$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zCpXdlDg6r8nf_RdaNgjmZ3_ZFQ.roa File: zCpXdlDg6r8nf_RdaNgjmZ3_ZFQ.roa (raw, json) Hash identifier: Xmt34Sj6/WPIbbCItczmJp5HW1xyUGuQ+KNfJdbInhM= Subject key identifier: CC:2A:57:76:50:E0:EA:BF:27:7F:F4:5D:68:D8:23:99:9D:FF:64:54 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C05 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zCpXdlDg6r8nf_RdaNgjmZ3_ZFQ.roa Signing time: Tue 01 Apr 2025 01:51:31 +0000 ROA not before: Tue 01 Apr 2025 01:51:31 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 110.163.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3077 (0xc05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:51:31 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CC2A577650E0EABF277FF45D68D823999DFF6454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ea:fc:a3:4e:cd:24:94:24:4c:69:da:63:87: c7:41:2e:5a:e5:a4:9b:d5:f7:4e:44:02:38:d9:5f: 90:0b:65:ef:c1:bd:ca:0a:cc:8e:3f:f5:d2:f9:0a: 31:a7:1e:2a:40:d2:ff:1b:a0:e3:13:b4:40:42:8c: 6c:43:55:a0:ad:d6:ef:21:af:5b:44:7c:99:2a:a3: 7e:e4:28:b1:01:6d:54:07:e9:5b:d6:d8:49:e6:9d: 0e:e5:69:b4:7e:2f:db:09:71:78:c5:df:f8:ea:48: 5f:c4:73:a0:2a:db:d2:55:2e:f9:c2:7d:5e:05:5d: bb:02:4e:2f:67:1b:9e:79:f3:13:44:5d:0e:37:d7: 10:31:b7:31:fd:99:21:b2:ee:a1:d7:39:f2:b4:0c: 91:9d:40:cf:49:c9:a1:ec:46:a1:9e:1d:46:9b:ae: b2:3a:8a:ec:ca:f0:ed:0f:72:8d:c5:51:98:79:99: 3f:53:a9:b9:a7:3d:40:77:8b:78:92:e4:84:2e:79: 0e:97:2a:1a:41:dd:e1:10:fc:cc:ee:6e:c8:c3:64: fd:46:a9:ff:54:ef:57:4f:56:95:93:d2:da:54:d5: 76:4d:1c:a8:3e:c0:c7:62:08:3d:42:31:b7:f2:ff: 2d:76:97:1e:7e:1f:ef:2a:8f:70:24:87:c0:f6:40: f8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:2A:57:76:50:E0:EA:BF:27:7F:F4:5D:68:D8:23:99:9D:FF:64:54 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zCpXdlDg6r8nf_RdaNgjmZ3_ZFQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.163.42.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:50:a0:4e:5c:5c:d1:2b:de:99:4a:c2:c2:bd:9f:1e:31:b9: 92:26:c6:ac:63:ef:90:ea:c9:fc:c1:12:e8:e2:95:9d:3a:a8: 56:e0:e6:fb:bf:18:dc:9f:87:4b:33:6d:10:db:c3:25:6d:6e: 94:a8:fb:82:54:94:13:e2:6e:1f:a1:ae:6b:a8:9c:0d:d5:59: ec:d2:6e:ca:04:df:06:c4:11:a4:a9:4c:9c:6c:4e:28:30:92: 72:10:90:97:25:45:8f:e4:93:86:cd:cd:64:9e:64:26:2e:5b: c3:5f:a0:89:47:66:91:9b:14:2c:44:da:fc:37:ed:8b:ec:bf: 38:4e:49:d7:d5:33:86:11:c3:22:9d:0e:ec:ac:e9:e1:6f:f4: fc:63:37:23:89:f3:c9:60:fd:35:cb:ed:ed:00:a5:d2:3e:d7: 00:75:6c:02:24:5d:8b:53:4f:a8:12:5c:08:83:e4:cb:9e:c1: d0:06:43:e5:91:b6:d6:85:7f:f2:fa:2d:27:c2:9a:ac:0e:3f: 8b:12:78:ac:70:3e:06:22:5e:d9:d3:2a:1b:6c:1e:e2:1d:58: 59:c3:49:49:ec:61:60:1c:52:68:bc:ca:25:76:10:d9:99:16: 67:7d:d6:9e:c7:38:2a:41:fa:24:15:b0:dc:3a:94:a1:23:4e: db:11:04:83 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDAUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTUxMzFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENDMkE1Nzc2NTBFMEVB QkYyNzdGRjQ1RDY4RDgyMzk5OURGRjY0NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDn6vyjTs0klCRMadpjh8dBLlrlpJvV905EAjjZX5ALZe/BvcoK zI4/9dL5CjGnHipA0v8boOMTtEBCjGxDVaCt1u8hr1tEfJkqo37kKLEBbVQH6VvW 2EnmnQ7labR+L9sJcXjF3/jqSF/Ec6Aq29JVLvnCfV4FXbsCTi9nG5558xNEXQ43 1xAxtzH9mSGy7qHXOfK0DJGdQM9JyaHsRqGeHUabrrI6iuzK8O0Pco3FUZh5mT9T qbmnPUB3i3iS5IQueQ6XKhpB3eEQ/MzubsjDZP1Gqf9U71dPVpWT0tpU1XZNHKg+ wMdiCD1CMbfy/y12lx5+H+8qj3Akh8D2QPhhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzCpXdlDg6r8nf/RdaNgjmZ3/ZFQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3pDcFhkbERnNnI4bmZfUmRhTmdqbVozX1pGUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABuoyowDQYJKoZIhvcNAQELBQADggEBAI1QoE5cXNEr3plKwsK9nx4xuZIm xqxj75DqyfzBEujilZ06qFbg5vu/GNyfh0szbRDbwyVtbpSo+4JUlBPibh+hrmuo nA3VWezSbsoE3wbEEaSpTJxsTigwknIQkJclRY/kk4bNzWSeZCYuW8NfoIlHZpGb FCxE2vw37YvsvzhOSdfVM4YRwyKdDuys6eFv9PxjNyOJ88lg/TXL7e0ApdI+1wB1 bAIkXYtTT6gSXAiD5MuewdAGQ+WRttaFf/L6LSfCmqwOP4sSeKxwPgYiXtnTKhts HuIdWFnDSUnsYWAcUmi8yiV2ENmZFmd91p7HOCpB+iQVsNw6lKEjTtsRBIM= -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:43 2025 by rpki-client