$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bz-goUy3IZmixo-tUgcZjF29TAo.roa File: bz-goUy3IZmixo-tUgcZjF29TAo.roa (raw, json) Hash identifier: km5O4ICB4v5F530Va654y6FRQmUBSs5m2kY5fGFEQGQ= Subject key identifier: 6F:3F:A0:A1:4C:B7:21:99:A2:C6:8F:AD:52:07:19:8C:5D:BD:4C:0A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BBE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bz-goUy3IZmixo-tUgcZjF29TAo.roa Signing time: Tue 01 Apr 2025 01:43:44 +0000 ROA not before: Tue 01 Apr 2025 01:43:44 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 183.73.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3006 (0xbbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:44 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=6F3FA0A14CB72199A2C68FAD5207198C5DBD4C0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1f:fe:5e:9e:1b:76:48:8f:79:57:ae:fb:ec: 13:14:00:3c:94:06:ce:a3:6f:83:21:b0:00:10:06: 21:64:36:4f:77:17:82:fd:9e:3c:7e:41:91:4a:c2: ad:62:4a:63:37:3b:80:0f:90:07:ef:fc:7d:67:35: 67:22:e2:c6:4c:f6:a1:30:b5:4c:cb:0b:fa:d4:c0: 59:b2:1f:b3:8a:5a:77:57:30:89:ee:70:8c:00:94: c0:1f:c1:df:56:96:39:c3:44:0a:60:78:6d:18:a5: 58:67:69:fd:fa:0b:76:8d:32:da:65:e8:d3:83:fa: 47:64:d2:89:41:d3:5e:db:48:7e:29:1d:55:7b:17: 11:b2:d2:44:c8:8a:60:fd:87:d7:20:7b:d0:3b:76: e3:de:ac:1f:91:a9:8a:32:7f:b2:6c:41:ca:bb:a5: 5e:ca:aa:92:53:90:42:d5:73:81:6f:4a:bc:6f:99: 8f:9f:51:7f:a6:37:be:2d:e1:01:1e:f1:67:15:71: b0:5e:cf:8a:24:fb:bf:01:b7:a0:50:69:eb:77:55: 40:55:e8:41:c3:4b:e6:7c:a8:52:cd:a6:90:51:b4: e7:1a:59:52:a6:8a:2f:54:75:2a:9b:5f:85:62:3d: 1b:a7:af:50:40:62:82:d5:7a:cc:3f:91:4b:0e:c5: 7f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:3F:A0:A1:4C:B7:21:99:A2:C6:8F:AD:52:07:19:8C:5D:BD:4C:0A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bz-goUy3IZmixo-tUgcZjF29TAo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.73.0.0/20 Signature Algorithm: sha256WithRSAEncryption 7d:09:4b:a5:c7:cb:8b:e5:74:00:d0:4f:8c:fe:a4:66:88:0f: 0f:60:25:34:2a:6e:22:32:aa:a5:8d:1a:b2:09:b3:10:a8:c9: 22:88:0d:f3:87:45:d2:83:08:13:02:4b:36:3e:2c:02:82:4f: ca:2e:4b:9c:ff:9d:35:75:99:b1:37:5c:18:a1:5a:f6:a4:77: aa:8c:1c:29:ab:3d:48:02:1d:91:20:e4:fd:65:96:b2:7a:68: 41:f7:91:13:9f:9a:fc:4e:9a:e3:56:31:27:da:89:17:94:97: a2:68:00:02:37:19:29:58:de:25:e4:89:26:66:66:01:84:06: 9b:a8:c4:11:35:7c:97:11:3e:f8:22:c9:4d:b7:fc:ba:20:48: 75:91:c9:d1:4d:a0:fb:51:22:f9:ca:40:87:d6:14:99:b6:f3: bf:df:46:b4:af:61:19:58:93:ea:40:c2:8f:49:5d:cf:37:b4: 5e:cb:df:da:01:7b:4a:30:ab:58:9f:45:87:06:c3:b5:e4:dd: ac:44:83:45:70:08:e9:d1:7d:d4:24:90:e6:f4:0e:7d:40:63: eb:d5:aa:f0:7b:f5:e9:0c:b4:74:10:f1:db:df:e6:3c:fd:f9: ac:7d:83:00:28:60:68:02:66:2b:b6:58:02:d7:1f:8b:ea:84: ba:3e:fa:6c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC74wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzNDRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDZGM0ZBMEExNENCNzIx OTlBMkM2OEZBRDUyMDcxOThDNURCRDRDMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlH/5enht2SI95V6777BMUADyUBs6jb4MhsAAQBiFkNk93F4L9 njx+QZFKwq1iSmM3O4APkAfv/H1nNWci4sZM9qEwtUzLC/rUwFmyH7OKWndXMInu cIwAlMAfwd9WljnDRApgeG0YpVhnaf36C3aNMtpl6NOD+kdk0olB017bSH4pHVV7 FxGy0kTIimD9h9cge9A7duPerB+RqYoyf7JsQcq7pV7KqpJTkELVc4FvSrxvmY+f UX+mN74t4QEe8WcVcbBez4ok+78Bt6BQaet3VUBV6EHDS+Z8qFLNppBRtOcaWVKm ii9UdSqbX4ViPRunr1BAYoLVesw/kUsOxX89AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbz+goUy3IZmixo+tUgcZjF29TAowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2J6LWdvVXkzSVptaXhvLXRVZ2NaakYyOVRBby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAS3SQAwDQYJKoZIhvcNAQELBQADggEBAH0JS6XHy4vldADQT4z+pGaIDw9g JTQqbiIyqqWNGrIJsxCoySKIDfOHRdKDCBMCSzY+LAKCT8ouS5z/nTV1mbE3XBih Wvakd6qMHCmrPUgCHZEg5P1llrJ6aEH3kROfmvxOmuNWMSfaiReUl6JoAAI3GSlY 3iXkiSZmZgGEBpuoxBE1fJcRPvgiyU23/LogSHWRydFNoPtRIvnKQIfWFJm287/f RrSvYRlYk+pAwo9JXc83tF7L39oBe0owq1ifRYcGw7Xk3axEg0VwCOnRfdQkkOb0 Dn1AY+vVqvB79ekMtHQQ8dvf5jz9+ax9gwAoYGgCZiu2WALXH4vqhLo++mw= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:50 2025 by rpki-client