$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/462/N3-fUNN6yfbgh7K3A8MyMa4qUpU.roa File: N3-fUNN6yfbgh7K3A8MyMa4qUpU.roa (raw, json) Hash identifier: 8bAAVLKXGDU923tyFsHAUPj31m7lHC8vyKK+0+tCriM= Subject key identifier: 37:7F:9F:50:D3:7A:C9:F6:E0:87:B2:B7:03:C3:32:31:AE:2A:52:95 Certificate issuer: /CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Certificate serial: 6C Authority key identifier: 43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/N3-fUNN6yfbgh7K3A8MyMa4qUpU.roa Signing time: Sat 01 Mar 2025 01:28:09 +0000 ROA not before: Sat 01 Mar 2025 01:28:09 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 10019 IP address blocks: 175.28.16.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Validity Not Before: Mar 1 01:28:09 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=377F9F50D37AC9F6E087B2B703C33231AE2A5295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d0:67:c3:2a:ce:96:f0:c3:7c:13:4c:ce:3a: 04:3a:68:ee:b8:eb:cb:e5:4a:a7:66:77:af:e2:25: f0:89:55:48:f6:6b:ba:23:e3:e4:9e:4c:f3:84:aa: b6:59:88:2f:b4:50:ca:a8:a3:16:29:c2:c2:0c:0d: 1a:d9:00:a4:c0:5a:b9:9a:ea:e4:31:cb:42:0d:c3: fa:73:b0:a2:3c:87:2b:59:9e:d5:c6:c0:3f:92:84: 0a:6f:98:03:e6:df:04:3a:34:c6:ae:f8:8e:58:ba: f0:76:a6:d9:b5:9d:32:95:65:b4:2c:a8:b5:9d:5e: 64:f1:cb:25:bd:b3:3c:d0:67:74:57:78:b2:3d:a0: b1:89:9d:9e:1f:f7:e7:af:38:0f:64:b8:01:79:54: 04:ba:c0:9a:45:dc:7e:36:a4:10:25:0e:f7:b7:16: cb:ba:ce:11:38:ad:36:70:cd:db:b3:8d:d2:53:2a: 0d:be:4b:1a:7a:20:0e:90:41:6a:72:41:74:f2:94: f5:57:7a:8c:86:15:63:9b:d0:f6:a7:10:78:76:cf: d0:68:70:46:10:39:66:9a:c0:36:26:8a:8b:2a:9f: 0c:49:3d:4f:fb:92:6a:c3:f9:48:3c:33:b5:3c:1d: 1f:d0:c3:15:c7:05:6b:88:8a:f8:99:03:01:4e:99: 16:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7F:9F:50:D3:7A:C9:F6:E0:87:B2:B7:03:C3:32:31:AE:2A:52:95 X509v3 Authority Key Identifier: keyid:43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/N3-fUNN6yfbgh7K3A8MyMa4qUpU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.28.16.0/20 Signature Algorithm: sha256WithRSAEncryption b1:36:e4:71:08:a0:9e:cb:26:5e:51:b8:5b:44:d3:99:c1:d5: 4d:79:a5:64:d7:81:6b:ab:80:b6:22:97:f8:dd:ba:e9:a5:a9: ad:7f:05:d8:ab:a3:05:74:b3:7b:34:1e:89:08:71:37:12:7f: d1:53:c3:db:b7:9f:40:45:c0:74:01:cc:18:d9:7a:3b:d6:e3: c8:96:04:f1:ab:0f:6c:96:20:de:5d:51:33:07:03:b8:fc:81: 0f:19:2e:35:4f:c8:f1:6d:7a:36:b8:e3:fd:81:88:d4:f2:36: 09:38:e8:b4:01:90:9e:0e:0d:d5:b8:b8:f7:ba:3f:f6:ae:51: 02:83:6f:48:aa:bd:99:2c:4c:85:02:52:06:10:f8:b0:fc:b0: 4d:54:6a:24:65:7e:89:e7:22:9e:16:be:41:ed:d7:a4:1d:f1: a0:fc:62:5a:73:e4:9f:0a:af:e7:08:2a:6e:a7:10:70:75:b6: 71:2d:c2:f8:17:c9:71:27:24:ee:c1:7c:0b:78:ca:4a:ae:c4: de:14:4b:17:a1:d0:81:f2:f3:25:45:41:2c:77:ec:96:e8:ac: 9f:6a:a4:50:b9:90:b8:00:8b:1e:2d:b8:d4:ef:07:e7:e0:b7: 2f:29:ba:8a:14:3e:2f:f3:ab:a4:c4:7d:e6:58:f9:ec:76:b9: c5:9d:7a:c9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBbDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0Mzkx N0IyMzA3NDUyNEU5RTZFQThFNDBGQTRBMDY3MkM5NjIwMzE4MB4XDTI1MDMwMTAx MjgwOVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMzc3RjlGNTBEMzdBQzlG NkUwODdCMkI3MDNDMzMyMzFBRTJBNTI5NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKnQZ8Mqzpbww3wTTM46BDpo7rjry+VKp2Z3r+Il8IlVSPZruiPj 5J5M84SqtlmIL7RQyqijFinCwgwNGtkApMBauZrq5DHLQg3D+nOwojyHK1me1cbA P5KECm+YA+bfBDo0xq74jli68Ham2bWdMpVltCyotZ1eZPHLJb2zPNBndFd4sj2g sYmdnh/35684D2S4AXlUBLrAmkXcfjakECUO97cWy7rOETitNnDN27ON0lMqDb5L GnogDpBBanJBdPKU9Vd6jIYVY5vQ9qcQeHbP0GhwRhA5ZprANiaKiyqfDEk9T/uS asP5SDwztTwdH9DDFccFa4iK+JkDAU6ZFlECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ3f59Q03rJ9uCHsrcDwzIxripSlTAfBgNVHSMEGDAWgBRDkXsjB0Uk6ebqjkD6 SgZyyWIDGDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDYyL1E1RjdJd2RGSk9ubTZvNUEta29HY3NsaUF4Zy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1E1RjdJd2RGSk9ubTZvNUEta29HY3Ns aUF4Zy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NjIvTjMtZlVOTjZ5ZmJnaDdLM0E4TXlNYTRxVXBVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBK8cEDANBgkqhkiG9w0BAQsFAAOCAQEAsTbkcQignssmXlG4W0TTmcHVTXml ZNeBa6uAtiKX+N266aWprX8F2KujBXSzezQeiQhxNxJ/0VPD27efQEXAdAHMGNl6 O9bjyJYE8asPbJYg3l1RMwcDuPyBDxkuNU/I8W16Nrjj/YGI1PI2CTjotAGQng4N 1bi497o/9q5RAoNvSKq9mSxMhQJSBhD4sPywTVRqJGV+iecinha+Qe3XpB3xoPxi WnPknwqv5wgqbqcQcHW2cS3C+BfJcSck7sF8C3jKSq7E3hRLF6HQgfLzJUVBLHfs luisn2qkULmQuACLHi241O8H5+C3Lym6ihQ+L/OrpMR95lj57Ha5xZ16yQ== -----END CERTIFICATE-----Generated at Sun Apr 6 06:43:58 2025 by rpki-client