$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lJKh_DNhMfW9bnaI4UIDUHfBI_4.roa File: lJKh_DNhMfW9bnaI4UIDUHfBI_4.roa (raw, json) Hash identifier: z0DbWX7ldRDkFmJdDkAFRFoUJvg+c9/nuWxq72t7TjU= Subject key identifier: 94:92:A1:FC:33:61:31:F5:BD:6E:76:88:E1:42:03:50:77:C1:23:FE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C3C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lJKh_DNhMfW9bnaI4UIDUHfBI_4.roa Signing time: Tue 01 Apr 2025 01:57:15 +0000 ROA not before: Tue 01 Apr 2025 01:57:15 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 211.14.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:57:15 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=9492A1FC336131F5BD6E7688E142035077C123FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2f:c0:67:4b:b3:7f:e5:3e:80:30:02:e3:52: 6d:b9:ce:2f:5c:81:b1:5d:40:6b:42:20:b6:88:5d: 35:db:58:41:5c:11:aa:a8:0b:a1:b1:58:02:ae:67: 83:cc:7e:3e:d9:a9:95:f9:8e:9c:46:68:20:5f:b5: d7:83:85:da:42:5a:de:2f:c6:18:4a:5a:3e:4d:16: ea:d0:f3:d4:9e:43:35:b9:c2:20:54:13:72:a3:f9: 40:54:3c:62:2a:d8:7c:4b:77:87:bd:a8:de:d6:ab: 8d:40:2d:ae:45:23:52:69:37:64:63:ba:b1:e4:75: 9d:71:90:f6:48:d7:ea:bf:eb:df:b8:5a:e3:6d:a7: c4:3a:e4:a0:4c:42:6b:f2:31:2e:97:a7:48:f9:81: 4d:de:8b:33:67:be:68:76:86:ef:8b:53:f2:8f:fb: 42:36:01:d2:09:be:81:9e:e9:d0:22:2a:bf:86:a6: 8b:b2:f8:85:d2:5c:f3:71:3b:3e:f8:5b:18:ee:c1: ad:f4:b1:61:15:6d:2d:40:51:99:c7:4d:3f:a7:b8: ae:ee:0b:f4:f2:0f:5e:7e:f0:91:3f:ed:aa:f7:21: ea:85:93:9b:bc:0c:2b:88:70:04:96:fa:ab:b0:25: c7:f5:cb:34:2c:08:7f:03:e9:c2:7c:9c:9b:ca:2b: c4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:92:A1:FC:33:61:31:F5:BD:6E:76:88:E1:42:03:50:77:C1:23:FE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lJKh_DNhMfW9bnaI4UIDUHfBI_4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.96.0/21 Signature Algorithm: sha256WithRSAEncryption c3:9c:9d:ed:fe:da:29:55:37:d4:da:1e:9c:64:69:ff:14:06: 7b:2a:4c:27:64:91:29:84:37:be:d4:b0:ff:dd:91:56:b2:ab: 25:40:e3:20:ba:9c:6c:c3:c7:a1:6d:98:e7:02:ed:8c:8e:e5: c5:98:f4:dd:1d:db:bb:f5:1d:c7:84:24:00:cc:8b:c4:0a:3d: af:ad:c7:03:7d:52:8a:d3:fc:af:84:7a:4d:9f:55:87:8e:04: 4f:f8:b5:64:3b:9b:ea:7d:0b:3c:3a:12:f7:69:58:bd:11:14: 94:17:f3:ba:cd:40:ee:8a:1a:8d:ee:a5:c7:31:19:11:ce:f2: de:4a:c1:00:7f:ce:80:f2:0d:57:20:a9:ed:7a:f5:44:9e:50: 89:97:8a:c2:84:7a:2b:82:c6:82:62:27:9b:f6:16:67:53:65: a9:cf:6a:46:af:0a:58:9d:4b:80:a5:7a:b6:2d:73:1f:40:18: ae:5c:8f:44:50:af:1c:4a:40:79:f3:78:cb:b2:17:a3:a7:9e: 4f:1c:ec:17:6d:40:2c:1a:f1:1f:21:71:30:22:79:b9:04:1c: d1:14:25:53:e8:3f:56:49:96:ac:3e:c8:b7:0e:d3:71:72:43: 75:e5:db:9b:2d:5a:b1:ba:db:b4:a9:d1:47:2d:f0:9c:b8:10: 50:cc:cf:dc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU3MTVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk0OTJBMUZDMzM2MTMx RjVCRDZFNzY4OEUxNDIwMzUwNzdDMTIzRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDL8BnS7N/5T6AMALjUm25zi9cgbFdQGtCILaIXTXbWEFcEaqo C6GxWAKuZ4PMfj7ZqZX5jpxGaCBftdeDhdpCWt4vxhhKWj5NFurQ89SeQzW5wiBU E3Kj+UBUPGIq2HxLd4e9qN7Wq41ALa5FI1JpN2RjurHkdZ1xkPZI1+q/69+4WuNt p8Q65KBMQmvyMS6Xp0j5gU3eizNnvmh2hu+LU/KP+0I2AdIJvoGe6dAiKr+Gpouy +IXSXPNxOz74Wxjuwa30sWEVbS1AUZnHTT+nuK7uC/TyD15+8JE/7ar3IeqFk5u8 DCuIcASW+quwJcf1yzQsCH8D6cJ8nJvKK8RrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlJKh/DNhMfW9bnaI4UIDUHfBI/4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2xKS2hfRE5oTWZXOWJuYUk0VUlEVUhmQklfNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPTDmAwDQYJKoZIhvcNAQELBQADggEBAMOcne3+2ilVN9TaHpxkaf8UBnsq TCdkkSmEN77UsP/dkVayqyVA4yC6nGzDx6FtmOcC7YyO5cWY9N0d27v1HceEJADM i8QKPa+txwN9UorT/K+Eek2fVYeOBE/4tWQ7m+p9Czw6EvdpWL0RFJQX87rNQO6K Go3upccxGRHO8t5KwQB/zoDyDVcgqe169USeUImXisKEeiuCxoJiJ5v2FmdTZanP akavClidS4ClerYtcx9AGK5cj0RQrxxKQHnzeMuyF6Onnk8c7BdtQCwa8R8hcTAi ebkEHNEUJVPoP1ZJlqw+yLcO03FyQ3Xl25stWrG627Sp0Uct8Jy4EFDMz9w= -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:15 2025 by rpki-client