$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/K41QET--4KczcA6ZRDHdV5m7lAw.roa File: K41QET--4KczcA6ZRDHdV5m7lAw.roa (raw, json) Hash identifier: dLQR1/3Avl+bAKvw8IwtZjxtHg1AixT8pixL6L8L87c= Subject key identifier: 2B:8D:50:11:3F:BE:E0:A7:33:70:0E:99:44:31:DD:57:99:BB:94:0C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B55 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/K41QET--4KczcA6ZRDHdV5m7lAw.roa Signing time: Tue 01 Apr 2025 01:33:19 +0000 ROA not before: Tue 01 Apr 2025 01:33:19 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2901 (0xb55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:33:19 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=2B8D50113FBEE0A733700E994431DD5799BB940C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d4:3a:a3:78:4f:ae:76:36:87:db:e6:36:44: 80:56:03:a6:3d:75:33:b8:8c:47:f6:92:c7:7b:ab: e8:50:62:d5:66:17:80:b4:f5:5e:56:6b:74:79:fe: 51:50:c0:6c:84:88:08:49:45:22:cb:a5:08:2e:ac: 91:30:78:cf:5c:39:9f:5a:7e:c3:96:98:87:92:df: 1e:68:57:82:a7:16:48:a0:11:dc:27:4b:80:56:0b: b4:cb:d3:59:b6:be:96:f9:46:73:7d:68:cf:73:bb: c3:82:b0:64:68:d9:a0:14:3c:24:e6:ba:5e:0d:b4: 29:43:fc:30:36:2b:22:16:c1:11:da:4b:00:d7:05: 08:0a:e7:44:b7:d1:9b:c6:fa:ce:84:47:8f:52:e3: 8f:f6:ac:88:b0:b2:2c:6f:98:d7:20:30:21:91:6c: df:a0:f2:27:ca:52:30:c5:e6:b7:f6:1c:e6:09:20: 06:e2:14:de:9b:18:d0:84:23:3b:2d:3c:c5:a3:84: e4:84:33:af:8b:21:79:05:3f:15:85:30:8d:5d:16: 5d:dc:fa:ae:05:43:23:9c:47:fa:08:f4:e7:a3:b3: 5c:67:2f:b4:a3:37:be:c2:17:0b:63:cd:df:c1:a1: c3:9c:c5:ea:69:c8:ad:c1:6c:54:44:56:99:2d:d2: a6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8D:50:11:3F:BE:E0:A7:33:70:0E:99:44:31:DD:57:99:BB:94:0C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/K41QET--4KczcA6ZRDHdV5m7lAw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.24.0/22 Signature Algorithm: sha256WithRSAEncryption 47:f9:c0:f5:1e:48:29:59:d5:a6:1c:f6:cd:b8:36:da:b3:62: 30:58:a0:fa:63:01:fa:e0:41:45:91:1a:34:2e:41:02:a2:57: 2d:ec:80:27:66:56:61:39:88:8a:50:0c:5b:d2:27:24:2d:90: 68:80:99:f1:37:43:99:61:89:5e:bd:50:1d:cb:73:99:d5:5a: 30:45:82:29:ab:c3:42:4f:cd:23:b0:d3:b9:90:7c:b5:a5:fb: 62:8d:d9:ff:ea:6c:e9:47:34:aa:6d:37:ad:01:4e:07:26:8d: 4e:63:fe:f7:2e:08:d6:ac:bb:97:8e:04:f7:be:19:ce:7d:4b: 61:5c:26:12:49:53:15:54:01:a1:4e:59:c9:e4:50:06:1b:1b: 41:ba:9e:97:fc:3b:a2:cb:1a:a3:e7:62:25:82:50:ff:90:ee: c0:62:0a:a9:4c:e5:43:f7:40:f8:9c:d3:c7:8b:84:1b:dc:e4: 7f:ad:2f:b4:db:b1:a2:e4:03:75:09:f8:92:bd:09:e0:9a:4d: 36:29:73:38:e2:d5:4c:65:25:32:b7:f9:f0:5e:12:67:3f:8a: d8:29:cc:63:2d:1a:dc:eb:2f:a6:6b:7a:73:8a:97:3c:a9:0b: 16:06:2a:2a:4f:14:19:f4:c1:9a:95:9d:52:61:92:41:87:99: f7:ab:f2:8a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC1UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTMzMTlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJCOEQ1MDExM0ZCRUUw QTczMzcwMEU5OTQ0MzFERDU3OTlCQjk0MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO1DqjeE+udjaH2+Y2RIBWA6Y9dTO4jEf2ksd7q+hQYtVmF4C0 9V5Wa3R5/lFQwGyEiAhJRSLLpQgurJEweM9cOZ9afsOWmIeS3x5oV4KnFkigEdwn S4BWC7TL01m2vpb5RnN9aM9zu8OCsGRo2aAUPCTmul4NtClD/DA2KyIWwRHaSwDX BQgK50S30ZvG+s6ER49S44/2rIiwsixvmNcgMCGRbN+g8ifKUjDF5rf2HOYJIAbi FN6bGNCEIzstPMWjhOSEM6+LIXkFPxWFMI1dFl3c+q4FQyOcR/oI9Oejs1xnL7Sj N77CFwtjzd/BocOcxeppyK3BbFREVpkt0qYrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUK41QET++4KczcA6ZRDHdV5m7lAwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0s0MVFFVC0tNEtjemNBNlpSREhkVjVtN2xBdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTxgwDQYJKoZIhvcNAQELBQADggEBAEf5wPUeSClZ1aYc9s24NtqzYjBY oPpjAfrgQUWRGjQuQQKiVy3sgCdmVmE5iIpQDFvSJyQtkGiAmfE3Q5lhiV69UB3L c5nVWjBFgimrw0JPzSOw07mQfLWl+2KN2f/qbOlHNKptN60BTgcmjU5j/vcuCNas u5eOBPe+Gc59S2FcJhJJUxVUAaFOWcnkUAYbG0G6npf8O6LLGqPnYiWCUP+Q7sBi CqlM5UP3QPic08eLhBvc5H+tL7TbsaLkA3UJ+JK9CeCaTTYpczji1UxlJTK3+fBe Emc/itgpzGMtGtzrL6ZrenOKlzypCxYGKipPFBn0wZqVnVJhkkGHmfer8oo= -----END CERTIFICATE-----Generated at Sat Apr 26 18:22:40 2025 by rpki-client