$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hEVFcBhFWPhGwp8pLBugo4cjwLM.roa File: hEVFcBhFWPhGwp8pLBugo4cjwLM.roa (raw, json) Hash identifier: t6oXlfRMkGOahpeoDDMZQJA/C55g5i9vMTKoW6T9k08= Subject key identifier: 84:45:45:70:18:45:58:F8:46:C2:9F:29:2C:1B:A0:A3:87:23:C0:B3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CF3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hEVFcBhFWPhGwp8pLBugo4cjwLM.roa Signing time: Tue 01 Apr 2025 02:11:31 +0000 ROA not before: Tue 01 Apr 2025 02:11:31 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3315 (0xcf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:31 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=84454570184558F846C29F292C1BA0A38723C0B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:09:84:04:66:36:18:f1:78:01:8c:be:0e:46: 33:50:ae:b4:17:6b:1e:98:f2:88:17:06:93:fc:3e: 8d:bc:06:1d:30:6e:57:7f:ab:a0:ce:89:d3:53:92: 69:6f:35:ca:53:4f:fa:40:87:62:b0:51:18:e2:35: 2b:81:28:dc:70:0d:4f:d5:7a:10:69:ee:24:e5:24: 3f:28:d2:5e:23:08:0e:17:fa:d1:25:f4:5f:d3:4c: 06:2f:b4:7a:2b:d3:5d:d7:bf:78:32:9c:7b:96:d1: f9:73:f2:8b:12:2c:80:ca:48:f3:19:28:61:a0:23: 1f:5b:c4:9a:f2:0b:31:65:9d:07:f6:71:67:0d:87: 16:1f:17:4c:1a:dc:0c:30:ed:3a:39:3e:aa:55:e1: f2:79:ab:f6:a9:e3:47:b8:8b:2d:bb:e5:68:e5:b1: bf:ba:3f:47:9c:23:88:71:b9:a6:05:ec:11:ca:72: 31:7b:6a:63:3a:d9:4d:30:db:f3:a4:2e:42:cf:d8: 6a:64:a6:3c:2c:4a:bc:02:00:6e:26:47:80:45:ac: 30:8c:1a:fc:2d:16:4d:49:a4:02:ba:9a:d4:72:03: 0f:e5:af:21:70:82:b2:40:86:0c:50:87:0b:3b:8e: 3f:7c:92:a2:ab:fc:6e:b6:a8:dc:b2:96:10:f4:b7: a9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:45:45:70:18:45:58:F8:46:C2:9F:29:2C:1B:A0:A3:87:23:C0:B3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hEVFcBhFWPhGwp8pLBugo4cjwLM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.176.0/23 Signature Algorithm: sha256WithRSAEncryption d2:38:1b:3e:03:ce:79:7c:9f:e1:68:4f:6c:b9:af:0e:30:10: 98:b9:4c:89:55:f9:02:d9:67:87:a0:82:23:ce:49:ef:26:97: dd:10:99:ed:56:1d:3a:ed:75:68:48:75:6f:1e:8c:dc:2d:3b: e2:f2:6e:fe:be:87:c4:7f:c5:17:99:5f:86:ad:ba:a1:f6:d8: 39:0f:25:be:b3:ea:1c:d1:cd:05:03:7e:09:ff:23:74:b9:ea: 74:f0:a0:73:e4:f1:8b:df:7a:9c:f4:e5:00:ec:f4:eb:c5:d8: ca:5d:5a:39:85:f2:b6:03:d8:31:3b:12:36:9a:24:39:4a:02: d9:33:b7:5e:c3:b7:b4:34:9c:13:cd:1f:b9:01:2f:25:f8:97: 76:64:9c:48:59:05:8b:70:77:f8:82:b9:79:c7:7c:fe:da:8d: 5e:70:77:a2:60:d8:a2:58:0f:ae:20:9c:65:85:de:28:5d:69: 28:73:33:a9:82:2b:66:fe:bb:bb:0d:c4:cf:b5:a3:a9:84:88: 3b:b5:79:e7:04:9b:9b:eb:90:30:b4:aa:97:9b:f8:f3:bb:9b: f6:e9:2f:35:8d:8e:3f:a6:22:9e:d2:0a:11:6a:22:f0:4b:0c: f9:57:ec:a6:79:fd:d9:83:8c:45:79:e0:c2:0f:1a:ba:ac:67: 06:9c:57:e2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDPMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExMzFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg0NDU0NTcwMTg0NTU4 Rjg0NkMyOUYyOTJDMUJBMEEzODcyM0MwQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLCYQEZjYY8XgBjL4ORjNQrrQXax6Y8ogXBpP8Po28Bh0wbld/ q6DOidNTkmlvNcpTT/pAh2KwURjiNSuBKNxwDU/VehBp7iTlJD8o0l4jCA4X+tEl 9F/TTAYvtHor013Xv3gynHuW0flz8osSLIDKSPMZKGGgIx9bxJryCzFlnQf2cWcN hxYfF0wa3Aww7To5PqpV4fJ5q/ap40e4iy275Wjlsb+6P0ecI4hxuaYF7BHKcjF7 amM62U0w2/OkLkLP2GpkpjwsSrwCAG4mR4BFrDCMGvwtFk1JpAK6mtRyAw/lryFw grJAhgxQhws7jj98kqKr/G62qNyylhD0t6nbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhEVFcBhFWPhGwp8pLBugo4cjwLMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2hFVkZjQmhGV1BoR3dwOHBMQnVnbzRjandMTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT7AwDQYJKoZIhvcNAQELBQADggEBANI4Gz4Dznl8n+FoT2y5rw4wEJi5 TIlV+QLZZ4eggiPOSe8ml90Qme1WHTrtdWhIdW8ejNwtO+Lybv6+h8R/xReZX4at uqH22DkPJb6z6hzRzQUDfgn/I3S56nTwoHPk8Yvfepz05QDs9OvF2MpdWjmF8rYD 2DE7EjaaJDlKAtkzt17Dt7Q0nBPNH7kBLyX4l3ZknEhZBYtwd/iCuXnHfP7ajV5w d6Jg2KJYD64gnGWF3ihdaShzM6mCK2b+u7sNxM+1o6mEiDu1eecEm5vrkDC0qpeb +PO7m/bpLzWNjj+mIp7SChFqIvBLDPlX7KZ5/dmDjEV54MIPGrqsZwacV+I= -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:19 2025 by rpki-client