$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ofOt7Z4dMDwA6-1dI0SmDGZyxAs.roa File: ofOt7Z4dMDwA6-1dI0SmDGZyxAs.roa (raw, json) Hash identifier: AyDdRxLOn5CR+m089af2iYaVI6E8P34NRRV7kqr6+cA= Subject key identifier: A1:F3:AD:ED:9E:1D:30:3C:00:EB:ED:5D:23:44:A6:0C:66:72:C4:0B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CE9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ofOt7Z4dMDwA6-1dI0SmDGZyxAs.roa Signing time: Tue 01 Apr 2025 02:09:22 +0000 ROA not before: Tue 01 Apr 2025 02:09:22 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.78.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3305 (0xce9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:09:22 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A1F3ADED9E1D303C00EBED5D2344A60C6672C40B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9e:bf:1f:e8:c9:13:57:42:42:8d:dc:1b:3e: 57:54:b4:02:1b:89:4d:e0:7c:31:57:fa:5d:56:e3: d9:5a:5e:bb:59:81:d9:3b:0a:72:e1:37:ae:91:9a: 1b:df:4a:9f:8e:0c:05:9b:88:3b:68:9a:1b:02:39: 45:cc:4e:54:85:28:bf:a8:14:a0:ba:82:fb:53:19: 12:96:d2:72:b5:2f:38:14:ca:01:13:11:37:96:9b: 79:4e:36:55:ec:ee:a7:14:3e:a7:89:4c:2c:05:64: 6c:0a:44:16:bd:30:82:fb:1d:95:f4:01:cc:5d:9f: a7:5e:65:e6:4e:77:09:8b:c0:48:0f:7e:2e:70:6b: c5:f2:7c:d3:b5:c8:46:57:fe:e7:cf:32:fe:9d:25: 3b:34:0b:57:4d:52:ab:78:d5:46:22:a0:0d:60:87: 27:ce:1a:9c:61:e4:ed:37:d5:0e:2a:f3:58:d2:e5: a0:0e:9f:16:7d:3d:61:e9:a9:ee:45:fc:fd:65:e6: e9:41:48:0d:3a:33:81:02:1b:a7:f7:4d:ae:77:51: d3:1d:bd:00:7e:a7:1d:a7:91:59:eb:d2:5c:be:d3: 04:7a:22:af:37:82:27:17:93:df:5a:29:80:85:0e: 2d:ad:ad:57:85:69:9d:25:77:8c:c1:20:5b:5b:75: d1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F3:AD:ED:9E:1D:30:3C:00:EB:ED:5D:23:44:A6:0C:66:72:C4:0B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ofOt7Z4dMDwA6-1dI0SmDGZyxAs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.28.0/23 Signature Algorithm: sha256WithRSAEncryption 86:16:61:3f:b5:ba:cf:40:4f:1a:fe:38:d8:58:49:67:eb:d6: 24:3b:2c:05:64:2e:f6:7b:1f:4e:e9:4c:e8:9f:c6:b5:a0:ee: 55:ed:1a:47:61:c0:cd:bd:46:7d:ac:e2:ff:68:1e:b6:b6:dd: eb:a0:aa:0c:85:c8:8c:50:db:bd:76:52:a5:5f:06:bc:54:2c: 52:77:ed:0c:ac:d7:54:52:8b:5f:b7:3d:10:c8:9f:e1:3a:e8: 5d:75:f2:81:a8:55:e3:a6:a7:3e:9b:14:53:94:43:b0:db:7a: 44:1f:ef:9b:d9:28:8f:69:11:fc:2e:1c:6b:a9:38:63:50:0b: bd:1b:8c:26:bd:fa:17:27:5d:8b:4b:33:10:93:86:1d:04:4d: d2:3c:49:b3:36:a4:62:13:2f:ce:14:7a:84:ce:70:fa:6f:09: 50:91:46:08:60:4b:c7:c5:60:d3:61:93:ef:21:7e:22:f2:9b: ac:74:b9:93:73:9e:a5:69:70:14:3c:a0:0b:0a:7d:f5:43:e0: 13:fb:d1:b5:c5:9b:6f:b6:19:12:1e:6c:e8:97:1b:9e:20:3b: 47:19:d2:a5:98:25:69:8c:3d:66:7c:d6:90:23:31:6e:ee:12: b6:73:49:33:cd:0a:a7:aa:f2:d7:26:9e:01:57:03:2b:1d:d1: d2:96:e1:1d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA5MjJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEExRjNBREVEOUUxRDMw M0MwMEVCRUQ1RDIzNDRBNjBDNjY3MkM0MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOnr8f6MkTV0JCjdwbPldUtAIbiU3gfDFX+l1W49laXrtZgdk7 CnLhN66RmhvfSp+ODAWbiDtomhsCOUXMTlSFKL+oFKC6gvtTGRKW0nK1LzgUygET ETeWm3lONlXs7qcUPqeJTCwFZGwKRBa9MIL7HZX0Acxdn6deZeZOdwmLwEgPfi5w a8XyfNO1yEZX/ufPMv6dJTs0C1dNUqt41UYioA1ghyfOGpxh5O031Q4q81jS5aAO nxZ9PWHpqe5F/P1l5ulBSA06M4ECG6f3Ta53UdMdvQB+px2nkVnr0ly+0wR6Iq83 gicXk99aKYCFDi2trVeFaZ0ld4zBIFtbddFtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUofOt7Z4dMDwA6+1dI0SmDGZyxAswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29mT3Q3WjRkTUR3QTYtMWRJMFNtREdaeXhBcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBThwwDQYJKoZIhvcNAQELBQADggEBAIYWYT+1us9ATxr+ONhYSWfr1iQ7 LAVkLvZ7H07pTOifxrWg7lXtGkdhwM29Rn2s4v9oHra23eugqgyFyIxQ2712UqVf BrxULFJ37Qys11RSi1+3PRDIn+E66F118oGoVeOmpz6bFFOUQ7DbekQf75vZKI9p EfwuHGupOGNQC70bjCa9+hcnXYtLMxCThh0ETdI8SbM2pGITL84UeoTOcPpvCVCR RghgS8fFYNNhk+8hfiLym6x0uZNznqVpcBQ8oAsKffVD4BP70bXFm2+2GRIebOiX G54gO0cZ0qWYJWmMPWZ81pAjMW7uErZzSTPNCqeq8tcmngFXAysd0dKW4R0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:22 2025 by rpki-client