$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/z5AhTEh4iSD_FOM7JPEJ95UpEQU.roa File: z5AhTEh4iSD_FOM7JPEJ95UpEQU.roa (raw, json) Hash identifier: BEGqgsPsNWB4fMS6Csh76w+1vAVWfIczbZIMWSFQzco= Subject key identifier: CF:90:21:4C:48:78:89:20:FF:14:E3:3B:24:F1:09:F7:95:29:11:05 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BBB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/z5AhTEh4iSD_FOM7JPEJ95UpEQU.roa Signing time: Tue 01 Apr 2025 01:43:42 +0000 ROA not before: Tue 01 Apr 2025 01:43:42 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 183.75.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3003 (0xbbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:42 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CF90214C48788920FF14E33B24F109F795291105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:00:cd:99:a0:0c:54:5c:f4:c1:6e:35:80:59: 1b:06:20:db:e2:e5:46:0e:f3:da:f0:cf:3e:93:81: 89:49:fc:d9:0e:f5:9b:0f:5a:22:16:6e:69:80:24: d2:c7:3f:4a:52:99:da:60:d1:35:42:a7:41:7e:22: 6d:76:9a:56:8b:b3:98:b4:d9:3b:24:92:27:35:72: 16:0d:0b:d0:bc:2d:ad:df:59:7e:82:78:c0:0b:2e: f0:91:6a:28:0a:3d:4c:61:14:8d:a3:60:08:ed:b7: b2:20:e7:72:39:c0:37:1c:d4:79:3c:0e:e6:4d:71: cc:b7:43:b7:7f:c8:f1:17:5e:73:1b:79:07:56:57: 29:53:76:33:6f:82:23:14:78:8a:d0:61:4e:87:00: 0d:2d:a3:ac:7f:ed:9d:b8:cf:24:6e:f1:a9:de:fe: d3:07:65:02:c4:2a:9c:27:fd:56:ce:23:90:aa:3f: b1:f2:bc:7b:5d:8c:c5:6a:2a:26:cf:46:36:cc:00: 22:b3:9e:93:be:0e:bf:aa:c2:09:ae:44:14:78:d9: cd:24:0b:45:b7:cc:39:db:df:01:02:0f:70:c9:f3: 40:3d:93:9f:dc:46:83:f0:e8:68:7b:4d:3f:17:e6: 19:19:5e:18:8c:a3:11:f6:1f:4c:2d:01:2c:ad:72: c0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:90:21:4C:48:78:89:20:FF:14:E3:3B:24:F1:09:F7:95:29:11:05 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/z5AhTEh4iSD_FOM7JPEJ95UpEQU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.75.232.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:bf:4a:78:21:a6:5e:ee:52:33:09:12:2a:b5:a8:0f:08:3e: d4:9c:35:71:11:98:44:42:35:1b:44:f8:9f:d7:7b:7c:ea:7a: 07:97:64:6f:b2:7a:8a:89:d3:ff:f0:c5:9c:c4:5e:f5:f6:ea: ff:84:60:ca:f0:28:24:9e:86:e7:5c:a7:20:c2:76:cb:d0:a2: 46:a9:d0:6d:53:fc:7a:f0:d1:d4:93:a9:2d:f5:33:af:c1:07: ba:97:64:27:3d:bc:28:fe:1a:3f:3a:20:3f:ae:02:02:e8:ac: cc:fc:b9:a0:95:9a:88:40:ce:ae:78:0c:1a:a2:b0:be:e8:e1: f2:89:a2:72:54:8e:89:5a:e6:c9:3a:c0:6d:ba:00:40:91:cd: 5f:e4:2e:24:88:22:e7:ea:f4:b5:8c:d1:c8:77:7e:15:9a:93: 93:06:3c:bc:2b:26:4e:76:f0:97:85:12:ec:15:af:5f:f7:16: ab:40:a5:54:b8:94:38:bf:ab:73:81:e6:6b:73:95:35:2c:47: 10:63:55:ae:cf:b3:14:65:c4:40:cd:f0:a7:51:26:93:d6:7d: 70:03:d0:2b:5a:93:e1:20:ac:16:d5:94:d6:1a:dc:30:43:6e: c4:f0:c6:2c:b8:04:40:f6:da:80:79:16:4d:10:7a:84:b5:75: 96:b0:ae:84 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC7swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzNDJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENGOTAyMTRDNDg3ODg5 MjBGRjE0RTMzQjI0RjEwOUY3OTUyOTExMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnAM2ZoAxUXPTBbjWAWRsGINvi5UYO89rwzz6TgYlJ/NkO9ZsP WiIWbmmAJNLHP0pSmdpg0TVCp0F+Im12mlaLs5i02Tskkic1chYNC9C8La3fWX6C eMALLvCRaigKPUxhFI2jYAjtt7Ig53I5wDcc1Hk8DuZNccy3Q7d/yPEXXnMbeQdW VylTdjNvgiMUeIrQYU6HAA0to6x/7Z24zyRu8ane/tMHZQLEKpwn/VbOI5CqP7Hy vHtdjMVqKibPRjbMACKznpO+Dr+qwgmuRBR42c0kC0W3zDnb3wECD3DJ80A9k5/c RoPw6Gh7TT8X5hkZXhiMoxH2H0wtASytcsADAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUz5AhTEh4iSD/FOM7JPEJ95UpEQUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3o1QWhURWg0aVNEX0ZPTTdKUEVKOTVVcEVRVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC3S+gwDQYJKoZIhvcNAQELBQADggEBAGu/Snghpl7uUjMJEiq1qA8IPtSc NXERmERCNRtE+J/Xe3zqegeXZG+yeoqJ0//wxZzEXvX26v+EYMrwKCSehudcpyDC dsvQokap0G1T/Hrw0dSTqS31M6/BB7qXZCc9vCj+Gj86ID+uAgLorMz8uaCVmohA zq54DBqisL7o4fKJonJUjola5sk6wG26AECRzV/kLiSIIufq9LWM0ch3fhWak5MG PLwrJk528JeFEuwVr1/3FqtApVS4lDi/q3OB5mtzlTUsRxBjVa7PsxRlxEDN8KdR JpPWfXAD0Ctak+EgrBbVlNYa3DBDbsTwxiy4BED22oB5Fk0QeoS1dZawroQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:59 2025 by rpki-client