTdFRkYzNEM0M0VB Mzg2RTQxMTkxNDY0RUQwNDQ4QkFDNjg0NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfM8ySQPNBR5LJxtGfkinYpXjJBB++RYVWksffMcmPLwSZPUqY Vfi4EUp6Kpv27DKbj/Rp9I1NoNnfS6A4Wxqp548lbwqTeTQ5eoMYYJbkwkzgAWkW FsWidLUbjxgNKRMdrcEZS9ac/KlKH6x6kvtk/SBhayKsn4/3jgIvtJjW5ReeodZX roV7syLppwIvukkhT5G/a0pQznyBq3FUZydXrFFEA/cufFHfnFX2UGk0097aNPn5 qKzjVuA5Yty+LkYbgLer0HCiZk0jxCNVSofK7z96cjxxwDEWnTii73DWx88rrgUu DLAXXmIqv95imVl+WnYHkG9C8BySQk2dZjDfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUXafv80xD6jhuQRkUZO0ESLrGhFMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1hhZnY4MHhENmpodVFSa1VaTzBFU0xyR2hGTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABS5MwDQYJKoZIhvcNAQELBQADggEBAHoINhXlJOLPaJnEwCtYOw2qXLNn Ywtw/ahMpMWRVxsiWPaL6b33MjicxzA0cIOuU4Z74tMcVQusCSo3irtZDtD4odxt zALWv+rSh20VZYleR1EROviQ4i8FWixTCXEvGbDDlilU6V+cBvR/hR1uVFGoLe9v aV9YrKZX7XuIp4tj6jBasfW5igY0vBjBRyJ4wu8Z5yiwbMgMR3V+uXp0m7h+vH6+ N1XJr73EN2xZrg1g3QHsfQ9Pc/2fXlDFfYIlkNaJzFckPikmBfgFY5QBuXAaeKbn OiHlpmZJ/EQ3uKd+wBuQUW+HTb6XDcaROMPf2XwxJOoiocNwXAbrzlJU1WA= -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:56 2025 by rpki-client