$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2490/pIHKM4G6po9acqaquHNuyVnX_uk.roa File: pIHKM4G6po9acqaquHNuyVnX_uk.roa (raw, json) Hash identifier: oOp0rnmHS75/WbdGfJ31w2jWHEddI4Mb+GQ1pEOIOtM= Subject key identifier: A4:81:CA:33:81:BA:A6:8F:5A:72:A6:AA:B8:73:6E:C9:59:D7:FE:E9 Certificate issuer: /CN=B8E53C5244B7F9A76D5F9DF9FBAF61E57B2EA93B Certificate serial: 60 Authority key identifier: B8:E5:3C:52:44:B7:F9:A7:6D:5F:9D:F9:FB:AF:61:E5:7B:2E:A9:3B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uOU8UkS3-adtX535-69h5XsuqTs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/pIHKM4G6po9acqaquHNuyVnX_uk.roa Signing time: Tue 01 Apr 2025 01:29:44 +0000 ROA not before: Tue 01 Apr 2025 01:29:44 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 7687 IP address blocks: 160.246.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/uOU8UkS3-adtX535-69h5XsuqTs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/uOU8UkS3-adtX535-69h5XsuqTs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uOU8UkS3-adtX535-69h5XsuqTs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8E53C5244B7F9A76D5F9DF9FBAF61E57B2EA93B Validity Not Before: Apr 1 01:29:44 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A481CA3381BAA68F5A72A6AAB8736EC959D7FEE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8a:66:16:22:ec:6a:e0:8e:5f:54:67:5e:4a: c7:bd:a5:53:a0:ac:4f:c2:e5:4a:90:44:c8:00:b9: 38:c1:13:74:14:de:9b:e5:12:be:08:a3:df:40:e9: 00:b8:7a:01:d6:16:12:52:ff:ea:65:25:b1:0b:7c: 84:9d:bc:05:65:6d:c9:77:85:a4:7b:19:eb:b6:a4: 88:13:91:80:5a:b3:bd:fe:5b:b4:99:f1:7f:e4:65: 43:9d:9f:4f:34:cc:b1:a7:d1:5e:9c:9f:fb:3c:37: de:45:c8:6b:92:52:de:e5:13:f9:88:0d:34:76:f8: 88:6b:23:aa:0b:39:bb:47:36:a6:4d:92:ff:c5:a7: 3f:ca:17:57:cf:57:74:c1:8d:0a:5a:03:a8:9d:d7: 34:68:91:fc:cb:42:a0:44:2b:41:67:e4:a8:59:46: 70:95:f0:2a:b8:77:b6:8f:00:6e:3e:21:60:c4:0b: 39:c0:2d:a8:cf:cd:06:3d:04:7c:f2:67:17:57:1c: 13:fd:38:80:78:b8:90:21:7f:a0:11:33:80:43:78: c9:9f:73:7b:ef:8f:b0:07:75:69:b1:4a:73:b3:27: 55:8d:3e:96:bc:3a:71:39:bf:e2:d9:0e:ab:63:4d: 44:5c:67:73:51:63:1e:a2:d0:d3:1d:90:65:88:38: 59:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:81:CA:33:81:BA:A6:8F:5A:72:A6:AA:B8:73:6E:C9:59:D7:FE:E9 X509v3 Authority Key Identifier: keyid:B8:E5:3C:52:44:B7:F9:A7:6D:5F:9D:F9:FB:AF:61:E5:7B:2E:A9:3B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/uOU8UkS3-adtX535-69h5XsuqTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uOU8UkS3-adtX535-69h5XsuqTs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/pIHKM4G6po9acqaquHNuyVnX_uk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.246.64.0/18 Signature Algorithm: sha256WithRSAEncryption 53:39:fd:f4:7e:31:b7:81:00:bd:df:48:98:27:8f:73:87:c1: ba:d8:22:9b:63:a5:4f:6c:dc:ba:51:b9:05:4e:55:27:fe:3e: 2a:d9:34:d4:28:e4:ee:29:f0:8d:90:99:2f:47:cc:d7:fc:79: 4e:0c:7b:5c:c3:e9:84:d3:3d:32:a6:a7:49:5a:f2:f9:75:18: b1:99:f7:62:e9:ca:e2:90:9c:cc:2c:b1:4d:86:25:7d:fe:a4: 93:d7:45:17:9f:b7:64:7b:f2:a1:fc:79:01:e8:f6:73:92:3e: ff:d2:1f:b8:1b:cf:ca:1c:ab:bb:f8:f1:15:c2:4c:8b:98:36: f6:df:68:97:c1:45:28:3a:9c:30:c4:cd:ab:ca:2d:c9:07:6c: 5c:7f:3e:eb:57:94:a2:08:f7:19:21:0e:33:eb:ac:60:a4:52: e7:76:ba:0e:2d:77:6e:29:6e:f3:0d:7d:28:cf:e8:8f:0e:31: 3f:e0:6f:10:7e:f7:7e:58:95:37:20:c9:9d:b7:8c:79:75:16: 5d:30:99:fa:56:39:63:e2:fb:60:f0:31:cf:69:d8:71:1b:1c: bd:a7:a6:13:df:7b:15:1a:5b:10:62:db:fb:ca:3d:bd:ef:90: 08:e2:3f:60:a7:17:a0:4d:c0:0d:61:df:fb:32:04:91:d2:86: 29:c2:16:71 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEU1 M0M1MjQ0QjdGOUE3NkQ1RjlERjlGQkFGNjFFNTdCMkVBOTNCMB4XDTI1MDQwMTAx Mjk0NFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoQTQ4MUNBMzM4MUJBQTY4 RjVBNzJBNkFBQjg3MzZFQzk1OUQ3RkVFOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMCKZhYi7Grgjl9UZ15Kx72lU6CsT8LlSpBEyAC5OMETdBTem+US vgij30DpALh6AdYWElL/6mUlsQt8hJ28BWVtyXeFpHsZ67akiBORgFqzvf5btJnx f+RlQ52fTzTMsafRXpyf+zw33kXIa5JS3uUT+YgNNHb4iGsjqgs5u0c2pk2S/8Wn P8oXV89XdMGNCloDqJ3XNGiR/MtCoEQrQWfkqFlGcJXwKrh3to8Abj4hYMQLOcAt qM/NBj0EfPJnF1ccE/04gHi4kCF/oBEzgEN4yZ9ze++PsAd1abFKc7MnVY0+lrw6 cTm/4tkOq2NNRFxnc1FjHqLQ0x2QZYg4WacCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBSkgcozgbqmj1pypqq4c27JWdf+6TAfBgNVHSMEGDAWgBS45TxSRLf5p21fnfn7 r2Hley6pOzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQ5MC91T1U4VWtTMy1hZHRYNTM1LTY5aDVYc3VxVHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91T1U4VWtTMy1hZHRYNTM1LTY5aDVY c3VxVHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQ5MC9wSUhLTTRHNnBvOWFjcWFxdUhOdXlWblhfdWsucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQGoPZAMA0GCSqGSIb3DQEBCwUAA4IBAQBTOf30fjG3gQC930iYJ49zh8G6 2CKbY6VPbNy6UbkFTlUn/j4q2TTUKOTuKfCNkJkvR8zX/HlODHtcw+mE0z0ypqdJ WvL5dRixmfdi6crikJzMLLFNhiV9/qST10UXn7dke/Kh/HkB6PZzkj7/0h+4G8/K HKu7+PEVwkyLmDb232iXwUUoOpwwxM2ryi3JB2xcfz7rV5SiCPcZIQ4z66xgpFLn droOLXduKW7zDX0oz+iPDjE/4G8Qfvd+WJU3IMmdt4x5dRZdMJn6Vjlj4vtg8DHP adhxGxy9p6YT33sVGlsQYtv7yj2975AI4j9gpxegTcANYd/7MgSR0oYpwhZx -----END CERTIFICATE-----Generated at Mon May 12 07:59:03 2025 by rpki-client