$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hFI7uL1n9-OqoVLEHZ2-PzciHtQ.roa File: hFI7uL1n9-OqoVLEHZ2-PzciHtQ.roa (raw, json) Hash identifier: th1ogeITLacVbVNe88/3QmHKUO0z5TPgE5zzvQoeYS0= Subject key identifier: 84:52:3B:B8:BD:67:F7:E3:AA:A1:52:C4:1D:9D:BE:3F:37:22:1E:D4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C02 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hFI7uL1n9-OqoVLEHZ2-PzciHtQ.roa Signing time: Tue 01 Apr 2025 01:51:30 +0000 ROA not before: Tue 01 Apr 2025 01:51:30 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3074 (0xc02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:51:30 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=84523BB8BD67F7E3AAA152C41D9DBE3F37221ED4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:49:ba:bb:82:3b:be:28:2c:e7:97:12:da:7d: a2:90:65:87:06:59:a6:02:5b:ec:be:cd:69:a7:db: e4:f7:d9:44:3c:50:b9:a9:54:d1:81:85:03:78:0c: 36:9d:28:d7:37:96:4c:35:8b:28:6f:25:cc:c1:c0: c7:dd:20:39:d1:09:c4:10:ff:d7:a9:b3:e8:41:0f: 61:3e:2d:44:39:7f:18:c1:76:6d:f7:11:f6:63:15: c3:ff:fd:a4:b8:a0:06:1f:0b:d6:ef:24:52:81:a0: 61:a3:23:c8:29:29:33:1c:bb:8f:83:2e:e1:8d:af: b9:ba:2d:28:e7:ab:56:b8:58:fe:39:80:41:fc:fc: 08:a4:1d:7d:46:c4:ab:dc:b6:22:b8:b2:7a:39:b9: f8:06:1f:6b:4e:57:cc:7d:bc:a6:16:b6:99:0a:9d: c3:d3:09:e1:5f:e7:25:d1:49:f1:46:c4:b2:b2:4d: 09:83:31:91:ad:81:52:22:43:fc:b5:6f:d2:03:75: 19:ec:ac:5a:b3:d1:7e:8a:5d:66:3c:fc:8a:fa:70: 58:93:5c:b1:49:bc:8e:be:2f:0b:ff:70:d0:8c:a8: 74:a1:47:1a:d2:4d:bb:31:ad:59:b6:ad:71:8a:24: 1c:4e:a4:d1:b0:ec:c7:c1:b3:e7:61:6f:eb:b7:81: 64:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:52:3B:B8:BD:67:F7:E3:AA:A1:52:C4:1D:9D:BE:3F:37:22:1E:D4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hFI7uL1n9-OqoVLEHZ2-PzciHtQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.244.0/23 Signature Algorithm: sha256WithRSAEncryption 55:ca:d0:1a:20:03:87:62:1a:b7:be:d5:f8:28:1e:d3:7a:5a: df:b6:9a:58:9f:d1:39:f7:68:39:34:13:c2:e3:b6:35:02:e9: d3:c3:55:e2:be:99:76:91:dc:94:5a:d5:a6:92:2d:9b:b9:96: db:fa:40:8b:f7:bd:25:5f:29:5b:16:f1:62:4c:46:85:47:5f: 3f:07:75:3c:d9:8d:ed:87:a5:be:3d:75:d6:12:90:ee:f5:49: 42:de:b8:f0:c0:90:e6:38:79:13:d4:e2:fc:ec:01:ff:97:74: c2:ab:16:69:fb:aa:0e:24:07:48:e1:ef:68:15:f9:86:dc:8e: 30:05:15:aa:54:b0:14:f7:e8:cb:7e:ea:70:3f:61:ef:47:60: 60:4d:ad:4d:e5:c1:9e:2b:f6:22:81:28:7a:d5:cb:49:1b:a0: c6:ab:e4:a5:e2:79:47:a4:d6:d9:0d:14:29:dd:b5:8e:1f:be: f6:35:45:4c:4c:91:fc:b3:33:dd:7a:71:22:45:d5:ff:1e:b2: de:44:79:83:b9:cd:a1:86:0f:f0:f5:ef:e6:89:e6:10:3d:f3: 31:b2:43:f7:92:0d:55:32:3e:8c:72:d3:dd:20:b9:df:d3:39: 5b:90:03:b8:b8:4b:ff:cb:49:1c:3a:1e:33:44:2e:a1:03:dd: 9f:da:3b:9b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTUxMzBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg0NTIzQkI4QkQ2N0Y3 RTNBQUExNTJDNDFEOURCRTNGMzcyMjFFRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDESbq7gju+KCznlxLafaKQZYcGWaYCW+y+zWmn2+T32UQ8ULmp VNGBhQN4DDadKNc3lkw1iyhvJczBwMfdIDnRCcQQ/9eps+hBD2E+LUQ5fxjBdm33 EfZjFcP//aS4oAYfC9bvJFKBoGGjI8gpKTMcu4+DLuGNr7m6LSjnq1a4WP45gEH8 /AikHX1GxKvctiK4sno5ufgGH2tOV8x9vKYWtpkKncPTCeFf5yXRSfFGxLKyTQmD MZGtgVIiQ/y1b9IDdRnsrFqz0X6KXWY8/Ir6cFiTXLFJvI6+Lwv/cNCMqHShRxrS TbsxrVm2rXGKJBxOpNGw7MfBs+dhb+u3gWSRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhFI7uL1n9+OqoVLEHZ2+PzciHtQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2hGSTd1TDFuOS1PcW9WTEVIWjItUHpjaUh0US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS/QwDQYJKoZIhvcNAQELBQADggEBAFXK0BogA4diGre+1fgoHtN6Wt+2 mlif0Tn3aDk0E8LjtjUC6dPDVeK+mXaR3JRa1aaSLZu5ltv6QIv3vSVfKVsW8WJM RoVHXz8HdTzZje2Hpb49ddYSkO71SULeuPDAkOY4eRPU4vzsAf+XdMKrFmn7qg4k B0jh72gV+YbcjjAFFapUsBT36Mt+6nA/Ye9HYGBNrU3lwZ4r9iKBKHrVy0kboMar 5KXieUek1tkNFCndtY4fvvY1RUxMkfyzM916cSJF1f8est5EeYO5zaGGD/D17+aJ 5hA98zGyQ/eSDVUyPoxy090gud/TOVuQA7i4S//LSRw6HjNELqED3Z/aO5s= -----END CERTIFICATE-----Generated at Sat Apr 5 23:04:35 2025 by rpki-client