$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XrQrQLSEm9lvEQWo_8F5ptNzuu8.roa File: XrQrQLSEm9lvEQWo_8F5ptNzuu8.roa (raw, json) Hash identifier: Vrs35M4lJbnEV8+4Y7AQ+hWqwK9Lqa0nXnCTy5eGy70= Subject key identifier: 5E:B4:2B:40:B4:84:9B:D9:6F:11:05:A8:FF:C1:79:A6:D3:73:BA:EF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D14 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XrQrQLSEm9lvEQWo_8F5ptNzuu8.roa Signing time: Tue 01 Apr 2025 02:13:42 +0000 ROA not before: Tue 01 Apr 2025 02:13:42 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 27.230.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3348 (0xd14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:42 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=5EB42B40B4849BD96F1105A8FFC179A6D373BAEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0d:92:cb:81:3c:34:6e:2b:28:b2:b5:ea:e6: fb:78:2c:43:02:a6:0a:2b:56:8c:09:53:b3:c1:7a: e9:09:65:f9:49:d2:0a:5f:9b:5e:cc:31:23:f0:68: 6b:05:c8:6f:3f:be:8c:c3:79:fb:1e:f5:76:10:cc: ee:8b:89:fe:4a:f5:42:ee:74:10:71:f4:77:c8:2d: 81:55:8e:2d:24:c7:7e:c7:c2:cf:fd:89:31:d5:12: 42:14:af:78:dc:cb:f1:0b:ed:0b:c9:06:51:00:e7: 81:88:a0:1c:75:f0:d7:b2:c7:41:ef:bb:3d:74:85: e9:f2:ea:45:e7:56:12:9e:63:88:40:c2:a9:33:20: ff:f0:44:b7:2a:f1:68:06:77:f0:cc:bf:1a:c4:94: 24:50:09:75:82:c4:65:08:32:1c:49:8c:92:ff:6d: 0e:eb:d3:70:8f:5c:b1:d3:ef:b6:a1:3b:2c:58:bf: 7e:a4:16:6c:ca:14:32:0c:fb:1d:8c:40:54:f8:68: 16:6e:52:bc:61:c4:f5:cb:4e:57:41:e5:97:aa:1c: f5:aa:72:fa:7c:2f:9e:fb:8c:1f:7d:51:be:b4:ef: e0:c6:7d:5d:67:29:78:8e:db:d5:cd:55:61:40:16: fa:c9:1a:91:ad:b2:ab:2d:df:b7:ec:06:74:35:03: fc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B4:2B:40:B4:84:9B:D9:6F:11:05:A8:FF:C1:79:A6:D3:73:BA:EF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XrQrQLSEm9lvEQWo_8F5ptNzuu8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.98.0/23 Signature Algorithm: sha256WithRSAEncryption 77:fe:49:4d:15:5b:ed:d7:2a:d2:38:50:05:bb:9c:a7:ef:2d: 83:9a:a0:db:ab:2f:b6:6f:af:82:cf:da:e4:0c:03:06:6e:6c: 25:81:2c:6a:2a:31:ac:7a:a5:2f:0a:9e:83:5a:2a:50:73:a9: e7:ed:e7:20:ca:4b:47:2e:c4:8f:38:ed:d9:da:b9:ea:4b:2f: e6:3e:1b:58:3a:a5:6b:5b:d4:78:ff:11:a6:67:83:5f:af:fa: 5f:d6:54:35:f6:a8:e5:4c:f9:ac:e1:25:d5:ef:16:76:04:d7: d1:e9:f2:d7:ad:26:39:03:8c:16:74:2f:19:96:c9:46:96:b2: 65:d9:e0:77:8b:f6:e9:41:98:81:94:d8:e9:52:2e:37:a2:af: 99:6b:f7:b1:c6:31:b6:9f:70:49:fc:3b:b3:6a:b8:61:75:2b: c5:c1:e9:f3:2f:40:51:87:38:fc:b4:89:1f:52:50:0f:24:f9: 61:bb:f2:ff:94:68:61:fd:c6:bd:17:18:83:26:fa:d2:67:4f: 80:f8:34:67:e5:46:94:f0:5b:13:07:c3:c5:67:ea:8b:c1:6f: 77:ef:87:d1:af:5f:db:69:83:45:62:70:31:d4:86:e1:41:f4: 51:d1:d1:37:18:c3:48:b1:75:63:ef:b8:0d:2c:13:00:db:f5: 3b:6c:20:9d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDRQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNDJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVFQjQyQjQwQjQ4NDlC RDk2RjExMDVBOEZGQzE3OUE2RDM3M0JBRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzDZLLgTw0bisosrXq5vt4LEMCpgorVowJU7PBeukJZflJ0gpf m17MMSPwaGsFyG8/vozDefse9XYQzO6Lif5K9ULudBBx9HfILYFVji0kx37Hws/9 iTHVEkIUr3jcy/EL7QvJBlEA54GIoBx18Neyx0Hvuz10heny6kXnVhKeY4hAwqkz IP/wRLcq8WgGd/DMvxrElCRQCXWCxGUIMhxJjJL/bQ7r03CPXLHT77ahOyxYv36k FmzKFDIM+x2MQFT4aBZuUrxhxPXLTldB5ZeqHPWqcvp8L577jB99Ub607+DGfV1n KXiO29XNVWFAFvrJGpGtsqst37fsBnQ1A/xdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUXrQrQLSEm9lvEQWo/8F5ptNzuu8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1hyUXJRTFNFbTlsdkVRV29fOEY1cHROenV1OC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEb5mIwDQYJKoZIhvcNAQELBQADggEBAHf+SU0VW+3XKtI4UAW7nKfvLYOa oNurL7Zvr4LP2uQMAwZubCWBLGoqMax6pS8KnoNaKlBzqeft5yDKS0cuxI847dna uepLL+Y+G1g6pWtb1Hj/EaZng1+v+l/WVDX2qOVM+azhJdXvFnYE19Hp8tetJjkD jBZ0LxmWyUaWsmXZ4HeL9ulBmIGU2OlSLjeir5lr97HGMbafcEn8O7NquGF1K8XB 6fMvQFGHOPy0iR9SUA8k+WG78v+UaGH9xr0XGIMm+tJnT4D4NGflRpTwWxMHw8Vn 6ovBb3fvh9GvX9tpg0VicDHUhuFB9FHR0TcYw0ixdWPvuA0sEwDb9TtsIJ0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:23 2025 by rpki-client