$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sJJl3q71SiwXOApihavmC6PMhoU.roa File: sJJl3q71SiwXOApihavmC6PMhoU.roa (raw, json) Hash identifier: 4r8m2qXL58MzctK+OMaZbsmQcI7/UHyFYlA9kU8F8c8= Subject key identifier: B0:92:65:DE:AE:F5:4A:2C:17:38:0A:62:85:AB:E6:0B:A3:CC:86:85 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CA3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sJJl3q71SiwXOApihavmC6PMhoU.roa Signing time: Tue 01 Apr 2025 02:03:30 +0000 ROA not before: Tue 01 Apr 2025 02:03:30 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:30 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B09265DEAEF54A2C17380A6285ABE60BA3CC8685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d9:96:eb:01:93:e6:5f:64:37:bd:d1:1d:28: ff:72:e9:db:15:2d:e6:e3:79:8e:f3:05:24:06:96: b8:b0:ab:81:0c:52:87:40:e2:e2:cb:aa:aa:3c:ab: ac:7b:5f:2b:7d:a3:3b:4e:fe:d4:3b:f1:ab:f7:b4: 86:7f:fe:97:ba:1b:83:d3:9f:18:28:ce:49:3e:f1: 44:99:66:03:fb:3f:ed:f1:d4:04:d8:de:0d:de:61: 2e:4d:b3:f2:9b:8b:7e:be:ef:17:50:76:30:5d:24: 39:e3:70:4a:88:a0:3e:3c:21:82:12:e8:02:8e:11: 51:78:b0:e7:8c:fa:a7:dd:9f:cd:ec:d2:52:4e:e1: 24:05:b0:e0:a1:05:67:aa:00:67:cc:ea:33:29:a6: 1b:81:f1:c8:8e:ba:86:2f:42:8e:9e:d4:04:48:e4: 0a:26:ce:f6:a6:86:ab:71:5f:c5:1b:e2:e4:9b:69: 64:de:db:c7:ff:c0:3c:cb:f2:fc:a0:8a:2d:32:27: 1c:2c:ab:94:b8:14:0c:f5:0f:9e:23:dd:e6:62:7e: b0:cc:20:9d:7e:c4:c6:cc:3e:29:9d:9b:62:5d:5f: 2e:28:5b:e1:5c:cc:b5:f6:a2:d0:e9:42:51:92:59: 8d:12:ce:e8:f7:46:64:09:ea:71:66:f1:22:f8:d3: de:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:92:65:DE:AE:F5:4A:2C:17:38:0A:62:85:AB:E6:0B:A3:CC:86:85 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sJJl3q71SiwXOApihavmC6PMhoU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.78.0/23 Signature Algorithm: sha256WithRSAEncryption d9:61:a4:9a:87:dd:dc:ca:86:96:46:2b:d8:95:98:f6:b5:4b: 2e:21:75:59:ad:50:fc:97:b7:df:43:43:32:7a:4b:a6:9d:ab: e8:db:05:02:06:b5:7d:b8:85:f2:42:03:4f:41:b7:b3:95:c2: 1a:9d:3f:df:cb:7a:6b:2e:14:9e:9d:04:ad:1d:e4:e7:86:ed: 76:49:d0:32:23:ee:97:21:ad:d5:54:d8:0c:38:ee:8c:2d:f1: 09:b1:d5:45:d3:9b:f7:a6:57:9d:0b:68:db:d1:ca:5d:39:de: 80:c9:09:01:ff:8d:08:3d:02:8a:86:0e:ec:2f:6e:62:59:49: 69:44:e7:04:f1:8d:63:04:13:09:26:8e:53:1d:dd:26:58:9a: 0e:a4:68:a4:07:a6:2a:a2:a3:85:60:88:78:a7:ce:9b:40:db: 31:ee:a9:0d:79:df:4a:9d:59:82:87:aa:19:95:e1:82:5f:20: 38:ad:38:5a:93:a2:19:ca:db:a1:63:2d:ee:1d:37:2d:75:4f: 47:73:dd:79:28:2d:7d:36:02:13:30:ff:e7:21:5c:8d:26:07: a9:81:32:f0:93:9d:1f:9c:3a:d0:9c:37:14:9b:a4:29:35:3c: 24:f0:da:84:c8:0a:98:5c:cd:69:64:4b:56:1e:1e:bb:e7:bb: 51:9a:af:a2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMzBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIwOTI2NURFQUVGNTRB MkMxNzM4MEE2Mjg1QUJFNjBCQTNDQzg2ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL2ZbrAZPmX2Q3vdEdKP9y6dsVLebjeY7zBSQGlriwq4EMUodA 4uLLqqo8q6x7Xyt9oztO/tQ78av3tIZ//pe6G4PTnxgozkk+8USZZgP7P+3x1ATY 3g3eYS5Ns/Kbi36+7xdQdjBdJDnjcEqIoD48IYIS6AKOEVF4sOeM+qfdn83s0lJO 4SQFsOChBWeqAGfM6jMpphuB8ciOuoYvQo6e1ARI5AomzvamhqtxX8Ub4uSbaWTe 28f/wDzL8vygii0yJxwsq5S4FAz1D54j3eZifrDMIJ1+xMbMPimdm2JdXy4oW+Fc zLX2otDpQlGSWY0Szuj3RmQJ6nFm8SL40947AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsJJl3q71SiwXOApihavmC6PMhoUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NKSmwzcTcxU2l3WE9BcGloYXZtQzZQTWhvVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT04wDQYJKoZIhvcNAQELBQADggEBANlhpJqH3dzKhpZGK9iVmPa1Sy4h dVmtUPyXt99DQzJ6S6adq+jbBQIGtX24hfJCA09Bt7OVwhqdP9/LemsuFJ6dBK0d 5OeG7XZJ0DIj7pchrdVU2Aw47owt8Qmx1UXTm/emV50LaNvRyl053oDJCQH/jQg9 AoqGDuwvbmJZSWlE5wTxjWMEEwkmjlMd3SZYmg6kaKQHpiqio4VgiHinzptA2zHu qQ1530qdWYKHqhmV4YJfIDitOFqTohnK26FjLe4dNy11T0dz3XkoLX02AhMw/+ch XI0mB6mBMvCTnR+cOtCcNxSbpCk1PCTw2oTICphczWlkS1YeHrvnu1Gar6I= -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:40 2025 by rpki-client