$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/1ysxif9EQngAJ1x0fXDo262rVSE.roa File: 1ysxif9EQngAJ1x0fXDo262rVSE.roa (raw, json) Hash identifier: fw0bkC8SfU8VT8cPk6zjx/rnQ8plQWhqiC2J93j/vUU= Subject key identifier: D7:2B:31:89:FF:44:42:78:00:27:5C:74:7D:70:E8:DB:AD:AB:55:21 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B53 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1ysxif9EQngAJ1x0fXDo262rVSE.roa Signing time: Tue 01 Apr 2025 01:33:19 +0000 ROA not before: Tue 01 Apr 2025 01:33:19 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2899 (0xb53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:19 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=D72B3189FF44427800275C747D70E8DBADAB5521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c3:93:ef:a2:6e:db:d8:b2:fa:55:af:89:52: 74:27:fb:0f:c5:17:7c:a3:64:c1:ad:39:cc:b5:04: 7d:2d:d6:80:d1:5a:5a:f2:3b:8e:b1:7b:d1:ab:37: 27:7e:5b:07:5c:54:f8:21:5d:36:47:20:c3:a4:20: 56:f0:44:d2:68:1a:09:e3:03:9f:86:42:9c:88:76: 21:4a:4a:bc:95:16:c5:08:11:35:70:1a:32:48:87: 5f:0b:2d:cb:dc:d1:60:6e:b3:25:01:d9:6d:87:80: f2:f9:c7:04:bf:4a:0b:50:c2:28:4a:4a:61:49:90: 32:f7:8c:fd:e3:5a:bf:fd:ba:e7:84:ac:1c:eb:a4: 9e:27:db:a5:dd:2c:56:55:14:34:60:23:18:00:ba: 3d:fb:70:f4:a6:30:24:7f:5c:51:d3:a2:1d:73:17: 8c:41:fd:bd:b0:23:a2:fa:41:e0:f7:e9:3a:d4:3c: 92:04:ef:1e:36:54:c3:4e:6a:48:d0:45:04:af:b0: da:9c:31:5d:e7:55:e7:6f:87:05:d2:20:41:08:0e: 68:10:bf:64:16:47:30:3c:c1:f1:68:9d:a0:9e:07: 47:0c:27:74:be:67:2c:7c:cb:ce:df:ea:58:6e:17: df:66:bd:a6:63:c4:87:fa:2d:af:17:8b:04:4b:88: 23:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:2B:31:89:FF:44:42:78:00:27:5C:74:7D:70:E8:DB:AD:AB:55:21 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/1ysxif9EQngAJ1x0fXDo262rVSE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.216.0/21 Signature Algorithm: sha256WithRSAEncryption 22:10:b6:b7:bc:01:f9:c1:72:b9:7f:32:61:24:92:4f:4f:5c: be:90:6a:d4:e4:1f:3e:18:25:39:fa:03:10:8d:d0:78:9b:94: c5:11:4e:e6:d0:9e:24:fe:f0:ff:43:c8:00:a9:d6:f1:8c:ec: 9c:00:ef:24:c5:a5:a1:58:b3:dc:90:d2:16:1d:06:06:64:4b: bc:d4:cb:86:f1:78:59:02:b2:a3:fb:66:ff:50:f0:99:9e:f5: 07:25:f2:05:e8:ef:d2:aa:d4:50:c9:fb:bd:e5:cb:cd:82:c1: b9:0f:a5:c2:f0:f1:91:26:b2:27:d0:82:26:40:82:c0:9c:8c: 11:fa:94:eb:b1:27:1a:10:4e:45:c1:ad:8c:09:89:aa:84:39: f2:d9:76:02:ef:e1:4b:d5:05:1d:0d:3a:b0:33:1a:45:b3:5b: cb:f8:e0:a2:6a:be:df:b0:78:2b:95:49:b0:8c:f8:6c:16:28: ed:ee:5c:bd:09:06:fd:d3:b8:54:32:41:15:d7:df:9e:2f:2c: db:45:a6:13:b0:d6:db:72:ec:4f:e4:02:38:82:3f:39:78:30: f5:b9:5d:21:81:aa:31:51:6b:7e:67:ee:e8:83:97:bc:ef:c2: 5d:7a:c0:4b:c7:ac:29:c3:4c:d3:17:94:07:b6:d6:d6:0e:6f: 7e:00:6b:6c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC1MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMTlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQ3MkIzMTg5RkY0NDQy NzgwMDI3NUM3NDdENzBFOERCQURBQjU1MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+w5Pvom7b2LL6Va+JUnQn+w/FF3yjZMGtOcy1BH0t1oDRWlry O46xe9GrNyd+WwdcVPghXTZHIMOkIFbwRNJoGgnjA5+GQpyIdiFKSryVFsUIETVw GjJIh18LLcvc0WBusyUB2W2HgPL5xwS/SgtQwihKSmFJkDL3jP3jWr/9uueErBzr pJ4n26XdLFZVFDRgIxgAuj37cPSmMCR/XFHToh1zF4xB/b2wI6L6QeD36TrUPJIE 7x42VMNOakjQRQSvsNqcMV3nVedvhwXSIEEIDmgQv2QWRzA8wfFonaCeB0cMJ3S+ Zyx8y87f6lhuF99mvaZjxIf6La8XiwRLiCNZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1ysxif9EQngAJ1x0fXDo262rVSEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzF5c3hpZjlFUW5nQUoxeDBmWERvMjYyclZTRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBT9gwDQYJKoZIhvcNAQELBQADggEBACIQtre8AfnBcrl/MmEkkk9PXL6Q atTkHz4YJTn6AxCN0HiblMURTubQniT+8P9DyACp1vGM7JwA7yTFpaFYs9yQ0hYd BgZkS7zUy4bxeFkCsqP7Zv9Q8Jme9Qcl8gXo79Kq1FDJ+73ly82CwbkPpcLw8ZEm sifQgiZAgsCcjBH6lOuxJxoQTkXBrYwJiaqEOfLZdgLv4UvVBR0NOrAzGkWzW8v4 4KJqvt+weCuVSbCM+GwWKO3uXL0JBv3TuFQyQRXX354vLNtFphOw1tty7E/kAjiC Pzl4MPW5XSGBqjFRa35n7uiDl7zvwl16wEvHrCnDTNMXlAe21tYOb34Aa2w= -----END CERTIFICATE-----Generated at Sat Apr 26 18:24:18 2025 by rpki-client