$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lesOWn7AORISP8cSxucgKeW09K0.roa File: lesOWn7AORISP8cSxucgKeW09K0.roa (raw, json) Hash identifier: doD09XIB12bjtejBLntKrba4g6e1/pnoibJl1Sm1zCQ= Subject key identifier: 95:EB:0E:5A:7E:C0:39:12:12:3F:C7:12:C6:E7:20:29:E5:B4:F4:AD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B92 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lesOWn7AORISP8cSxucgKeW09K0.roa Signing time: Tue 01 Apr 2025 01:39:46 +0000 ROA not before: Tue 01 Apr 2025 01:39:46 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 183.75.198.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2962 (0xb92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:39:46 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=95EB0E5A7EC03912123FC712C6E72029E5B4F4AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a3:62:b4:74:8f:49:68:1e:3c:7f:fe:d2:a8: 41:67:b0:16:4b:da:7e:ab:e9:d6:5c:0d:d1:85:6e: d5:6d:22:fb:3a:66:d5:b6:ff:e2:02:39:c0:9f:b8: 65:b9:32:23:2d:4a:2d:a1:6e:b0:d0:d9:f1:f5:af: 64:a6:33:c7:bf:89:fe:01:56:be:e9:66:d9:f0:11: a4:76:06:50:6e:e3:7a:3c:28:51:d8:51:57:1a:a9: 9d:00:d7:51:b7:18:f0:6a:93:81:11:d0:45:44:31: bb:61:56:06:d7:03:75:05:12:75:0d:ed:42:c3:0c: 76:a1:76:10:f6:42:fd:a0:e2:17:ef:79:14:1d:f7: 51:28:10:00:e1:8d:29:92:96:ef:dc:d8:d1:c0:7b: 6c:e6:48:aa:3e:6a:51:fd:1d:3d:03:fd:cc:30:8c: 95:23:bf:a8:af:be:f4:41:a1:ff:0f:79:fd:20:b3: 86:85:51:af:a7:b5:82:8a:d2:61:d0:e2:55:44:78: 2c:90:e3:0b:78:22:4f:33:70:84:24:01:18:62:63: 0c:d6:5c:64:46:88:1d:76:2d:78:95:2a:a8:d0:e8: e4:4d:20:81:a6:bb:57:18:0b:96:8e:11:50:1a:78: 3f:ef:ab:3f:19:96:a1:dc:b1:a2:7b:f8:76:70:ab: 1a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:EB:0E:5A:7E:C0:39:12:12:3F:C7:12:C6:E7:20:29:E5:B4:F4:AD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lesOWn7AORISP8cSxucgKeW09K0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.75.198.0/23 Signature Algorithm: sha256WithRSAEncryption 61:3b:2a:19:0d:ad:c8:be:07:35:20:fb:a7:88:92:f9:2f:3e: 9a:7d:f1:56:da:77:f1:92:9d:70:7e:13:16:15:c6:f1:ce:28: 0e:08:8d:29:cb:0f:18:66:5a:b7:c5:35:ab:4a:c8:18:a6:5d: cd:2e:70:30:2e:81:71:dd:89:47:f4:b3:ea:37:5b:22:59:4c: 8e:ef:63:a0:de:05:19:8b:d8:0e:7a:a1:b9:b9:93:de:d7:d5: d0:63:f5:66:2c:24:0e:1e:fe:97:96:3c:07:e9:d0:bf:00:e5: be:83:85:d6:ce:01:c0:5a:0d:ce:f8:9d:d6:cd:aa:e0:e0:2d: 36:8d:87:17:ad:5d:4f:d0:5f:64:81:da:3c:fc:ff:f0:28:bc: 4c:a2:86:75:c3:1b:4b:c3:39:9b:14:41:de:32:e1:88:33:60: a3:c5:d3:d6:97:c4:8c:68:bc:d7:8b:4a:e6:f8:27:94:c5:1e: 8c:5c:d0:60:d9:c3:33:59:1e:0c:8b:f2:4f:3a:be:3e:39:c8: c2:11:4d:5f:7d:5b:da:a5:2a:2a:a7:61:69:02:4d:50:3f:72: 84:98:c7:8c:c0:02:97:99:2c:25:4f:2e:04:62:8f:dd:02:fc: b2:c4:1c:0d:d1:7b:bb:40:93:02:e2:b4:fe:2e:b9:0b:b8:c7: 4b:ef:f7:ee -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC5IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM5NDZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk1RUIwRTVBN0VDMDM5 MTIxMjNGQzcxMkM2RTcyMDI5RTVCNEY0QUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDao2K0dI9JaB48f/7SqEFnsBZL2n6r6dZcDdGFbtVtIvs6ZtW2 /+ICOcCfuGW5MiMtSi2hbrDQ2fH1r2SmM8e/if4BVr7pZtnwEaR2BlBu43o8KFHY UVcaqZ0A11G3GPBqk4ER0EVEMbthVgbXA3UFEnUN7ULDDHahdhD2Qv2g4hfveRQd 91EoEADhjSmSlu/c2NHAe2zmSKo+alH9HT0D/cwwjJUjv6ivvvRBof8Pef0gs4aF Ua+ntYKK0mHQ4lVEeCyQ4wt4Ik8zcIQkARhiYwzWXGRGiB12LXiVKqjQ6ORNIIGm u1cYC5aOEVAaeD/vqz8ZlqHcsaJ7+HZwqxotAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlesOWn7AORISP8cSxucgKeW09K0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2xlc09XbjdBT1JJU1A4Y1N4dWNnS2VXMDlLMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAG3S8YwDQYJKoZIhvcNAQELBQADggEBAGE7KhkNrci+BzUg+6eIkvkvPpp9 8Vbad/GSnXB+ExYVxvHOKA4IjSnLDxhmWrfFNatKyBimXc0ucDAugXHdiUf0s+o3 WyJZTI7vY6DeBRmL2A56obm5k97X1dBj9WYsJA4e/peWPAfp0L8A5b6DhdbOAcBa Dc74ndbNquDgLTaNhxetXU/QX2SB2jz8//AovEyihnXDG0vDOZsUQd4y4YgzYKPF 09aXxIxovNeLSub4J5TFHoxc0GDZwzNZHgyL8k86vj45yMIRTV99W9qlKiqnYWkC TVA/coSYx4zAApeZLCVPLgRij90C/LLEHA3Re7tAkwLitP4uuQu4x0vv9+4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:14 2025 by rpki-client