$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xIJ2cdJ-I_IaCoQK13pG1bWjUOk.roa File: xIJ2cdJ-I_IaCoQK13pG1bWjUOk.roa (raw, json) Hash identifier: IXLmLVYj7iibe0vXbkwqH/yR5DnoKpJ6JHRBQ0hSMMQ= Subject key identifier: C4:82:76:71:D2:7E:23:F2:1A:0A:84:0A:D7:7A:46:D5:B5:A3:50:E9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C85 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xIJ2cdJ-I_IaCoQK13pG1bWjUOk.roa Signing time: Tue 01 Apr 2025 02:03:17 +0000 ROA not before: Tue 01 Apr 2025 02:03:17 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3205 (0xc85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:17 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C4827671D27E23F21A0A840AD77A46D5B5A350E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4f:ef:50:cd:bb:c6:9e:b8:be:eb:cd:b5:40: 89:91:c9:2d:4d:d1:34:b6:6a:a1:da:e6:c1:5c:43: 86:2c:c0:df:5b:e9:6b:b1:27:b2:94:a4:ae:2c:5e: fc:fc:03:25:ad:1b:c5:f8:79:e7:2a:24:c7:b8:73: 67:02:b5:ec:1a:b5:2d:09:bc:ee:b0:90:a8:3a:6a: bb:3f:0f:d5:56:76:b5:38:e8:2e:73:68:8d:f9:a1: 6a:9e:9c:e0:41:81:97:09:19:e9:ed:ee:e1:01:b9: d1:89:90:52:54:95:b6:f9:e2:1e:e0:9b:55:48:73: e6:0f:6c:30:7e:9d:32:0d:88:66:7c:9d:e4:c0:fa: f3:b8:9c:ff:7d:a1:ee:78:fc:fd:f4:71:23:2d:dd: e7:b3:d3:c2:cc:90:42:03:84:d3:3d:d0:9f:8f:04: 73:87:9c:40:96:e9:fd:27:dd:38:75:97:bb:de:e5: 7e:b9:69:35:24:71:a0:31:71:6b:f2:39:0e:78:8e: b5:d4:6f:b9:7c:64:36:2f:ba:60:73:24:01:31:f7: 60:da:c6:92:7f:0e:31:89:dd:9d:40:ed:0d:84:92: 88:ea:9d:e9:be:87:d7:5a:9f:81:e3:4f:de:7e:13: dc:9b:f1:8d:d9:34:c1:c6:18:a7:43:46:2a:ae:f8: 2d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:82:76:71:D2:7E:23:F2:1A:0A:84:0A:D7:7A:46:D5:B5:A3:50:E9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xIJ2cdJ-I_IaCoQK13pG1bWjUOk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.208.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:3f:84:9a:f9:64:87:74:c9:c5:54:1b:dd:ad:61:b9:37:a9: fb:f5:e7:ad:a0:0e:fd:fb:b1:c9:73:19:41:fb:1d:ed:2a:7d: fd:ee:af:8d:e8:55:3e:67:17:e6:87:8e:e6:64:57:27:1d:ae: 5b:63:28:21:4a:2f:de:cd:6a:5d:2a:62:b6:cc:ec:da:f1:e9: cf:a0:6f:6e:66:06:f6:65:63:a7:1e:95:0c:8c:c8:12:a2:9c: 90:3f:32:dc:72:41:6f:f1:bc:8d:fe:1a:f0:57:11:0a:42:cf: 69:ee:8f:c1:17:6f:52:6f:f6:70:ad:0d:73:5d:57:12:7a:4f: 87:11:5e:8f:a1:4b:13:b6:11:6b:ef:5b:a6:25:62:6b:a3:ea: 79:5e:97:06:fd:b9:b0:f2:43:19:27:3f:ce:fc:6e:92:ec:bd: 2a:1c:ef:01:41:68:f5:4e:7a:c4:7d:fd:46:65:26:5a:c3:9c: 1f:57:eb:ee:56:ac:75:16:ae:7a:db:d3:cb:e1:63:d8:fd:d3: 9b:d0:c5:d9:61:76:96:ee:6c:7c:13:2d:c7:4f:b2:f9:c3:58: e7:31:11:c8:26:ef:a5:0a:3e:b3:a6:a7:f9:ae:0b:a8:09:5d: 23:c5:1f:b9:7f:ca:09:49:bc:ff:a1:94:4b:ba:45:db:3a:5a: 2c:6f:73:2b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMTdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM0ODI3NjcxRDI3RTIz RjIxQTBBODQwQUQ3N0E0NkQ1QjVBMzUwRTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQT+9QzbvGnri+6821QImRyS1N0TS2aqHa5sFcQ4YswN9b6Wux J7KUpK4sXvz8AyWtG8X4eecqJMe4c2cCtewatS0JvO6wkKg6ars/D9VWdrU46C5z aI35oWqenOBBgZcJGent7uEBudGJkFJUlbb54h7gm1VIc+YPbDB+nTINiGZ8neTA +vO4nP99oe54/P30cSMt3eez08LMkEIDhNM90J+PBHOHnECW6f0n3Th1l7ve5X65 aTUkcaAxcWvyOQ54jrXUb7l8ZDYvumBzJAEx92DaxpJ/DjGJ3Z1A7Q2Ekojqnem+ h9dan4HjT95+E9yb8Y3ZNMHGGKdDRiqu+C2xAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxIJ2cdJ+I/IaCoQK13pG1bWjUOkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3hJSjJjZEotSV9JYUNvUUsxM3BHMWJXalVPay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPcn9AwDQYJKoZIhvcNAQELBQADggEBAD8/hJr5ZId0ycVUG92tYbk3qfv1 562gDv37sclzGUH7He0qff3ur43oVT5nF+aHjuZkVycdrltjKCFKL97Nal0qYrbM 7Nrx6c+gb25mBvZlY6celQyMyBKinJA/MtxyQW/xvI3+GvBXEQpCz2nuj8EXb1Jv 9nCtDXNdVxJ6T4cRXo+hSxO2EWvvW6YlYmuj6nlelwb9ubDyQxknP878bpLsvSoc 7wFBaPVOesR9/UZlJlrDnB9X6+5WrHUWrnrb08vhY9j905vQxdlhdpbubHwTLcdP svnDWOcxEcgm76UKPrOmp/muC6gJXSPFH7l/yglJvP+hlEu6Rds6Wixvcys= -----END CERTIFICATE-----Generated at Sun Apr 6 15:25:07 2025 by rpki-client