$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tYC4sA9A74uvdQwM-Hc3zoKLb5o.roa File: tYC4sA9A74uvdQwM-Hc3zoKLb5o.roa (raw, json) Hash identifier: 6zRhdm/QysU/cIYXz0lRIZfNWqW0l3GlLGPh1zGhD5w= Subject key identifier: B5:80:B8:B0:0F:40:EF:8B:AF:75:0C:0C:F8:77:37:CE:82:8B:6F:9A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D8A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tYC4sA9A74uvdQwM-Hc3zoKLb5o.roa Signing time: Tue 01 Apr 2025 02:21:31 +0000 ROA not before: Tue 01 Apr 2025 02:21:31 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 27.230.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3466 (0xd8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:31 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B580B8B00F40EF8BAF750C0CF87737CE828B6F9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:75:46:53:68:e6:a9:ac:49:29:52:45:2f:fa: c4:e5:1f:54:f3:9c:03:3e:a7:9f:6d:4e:5d:79:c5: 32:6a:76:75:65:72:a7:f6:98:c5:bd:6f:d5:0e:a2: c1:22:5c:46:ca:bb:88:9e:5a:3a:bb:6b:8d:7f:60: 8e:22:b6:3b:79:f2:0f:c9:a1:d7:83:ce:8f:42:5c: 52:47:21:f4:b0:48:c3:0b:4a:3a:b4:dd:8d:c4:5b: 01:97:e0:3f:58:c1:5a:fa:dd:44:da:0b:5a:00:17: 79:3c:15:ef:4c:f9:6b:e5:ea:49:6f:7f:c3:60:12: 94:9e:68:df:68:c6:29:01:3d:4d:e8:34:18:4b:dc: 76:d6:23:de:fe:32:99:38:0c:f9:5d:e6:2e:c7:07: cd:30:1b:3f:38:36:8b:8c:96:12:d0:e4:57:bf:a5: 3f:ac:30:41:0b:b1:ca:a2:a8:d1:bb:71:ab:6e:b3: ca:21:ae:e8:c9:49:5a:f4:b0:19:d2:b5:8b:f1:8a: 9f:01:f9:8c:93:d1:98:8a:af:fd:d3:c5:b4:ea:5e: c5:cb:4d:98:46:24:7e:ba:06:17:b7:9c:a8:cb:a5: 7d:c6:ac:81:8b:df:ca:81:55:dc:22:d4:7d:c0:3e: a1:3b:bf:fb:55:f1:7b:4a:3e:ce:bd:e5:05:97:65: df:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:80:B8:B0:0F:40:EF:8B:AF:75:0C:0C:F8:77:37:CE:82:8B:6F:9A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tYC4sA9A74uvdQwM-Hc3zoKLb5o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.80.0/21 Signature Algorithm: sha256WithRSAEncryption 0c:9f:b6:28:51:2f:c4:71:4e:81:9b:30:0d:5f:55:5a:07:bf: c6:c9:a2:ad:15:24:ef:72:e2:e6:67:1f:67:09:49:08:95:0c: 17:c2:6f:3b:8b:60:f4:67:07:4d:ff:95:74:72:31:fd:e7:c1: 0e:92:98:e3:a4:9b:57:e2:c9:5b:2e:6c:7f:94:80:34:48:00: 7e:f8:d6:9a:30:60:66:35:8a:68:c1:0e:31:ec:37:9d:b4:d2: 35:0a:5b:63:bb:c7:32:d1:04:6f:1b:16:ef:5c:ca:37:28:0b: ed:58:e8:1c:d0:3d:ab:49:14:4b:79:4b:62:ac:7e:7b:d6:a1: 4d:01:3a:50:17:85:e3:c2:bb:06:d5:05:d3:d1:67:6a:4c:0d: af:c0:d1:30:29:d7:81:43:6e:14:db:42:31:4c:7a:76:18:35: 5b:a2:d4:24:dc:db:50:02:43:36:3e:20:c1:b3:a6:c3:72:5f: bf:11:36:6a:86:87:61:a3:b5:07:21:4b:61:94:a1:1a:84:3e: cd:1b:c2:8c:b6:fb:ba:bb:96:07:d0:a3:b0:f5:db:4d:ea:47: 23:98:0f:c0:84:d6:45:9a:f2:7f:d7:e2:a2:18:11:b7:29:8d: 5e:72:cf:37:71:15:ae:f0:1d:eb:54:8d:16:cf:15:75:f7:73: 26:5a:e5:82 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDYowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMzFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI1ODBCOEIwMEY0MEVG OEJBRjc1MEMwQ0Y4NzczN0NFODI4QjZGOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDldUZTaOaprEkpUkUv+sTlH1TznAM+p59tTl15xTJqdnVlcqf2 mMW9b9UOosEiXEbKu4ieWjq7a41/YI4itjt58g/JodeDzo9CXFJHIfSwSMMLSjq0 3Y3EWwGX4D9YwVr63UTaC1oAF3k8Fe9M+Wvl6klvf8NgEpSeaN9oxikBPU3oNBhL 3HbWI97+Mpk4DPld5i7HB80wGz84NouMlhLQ5Fe/pT+sMEELscqiqNG7catus8oh rujJSVr0sBnStYvxip8B+YyT0ZiKr/3TxbTqXsXLTZhGJH66Bhe3nKjLpX3GrIGL 38qBVdwi1H3APqE7v/tV8XtKPs695QWXZd9JAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtYC4sA9A74uvdQwM+Hc3zoKLb5owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RZQzRzQTlBNzR1dmRRd00tSGMzem9LTGI1by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMb5lAwDQYJKoZIhvcNAQELBQADggEBAAyftihRL8RxToGbMA1fVVoHv8bJ oq0VJO9y4uZnH2cJSQiVDBfCbzuLYPRnB03/lXRyMf3nwQ6SmOOkm1fiyVsubH+U gDRIAH741powYGY1imjBDjHsN5200jUKW2O7xzLRBG8bFu9cyjcoC+1Y6BzQPatJ FEt5S2KsfnvWoU0BOlAXhePCuwbVBdPRZ2pMDa/A0TAp14FDbhTbQjFMenYYNVui 1CTc21ACQzY+IMGzpsNyX78RNmqGh2GjtQchS2GUoRqEPs0bwoy2+7q7lgfQo7D1 203qRyOYD8CE1kWa8n/X4qIYEbcpjV5yzzdxFa7wHetUjRbPFXX3cyZa5YI= -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:10 2025 by rpki-client