$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BKZM97oK_qCK7LMa-Y--F1KxNhA.roa File: BKZM97oK_qCK7LMa-Y--F1KxNhA.roa (raw, json) Hash identifier: TTqT9Ce/tjxCzEU3xgOK8WcTXYDBnWBH03WGIylETko= Subject key identifier: 04:A6:4C:F7:BA:0A:FE:A0:8A:EC:B3:1A:F9:8F:BE:17:52:B1:36:10 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0CC2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BKZM97oK_qCK7LMa-Y--F1KxNhA.roa Signing time: Tue 01 Apr 2025 02:05:50 +0000 ROA not before: Tue 01 Apr 2025 02:05:50 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:05:50 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=04A64CF7BA0AFEA08AECB31AF98FBE1752B13610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:57:5d:bf:00:eb:03:6e:18:b0:e4:4d:58:7b: 7b:a4:ab:45:48:d7:76:a9:70:49:2f:84:d2:f5:0b: 4b:65:5d:6b:57:e8:00:f7:55:8d:a1:88:84:d0:60: 8d:2a:f1:b4:29:20:f0:db:ba:b5:4f:80:79:73:1f: f9:03:05:dd:31:f9:71:dd:3f:a1:46:71:43:c6:93: cd:ac:d9:a4:ba:01:b7:e6:3f:6c:f7:43:2e:5a:57: 88:a8:ad:e3:8b:81:7f:34:18:ff:f0:a7:98:84:48: 72:11:62:ab:a9:ce:03:a5:dd:90:3f:cb:24:f2:7d: dd:b2:23:69:2d:6b:ac:c3:9a:d6:30:7e:78:13:f3: 0a:24:21:09:05:7e:95:a5:a6:92:71:b7:9a:1c:31: cf:2d:9c:cd:fe:80:ca:5e:65:9a:5c:2f:03:ee:66: 9e:de:d7:1e:bd:b2:67:68:f7:33:9e:ab:72:07:94: ff:7f:da:7b:46:5c:26:85:0c:c6:cb:7f:9d:55:4b: 82:9c:41:ff:5d:af:b5:48:ac:8d:99:59:23:74:d9: d9:28:6c:53:ac:46:50:ed:30:f2:de:6a:7f:b0:76: a6:20:1f:8e:13:bd:5f:c9:6e:02:2b:3f:f4:a7:3d: e7:50:7c:f4:67:80:21:d2:9d:bf:a1:5c:3e:74:69: e4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A6:4C:F7:BA:0A:FE:A0:8A:EC:B3:1A:F9:8F:BE:17:52:B1:36:10 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BKZM97oK_qCK7LMa-Y--F1KxNhA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.160.0/20 Signature Algorithm: sha256WithRSAEncryption 93:77:60:0d:4b:bb:c3:c0:50:f8:12:5c:e6:c9:fa:cc:54:a9: e6:af:1d:f3:3e:84:96:71:4e:29:53:6d:65:18:86:f3:94:46: 31:44:83:af:cf:db:cd:51:be:c8:6d:79:a4:fc:21:b9:bf:6b: c6:fe:08:d3:12:ae:56:17:42:56:a3:9f:18:5f:01:26:98:f0: b3:99:33:65:dd:e0:d4:16:57:fa:18:1f:99:29:1e:6b:a1:a3: 7f:08:2c:5d:e2:2b:2a:27:c8:7b:07:d5:ed:72:ca:6e:ac:21: 80:41:df:55:0d:8b:d6:31:c3:e9:f7:a4:c9:5b:d5:0d:1d:cc: f5:1c:0b:e2:19:82:c5:ba:5a:8d:8c:84:20:9c:da:48:1c:6e: 33:a1:0c:80:c7:37:81:e4:89:0a:97:f4:e8:33:ca:4e:7a:bb: c6:df:61:33:23:c9:2f:bc:0a:4a:c5:82:42:14:52:bd:ee:01: c5:7d:44:b8:eb:c5:a5:bd:5f:47:bb:d8:5a:7b:f7:b8:2d:c8: d8:c8:e8:dd:04:bb:96:08:bf:24:52:5a:f3:55:b0:d8:f4:b6: 9b:96:31:3d:a5:a9:b4:fd:11:94:03:e2:36:5d:4f:f3:50:89: e7:af:2a:11:3f:da:0e:11:e4:89:20:5e:60:c3:92:6e:12:38: ac:6f:7d:bc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjA1NTBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA0QTY0Q0Y3QkEwQUZF QTA4QUVDQjMxQUY5OEZCRTE3NTJCMTM2MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpV12/AOsDbhiw5E1Ye3ukq0VI13apcEkvhNL1C0tlXWtX6AD3 VY2hiITQYI0q8bQpIPDburVPgHlzH/kDBd0x+XHdP6FGcUPGk82s2aS6AbfmP2z3 Qy5aV4ioreOLgX80GP/wp5iESHIRYqupzgOl3ZA/yyTyfd2yI2kta6zDmtYwfngT 8wokIQkFfpWlppJxt5ocMc8tnM3+gMpeZZpcLwPuZp7e1x69smdo9zOeq3IHlP9/ 2ntGXCaFDMbLf51VS4KcQf9dr7VIrI2ZWSN02dkobFOsRlDtMPLean+wdqYgH44T vV/JbgIrP/SnPedQfPRngCHSnb+hXD50aeTrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBKZM97oK/qCK7LMa+Y++F1KxNhAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JLWk05N29LX3FDSzdMTWEtWS0tRjFLeE5oQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBS6AwDQYJKoZIhvcNAQELBQADggEBAJN3YA1Lu8PAUPgSXObJ+sxUqeav HfM+hJZxTilTbWUYhvOURjFEg6/P281RvshteaT8Ibm/a8b+CNMSrlYXQlajnxhf ASaY8LOZM2Xd4NQWV/oYH5kpHmuho38ILF3iKyonyHsH1e1yym6sIYBB31UNi9Yx w+n3pMlb1Q0dzPUcC+IZgsW6Wo2MhCCc2kgcbjOhDIDHN4HkiQqX9Ogzyk56u8bf YTMjyS+8CkrFgkIUUr3uAcV9RLjrxaW9X0e72Fp797gtyNjI6N0Eu5YIvyRSWvNV sNj0tpuWMT2lqbT9EZQD4jZdT/NQieevKhE/2g4R5IkgXmDDkm4SOKxvfbw= -----END CERTIFICATE-----Generated at Sat Apr 26 18:58:51 2025 by rpki-client