$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sUNChZnxJmAVRceoACkJNjix8NM.roa File: sUNChZnxJmAVRceoACkJNjix8NM.roa (raw, json) Hash identifier: 5/nYAZ+0+ytZOYkkCRmfT3SHtdDiQQhrbVMXP+IJBCg= Subject key identifier: B1:43:42:85:99:F1:26:60:15:45:C7:A8:00:29:09:36:38:B1:F0:D3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C64 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sUNChZnxJmAVRceoACkJNjix8NM.roa Signing time: Tue 01 Apr 2025 02:00:28 +0000 ROA not before: Tue 01 Apr 2025 02:00:28 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3172 (0xc64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:00:28 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B143428599F126601545C7A80029093638B1F0D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:78:4a:46:9c:35:a1:f9:14:3a:7f:f1:73:95: 51:4c:f6:03:2a:40:96:82:d6:c2:36:24:95:13:1f: c5:f1:2a:b3:a9:7d:7a:27:b0:9f:76:ea:06:98:34: b2:47:d2:77:88:06:bf:9d:67:aa:ea:86:fd:0f:4b: 4d:52:78:f9:36:ce:cb:77:5f:c0:5d:ac:3a:bf:86: dc:9d:61:7c:f3:55:24:9b:b0:5a:47:a5:16:80:ba: 0e:cb:f0:af:ef:c9:4b:eb:1d:45:25:6d:f1:2e:46: 15:0e:a4:59:d4:92:62:7c:b1:c6:16:2a:cd:ec:33: dd:84:f2:ca:d7:67:39:73:71:e1:1f:be:78:ae:d0: 82:33:db:00:8c:02:ca:cd:fe:d6:2e:12:19:b2:5b: a9:38:f6:d7:78:d8:20:58:f7:c5:56:63:eb:ed:30: b5:97:29:56:c5:7b:17:09:89:1c:0c:5e:30:aa:11: ef:19:66:13:ae:f9:f5:19:e6:69:e2:3c:dd:ae:00: 87:4f:d3:fe:40:65:8b:f0:ef:df:6d:75:ab:96:01: 83:2e:19:7e:8c:22:b6:1f:ac:f9:e2:71:38:d2:e1: 09:66:2f:92:2b:a8:c8:01:40:79:3d:9c:b4:57:af: 66:16:f8:b2:09:fb:56:5b:2a:5a:f0:7d:df:ba:75: 4e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:43:42:85:99:F1:26:60:15:45:C7:A8:00:29:09:36:38:B1:F0:D3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sUNChZnxJmAVRceoACkJNjix8NM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.36.0/23 Signature Algorithm: sha256WithRSAEncryption 97:11:d6:b0:3a:92:4d:28:e8:a0:e9:0a:0b:28:60:e9:59:da: 22:86:38:7c:fe:43:b5:8d:43:84:e9:26:5f:93:cb:52:5e:30: 0f:ea:cc:5c:16:81:53:e1:ff:c0:60:4c:6e:a6:7d:63:d4:59: a3:56:f5:e6:01:9b:f8:7d:36:b3:13:d6:f3:3d:16:d0:0b:f9: 61:3f:3b:ba:d8:a7:92:62:5a:65:dc:ee:71:6b:8f:ea:57:67: 10:ad:eb:b3:e6:fd:9a:ea:66:b6:04:51:6d:86:0c:22:d5:9b: a3:e7:33:cc:f3:ec:12:9b:6e:6f:82:13:21:e7:a0:97:c4:49: a1:eb:bd:fe:d8:20:dd:bd:5b:51:84:89:f8:bf:dd:0c:9b:50: e3:07:41:11:09:86:e0:3f:d1:8b:d2:28:e5:24:fe:ef:88:4e: 93:dd:49:f8:8b:1d:a8:db:e9:7a:fa:dd:0e:62:f1:62:41:aa: af:cd:5e:52:98:08:53:da:55:c8:90:ea:a6:64:bb:1e:25:7e: 7e:ce:8d:4a:10:af:91:db:34:33:a6:a9:3c:03:46:33:5a:ff: 6e:80:5e:8f:6f:ad:a2:6f:de:c5:2a:2c:1d:70:f4:81:7d:3d: d3:3b:08:e5:0b:63:c5:75:7d:0d:ff:fa:a8:1d:d2:7d:99:00: c4:a3:84:84 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDGQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAwMjhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIxNDM0Mjg1OTlGMTI2 NjAxNTQ1QzdBODAwMjkwOTM2MzhCMUYwRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDreEpGnDWh+RQ6f/FzlVFM9gMqQJaC1sI2JJUTH8XxKrOpfXon sJ926gaYNLJH0neIBr+dZ6rqhv0PS01SePk2zst3X8BdrDq/htydYXzzVSSbsFpH pRaAug7L8K/vyUvrHUUlbfEuRhUOpFnUkmJ8scYWKs3sM92E8srXZzlzceEfvniu 0IIz2wCMAsrN/tYuEhmyW6k49td42CBY98VWY+vtMLWXKVbFexcJiRwMXjCqEe8Z ZhOu+fUZ5mniPN2uAIdP0/5AZYvw799tdauWAYMuGX6MIrYfrPnicTjS4QlmL5Ir qMgBQHk9nLRXr2YW+LIJ+1ZbKlrwfd+6dU6JAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsUNChZnxJmAVRceoACkJNjix8NMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NVTkNoWm54Sm1BVlJjZW9BQ2tKTmppeDhOTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTyQwDQYJKoZIhvcNAQELBQADggEBAJcR1rA6kk0o6KDpCgsoYOlZ2iKG OHz+Q7WNQ4TpJl+Ty1JeMA/qzFwWgVPh/8BgTG6mfWPUWaNW9eYBm/h9NrMT1vM9 FtAL+WE/O7rYp5JiWmXc7nFrj+pXZxCt67Pm/ZrqZrYEUW2GDCLVm6PnM8zz7BKb bm+CEyHnoJfESaHrvf7YIN29W1GEifi/3QybUOMHQREJhuA/0YvSKOUk/u+ITpPd SfiLHajb6Xr63Q5i8WJBqq/NXlKYCFPaVciQ6qZkux4lfn7OjUoQr5HbNDOmqTwD RjNa/26AXo9vraJv3sUqLB1w9IF9PdM7COULY8V1fQ3/+qgd0n2ZAMSjhIQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:28:01 2025 by rpki-client