$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5imY-vgObkqkfG1_7ZpxofGgDCw.roa File: 5imY-vgObkqkfG1_7ZpxofGgDCw.roa (raw, json) Hash identifier: +fHCGZ0KhMNs1p/+bzWOaTxKWEG1GNr48XMIKjABZ28= Subject key identifier: E6:29:98:FA:F8:0E:6E:4A:A4:7C:6D:7F:ED:9A:71:A1:F1:A0:0C:2C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CFF Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5imY-vgObkqkfG1_7ZpxofGgDCw.roa Signing time: Tue 01 Apr 2025 02:11:37 +0000 ROA not before: Tue 01 Apr 2025 02:11:37 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 10:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3327 (0xcff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:37 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E62998FAF80E6E4AA47C6D7FED9A71A1F1A00C2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:36:ab:4e:96:fa:63:91:b2:80:c1:46:d8:fa: fd:b6:f8:1c:21:fa:d6:ec:17:9f:b8:0f:bb:d0:02: f7:da:25:f8:e7:26:79:43:34:d6:bf:95:54:59:28: 1f:78:e6:28:0b:44:7a:a9:8f:a9:6e:ae:51:e4:16: 48:39:0e:3f:31:81:cf:58:ca:f4:3b:6c:c7:e7:3b: a1:3b:12:67:5b:67:37:33:f6:c4:2c:f5:9e:74:e3: 42:64:9c:ed:41:7e:86:9c:cb:ab:09:a5:0e:e5:17: 72:22:07:77:2a:ff:e2:43:27:68:32:40:d1:77:c4: 1e:34:91:42:2c:9b:17:dc:9d:47:6a:b8:c4:62:49: 82:aa:a7:c0:b3:d2:c5:7d:a5:57:c4:af:91:e1:9b: 26:f1:99:96:59:9b:bb:d5:88:3e:5c:a0:03:2f:56: be:b7:1c:73:95:74:36:b1:ec:8a:b9:6c:8e:79:6a: 4a:fe:83:73:dd:0d:88:1a:95:05:9c:a8:2f:2d:b0: 68:1d:f9:36:0a:d4:e6:d0:57:7d:70:62:83:ae:e5: 78:6e:49:63:e9:b7:69:f7:84:a3:c5:ae:78:c5:ac: 4c:05:a4:2e:a4:f0:3d:3f:91:e3:ab:2b:cf:3a:51: 59:ba:13:4e:ed:eb:8e:53:80:56:12:1c:d7:50:4b: 8b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:29:98:FA:F8:0E:6E:4A:A4:7C:6D:7F:ED:9A:71:A1:F1:A0:0C:2C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5imY-vgObkqkfG1_7ZpxofGgDCw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.237.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:7c:41:01:0b:85:7b:f0:df:cc:7e:2d:75:17:75:29:b2:1c: b2:0e:8f:e9:5d:66:12:c1:ed:74:c1:e9:2e:9a:8d:3f:2a:b6: af:bf:3d:ac:aa:6e:cc:71:87:93:c2:ce:a3:30:04:e2:bc:7d: df:20:23:2a:2d:c6:24:ec:16:7c:ef:b7:25:0f:c5:e6:a4:a6: c8:8b:81:cd:99:74:44:21:99:d5:c6:a9:b6:c9:f0:d7:d8:fd: 34:19:61:0e:00:1d:16:ce:17:1b:07:8e:74:3b:9e:3c:5d:c4: 94:ea:3c:2b:28:3a:ef:d4:63:7b:02:22:1d:09:2c:a5:e7:10: b2:e3:42:f2:03:5e:be:23:db:97:fa:5f:30:1c:e3:af:4a:d4: c7:35:50:93:92:ae:71:01:7b:10:0b:7e:96:0c:59:8d:34:43: 08:14:02:21:38:7a:6e:58:56:44:6d:c1:37:f5:ef:a7:10:e4: 4b:36:66:83:ac:14:a5:ff:e1:3d:4f:93:13:25:23:ee:69:31: d2:c6:c2:68:8e:db:de:b6:3e:db:cf:7e:7d:2b:ba:b8:b8:31: ac:04:dc:42:30:3c:2b:75:37:19:7a:fe:3c:4f:0b:98:87:2f: 15:a2:50:8b:1e:6d:64:61:ba:14:23:db:8b:37:8d:8a:16:64: 50:c0:bc:e9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDP8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExMzdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU2Mjk5OEZBRjgwRTZF NEFBNDdDNkQ3RkVEOUE3MUExRjFBMDBDMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCNqtOlvpjkbKAwUbY+v22+Bwh+tbsF5+4D7vQAvfaJfjnJnlD NNa/lVRZKB945igLRHqpj6lurlHkFkg5Dj8xgc9YyvQ7bMfnO6E7EmdbZzcz9sQs 9Z5040JknO1Bfoacy6sJpQ7lF3IiB3cq/+JDJ2gyQNF3xB40kUIsmxfcnUdquMRi SYKqp8Cz0sV9pVfEr5HhmybxmZZZm7vViD5coAMvVr63HHOVdDax7Iq5bI55akr+ g3PdDYgalQWcqC8tsGgd+TYK1ObQV31wYoOu5XhuSWPpt2n3hKPFrnjFrEwFpC6k 8D0/keOrK886UVm6E07t645TgFYSHNdQS4tHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5imY+vgObkqkfG1/7ZpxofGgDCwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzVpbVktdmdPYmtxa2ZHMV83WnB4b2ZHZ0RDdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABS+0wDQYJKoZIhvcNAQELBQADggEBAA98QQELhXvw38x+LXUXdSmyHLIO j+ldZhLB7XTB6S6ajT8qtq+/Payqbsxxh5PCzqMwBOK8fd8gIyotxiTsFnzvtyUP xeakpsiLgc2ZdEQhmdXGqbbJ8NfY/TQZYQ4AHRbOFxsHjnQ7njxdxJTqPCsoOu/U Y3sCIh0JLKXnELLjQvIDXr4j25f6XzAc469K1Mc1UJOSrnEBexALfpYMWY00QwgU AiE4em5YVkRtwTf176cQ5Es2ZoOsFKX/4T1PkxMlI+5pMdLGwmiO2962PtvPfn0r uri4MawE3EIwPCt1Nxl6/jxPC5iHLxWiUIsebWRhuhQj24s3jYoWZFDAvOk= -----END CERTIFICATE-----Generated at Sun May 18 14:23:18 2025 by rpki-client