$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1-kBSjXf5gnJT4Opf9ChIhGM-Tg.roa File: 1-kBSjXf5gnJT4Opf9ChIhGM-Tg.roa (raw, json) Hash identifier: ZQKdf4T5zxZDeiyjDjjGj3lNBY9ykxhCU4/ALpDcSbM= Subject key identifier: D7:E9:01:4A:35:DF:E6:09:C9:4F:83:A9:7F:D0:A1:22:11:8C:F9:38 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DE8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1-kBSjXf5gnJT4Opf9ChIhGM-Tg.roa Signing time: Tue 01 Apr 2025 02:29:02 +0000 ROA not before: Tue 01 Apr 2025 02:29:02 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.78.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3560 (0xde8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:29:02 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=D7E9014A35DFE609C94F83A97FD0A122118CF938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:29:d9:63:5f:30:29:43:a1:04:92:5a:be:b3: 3f:00:c3:45:01:77:5a:73:19:89:95:3e:47:27:6e: 11:ff:6f:fa:0d:38:1f:74:0d:1b:a9:25:47:10:94: 34:37:ba:86:1d:c6:6d:7e:c1:42:ed:36:fb:6d:71: b6:df:20:94:5f:1b:42:26:52:1a:1b:f8:46:b9:ba: e5:da:43:49:95:e6:f1:9c:7d:1c:f7:9b:f8:32:2a: 2f:bd:7c:01:2f:ec:4d:ff:6f:f7:c2:a3:66:a7:d9: 54:52:2c:64:eb:4f:bf:56:1b:5a:f2:c4:c1:3c:5b: ed:e2:38:b2:b9:d1:ec:5d:57:05:90:1c:c9:08:95: c5:ea:20:79:a3:f2:11:47:b7:9d:00:bf:08:98:ec: 01:2a:de:ab:97:54:fc:59:78:87:e5:ad:a3:62:99: 6b:d6:95:82:66:bb:ad:d5:ae:26:15:a3:14:a3:d0: bd:88:c0:1e:1c:19:d4:c7:b6:c1:41:de:6f:89:bc: 9b:33:21:31:67:52:1d:69:49:1a:20:be:42:59:ba: 01:b7:55:d8:ab:62:c4:09:9c:ec:c1:a8:3d:2f:cd: 9c:ee:e4:37:9a:7a:c7:25:e6:3e:22:bc:50:8b:75: 42:07:56:d8:ef:72:35:28:a0:44:a4:a4:be:ac:74: 3c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E9:01:4A:35:DF:E6:09:C9:4F:83:A9:7F:D0:A1:22:11:8C:F9:38 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1-kBSjXf5gnJT4Opf9ChIhGM-Tg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.40.0/22 Signature Algorithm: sha256WithRSAEncryption 93:f4:16:25:84:b0:0d:d8:09:f0:b5:b4:e1:89:3e:40:89:53: ab:9d:44:8d:d4:27:1b:4a:d9:ce:81:6a:6d:25:78:55:17:4c: 8c:67:bd:c3:44:f1:41:d9:6f:4d:44:65:9e:04:e8:23:ac:32: 6a:00:9a:5e:e0:a5:1e:18:74:1e:8f:3f:ed:c2:41:fc:f8:2d: 2c:b6:dc:48:83:15:a9:75:1a:19:6d:05:20:4a:5e:2c:20:c0: 50:16:66:20:86:f5:0e:d0:ae:fb:d2:55:41:bd:c9:4c:22:69: 85:82:10:dc:72:8e:b5:83:8a:a3:b2:f7:37:6a:97:7d:bb:09: 27:1a:93:8d:c0:82:77:a4:d9:3c:0c:36:52:78:02:29:d4:7a: e1:93:a4:cc:15:f0:38:2a:c7:4a:6b:fe:0f:cb:2c:66:bd:81: 0d:b8:00:86:bc:64:47:05:78:80:75:1a:02:fe:e7:77:fc:7d: ef:df:a1:f4:0a:49:8f:03:7b:0e:65:74:2c:27:3f:7f:9f:9d: 31:93:f4:71:30:9a:7a:5e:84:58:a4:5b:0e:d7:40:d7:b3:11: d8:5d:d5:af:d4:45:14:7b:01:bc:e8:1f:58:fc:29:5d:5c:da: b8:93:85:70:71:cb:50:6b:67:55:da:d3:f1:f1:c5:8e:cb:bb: 87:44:1f:a7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDegwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI5MDJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQ3RTkwMTRBMzVERkU2 MDlDOTRGODNBOTdGRDBBMTIyMTE4Q0Y5MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdKdljXzApQ6EEklq+sz8Aw0UBd1pzGYmVPkcnbhH/b/oNOB90 DRupJUcQlDQ3uoYdxm1+wULtNvttcbbfIJRfG0ImUhob+Ea5uuXaQ0mV5vGcfRz3 m/gyKi+9fAEv7E3/b/fCo2an2VRSLGTrT79WG1ryxME8W+3iOLK50exdVwWQHMkI lcXqIHmj8hFHt50AvwiY7AEq3quXVPxZeIflraNimWvWlYJmu63VriYVoxSj0L2I wB4cGdTHtsFB3m+JvJszITFnUh1pSRogvkJZugG3VdirYsQJnOzBqD0vzZzu5Dea escl5j4ivFCLdUIHVtjvcjUooESkpL6sdDztAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1+kBSjXf5gnJT4Opf9ChIhGM+TgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzEta0JTalhmNWduSlQ0T3BmOUNoSWhHTS1UZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTigwDQYJKoZIhvcNAQELBQADggEBAJP0FiWEsA3YCfC1tOGJPkCJU6ud RI3UJxtK2c6Bam0leFUXTIxnvcNE8UHZb01EZZ4E6COsMmoAml7gpR4YdB6PP+3C Qfz4LSy23EiDFal1GhltBSBKXiwgwFAWZiCG9Q7QrvvSVUG9yUwiaYWCENxyjrWD iqOy9zdql327CScak43Agnek2TwMNlJ4AinUeuGTpMwV8Dgqx0pr/g/LLGa9gQ24 AIa8ZEcFeIB1GgL+53f8fe/fofQKSY8Dew5ldCwnP3+fnTGT9HEwmnpehFikWw7X QNezEdhd1a/URRR7AbzoH1j8KV1c2riThXBxy1BrZ1Xa0/HxxY7Lu4dEH6c= -----END CERTIFICATE-----Generated at Sat Apr 26 18:23:24 2025 by rpki-client