$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3xIepBBAjvWjP-gQVoFryLv3i3E.roa File: 3xIepBBAjvWjP-gQVoFryLv3i3E.roa (raw, json) Hash identifier: wnzkp3Wbz6oYWb5Olb7J5biP7i0TxWOGneCoGG0kgW8= Subject key identifier: DF:12:1E:A4:10:40:8E:F5:A3:3F:E8:10:56:81:6B:C8:BB:F7:8B:71 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D2F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3xIepBBAjvWjP-gQVoFryLv3i3E.roa Signing time: Tue 01 Apr 2025 02:13:53 +0000 ROA not before: Tue 01 Apr 2025 02:13:53 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.78.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3375 (0xd2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:53 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=DF121EA410408EF5A33FE81056816BC8BBF78B71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:de:6f:14:8e:d5:f6:cc:bc:04:98:19:60:29: aa:1c:31:c2:32:d8:19:1b:75:88:3d:75:d9:bc:fa: 15:8d:bd:86:7b:13:60:45:60:7a:c9:1e:a6:0a:b7: d3:1a:15:9f:4f:2b:fa:9e:ad:97:36:b0:5b:70:a4: 47:15:fa:1d:df:dc:64:1b:5a:12:9d:6f:65:e7:a1: 0a:4e:3c:27:be:ce:58:9a:43:c9:6a:8f:05:29:44: a6:bb:1b:44:fa:86:e4:2b:43:d7:92:31:41:40:5f: 86:e9:22:a1:8b:0c:02:e9:cc:b4:f2:4c:87:ed:44: c9:3a:2f:a9:34:f8:b2:de:70:a8:e1:76:cf:d6:7f: 6d:8c:b6:ae:84:43:fd:30:ef:c5:35:ca:3c:4f:66: 48:be:98:26:ec:86:ab:90:9d:32:66:e9:36:c4:70: 9e:77:ab:0a:27:b4:5a:85:5d:33:13:07:64:1c:27: 0c:c4:fb:cd:d2:ff:fb:ef:a1:4d:98:45:95:ec:f5: f1:23:26:ec:44:bd:32:78:09:d0:33:27:23:ad:50: e1:9a:94:cd:89:36:fa:c3:d6:f9:92:0c:ef:a2:81: d0:1b:d6:7c:52:74:ca:d3:28:1e:28:db:9f:dc:86: e3:05:aa:1d:21:95:a3:5a:8d:42:91:03:16:3f:79: 62:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:12:1E:A4:10:40:8E:F5:A3:3F:E8:10:56:81:6B:C8:BB:F7:8B:71 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3xIepBBAjvWjP-gQVoFryLv3i3E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.48.0/20 Signature Algorithm: sha256WithRSAEncryption bc:e0:c8:e5:d5:99:c4:2b:5c:9b:d2:55:e8:01:c5:0c:8d:87: 8a:40:0a:5e:a6:20:dd:e8:74:80:6c:16:57:28:10:f3:fe:91: 9d:2d:fb:83:c2:6a:68:c5:7a:c9:a7:22:36:d5:82:98:6a:73: 51:5b:f7:fc:e0:4b:95:f2:1b:12:1b:3b:cc:35:f1:eb:f7:35: df:6a:b3:fc:95:bc:59:c3:8c:47:2f:db:c7:4b:20:b6:be:96: 91:62:ea:ef:91:34:f6:89:13:6c:e7:13:db:64:0b:c0:4b:e5: cd:35:ab:fb:8e:23:3d:d7:0e:45:a2:b8:0a:43:f3:00:fd:f8: 13:de:88:df:51:d2:2a:88:50:d2:ab:00:6c:20:03:fe:6c:1d: 69:67:5b:ca:72:dc:cc:e9:11:6d:74:56:15:2f:4b:d2:94:10: c0:05:3c:ca:df:b9:88:e8:a1:7f:b9:58:9a:ce:72:2c:04:d3: cd:cf:a7:7d:fd:ff:ad:63:76:1c:d4:4f:7d:97:dc:6f:28:39: e2:a3:69:cc:75:09:61:cc:94:f3:dd:dd:ab:22:2d:1a:5a:7e: 99:a9:cc:63:3e:65:c6:5d:5c:5c:60:86:38:3d:d1:9e:64:4b: 14:df:8f:7c:bd:dd:cc:db:98:f0:59:88:c3:65:1f:a0:e9:67: 21:b6:3f:e4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNTNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERGMTIxRUE0MTA0MDhF RjVBMzNGRTgxMDU2ODE2QkM4QkJGNzhCNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt3m8UjtX2zLwEmBlgKaocMcIy2BkbdYg9ddm8+hWNvYZ7E2BF YHrJHqYKt9MaFZ9PK/qerZc2sFtwpEcV+h3f3GQbWhKdb2XnoQpOPCe+zliaQ8lq jwUpRKa7G0T6huQrQ9eSMUFAX4bpIqGLDALpzLTyTIftRMk6L6k0+LLecKjhds/W f22Mtq6EQ/0w78U1yjxPZki+mCbshquQnTJm6TbEcJ53qwontFqFXTMTB2QcJwzE +83S//vvoU2YRZXs9fEjJuxEvTJ4CdAzJyOtUOGalM2JNvrD1vmSDO+igdAb1nxS dMrTKB4o25/chuMFqh0hlaNajUKRAxY/eWLLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3xIepBBAjvWjP+gQVoFryLv3i3EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzN4SWVwQkJBanZXalAtZ1FWb0ZyeUx2M2kzRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBTjAwDQYJKoZIhvcNAQELBQADggEBALzgyOXVmcQrXJvSVegBxQyNh4pA Cl6mIN3odIBsFlcoEPP+kZ0t+4PCamjFesmnIjbVgphqc1Fb9/zgS5XyGxIbO8w1 8ev3Nd9qs/yVvFnDjEcv28dLILa+lpFi6u+RNPaJE2znE9tkC8BL5c01q/uOIz3X DkWiuApD8wD9+BPeiN9R0iqIUNKrAGwgA/5sHWlnW8py3MzpEW10VhUvS9KUEMAF PMrfuYjooX+5WJrOciwE083Pp339/61jdhzUT32X3G8oOeKjacx1CWHMlPPd3asi LRpafpmpzGM+ZcZdXFxghjg90Z5kSxTfj3y93czbmPBZiMNlH6DpZyG2P+Q= -----END CERTIFICATE-----Generated at Sat Apr 26 18:23:41 2025 by rpki-client