$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Au5kz0az9klWIh67HOT2DfL_NBM.roa File: Au5kz0az9klWIh67HOT2DfL_NBM.roa (raw, json) Hash identifier: OD5SK6zRQsP2yMeCuTEERybSWztGrT2u5+aAOyUOy+8= Subject key identifier: 02:EE:64:CF:46:B3:F6:49:56:22:1E:BB:1C:E4:F6:0D:F2:FF:34:13 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D21 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Au5kz0az9klWIh67HOT2DfL_NBM.roa Signing time: Tue 01 Apr 2025 02:13:47 +0000 ROA not before: Tue 01 Apr 2025 02:13:47 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3361 (0xd21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:13:47 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=02EE64CF46B3F64956221EBB1CE4F60DF2FF3413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cc:97:0e:38:9b:bf:f6:b8:36:21:3e:ad:91: 11:2c:63:7e:a2:3d:c5:56:80:47:f2:d9:2b:84:36: 21:df:02:97:b7:29:9e:2a:64:d0:de:5b:f6:da:4c: ad:f5:c2:90:2b:40:8e:0c:7b:54:54:da:ec:64:2a: 2a:54:1e:11:c0:80:c3:43:e6:2a:33:d8:f6:35:ca: 36:e7:f1:22:a4:4d:15:9d:59:9c:89:df:b5:f0:3f: 4b:af:0c:11:c7:4d:ce:20:00:3c:a9:9e:57:92:b5: 7d:e9:b1:66:32:a0:a0:51:fb:36:a8:c9:3d:5f:c7: b5:58:ca:f7:f7:ef:43:80:0b:5d:12:81:04:7b:27: c2:7b:8c:71:70:db:e2:8f:9a:06:56:2e:40:31:5c: 2c:a0:ef:f7:3a:cb:f3:1f:12:b8:b9:80:0f:80:0b: bf:f0:56:7d:b7:7b:90:91:f2:89:b3:5c:1e:a9:64: 46:ed:a7:fd:22:ee:b7:26:8b:bd:7f:89:61:3c:14: 75:3a:f3:15:c6:00:a3:42:51:23:47:d7:96:66:2c: 68:6d:0b:ea:af:42:36:0f:9e:c5:72:72:d5:d0:55: 6c:4f:3d:05:67:bf:7a:20:cc:51:c1:51:2a:fd:2a: 14:05:fb:61:59:17:76:4e:a2:2b:22:fc:aa:12:61: c8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:EE:64:CF:46:B3:F6:49:56:22:1E:BB:1C:E4:F6:0D:F2:FF:34:13 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Au5kz0az9klWIh67HOT2DfL_NBM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.212.0/22 Signature Algorithm: sha256WithRSAEncryption 68:ef:84:c2:30:35:d1:bb:98:80:0d:6e:0f:2c:f3:98:5f:13: 1f:af:ec:de:6f:78:cd:95:3d:c0:ee:95:0e:e4:78:87:4e:93: 7c:26:74:52:4c:79:95:ca:5d:8c:d9:e9:8f:85:96:f9:d0:97: 81:b3:b6:29:b5:29:6a:04:13:3b:ac:26:f5:22:2d:55:e8:0b: d3:9c:2d:28:18:da:40:10:73:77:46:45:db:29:a3:f8:c4:57: 6e:5b:24:47:17:12:41:60:61:3f:57:c7:ba:03:bb:d2:44:b4: 4b:f6:57:34:25:52:14:8f:2a:76:11:ff:1c:c8:d3:2a:cc:38: 3f:4a:b6:77:4a:9e:22:b6:fd:4c:f2:b2:a2:a0:6b:e3:5e:21: 49:af:8f:4a:de:0c:7c:ab:90:11:65:ce:ad:45:92:3b:3e:bc: f4:34:4d:81:db:09:6b:c0:87:23:9f:12:88:53:88:41:93:b0: d8:9b:ae:39:63:62:7d:08:99:63:c8:af:33:7c:9c:d2:cb:70: 23:5c:b3:9b:46:69:89:01:15:4e:9d:ea:dd:c3:7d:b9:9b:ab: ce:f3:6b:f1:0c:3e:f8:18:e2:fe:54:87:5e:ed:cb:b0:3d:f9: e5:e0:34:ad:61:a1:c9:68:06:80:90:1c:f9:f9:43:52:df:43: 2e:22:c6:2e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDSEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjEzNDdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDAyRUU2NENGNDZCM0Y2 NDk1NjIyMUVCQjFDRTRGNjBERjJGRjM0MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwzJcOOJu/9rg2IT6tkREsY36iPcVWgEfy2SuENiHfApe3KZ4q ZNDeW/baTK31wpArQI4Me1RU2uxkKipUHhHAgMND5ioz2PY1yjbn8SKkTRWdWZyJ 37XwP0uvDBHHTc4gADypnleStX3psWYyoKBR+zaoyT1fx7VYyvf370OAC10SgQR7 J8J7jHFw2+KPmgZWLkAxXCyg7/c6y/MfEri5gA+AC7/wVn23e5CR8omzXB6pZEbt p/0i7rcmi71/iWE8FHU68xXGAKNCUSNH15ZmLGhtC+qvQjYPnsVyctXQVWxPPQVn v3ogzFHBUSr9KhQF+2FZF3ZOoisi/KoSYchHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAu5kz0az9klWIh67HOT2DfL/NBMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0F1NWt6MGF6OWtsV0loNjdIT1QyRGZMX05CTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS9QwDQYJKoZIhvcNAQELBQADggEBAGjvhMIwNdG7mIANbg8s85hfEx+v 7N5veM2VPcDulQ7keIdOk3wmdFJMeZXKXYzZ6Y+FlvnQl4Gztim1KWoEEzusJvUi LVXoC9OcLSgY2kAQc3dGRdspo/jEV25bJEcXEkFgYT9Xx7oDu9JEtEv2VzQlUhSP KnYR/xzI0yrMOD9KtndKniK2/UzysqKga+NeIUmvj0reDHyrkBFlzq1Fkjs+vPQ0 TYHbCWvAhyOfEohTiEGTsNibrjljYn0ImWPIrzN8nNLLcCNcs5tGaYkBFU6d6t3D fbmbq87za/EMPvgY4v5Uh17ty7A9+eXgNK1hocloBoCQHPn5Q1LfQy4ixi4= -----END CERTIFICATE-----Generated at Sat Apr 26 20:11:32 2025 by rpki-client