$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/wW9XUa33ynJzeNCOzNyJfk4Eonk.roa File: wW9XUa33ynJzeNCOzNyJfk4Eonk.roa (raw, json) Hash identifier: KHbAd0uNzOjU8ixBf23qq9RnHGdy22p3spaggk1pwIw= Subject key identifier: C1:6F:57:51:AD:F7:CA:72:73:78:D0:8E:CC:DC:89:7E:4E:04:A2:79 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D92 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wW9XUa33ynJzeNCOzNyJfk4Eonk.roa Signing time: Tue 01 Apr 2025 02:21:35 +0000 ROA not before: Tue 01 Apr 2025 02:21:35 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.210.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3474 (0xd92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:35 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C16F5751ADF7CA727378D08ECCDC897E4E04A279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f0:27:ea:76:c8:e1:d1:7f:55:44:75:bb:ff: 31:f1:b2:db:75:73:4b:ca:c8:f6:3d:5e:db:0e:b2: ad:ef:cc:12:6d:c4:73:e7:9e:a7:75:78:38:11:81: 63:1d:23:98:f1:6d:09:56:54:90:e0:c7:55:b1:be: 9d:f9:2d:70:fc:1b:1b:a1:70:63:74:9f:86:0f:27: 15:bf:3f:3d:14:1e:e2:6b:30:b5:02:e2:d0:f6:84: c6:c0:ac:4e:68:12:71:c5:ce:8e:b2:e3:ca:aa:1f: cf:de:fc:af:cb:19:db:85:42:60:9e:df:5d:f0:f5: bb:38:2d:24:d9:37:1e:87:e8:a7:ec:eb:77:3f:64: 90:de:aa:ac:0d:64:7e:ae:00:76:83:82:60:65:0d: 58:74:c2:1a:69:02:1e:0f:d2:df:b1:5d:54:89:82: b6:5a:e6:51:61:d1:32:f5:ca:59:f8:17:3d:a0:74: 9d:32:c7:49:49:d8:e5:6c:4e:0f:bc:13:9b:f4:8f: 7a:d6:f3:91:ac:d2:fb:20:37:f9:ed:41:98:ef:8c: f1:48:b9:0f:c2:24:de:67:08:45:11:30:7d:3e:6b: ce:75:6c:37:86:cc:c7:d9:e4:bb:84:87:a6:75:af: 69:92:1d:e5:50:27:a8:8b:f6:0c:40:51:e5:41:a7: ba:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6F:57:51:AD:F7:CA:72:73:78:D0:8E:CC:DC:89:7E:4E:04:A2:79 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/wW9XUa33ynJzeNCOzNyJfk4Eonk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.25.0/24 Signature Algorithm: sha256WithRSAEncryption b6:9f:af:ad:d3:91:84:eb:ec:fc:a9:b5:f8:74:41:d8:f0:4f: 6f:c9:85:41:ca:6f:a6:ab:af:ad:a3:e0:13:63:da:11:ba:bf: 2a:da:da:d8:25:8d:b4:2e:15:03:92:c5:2e:d3:7f:87:cb:54: 84:a4:4c:48:9e:bf:cd:b7:ae:88:17:a4:92:71:07:2c:2c:7e: ee:77:43:50:a0:9a:a0:6d:9f:4f:1c:74:d9:3d:3c:6c:1f:6a: 9a:b8:95:19:a4:c2:75:7a:58:90:ed:3e:1c:b0:94:ac:e1:93: 1c:87:fe:71:a7:d6:4b:db:7a:0c:cc:35:0b:5f:02:3a:0e:89: 03:ed:15:2e:87:72:0e:6a:64:b6:e1:66:b5:e5:00:76:8c:a8: 97:de:58:77:38:20:02:59:fe:02:eb:6b:26:d4:cd:e6:2a:f1: 9c:e7:6e:99:4a:6f:21:97:0a:73:90:01:07:90:79:c7:ab:f6: be:67:28:44:aa:a6:ae:26:a4:09:24:c9:ef:24:a9:e7:aa:04: 24:0d:39:78:4e:c7:0b:bb:e0:b2:d4:ff:25:a7:4e:16:aa:42: 69:f6:b7:0c:21:d6:40:8c:01:eb:d4:99:53:e5:6d:d9:47:5f: ae:a4:16:4b:ee:b9:16:f4:07:4c:51:92:79:56:4c:81:a3:a1: 6a:1e:24:5b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMzVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEMxNkY1NzUxQURGN0NB NzI3Mzc4RDA4RUNDREM4OTdFNEUwNEEyNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC68Cfqdsjh0X9VRHW7/zHxstt1c0vKyPY9XtsOsq3vzBJtxHPn nqd1eDgRgWMdI5jxbQlWVJDgx1Wxvp35LXD8GxuhcGN0n4YPJxW/Pz0UHuJrMLUC 4tD2hMbArE5oEnHFzo6y48qqH8/e/K/LGduFQmCe313w9bs4LSTZNx6H6Kfs63c/ ZJDeqqwNZH6uAHaDgmBlDVh0whppAh4P0t+xXVSJgrZa5lFh0TL1yln4Fz2gdJ0y x0lJ2OVsTg+8E5v0j3rW85Gs0vsgN/ntQZjvjPFIuQ/CJN5nCEURMH0+a851bDeG zMfZ5LuEh6Z1r2mSHeVQJ6iL9gxAUeVBp7r5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwW9XUa33ynJzeNCOzNyJfk4EonkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3dXOVhVYTMzeW5KemVOQ096TnlKZms0RW9uay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADc0hkwDQYJKoZIhvcNAQELBQADggEBALafr63TkYTr7Pyptfh0QdjwT2/J hUHKb6arr62j4BNj2hG6vyra2tgljbQuFQOSxS7Tf4fLVISkTEiev823rogXpJJx Bywsfu53Q1CgmqBtn08cdNk9PGwfapq4lRmkwnV6WJDtPhywlKzhkxyH/nGn1kvb egzMNQtfAjoOiQPtFS6Hcg5qZLbhZrXlAHaMqJfeWHc4IAJZ/gLraybUzeYq8Zzn bplKbyGXCnOQAQeQecer9r5nKESqpq4mpAkkye8kqeeqBCQNOXhOxwu74LLU/yWn ThaqQmn2twwh1kCMAevUmVPlbdlHX66kFkvuuRb0B0xRknlWTIGjoWoeJFs= -----END CERTIFICATE-----Generated at Sat Apr 5 17:31:02 2025 by rpki-client