$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kCEmwEdOfJwD-cbXbVfuQzYkazA.roa File: kCEmwEdOfJwD-cbXbVfuQzYkazA.roa (raw, json) Hash identifier: Gdg1SiruRnGljYItHSOG4VEVUdK9cyo2LUlDO3QryIc= Subject key identifier: 90:21:26:C0:47:4E:7C:9C:03:F9:C6:D7:6D:57:EE:43:36:24:6B:30 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D05 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kCEmwEdOfJwD-cbXbVfuQzYkazA.roa Signing time: Tue 01 Apr 2025 02:11:39 +0000 ROA not before: Tue 01 Apr 2025 02:11:39 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.76.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3333 (0xd05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:39 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=902126C0474E7C9C03F9C6D76D57EE4336246B30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cd:21:1c:45:69:e4:25:23:50:a5:3f:50:4f: aa:87:0c:ff:87:78:04:8c:56:ba:40:c4:87:bf:c8: 3f:92:10:8e:57:15:39:3a:85:bc:52:8e:33:db:88: ac:59:be:8e:62:43:7f:d9:b4:20:4b:24:21:a3:b4: d5:08:b0:68:fb:c8:cc:dc:15:fc:25:40:97:03:8f: 70:c0:89:5e:88:2d:3d:da:0d:e9:08:e9:a6:26:40: ec:6a:7c:a4:86:35:49:63:81:f9:aa:72:fc:8f:1e: a8:99:60:be:08:94:09:20:26:8a:91:5c:7a:05:06: 9f:9e:fc:2f:40:b5:81:c2:7d:7f:12:ca:41:44:88: 39:38:2a:74:16:c7:93:d1:84:bc:d8:f9:87:0f:c2: c0:49:45:e3:be:7d:25:3b:78:dd:02:c9:dd:6e:e5: 08:0f:d4:f6:77:e0:45:80:62:aa:90:2e:a7:a8:61: 84:15:9c:ff:e6:62:5b:56:a1:43:c5:5e:21:47:56: af:d5:44:fb:2b:0a:f4:84:bb:24:9b:87:73:d3:69: d3:f3:0b:a8:b6:76:86:a1:da:7a:85:70:0e:50:07: 72:63:01:5e:20:c2:aa:2b:1b:49:31:d1:a9:86:08: 63:36:b1:d4:11:b4:f4:27:d9:e7:ce:e5:a6:3e:f3: 5b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:21:26:C0:47:4E:7C:9C:03:F9:C6:D7:6D:57:EE:43:36:24:6B:30 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kCEmwEdOfJwD-cbXbVfuQzYkazA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.148.0/22 Signature Algorithm: sha256WithRSAEncryption 07:56:87:80:e8:20:a6:c2:58:66:2e:15:a3:e7:80:a7:e4:af: 7a:3e:36:7b:a5:85:8e:0f:4e:3a:4b:30:6c:b3:16:c4:aa:b3: 44:cd:30:3f:bd:b7:5a:f4:61:d9:73:6b:4d:c1:f0:2a:73:3a: 83:51:dd:57:5c:9e:b6:88:d5:37:35:d7:09:69:c0:1f:e9:19: 4b:74:1b:0a:b7:ec:1d:b8:19:5d:75:b2:e4:e4:6e:eb:3b:8d: 02:c1:c0:5f:8f:d3:26:c9:0b:6f:17:91:e6:14:e2:0d:2d:50: 79:d5:38:5e:35:30:df:a7:2a:42:6a:19:c4:a6:3b:21:59:11: c3:f7:c5:c3:f9:05:6d:95:74:c7:04:fd:2d:80:51:48:67:20: 79:c2:c2:fd:c4:01:b8:fc:80:2e:ca:66:4b:0c:65:67:8d:df: 5a:87:ce:f7:51:71:8c:a8:a9:b2:6a:aa:f5:90:1a:1b:14:2a: 26:eb:65:e4:03:c6:cc:8a:2e:13:2f:25:6c:15:f1:a2:71:a7: 8c:52:33:95:f1:05:b1:31:03:60:17:5f:67:6f:17:57:6c:29: cd:ec:36:e5:13:a1:d5:2d:df:0d:b4:3d:01:58:7e:f4:e4:ba: 2d:b1:72:88:3e:97:f9:b2:fa:0f:72:50:9d:72:0e:46:f8:30: fc:54:fc:5c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExMzlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDkwMjEyNkMwNDc0RTdD OUMwM0Y5QzZENzZENTdFRTQzMzYyNDZCMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJzSEcRWnkJSNQpT9QT6qHDP+HeASMVrpAxIe/yD+SEI5XFTk6 hbxSjjPbiKxZvo5iQ3/ZtCBLJCGjtNUIsGj7yMzcFfwlQJcDj3DAiV6ILT3aDekI 6aYmQOxqfKSGNUljgfmqcvyPHqiZYL4IlAkgJoqRXHoFBp+e/C9AtYHCfX8SykFE iDk4KnQWx5PRhLzY+YcPwsBJReO+fSU7eN0Cyd1u5QgP1PZ34EWAYqqQLqeoYYQV nP/mYltWoUPFXiFHVq/VRPsrCvSEuySbh3PTadPzC6i2doah2nqFcA5QB3JjAV4g wqorG0kx0amGCGM2sdQRtPQn2efO5aY+81vhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkCEmwEdOfJwD+cbXbVfuQzYkazAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2tDRW13RWRPZkp3RC1jYlhiVmZ1UXpZa2F6QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTJQwDQYJKoZIhvcNAQELBQADggEBAAdWh4DoIKbCWGYuFaPngKfkr3o+ NnulhY4PTjpLMGyzFsSqs0TNMD+9t1r0Ydlza03B8CpzOoNR3VdcnraI1Tc11wlp wB/pGUt0Gwq37B24GV11suTkbus7jQLBwF+P0ybJC28XkeYU4g0tUHnVOF41MN+n KkJqGcSmOyFZEcP3xcP5BW2VdMcE/S2AUUhnIHnCwv3EAbj8gC7KZksMZWeN31qH zvdRcYyoqbJqqvWQGhsUKibrZeQDxsyKLhMvJWwV8aJxp4xSM5XxBbExA2AXX2dv F1dsKc3sNuUTodUt3w20PQFYfvTkui2xcog+l/my+g9yUJ1yDkb4MPxU/Fw= -----END CERTIFICATE-----Generated at Sat Apr 5 17:42:22 2025 by rpki-client