$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fdT9A394Z6wlws_ZHR33HuV0wWc.roa File: fdT9A394Z6wlws_ZHR33HuV0wWc.roa (raw, json) Hash identifier: ZXJDqBvHDQo5EDKpYwoBvB590mg3AmVnuu+7OzSxv7g= Subject key identifier: 7D:D4:FD:03:7F:78:67:AC:25:C2:CF:D9:1D:1D:F7:1E:E5:74:C1:67 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B46 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fdT9A394Z6wlws_ZHR33HuV0wWc.roa Signing time: Thu 06 Mar 2025 07:12:37 +0000 ROA not before: Thu 06 Mar 2025 07:12:37 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Mar 6 07:12:37 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=7DD4FD037F7867AC25C2CFD91D1DF71EE574C167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7f:54:02:81:aa:7e:98:47:f1:5a:2d:8c:cc: b4:a1:0a:5f:09:73:50:69:47:b6:05:1f:d4:d0:95: b9:69:e4:31:28:36:d7:b2:06:ed:db:d3:a5:e4:d0: 67:d2:60:4d:d6:8d:db:62:e1:aa:77:28:74:76:2b: df:82:99:c8:eb:55:41:a2:92:4a:d8:84:de:6a:2f: 47:d9:e4:7f:fe:97:6e:02:c8:c8:45:5c:a7:bf:d2: f3:1b:45:a5:37:19:de:b2:64:b2:32:bb:76:2b:bd: ee:35:21:6a:2f:fe:2a:12:59:e2:ec:10:1d:e3:38: c4:a3:5f:41:a3:f1:59:18:f9:dc:c0:d5:25:5f:5d: 46:a4:7a:01:98:bc:e8:19:3f:82:bf:09:6a:c2:db: c8:3b:80:aa:28:4c:9e:8e:90:c0:e0:03:b8:25:8c: 1e:dc:32:95:d9:6c:56:94:32:c0:a1:85:b5:c4:1c: 9b:b0:08:c7:ec:3d:06:8d:6b:27:3d:24:3e:b5:85: e3:b9:53:87:e4:f8:5b:b1:0a:9d:75:4c:23:b8:8d: eb:cb:86:37:fa:3d:b2:fc:fb:78:ff:68:52:2b:37: bf:88:b4:a7:da:44:98:9c:17:db:a5:45:02:7a:63: aa:73:89:f1:15:24:c6:54:b4:d3:31:ad:d9:fb:fe: c7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:D4:FD:03:7F:78:67:AC:25:C2:CF:D9:1D:1D:F7:1E:E5:74:C1:67 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fdT9A394Z6wlws_ZHR33HuV0wWc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.145.0/24 Signature Algorithm: sha256WithRSAEncryption b3:b9:a1:f0:fc:9d:99:44:69:8c:7a:c6:8c:5f:77:c3:4f:cf: c8:78:f8:33:9a:ac:c7:1b:d7:1e:86:99:ff:f6:be:70:b3:e7: 15:23:fe:39:bf:8e:33:0a:51:bf:7e:0f:3f:fe:05:75:56:02: cb:ac:71:a4:c7:8d:0e:fd:52:76:92:08:97:1f:18:ad:9b:39: 8c:3c:7b:30:b3:ca:d4:cb:9a:21:3d:03:72:7e:df:58:4b:2c: 3d:f7:27:ce:cd:8e:d0:52:39:97:de:74:91:f5:a7:9c:67:30: 84:91:de:41:e0:93:b3:35:07:67:3b:9e:6a:1b:ab:f3:14:26: aa:47:62:b3:c3:db:ab:07:4c:4b:48:80:9b:17:78:40:2d:20: 35:da:2a:d4:98:72:04:42:0f:81:9d:cf:f3:16:8b:0b:b5:ec: a9:96:14:4a:0e:9d:c1:41:ac:a4:92:b6:34:7c:40:41:bd:74: 62:90:b7:26:5b:86:8d:b7:14:9b:ed:64:6e:c2:36:0f:03:d2: 0d:56:90:b5:98:2a:49:ac:b9:74:4c:25:eb:c8:be:04:d0:29: 3c:c8:e7:08:3a:f8:64:e2:b4:25:bb:02:5a:ef:12:02:13:24: 66:ad:2d:67:2b:03:67:42:66:14:d9:b7:7c:a3:9f:e7:0d:aa: ba:62:c7:cd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTAzMDYw NzEyMzdaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDdERDRGRDAzN0Y3ODY3 QUMyNUMyQ0ZEOTFEMURGNzFFRTU3NEMxNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCff1QCgap+mEfxWi2MzLShCl8Jc1BpR7YFH9TQlblp5DEoNtey Bu3b06Xk0GfSYE3Wjdti4ap3KHR2K9+CmcjrVUGikkrYhN5qL0fZ5H/+l24CyMhF XKe/0vMbRaU3Gd6yZLIyu3Yrve41IWov/ioSWeLsEB3jOMSjX0Gj8VkY+dzA1SVf XUakegGYvOgZP4K/CWrC28g7gKooTJ6OkMDgA7gljB7cMpXZbFaUMsChhbXEHJuw CMfsPQaNayc9JD61heO5U4fk+FuxCp11TCO4jevLhjf6PbL8+3j/aFIrN7+ItKfa RJicF9ulRQJ6Y6pzifEVJMZUtNMxrdn7/sdLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUfdT9A394Z6wlws/ZHR33HuV0wWcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2ZkVDlBMzk0WjZ3bHdzX1pIUjMzSHVWMHdXYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABS5EwDQYJKoZIhvcNAQELBQADggEBALO5ofD8nZlEaYx6xoxfd8NPz8h4 +DOarMcb1x6Gmf/2vnCz5xUj/jm/jjMKUb9+Dz/+BXVWAsuscaTHjQ79UnaSCJcf GK2bOYw8ezCzytTLmiE9A3J+31hLLD33J87NjtBSOZfedJH1p5xnMISR3kHgk7M1 B2c7nmobq/MUJqpHYrPD26sHTEtIgJsXeEAtIDXaKtSYcgRCD4Gdz/MWiwu17KmW FEoOncFBrKSStjR8QEG9dGKQtyZbho23FJvtZG7CNg8D0g1WkLWYKkmsuXRMJevI vgTQKTzI5wg6+GTitCW7AlrvEgITJGatLWcrA2dCZhTZt3yjn+cNqrpix80= -----END CERTIFICATE-----Generated at Sat Apr 5 17:24:59 2025 by rpki-client