$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iZCbyZQGWzuJWs3g3o2yFUkD80s.roa File: iZCbyZQGWzuJWs3g3o2yFUkD80s.roa (raw, json) Hash identifier: POAwSZ/CKKJ3w6AxwJDIVisNgEu64Vy9AgaZrc+7ZPU= Subject key identifier: 89:90:9B:C9:94:06:5B:3B:89:5A:CD:E0:DE:8D:B2:15:49:03:F3:4B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D1B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iZCbyZQGWzuJWs3g3o2yFUkD80s.roa Signing time: Tue 01 Apr 2025 02:13:45 +0000 ROA not before: Tue 01 Apr 2025 02:13:45 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3355 (0xd1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:45 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=89909BC994065B3B895ACDE0DE8DB2154903F34B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ad:ce:7c:f9:b3:58:d3:40:19:a9:81:10:c9: 57:d4:48:8c:5b:50:7b:52:70:98:6b:16:1a:41:af: 7f:ac:78:8f:f5:d9:69:78:21:f6:11:ed:db:c1:42: 22:6c:a1:d7:21:6c:33:3c:39:6c:72:24:6a:dd:ed: f1:76:f6:0e:0b:28:31:3d:7a:47:7f:e6:86:e9:d0: 9f:b6:1f:58:df:33:d2:8d:c5:c7:17:58:25:95:b8: 1e:26:0c:4d:17:85:77:20:81:c7:80:db:3b:08:08: 9b:e5:78:ca:c2:e6:b2:0f:f6:e6:f4:53:05:f6:65: 0d:3a:2b:81:67:e5:03:3f:94:90:63:27:ca:cf:7b: 39:f8:d6:34:e9:61:73:cf:80:54:dd:10:24:8b:79: 0a:cf:cb:ad:7b:f4:60:02:cd:59:5c:24:6d:c4:08: 8a:6c:1b:44:3e:dd:95:a2:43:e6:dd:81:8e:a4:eb: fb:76:6e:6c:9d:2e:89:36:9b:d0:1a:87:fa:9e:95: 05:ba:bf:c5:7a:d0:5c:75:44:39:28:d7:48:d0:5a: dc:80:91:43:00:e1:44:57:53:f7:f6:2b:eb:bb:e7: 47:97:c4:fe:0a:df:77:63:44:fe:ad:4c:36:fc:df: e2:8c:e3:9c:47:e3:cf:78:44:7c:4a:d8:3e:95:c5: 89:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:90:9B:C9:94:06:5B:3B:89:5A:CD:E0:DE:8D:B2:15:49:03:F3:4B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iZCbyZQGWzuJWs3g3o2yFUkD80s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.60.0/22 Signature Algorithm: sha256WithRSAEncryption d4:5e:3b:36:aa:6d:56:83:a9:f4:d2:8f:2e:af:ae:18:77:75: e7:69:a5:dd:c9:ae:43:96:02:7e:20:9d:01:e8:71:b0:e3:9d: 7e:6d:c3:7f:4b:ae:48:1c:23:69:d4:1e:a5:ac:90:60:9b:ad: 96:3a:ec:3f:e2:87:ef:2a:37:65:4a:35:d6:35:8e:ed:09:d4: 86:84:ee:6b:c8:50:2b:6b:f4:aa:01:32:ac:6a:ed:32:0f:9a: f1:2d:ff:dd:87:70:e7:e7:f5:1c:67:ff:4c:70:b7:e8:74:7e: 92:9a:0c:ab:15:9f:6a:44:26:ef:00:8c:86:b1:30:27:b4:49: d6:8f:31:0e:4f:03:72:64:4d:6e:81:5f:48:ba:56:da:8d:c2: d7:ce:bb:9a:47:fd:f0:76:3e:6c:e4:ca:4a:09:13:17:0b:e6: 5b:2f:59:d0:5a:a6:2d:76:06:29:33:c2:dc:25:bc:d8:30:77: 8d:51:81:85:a0:8e:7d:7e:d9:d7:9e:cf:0f:c1:39:e0:24:4a: 33:0e:5e:44:70:91:78:96:30:9c:5f:6a:49:01:20:c8:22:a1: 1d:3a:4d:e2:27:2d:f0:2e:d8:bb:67:7d:b4:92:4f:28:bd:0a: b6:c4:7e:eb:51:58:31:40:04:e3:5c:2d:6a:3d:c3:43:a4:c3: d2:96:df:9e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDRswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNDVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg5OTA5QkM5OTQwNjVC M0I4OTVBQ0RFMERFOERCMjE1NDkwM0YzNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClrc58+bNY00AZqYEQyVfUSIxbUHtScJhrFhpBr3+seI/12Wl4 IfYR7dvBQiJsodchbDM8OWxyJGrd7fF29g4LKDE9ekd/5obp0J+2H1jfM9KNxccX WCWVuB4mDE0XhXcggceA2zsICJvleMrC5rIP9ub0UwX2ZQ06K4Fn5QM/lJBjJ8rP ezn41jTpYXPPgFTdECSLeQrPy6179GACzVlcJG3ECIpsG0Q+3ZWiQ+bdgY6k6/t2 bmydLok2m9Aah/qelQW6v8V60Fx1RDko10jQWtyAkUMA4URXU/f2K+u750eXxP4K 33djRP6tTDb83+KM45xH4894RHxK2D6VxYkRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiZCbyZQGWzuJWs3g3o2yFUkD80swHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2laQ2J5WlFHV3p1SldzM2czbzJ5RlVrRDgwcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALcnzwwDQYJKoZIhvcNAQELBQADggEBANReOzaqbVaDqfTSjy6vrhh3dedp pd3JrkOWAn4gnQHocbDjnX5tw39LrkgcI2nUHqWskGCbrZY67D/ih+8qN2VKNdY1 ju0J1IaE7mvIUCtr9KoBMqxq7TIPmvEt/92HcOfn9Rxn/0xwt+h0fpKaDKsVn2pE Ju8AjIaxMCe0SdaPMQ5PA3JkTW6BX0i6VtqNwtfOu5pH/fB2PmzkykoJExcL5lsv WdBapi12BikzwtwlvNgwd41RgYWgjn1+2deezw/BOeAkSjMOXkRwkXiWMJxfakkB IMgioR06TeInLfAu2LtnfbSSTyi9CrbEfutRWDFABONcLWo9w0Okw9KW354= -----END CERTIFICATE-----Generated at Sat Apr 5 17:30:21 2025 by rpki-client