$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BZ-UajwpEd9eJxAWk5jdKJK-tls.roa File: BZ-UajwpEd9eJxAWk5jdKJK-tls.roa (raw, json) Hash identifier: 1Qg+qhzNAP9ykY4OwnOa/EbPFU//F6fmZVf+2lhdYk0= Subject key identifier: 05:9F:94:6A:3C:29:11:DF:5E:27:10:16:93:98:DD:28:92:BE:B6:5B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BC3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BZ-UajwpEd9eJxAWk5jdKJK-tls.roa Signing time: Tue 01 Apr 2025 01:43:46 +0000 ROA not before: Tue 01 Apr 2025 01:43:46 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3011 (0xbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:46 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=059F946A3C2911DF5E2710169398DD2892BEB65B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ba:e7:fd:4e:97:2d:31:d6:c9:56:e9:65:cb: 26:9b:16:5a:3e:85:75:59:2c:ea:0c:24:6c:21:06: 8d:c9:bc:fc:55:dc:7e:84:7b:f4:e4:29:8e:14:a4: 25:66:fe:f0:14:9f:92:1c:40:96:ff:6f:a7:b3:0e: 4b:f8:d1:79:5e:66:90:a4:cd:49:1d:bd:f8:93:98: fc:28:e4:70:df:00:f4:cc:57:5b:96:46:4e:b8:d5: 75:5d:4b:6d:04:84:50:cc:46:70:a6:99:1c:8c:1f: c7:20:f1:93:33:ac:28:49:b2:11:6f:ce:24:af:2a: 5f:8b:63:7d:1f:d2:fa:c7:f2:df:42:40:45:cd:92: 86:15:ad:8f:9e:d7:51:53:8e:58:03:1e:cb:1f:a2: 7f:dd:6e:6e:45:26:0c:2e:95:e9:cf:13:35:b9:b4: dc:36:70:79:e7:95:ac:a8:5e:06:8e:09:dc:30:2d: d7:b6:12:ea:6d:c6:da:06:d6:1c:00:02:20:34:a6: e0:20:3f:3d:06:fc:bd:89:91:ef:aa:56:86:4b:36: c8:97:c3:12:31:6a:72:af:14:47:ba:fb:f3:3b:7b: 8f:64:18:5d:57:74:d9:65:44:37:b6:db:3f:87:95: 94:2d:80:6a:83:da:03:cd:4d:d7:0a:33:a9:9c:3b: d3:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9F:94:6A:3C:29:11:DF:5E:27:10:16:93:98:DD:28:92:BE:B6:5B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BZ-UajwpEd9eJxAWk5jdKJK-tls.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.32.0/22 Signature Algorithm: sha256WithRSAEncryption b0:d4:01:f0:51:24:c0:84:c4:15:0e:3b:16:05:94:3a:18:95: bb:d4:8c:ae:17:12:9f:e9:e9:de:e6:0e:ec:c4:e8:77:b4:aa: ba:85:85:9c:41:4b:e5:9a:c2:9b:60:89:00:33:52:76:2c:e2: e5:91:3b:b8:cb:b6:3b:cb:6d:66:cc:95:68:9d:51:e2:95:88: b6:b2:4c:25:4e:f0:5c:b6:5f:a9:67:a0:76:9f:d8:4c:6e:93: ff:b7:f4:5a:38:f2:34:39:3d:e8:9a:75:0e:91:ad:2e:f3:f6: 07:b9:fc:a4:6c:1e:c2:c6:9d:df:1a:2d:12:4c:ab:b2:2d:fc: 90:10:32:85:33:af:3d:5b:07:2a:8d:5c:85:34:28:29:eb:4a: 28:d3:c2:4d:32:f7:92:cd:82:0a:fe:0f:79:cc:98:c0:dc:6d: d8:10:2f:ff:c5:4e:68:06:c4:97:58:74:33:c8:78:95:9a:b5: e0:d8:b2:ef:22:80:e6:50:0b:8a:c4:7d:c3:32:86:83:a3:a0: 95:79:9c:01:77:7b:e6:98:39:a4:8f:54:c7:5d:d1:1c:1e:36: 61:6b:05:9b:b8:50:c9:a1:e1:f4:34:f6:c3:6a:dd:03:be:61: ae:bd:82:e5:25:f0:e8:4a:b1:66:6f:ee:a3:c3:20:a8:e9:68: 71:82:b5:2c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzNDZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA1OUY5NDZBM0MyOTEx REY1RTI3MTAxNjkzOThERDI4OTJCRUI2NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGuuf9TpctMdbJVullyyabFlo+hXVZLOoMJGwhBo3JvPxV3H6E e/TkKY4UpCVm/vAUn5IcQJb/b6ezDkv40XleZpCkzUkdvfiTmPwo5HDfAPTMV1uW Rk641XVdS20EhFDMRnCmmRyMH8cg8ZMzrChJshFvziSvKl+LY30f0vrH8t9CQEXN koYVrY+e11FTjlgDHssfon/dbm5FJgwulenPEzW5tNw2cHnnlayoXgaOCdwwLde2 EuptxtoG1hwAAiA0puAgPz0G/L2Jke+qVoZLNsiXwxIxanKvFEe6+/M7e49kGF1X dNllRDe22z+HlZQtgGqD2gPNTdcKM6mcO9O/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBZ+UajwpEd9eJxAWk5jdKJK+tlswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JaLVVhandwRWQ5ZUp4QVdrNWpkS0pLLXRscy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTyAwDQYJKoZIhvcNAQELBQADggEBALDUAfBRJMCExBUOOxYFlDoYlbvU jK4XEp/p6d7mDuzE6He0qrqFhZxBS+WawptgiQAzUnYs4uWRO7jLtjvLbWbMlWid UeKViLayTCVO8Fy2X6lnoHaf2Exuk/+39Fo48jQ5PeiadQ6RrS7z9ge5/KRsHsLG nd8aLRJMq7It/JAQMoUzrz1bByqNXIU0KCnrSijTwk0y95LNggr+D3nMmMDcbdgQ L//FTmgGxJdYdDPIeJWateDYsu8igOZQC4rEfcMyhoOjoJV5nAF3e+aYOaSPVMdd 0RweNmFrBZu4UMmh4fQ09sNq3QO+Ya69guUl8OhKsWZv7qPDIKjpaHGCtSw= -----END CERTIFICATE-----Generated at Sat Apr 26 18:18:23 2025 by rpki-client