$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oUFJi_IX3FJJwxwZZvANiUBJt8I.roa File: oUFJi_IX3FJJwxwZZvANiUBJt8I.roa (raw, json) Hash identifier: iWQl3ETjtPS+foZZteRn5kGdUL8Zs4Uw6V3S9JO2KOY= Subject key identifier: A1:41:49:8B:F2:17:DC:52:49:C3:1C:19:66:F0:0D:89:40:49:B7:C2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BDD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oUFJi_IX3FJJwxwZZvANiUBJt8I.roa Signing time: Tue 01 Apr 2025 01:47:38 +0000 ROA not before: Tue 01 Apr 2025 01:47:38 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 110.161.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3037 (0xbdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:38 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A141498BF217DC5249C31C1966F00D894049B7C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:36:bb:58:50:10:1c:2f:ca:72:f7:82:8d:e9: 5d:b4:30:84:12:f7:fa:d5:b4:a9:3c:eb:9b:15:23: 9c:e6:d6:72:c8:7d:2a:42:a1:85:08:65:15:fc:49: 77:07:7f:a9:a2:0d:3b:4f:fe:14:1d:79:05:ef:c3: 0b:22:c9:1a:e4:06:54:a1:35:c8:f9:ea:af:b3:55: 4e:ec:e3:89:7e:69:64:01:6c:16:cb:cd:56:fc:9c: 83:19:01:d3:5a:0b:66:0e:75:97:2e:71:5e:b6:b5: 52:08:ea:a2:ae:ab:42:30:9c:2c:51:1c:55:dc:75: 89:e3:2f:24:72:b8:6f:2c:b0:93:c7:8b:5b:fe:98: e7:a4:aa:c8:ac:37:5f:6e:2d:ae:8d:62:16:3d:7c: 06:f8:f5:15:a6:e6:96:ae:21:31:08:01:6d:b6:31: ee:80:e7:f4:e6:e0:71:f3:29:9f:57:5a:a9:da:cb: 12:36:8d:d2:21:57:1a:cb:30:d3:79:8e:8d:3f:4b: 9d:fe:75:14:8d:41:41:f6:4e:ec:dd:c7:de:f5:25: 0c:73:2c:de:6b:8b:85:a9:06:0e:36:ad:9b:58:b2: ff:91:7b:03:e7:45:d2:1e:dc:40:b2:a3:41:44:3b: 6c:e8:65:d2:d3:e7:02:b5:f3:3b:32:65:71:5a:2c: ae:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:41:49:8B:F2:17:DC:52:49:C3:1C:19:66:F0:0D:89:40:49:B7:C2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oUFJi_IX3FJJwxwZZvANiUBJt8I.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.161.0.0/17 Signature Algorithm: sha256WithRSAEncryption 61:32:c0:f7:81:0a:7b:16:e4:60:94:8a:6b:40:f4:00:34:4c: 0d:f0:cd:03:95:ce:a8:80:fd:3a:fc:85:d7:01:ca:fa:61:fa: 52:65:61:ca:0a:b8:1f:f1:b6:0d:17:97:c8:99:bf:30:9b:fb: c7:e8:ea:f6:9c:7a:62:4a:4e:65:26:c7:9b:d6:cf:1f:0a:55: de:ab:8e:f9:78:d0:e7:0c:f9:43:44:4e:24:f4:f7:26:f9:a9: b9:e5:27:d6:5a:da:67:22:29:ea:27:b1:80:91:32:1d:a5:36: 9a:18:1d:25:b3:c4:db:d3:ab:96:d6:a0:3f:db:ce:a5:bd:4e: 01:ae:40:3f:08:05:ee:cb:de:f4:b8:37:84:a6:15:e0:5d:51: a2:6f:83:53:c6:42:2a:bd:b7:07:e9:61:53:17:c1:a4:09:4b: c9:68:41:0d:04:06:cf:f0:05:8a:34:26:09:c6:1d:9a:bc:3b: 6a:ad:97:34:53:c1:3e:15:dd:6a:6a:26:dd:92:84:12:74:6a: f4:d5:9d:63:d3:f0:27:60:1e:6c:d9:a2:15:51:47:16:5a:9a: 8a:71:2c:cc:7d:f3:bb:06:88:6d:2a:25:24:6b:5e:63:8b:b6: e7:ba:84:8f:5f:7d:83:17:c2:9a:bb:14:b9:72:28:29:36:e0: b1:d1:4c:6e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC90wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3MzhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEExNDE0OThCRjIxN0RD NTI0OUMzMUMxOTY2RjAwRDg5NDA0OUI3QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdNrtYUBAcL8py94KN6V20MIQS9/rVtKk865sVI5zm1nLIfSpC oYUIZRX8SXcHf6miDTtP/hQdeQXvwwsiyRrkBlShNcj56q+zVU7s44l+aWQBbBbL zVb8nIMZAdNaC2YOdZcucV62tVII6qKuq0IwnCxRHFXcdYnjLyRyuG8ssJPHi1v+ mOekqsisN19uLa6NYhY9fAb49RWm5pauITEIAW22Me6A5/Tm4HHzKZ9XWqnayxI2 jdIhVxrLMNN5jo0/S53+dRSNQUH2Tuzdx971JQxzLN5ri4WpBg42rZtYsv+RewPn RdIe3ECyo0FEO2zoZdLT5wK18zsyZXFaLK7rAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoUFJi/IX3FJJwxwZZvANiUBJt8IwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29VRkppX0lYM0ZKSnd4d1padkFOaVVCSnQ4SS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAduoQAwDQYJKoZIhvcNAQELBQADggEBAGEywPeBCnsW5GCUimtA9AA0TA3w zQOVzqiA/Tr8hdcByvph+lJlYcoKuB/xtg0Xl8iZvzCb+8fo6vacemJKTmUmx5vW zx8KVd6rjvl40OcM+UNETiT09yb5qbnlJ9Za2mciKeonsYCRMh2lNpoYHSWzxNvT q5bWoD/bzqW9TgGuQD8IBe7L3vS4N4SmFeBdUaJvg1PGQiq9twfpYVMXwaQJS8lo QQ0EBs/wBYo0JgnGHZq8O2qtlzRTwT4V3WpqJt2ShBJ0avTVnWPT8CdgHmzZohVR RxZamopxLMx987sGiG0qJSRrXmOLtue6hI9ffYMXwpq7FLlyKCk24LHRTG4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:35 2025 by rpki-client