$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/pJHzYqTfjTVngIZ-VLFJLOHa_WY.roa File: pJHzYqTfjTVngIZ-VLFJLOHa_WY.roa (raw, json) Hash identifier: 4HPr6IzQirsBOivEHKTbjRiQrv2i7eOSqJq2QOd9cac= Subject key identifier: A4:91:F3:62:A4:DF:8D:35:67:80:86:7E:54:B1:49:2C:E1:DA:FD:66 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B54 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pJHzYqTfjTVngIZ-VLFJLOHa_WY.roa Signing time: Tue 01 Apr 2025 01:33:19 +0000 ROA not before: Tue 01 Apr 2025 01:33:19 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2900 (0xb54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:19 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A491F362A4DF8D356780867E54B1492CE1DAFD66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:01:65:8d:60:88:18:59:9a:3e:17:c5:93:25: 7c:4e:32:b2:67:82:54:a8:59:1f:e3:fd:70:72:d7: fe:fb:64:01:17:74:1f:c6:d9:dc:c6:57:c5:fa:5c: 9c:fa:f1:ea:1c:06:e1:9d:93:cd:a2:99:eb:54:0f: 77:32:88:60:4c:40:c1:aa:42:a3:88:5e:d7:fc:30: 7a:87:77:c6:47:dd:69:11:26:35:ac:99:f9:4d:1f: e5:ec:1f:e1:b3:10:c1:de:b9:5c:fe:fa:93:bf:6d: 23:75:ab:85:5b:25:fa:c3:85:da:35:b9:0b:ca:ab: 30:ed:3f:86:5e:81:ac:b0:f9:78:3b:d6:03:84:45: 9c:6d:9f:50:4c:78:75:23:83:d7:da:32:25:8d:7f: a6:ab:ee:cb:c7:85:82:ee:6b:ef:1c:46:4d:6a:22: 63:ed:ad:de:a7:d6:00:86:fc:18:82:87:1d:3a:97: 02:a9:9b:5f:e6:16:3b:d5:58:38:0a:bc:34:03:0b: 49:95:d5:fb:03:c6:ae:37:fa:ee:2b:76:18:5c:93: e6:47:be:0e:d7:79:be:b3:56:4d:77:dc:a4:25:ed: dc:98:8d:f5:2f:b6:26:9a:6f:b7:e6:f9:08:ef:d3: db:66:a0:ff:31:8c:49:03:73:2d:d9:33:9c:b2:c7: f3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:91:F3:62:A4:DF:8D:35:67:80:86:7E:54:B1:49:2C:E1:DA:FD:66 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pJHzYqTfjTVngIZ-VLFJLOHa_WY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.236.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:ee:36:ce:a6:3b:62:d8:b6:c0:ba:85:4d:4d:ff:e8:50:cb: 57:dc:ac:7c:67:6e:8e:45:ce:57:1c:e0:00:21:6b:91:d7:e8: 6d:23:51:34:dd:0b:d1:18:49:4b:ca:c8:fc:66:dc:2b:ab:62: 66:31:68:a2:68:47:b3:b7:ac:ea:bd:f0:e2:31:71:b5:58:8b: 2f:1f:89:c2:f2:87:77:55:d5:c8:27:16:b9:fc:6b:27:84:50: 1c:f7:a0:0f:f4:a7:a9:b9:90:a6:b8:d3:d7:8f:2c:3c:27:34: 66:ef:84:07:1c:1c:fa:fe:45:77:c8:54:61:66:df:1c:4f:20: 4f:b2:ad:42:d9:c1:fc:e2:fa:a7:f8:f8:b2:1a:bb:c4:7a:a5: 2d:68:e2:f1:a6:98:7d:37:05:0c:40:31:28:c9:bf:1e:b4:a3: 55:52:5a:cb:27:fb:fd:ef:e7:19:14:88:56:9a:3f:68:5a:05: 6f:93:f8:9b:13:82:11:52:50:08:f4:c5:07:9c:32:28:d4:70: 06:48:a4:7e:3f:da:ca:65:3c:03:79:38:bf:c0:33:03:59:23: cd:ab:27:b2:a2:c7:28:4b:a3:df:c7:7c:a3:6d:34:bb:57:47: a2:b5:5b:45:e9:54:35:cb:bb:1c:97:c8:92:c4:49:4c:1d:27: 7f:b1:09:59 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC1QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMTlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE0OTFGMzYyQTRERjhE MzU2NzgwODY3RTU0QjE0OTJDRTFEQUZENjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAAWWNYIgYWZo+F8WTJXxOMrJnglSoWR/j/XBy1/77ZAEXdB/G 2dzGV8X6XJz68eocBuGdk82imetUD3cyiGBMQMGqQqOIXtf8MHqHd8ZH3WkRJjWs mflNH+XsH+GzEMHeuVz++pO/bSN1q4VbJfrDhdo1uQvKqzDtP4Zegayw+Xg71gOE RZxtn1BMeHUjg9faMiWNf6ar7svHhYLua+8cRk1qImPtrd6n1gCG/BiChx06lwKp m1/mFjvVWDgKvDQDC0mV1fsDxq43+u4rdhhck+ZHvg7Xeb6zVk133KQl7dyYjfUv tiaab7fm+Qjv09tmoP8xjEkDcy3ZM5yyx/N1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUpJHzYqTfjTVngIZ+VLFJLOHa/WYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3BKSHpZcVRmalRWbmdJWi1WTEZKTE9IYV9XWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABS+wwDQYJKoZIhvcNAQELBQADggEBAE3uNs6mO2LYtsC6hU1N/+hQy1fc rHxnbo5Fzlcc4AAha5HX6G0jUTTdC9EYSUvKyPxm3CurYmYxaKJoR7O3rOq98OIx cbVYiy8ficLyh3dV1cgnFrn8ayeEUBz3oA/0p6m5kKa409ePLDwnNGbvhAccHPr+ RXfIVGFm3xxPIE+yrULZwfzi+qf4+LIau8R6pS1o4vGmmH03BQxAMSjJvx60o1VS Wssn+/3v5xkUiFaaP2haBW+T+JsTghFSUAj0xQecMijUcAZIpH4/2splPAN5OL/A MwNZI82rJ7KixyhLo9/HfKNtNLtXR6K1W0XpVDXLuxyXyJLESUwdJ3+xCVk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:14 2025 by rpki-client