$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mlHhTNm0DQ2KsI1aePMI2ojtlRE.roa File: mlHhTNm0DQ2KsI1aePMI2ojtlRE.roa (raw, json) Hash identifier: mf6nVNrh90uEsF5+PjroH7NHhYWim7i5M8YPJhHa7do= Subject key identifier: 9A:51:E1:4C:D9:B4:0D:0D:8A:B0:8D:5A:78:F3:08:DA:88:ED:95:11 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C8A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mlHhTNm0DQ2KsI1aePMI2ojtlRE.roa Signing time: Tue 01 Apr 2025 02:03:19 +0000 ROA not before: Tue 01 Apr 2025 02:03:19 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3210 (0xc8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:19 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=9A51E14CD9B40D0D8AB08D5A78F308DA88ED9511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8b:98:3e:f7:26:99:b0:10:2d:e6:69:8b:27: 73:95:52:ce:40:43:3c:db:d6:e7:47:c1:ab:85:32: 68:7d:fb:11:ac:ac:f7:7c:39:c9:ae:57:1e:c0:24: cc:a6:a7:ec:81:b6:17:5f:72:4f:eb:f3:a0:7c:48: 2c:dd:23:93:f4:05:1c:39:bf:6c:e7:5a:22:a5:95: 7e:43:40:0c:81:2c:59:7a:1c:f6:01:12:d7:92:94: 0b:7e:24:8e:b2:c5:24:fd:d4:35:8a:a6:28:78:96: 91:4c:40:8c:04:a8:e4:46:8d:20:7c:fb:3b:6c:02: 9c:d2:ca:e7:63:77:ad:b9:43:68:c8:15:8f:c3:79: 68:32:1b:8b:e7:83:90:b6:29:62:f8:03:29:82:dc: 4e:54:40:f9:ff:6a:2a:c1:98:02:d8:5e:6d:66:90: ae:c5:84:d4:d0:13:fe:7d:5c:f9:0b:29:5e:38:7b: 87:47:5a:e4:e8:d1:a1:30:46:88:fa:3f:57:22:53: a3:dd:be:35:9d:fd:f9:c9:b8:e0:b3:e2:d8:ab:17: b4:1e:3d:f2:47:31:f5:6f:17:0e:dd:1a:61:dc:ae: 8f:2c:25:a2:b6:93:da:a9:8b:3d:8c:31:ad:37:44: 6b:e8:16:3c:78:cb:ce:64:de:7a:d1:38:5c:ef:0b: 95:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:51:E1:4C:D9:B4:0D:0D:8A:B0:8D:5A:78:F3:08:DA:88:ED:95:11 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mlHhTNm0DQ2KsI1aePMI2ojtlRE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.22.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:50:53:ce:1a:e8:f9:10:59:06:d9:83:ec:96:f1:6c:b1:6b: 04:d3:01:f4:82:bf:7b:43:1f:b0:ba:95:41:39:f0:71:c2:a2: 3e:ae:f1:92:12:1f:db:0d:85:70:07:22:d3:99:48:95:37:5e: d9:cd:2e:65:86:28:26:c8:7c:1d:d2:3a:28:c4:7b:5c:bd:4d: 25:49:5d:37:bd:23:ca:eb:17:4b:0a:2b:0d:3c:69:db:5a:ef: 2e:fc:df:30:27:64:ff:29:85:49:c7:27:f2:d9:ea:98:3f:f5: a8:bd:a8:55:73:25:d8:f0:5c:a9:cc:1e:9e:a7:00:7e:8f:56: 60:ed:da:2e:ea:1e:3e:e8:2c:18:f2:85:4e:0f:99:09:68:13: 3c:24:52:77:3a:9a:32:96:68:47:c5:7b:1f:89:13:31:95:d0: 13:46:07:53:e3:31:d8:fa:d3:6d:ea:09:69:fb:50:3f:a3:9d: de:a3:35:23:9b:12:78:67:81:e8:42:81:a2:93:59:90:fa:0f: 48:ee:ca:c0:85:1f:3c:78:95:be:75:99:03:fd:ec:c4:c3:81: 02:4a:0b:48:c5:fb:67:3e:f7:90:83:74:ee:01:6e:03:13:6c: 9d:a8:83:c5:b0:92:77:7c:cd:fb:7f:38:f8:c1:ed:8b:9c:a4: a8:63:0a:82 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDIowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMTlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDlBNTFFMTRDRDlCNDBE MEQ4QUIwOEQ1QTc4RjMwOERBODhFRDk1MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCri5g+9yaZsBAt5mmLJ3OVUs5AQzzb1udHwauFMmh9+xGsrPd8 OcmuVx7AJMymp+yBthdfck/r86B8SCzdI5P0BRw5v2znWiKllX5DQAyBLFl6HPYB EteSlAt+JI6yxST91DWKpih4lpFMQIwEqORGjSB8+ztsApzSyudjd625Q2jIFY/D eWgyG4vng5C2KWL4AymC3E5UQPn/airBmALYXm1mkK7FhNTQE/59XPkLKV44e4dH WuTo0aEwRoj6P1ciU6PdvjWd/fnJuOCz4tirF7QePfJHMfVvFw7dGmHcro8sJaK2 k9qpiz2MMa03RGvoFjx4y85k3nrROFzvC5XZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmlHhTNm0DQ2KsI1aePMI2ojtlREwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L21sSGhUTm0wRFEyS3NJMWFlUE1JMm9qdGxSRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTxYwDQYJKoZIhvcNAQELBQADggEBAD1QU84a6PkQWQbZg+yW8WyxawTT AfSCv3tDH7C6lUE58HHCoj6u8ZISH9sNhXAHItOZSJU3XtnNLmWGKCbIfB3SOijE e1y9TSVJXTe9I8rrF0sKKw08adta7y783zAnZP8phUnHJ/LZ6pg/9ai9qFVzJdjw XKnMHp6nAH6PVmDt2i7qHj7oLBjyhU4PmQloEzwkUnc6mjKWaEfFex+JEzGV0BNG B1PjMdj6023qCWn7UD+jnd6jNSObEnhngehCgaKTWZD6D0juysCFHzx4lb51mQP9 7MTDgQJKC0jF+2c+95CDdO4BbgMTbJ2og8Wwknd8zft/OPjB7YucpKhjCoI= -----END CERTIFICATE-----Generated at Sat Apr 5 23:09:36 2025 by rpki-client