$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/h4W4mrH3tp8ESBoPFdQCkw5TyV8.roa File: h4W4mrH3tp8ESBoPFdQCkw5TyV8.roa (raw, json) Hash identifier: pQV8EoSQiMv0aoPUQQZYYQyrbWG7OolUR0Mz+0k8O8w= Subject key identifier: 87:85:B8:9A:B1:F7:B6:9F:04:48:1A:0F:15:D4:02:93:0E:53:C9:5F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C36 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/h4W4mrH3tp8ESBoPFdQCkw5TyV8.roa Signing time: Tue 01 Apr 2025 01:54:11 +0000 ROA not before: Tue 01 Apr 2025 01:54:11 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.240.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3126 (0xc36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:54:11 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=8785B89AB1F7B69F04481A0F15D402930E53C95F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dc:ba:d2:f7:0a:6f:cd:90:79:d6:84:b8:db: 0a:f4:ef:88:ea:54:ed:69:92:5d:ff:ff:d0:d3:19: 4d:40:24:54:09:01:9f:d5:af:05:29:b3:cd:43:79: 19:7c:3d:a8:ab:c5:52:fd:b7:ca:f3:29:d3:9f:5c: b7:0a:aa:8d:3e:7b:9c:94:85:17:32:5e:3f:f5:0b: e0:dd:9f:85:81:8c:bc:f1:99:bb:56:a7:9d:23:b7: 21:4d:29:fb:77:cb:d7:d1:f0:e7:1e:28:10:4a:53: 12:4a:39:ed:9d:eb:8f:7e:05:6a:9e:a9:f8:fe:6b: 6d:29:12:1f:6d:f2:db:3e:3a:01:7b:bb:ec:c5:54: be:1d:3c:62:54:16:19:b6:ba:24:e0:b7:e6:49:e9: 83:5b:18:07:b6:82:0a:ee:0c:fc:75:57:32:30:0d: 21:86:1b:1a:05:72:fa:10:95:96:af:a6:bd:3c:12: 80:94:00:fc:a7:19:85:59:1e:ba:16:df:a5:53:03: 4f:05:ce:9a:8e:21:24:8d:a1:1e:74:8c:fa:52:ac: ec:5e:a9:ec:a0:7b:23:ab:45:2f:0a:69:5d:2a:d1: cc:f0:17:57:12:00:ca:b4:e6:fd:66:e6:35:5f:54: 3a:48:b6:0b:32:d8:20:27:20:f1:76:8a:3c:c0:3e: 91:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:85:B8:9A:B1:F7:B6:9F:04:48:1A:0F:15:D4:02:93:0E:53:C9:5F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/h4W4mrH3tp8ESBoPFdQCkw5TyV8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.240.0/23 Signature Algorithm: sha256WithRSAEncryption 01:76:a9:cb:f5:b8:c6:a6:a8:6e:25:5c:59:9b:3f:32:51:17: b2:d1:ff:bf:29:e4:31:25:e1:79:a6:8a:63:c8:f5:1b:d9:cc: ba:a1:33:85:3e:12:54:e0:b1:ce:be:e5:75:95:84:50:b3:46: bd:60:72:1f:fb:5e:48:d5:1f:fd:9f:b0:f1:99:17:1e:48:f9: 43:78:ab:7f:8b:90:f4:75:6d:d7:35:e1:b4:8b:d9:d8:d3:8f: 7d:7e:65:5e:22:0e:75:19:56:5c:98:3c:d4:c1:86:e1:a2:26: f5:5f:55:19:dd:e5:05:51:c1:a7:64:50:ed:70:6c:ca:f5:b6: e0:9a:61:7a:ee:f3:ba:63:3c:7e:19:90:b5:c5:8c:a3:61:4c: c8:90:ae:27:e2:82:50:91:6a:0a:90:e9:be:3e:2f:6b:56:ee: 23:ab:8b:83:59:ed:ba:13:6b:bb:c3:a6:c5:3e:29:fa:9e:4b: 70:d9:46:c4:7a:4b:18:7e:8f:a1:4a:3e:a7:3d:db:db:0c:93: 4d:1f:77:8a:ba:4b:b3:73:4b:de:98:05:f9:df:53:27:1c:6a: 69:83:b6:4e:29:85:90:da:20:e9:69:c6:27:1c:b9:44:5b:f4: 33:8b:16:22:e6:a0:10:4d:e5:ab:4e:f7:9d:f7:b0:6c:39:d1: 37:7b:12:2a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDDYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU0MTFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg3ODVCODlBQjFGN0I2 OUYwNDQ4MUEwRjE1RDQwMjkzMEU1M0M5NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC03LrS9wpvzZB51oS42wr074jqVO1pkl3//9DTGU1AJFQJAZ/V rwUps81DeRl8PairxVL9t8rzKdOfXLcKqo0+e5yUhRcyXj/1C+Ddn4WBjLzxmbtW p50jtyFNKft3y9fR8OceKBBKUxJKOe2d649+BWqeqfj+a20pEh9t8ts+OgF7u+zF VL4dPGJUFhm2uiTgt+ZJ6YNbGAe2ggruDPx1VzIwDSGGGxoFcvoQlZavpr08EoCU APynGYVZHroW36VTA08FzpqOISSNoR50jPpSrOxeqeygeyOrRS8KaV0q0czwF1cS AMq05v1m5jVfVDpItgsy2CAnIPF2ijzAPpETAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUh4W4mrH3tp8ESBoPFdQCkw5TyV8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2g0VzRtckgzdHA4RVNCb1BGZFFDa3c1VHlWOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS/AwDQYJKoZIhvcNAQELBQADggEBAAF2qcv1uMamqG4lXFmbPzJRF7LR /78p5DEl4XmmimPI9RvZzLqhM4U+ElTgsc6+5XWVhFCzRr1gch/7XkjVH/2fsPGZ Fx5I+UN4q3+LkPR1bdc14bSL2djTj31+ZV4iDnUZVlyYPNTBhuGiJvVfVRnd5QVR wadkUO1wbMr1tuCaYXru87pjPH4ZkLXFjKNhTMiQrifiglCRagqQ6b4+L2tW7iOr i4NZ7boTa7vDpsU+KfqeS3DZRsR6Sxh+j6FKPqc929sMk00fd4q6S7NzS96YBfnf UyccammDtk4phZDaIOlpxiccuURb9DOLFiLmoBBN5atO9533sGw50Td7Eio= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:41 2025 by rpki-client