$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/868/NdTiV-dKefsJDR7QAu0-FuuCTbo.roa File: NdTiV-dKefsJDR7QAu0-FuuCTbo.roa (raw, json) Hash identifier: +uPnfYtuannLdBwCw9eePOzrfDRDS4r1lbSisufyMyg= Subject key identifier: 35:D4:E2:57:E7:4A:79:FB:09:0D:1E:D0:02:ED:3E:16:EB:82:4D:BA Certificate issuer: /CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46 Certificate serial: 3F Authority key identifier: 8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/NdTiV-dKefsJDR7QAu0-FuuCTbo.roa Signing time: Sat 01 Mar 2025 01:28:51 +0000 ROA not before: Sat 01 Mar 2025 01:28:51 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 24271 IP address blocks: 202.177.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46 Validity Not Before: Mar 1 01:28:51 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=35D4E257E74A79FB090D1ED002ED3E16EB824DBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fc:48:d7:ba:72:90:5f:ee:94:c4:70:ea:c1: a8:68:56:64:aa:86:14:a1:a7:4a:7c:cf:3a:07:09: fc:ba:ba:7b:37:f6:e6:20:f3:4a:59:5b:03:fc:03: fc:f4:08:9e:e4:95:c5:23:d6:92:2c:5f:d3:79:f6: 0e:95:f2:a9:17:90:ca:0b:21:36:e6:32:5c:75:15: 1c:9a:4a:df:2c:e2:94:6b:48:55:07:4c:3b:d0:ad: a6:6d:4a:4b:a7:fa:6c:eb:f5:ce:a0:11:ce:78:69: e5:de:eb:94:d4:7e:f0:da:e9:5e:d3:9c:ab:13:60: 6c:de:64:81:f7:c6:ef:5a:3b:bf:ce:d1:24:70:11: a8:0c:c1:0e:9a:de:a9:a6:89:6e:e7:d1:b5:1f:67: 3c:00:14:36:8b:9d:56:16:96:8c:9a:58:e6:c4:60: ea:a2:78:5b:37:1d:9c:82:8b:f0:b9:97:40:1a:be: 7c:d2:1a:20:a2:26:97:d0:d4:19:17:8f:28:f0:d1: 0e:5d:8b:a3:bd:83:e1:c3:5d:06:89:6a:16:8f:6f: fe:57:37:94:da:e0:b0:6e:0f:5f:14:5d:7a:fc:a2: 28:66:25:93:8b:4e:15:97:77:52:1d:c1:eb:08:4c: cc:cb:07:38:a6:6a:90:6c:34:d4:5b:1c:af:91:0f: a1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D4:E2:57:E7:4A:79:FB:09:0D:1E:D0:02:ED:3E:16:EB:82:4D:BA X509v3 Authority Key Identifier: keyid:8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/NdTiV-dKefsJDR7QAu0-FuuCTbo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.177.96.0/20 Signature Algorithm: sha256WithRSAEncryption 89:0e:38:86:10:43:7e:46:01:2a:98:d5:32:f7:2b:c9:6d:fd: 49:43:9b:8b:aa:b1:dd:71:19:84:2d:b0:8d:5f:51:f2:b4:23: fc:6c:5f:82:eb:5c:b8:b2:05:80:1e:85:5d:a0:81:5a:0f:c5: 7d:fb:92:9c:70:d2:49:8b:9f:a0:85:0d:19:b0:1f:f8:ff:38: fb:20:46:90:8e:de:1e:45:3a:c7:5c:4e:06:c9:75:9e:89:33: 4a:46:6f:28:13:26:19:59:a3:c9:3b:6d:b5:a9:56:5a:34:26: 73:f2:94:7e:1e:4c:21:bb:c2:56:c5:71:3c:e7:06:4e:cd:62: a1:03:d5:57:9b:05:f1:b1:53:41:20:7e:d9:28:e6:84:22:a5: 4c:aa:d4:c2:1d:03:ca:52:f0:dd:0b:47:77:b0:7b:87:9d:27: 83:7f:57:7c:f0:ff:b0:6d:54:3d:50:e7:41:3a:44:5d:a8:2a: e4:31:80:e9:b9:97:5b:65:da:7e:8c:5b:07:c0:02:2c:7c:a0: 75:94:fb:e3:ec:60:bb:b6:ed:21:75:d7:db:4b:17:7e:7f:16: a9:57:7c:af:ec:e0:86:3d:c7:19:27:1d:4b:1a:b9:b2:cd:29: 55:e7:ba:c5:ac:d0:b6:e6:35:6e:21:e5:13:c1:1d:e6:55:25: b7:49:76:5c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDA5 NjJFREUwRjVFMjFBN0U4RjlFMUFCMDA2RkY5NDBFMDRFRDQ2MB4XDTI1MDMwMTAx Mjg1MVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMzVENEUyNTdFNzRBNzlG QjA5MEQxRUQwMDJFRDNFMTZFQjgyNERCQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANP8SNe6cpBf7pTEcOrBqGhWZKqGFKGnSnzPOgcJ/Lq6ezf25iDz SllbA/wD/PQInuSVxSPWkixf03n2DpXyqReQygshNuYyXHUVHJpK3yzilGtIVQdM O9Ctpm1KS6f6bOv1zqARznhp5d7rlNR+8NrpXtOcqxNgbN5kgffG71o7v87RJHAR qAzBDpreqaaJbufRtR9nPAAUNoudVhaWjJpY5sRg6qJ4WzcdnIKL8LmXQBq+fNIa IKIml9DUGRePKPDRDl2Lo72D4cNdBolqFo9v/lc3lNrgsG4PXxRdevyiKGYlk4tO FZd3Uh3B6whMzMsHOKZqkGw01Fscr5EPoQkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ11OJX50p5+wkNHtAC7T4W64JNujAfBgNVHSMEGDAWgBSNCWLt4PXiGn6Pnhqw Bv+UDgTtRjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODY4L2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0RTdVWS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0 RTdVWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NjgvTmRUaVYtZEtlZnNKRFI3UUF1MC1GdXVDVGJvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMqxYDANBgkqhkiG9w0BAQsFAAOCAQEAiQ44hhBDfkYBKpjVMvcryW39SUOb i6qx3XEZhC2wjV9R8rQj/GxfgutcuLIFgB6FXaCBWg/FffuSnHDSSYufoIUNGbAf +P84+yBGkI7eHkU6x1xOBsl1nokzSkZvKBMmGVmjyTtttalWWjQmc/KUfh5MIbvC VsVxPOcGTs1ioQPVV5sF8bFTQSB+2SjmhCKlTKrUwh0DylLw3QtHd7B7h50ng39X fPD/sG1UPVDnQTpEXagq5DGA6bmXW2XafoxbB8ACLHygdZT74+xgu7btIXXX20sX fn8WqVd8r+zghj3HGScdSxq5ss0pVee6xazQtuY1biHlE8Ed5lUlt0l2XA== -----END CERTIFICATE-----Generated at Sat Apr 5 17:20:24 2025 by rpki-client