$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tmW9LMVGV_eIZQaYFTC2k0_XQxk.roa File: tmW9LMVGV_eIZQaYFTC2k0_XQxk.roa (raw, json) Hash identifier: t8A/FpbGfx2vdkGL9q6Xzapr4Nktoxf9sidHlr0xNvA= Subject key identifier: B6:65:BD:2C:C5:46:57:F7:88:65:06:98:15:30:B6:93:4F:D7:43:19 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B52 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tmW9LMVGV_eIZQaYFTC2k0_XQxk.roa Signing time: Tue 01 Apr 2025 01:33:18 +0000 ROA not before: Tue 01 Apr 2025 01:33:18 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.78.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2898 (0xb52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:18 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B665BD2CC54657F7886506981530B6934FD74319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:d7:bc:69:f8:22:50:26:00:57:3a:9c:0d: 02:52:d2:fc:77:5c:e0:fc:ec:1a:da:26:5d:2a:8a: 9b:2e:cd:f9:81:82:c9:75:72:20:3d:1b:52:45:de: 50:76:5a:a6:fb:5f:0b:b1:6b:f0:56:76:8e:0d:1f: 45:85:03:4f:6a:a5:05:f5:ba:f4:4b:96:3e:ac:5c: 31:76:d3:16:10:b8:82:69:50:af:6c:8f:27:f3:d8: f1:5c:6e:13:82:42:1e:5c:dc:c2:a3:1a:eb:f8:28: 22:54:1c:02:4d:5a:81:3f:a8:41:2e:84:6e:6a:2f: 9d:db:45:f1:9c:5e:0a:a9:b8:be:e5:62:7c:6a:5b: 67:df:5b:e9:21:44:2d:f3:77:9a:cc:18:f2:e1:fa: 80:40:31:d4:06:d6:a2:57:5a:9f:90:78:ef:92:07: 40:b3:17:00:29:27:5c:63:36:20:83:6f:43:55:b2: ad:0d:52:83:86:23:6a:8c:a1:ac:1d:8f:08:2e:ef: f9:54:74:0b:fd:40:25:64:ad:ef:ee:af:b0:58:a2: 58:6d:ad:b3:69:35:24:b4:1f:77:79:36:c3:83:25: 22:dd:f0:57:3d:93:87:d4:86:be:52:7f:d6:ef:d1: df:6b:22:61:0b:32:de:2a:82:40:17:19:a5:e1:87: 7f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:65:BD:2C:C5:46:57:F7:88:65:06:98:15:30:B6:93:4F:D7:43:19 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tmW9LMVGV_eIZQaYFTC2k0_XQxk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.28.0/22 Signature Algorithm: sha256WithRSAEncryption 25:07:fb:55:3d:fb:38:22:87:0b:84:00:b7:ed:70:b6:75:73: 53:0f:d4:30:f8:b9:4d:6e:6b:d3:c4:24:26:f7:04:d7:14:e0: 68:7e:55:48:28:5a:34:38:f6:4e:1e:3c:ef:9f:ff:96:2a:09: 60:01:06:e5:55:81:8b:0a:55:18:2c:6e:00:b7:7a:e3:32:9d: a8:2a:67:91:06:33:e0:f5:9c:b4:e1:ff:c6:f4:c8:d7:b1:34: 54:56:18:50:53:6f:8e:45:2a:37:20:b4:f5:62:ed:2e:75:ee: 3c:f0:2b:b8:91:9f:0d:90:ee:21:d1:d0:f1:c8:17:25:df:0b: 87:82:68:8d:df:2d:5a:47:a0:0f:5e:45:fd:49:c5:57:74:a2: 4a:6e:9b:b8:d8:a1:3a:d5:4c:02:4f:85:77:f3:33:e1:d7:48: 50:89:7c:b4:d5:a2:73:93:1c:27:ee:80:d9:70:82:26:82:09: 0f:fc:17:6e:e8:f8:86:ef:c5:8f:4a:8d:3a:5d:dc:2f:b1:fd: 95:1d:49:de:6f:06:ca:71:ce:1a:99:e2:ef:f5:40:9e:03:20: 79:f6:75:9c:c0:a7:18:98:cb:9e:7e:72:80:5e:3c:67:5a:3c: 36:81:de:73:58:d0:6b:13:21:57:4f:51:28:78:92:5f:0e:87: b3:17:24:e0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC1IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMThaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI2NjVCRDJDQzU0NjU3 Rjc4ODY1MDY5ODE1MzBCNjkzNEZENzQzMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8ude8afgiUCYAVzqcDQJS0vx3XOD87BraJl0qipsuzfmBgsl1 ciA9G1JF3lB2Wqb7Xwuxa/BWdo4NH0WFA09qpQX1uvRLlj6sXDF20xYQuIJpUK9s jyfz2PFcbhOCQh5c3MKjGuv4KCJUHAJNWoE/qEEuhG5qL53bRfGcXgqpuL7lYnxq W2ffW+khRC3zd5rMGPLh+oBAMdQG1qJXWp+QeO+SB0CzFwApJ1xjNiCDb0NVsq0N UoOGI2qMoawdjwgu7/lUdAv9QCVkre/ur7BYolhtrbNpNSS0H3d5NsODJSLd8Fc9 k4fUhr5Sf9bv0d9rImELMt4qgkAXGaXhh3/rAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtmW9LMVGV/eIZQaYFTC2k0/XQxkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RtVzlMTVZHVl9lSVpRYVlGVEMyazBfWFF4ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBThwwDQYJKoZIhvcNAQELBQADggEBACUH+1U9+zgihwuEALftcLZ1c1MP 1DD4uU1ua9PEJCb3BNcU4Gh+VUgoWjQ49k4ePO+f/5YqCWABBuVVgYsKVRgsbgC3 euMynagqZ5EGM+D1nLTh/8b0yNexNFRWGFBTb45FKjcgtPVi7S517jzwK7iRnw2Q 7iHR0PHIFyXfC4eCaI3fLVpHoA9eRf1JxVd0okpum7jYoTrVTAJPhXfzM+HXSFCJ fLTVonOTHCfugNlwgiaCCQ/8F27o+IbvxY9KjTpd3C+x/ZUdSd5vBspxzhqZ4u/1 QJ4DIHn2dZzApxiYy55+coBePGdaPDaB3nNY0GsTIVdPUSh4kl8Oh7MXJOA= -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:37 2025 by rpki-client