$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/z0N-VK9WVxgTQMmjDHFsCDMStxw.roa File: z0N-VK9WVxgTQMmjDHFsCDMStxw.roa (raw, json) Hash identifier: 1YirIo2wdmd6DdKotIktmBdWDmvE/TMZYGh8mb9iIOw= Subject key identifier: CF:43:7E:54:AF:56:57:18:13:40:C9:A3:0C:71:6C:08:33:12:B7:1C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BB0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/z0N-VK9WVxgTQMmjDHFsCDMStxw.roa Signing time: Tue 01 Apr 2025 01:43:36 +0000 ROA not before: Tue 01 Apr 2025 01:43:36 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2992 (0xbb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:36 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CF437E54AF5657181340C9A30C716C083312B71C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:44:d0:af:ba:a3:04:72:fc:64:d0:40:79:d3: d6:28:e6:9a:42:08:a7:68:31:e9:eb:9c:a4:5e:2b: e7:cf:12:7c:b0:3e:45:1e:ec:b4:31:67:05:3d:25: 05:c4:39:f9:8e:12:24:3a:63:a9:b2:f4:62:d8:ed: e2:3a:e2:39:69:f6:f5:35:50:9f:17:98:a1:8a:ae: 65:a4:5c:2c:68:4b:d7:38:b7:b2:c4:c6:7b:9f:50: 31:7b:33:17:d1:c1:36:c1:f6:6a:31:43:dd:1f:97: 91:cd:33:dd:70:3a:f6:d0:9a:06:bb:0e:80:ef:46: 0c:c5:26:fc:cc:56:99:24:79:17:22:ec:99:14:34: 19:04:c0:5b:01:22:71:c5:b5:83:66:2b:08:d2:e5: 29:b8:e0:3a:07:87:a6:03:a5:49:62:27:d7:2d:60: e0:78:d9:17:a4:79:bb:f5:a5:51:c8:01:bd:c6:fc: f6:b2:4f:0a:7d:ec:1c:39:3a:07:cd:39:79:43:ba: 66:b5:87:c0:d6:ab:a3:ee:48:1b:fe:e5:1e:c0:39: fd:ad:7c:68:c0:9e:f2:9f:a4:74:52:24:38:63:83: 70:a6:2d:36:9f:0f:c1:12:13:2c:3b:da:2f:21:af: 1b:a5:a0:c5:e2:3c:aa:63:2a:00:3a:af:4c:2c:5c: af:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:43:7E:54:AF:56:57:18:13:40:C9:A3:0C:71:6C:08:33:12:B7:1C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/z0N-VK9WVxgTQMmjDHFsCDMStxw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.208.0/22 Signature Algorithm: sha256WithRSAEncryption 17:f1:35:02:4e:4e:d3:2d:bd:64:df:d7:62:b3:4d:f2:6d:5a: 32:2f:61:ed:c9:42:50:05:2e:87:63:20:4a:27:42:d5:b5:30: 44:b0:eb:bb:33:7c:34:b9:6c:30:f9:99:52:0c:84:79:eb:81: 2e:e0:c8:5e:2c:6f:3f:df:e7:54:5d:c8:0a:9f:6d:e9:b3:6c: 48:e9:42:62:6c:e8:9f:8e:7e:29:d1:38:1e:26:de:78:85:c5: c9:05:e5:dc:04:51:7d:66:d3:92:21:86:a7:28:db:f3:86:6e: 8c:13:ac:69:db:f6:f0:99:d0:b5:1a:1e:6c:a8:07:3e:06:21: d0:da:90:b5:2f:e0:25:2b:c2:5e:62:91:58:77:b0:9e:e6:ff: 12:21:f6:ab:be:dc:c0:0b:9e:e5:fa:ea:89:c9:66:31:94:35: d7:9d:82:da:3d:81:7d:c5:e9:de:60:8c:4b:85:e5:4c:17:4c: d9:63:79:b1:63:db:e3:26:b5:37:08:b5:05:b8:db:43:df:1b: af:06:82:e9:59:d6:e6:07:4b:d6:fa:18:fb:7f:4d:35:d6:d7: e3:47:a3:4b:63:55:c5:a2:e7:8c:77:08:9d:8e:35:29:1c:4c: 3d:04:34:50:bd:da:ed:7e:15:38:cd:a5:ef:59:b1:34:9d:44: 29:57:87:40 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC7AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzMzZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENGNDM3RTU0QUY1NjU3 MTgxMzQwQzlBMzBDNzE2QzA4MzMxMkI3MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8RNCvuqMEcvxk0EB509Yo5ppCCKdoMenrnKReK+fPEnywPkUe 7LQxZwU9JQXEOfmOEiQ6Y6my9GLY7eI64jlp9vU1UJ8XmKGKrmWkXCxoS9c4t7LE xnufUDF7MxfRwTbB9moxQ90fl5HNM91wOvbQmga7DoDvRgzFJvzMVpkkeRci7JkU NBkEwFsBInHFtYNmKwjS5Sm44DoHh6YDpUliJ9ctYOB42Rekebv1pVHIAb3G/Pay Twp97Bw5OgfNOXlDuma1h8DWq6PuSBv+5R7AOf2tfGjAnvKfpHRSJDhjg3CmLTaf D8ESEyw72i8hrxuloMXiPKpjKgA6r0wsXK9ZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUz0N+VK9WVxgTQMmjDHFsCDMStxwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3owTi1WSzlXVnhnVFFNbWpESEZzQ0RNU3R4dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS9AwDQYJKoZIhvcNAQELBQADggEBABfxNQJOTtMtvWTf12KzTfJtWjIv Ye3JQlAFLodjIEonQtW1MESw67szfDS5bDD5mVIMhHnrgS7gyF4sbz/f51RdyAqf bemzbEjpQmJs6J+OfinROB4m3niFxckF5dwEUX1m05Ihhqco2/OGbowTrGnb9vCZ 0LUaHmyoBz4GIdDakLUv4CUrwl5ikVh3sJ7m/xIh9qu+3MALnuX66onJZjGUNded gto9gX3F6d5gjEuF5UwXTNljebFj2+MmtTcItQW420PfG68GgulZ1uYHS9b6GPt/ TTXW1+NHo0tjVcWi54x3CJ2ONSkcTD0ENFC92u1+FTjNpe9ZsTSdRClXh0A= -----END CERTIFICATE-----Generated at Sat Apr 5 17:28:08 2025 by rpki-client