$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NZQQHUf2ie83D51ziaftcsppaEI.roa File: NZQQHUf2ie83D51ziaftcsppaEI.roa (raw, json) Hash identifier: MF6YR6i/WL/F3EeNfscXVYc5Fmkbqkc39F1qsIp47Co= Subject key identifier: 35:94:10:1D:47:F6:89:EF:37:0F:9D:73:89:A7:ED:72:CA:69:68:42 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D3C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NZQQHUf2ie83D51ziaftcsppaEI.roa Signing time: Tue 01 Apr 2025 02:17:04 +0000 ROA not before: Tue 01 Apr 2025 02:17:04 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 110.158.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3388 (0xd3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:17:04 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=3594101D47F689EF370F9D7389A7ED72CA696842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4f:d6:ef:8a:d4:46:1f:ad:13:f9:e5:22:61: fa:cd:ed:21:39:fd:3f:b3:43:09:17:64:7f:b0:fc: ee:76:30:a5:67:e9:54:bb:aa:90:bf:27:71:42:d1: 2e:55:8c:96:c7:de:da:fc:e9:4c:10:71:20:21:e3: 8d:ff:73:ca:e4:b1:30:1c:c0:7b:8f:4f:b4:97:e7: 3b:82:43:c8:17:7b:cc:1d:67:05:52:69:73:4f:dc: ab:75:16:73:fd:bd:a5:3f:0a:1d:42:7d:58:22:26: 3e:7b:65:5b:f3:3a:6e:28:57:cc:db:97:b5:83:a5: ba:c8:26:f4:9c:3e:c0:f6:e4:ae:fd:cc:f1:bd:64: b4:7c:ad:bb:ef:14:f8:ab:a5:ff:e6:30:23:bc:bd: a2:0d:ef:8d:83:e0:69:2f:96:dd:c2:77:e4:21:2d: df:92:ca:76:8b:70:61:fa:df:e2:83:8e:63:5e:58: 02:fb:c2:e3:0e:44:22:3d:b3:db:26:3c:9c:3e:66: 07:d1:d1:22:27:2a:03:88:43:a9:cf:1c:f8:3c:67: b3:71:61:b7:24:9d:88:e8:e4:99:7f:81:db:4e:2f: 6c:8d:af:86:a1:fa:6d:40:69:b2:33:de:fa:3a:96: e6:b7:1c:12:1f:04:59:cd:ff:bd:cf:38:1a:d1:a8: e2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:94:10:1D:47:F6:89:EF:37:0F:9D:73:89:A7:ED:72:CA:69:68:42 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NZQQHUf2ie83D51ziaftcsppaEI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.128.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:7a:b3:92:6c:c9:ad:ba:57:7a:ca:76:94:5c:c4:d4:92:88: 11:c5:cf:0f:bb:01:5d:f6:51:87:bf:54:5e:6d:c6:88:c9:41: 06:91:0f:07:b3:69:0b:3d:3a:bd:37:fa:52:da:49:f6:5c:58: 9c:86:ef:b5:f5:8f:53:7d:28:43:0c:75:53:3e:ca:9f:7c:20: ad:5e:7c:04:62:fd:2a:df:19:d0:7a:7a:a8:55:6e:72:ac:a5: af:85:3d:64:b0:2b:94:61:b0:08:d2:07:f1:fc:74:57:ac:06: be:9f:3a:d1:c4:d0:5a:bb:02:d4:eb:31:13:49:c4:74:72:e7: ff:08:e5:8a:cc:84:f5:4a:02:61:44:f5:a0:9d:2d:33:e8:f1: db:9e:4d:d8:95:01:c6:8a:17:3f:4e:f9:e0:8a:f6:a1:92:8b: 9a:fc:4e:fb:8f:64:35:a2:0c:36:b6:b1:9f:0d:2a:cb:07:0a: e5:86:c6:93:b4:b6:9f:d8:f4:c8:53:05:83:1e:e4:e8:94:0a: fd:e4:f2:85:78:62:45:65:e5:ae:a4:54:c5:a8:3e:f9:d9:db: 29:09:b2:3d:4b:3c:87:4e:ca:7a:95:05:7c:b4:63:1d:92:8c: 10:19:2a:cf:c5:ab:4d:7f:da:22:1f:42:7a:f0:bf:b6:e4:21: ea:bf:aa:ff -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDTwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE3MDRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDM1OTQxMDFENDdGNjg5 RUYzNzBGOUQ3Mzg5QTdFRDcyQ0E2OTY4NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgT9bvitRGH60T+eUiYfrN7SE5/T+zQwkXZH+w/O52MKVn6VS7 qpC/J3FC0S5VjJbH3tr86UwQcSAh443/c8rksTAcwHuPT7SX5zuCQ8gXe8wdZwVS aXNP3Kt1FnP9vaU/Ch1CfVgiJj57ZVvzOm4oV8zbl7WDpbrIJvScPsD25K79zPG9 ZLR8rbvvFPirpf/mMCO8vaIN742D4Gkvlt3Cd+QhLd+SynaLcGH63+KDjmNeWAL7 wuMORCI9s9smPJw+ZgfR0SInKgOIQ6nPHPg8Z7NxYbcknYjo5Jl/gdtOL2yNr4ah +m1AabIz3vo6lua3HBIfBFnN/73POBrRqOJdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNZQQHUf2ie83D51ziaftcsppaEIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05aUVFIVWYyaWU4M0Q1MXppYWZ0Y3NwcGFFSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFunoAwDQYJKoZIhvcNAQELBQADggEBAIt6s5Jsya26V3rKdpRcxNSSiBHF zw+7AV32UYe/VF5txojJQQaRDwezaQs9Or03+lLaSfZcWJyG77X1j1N9KEMMdVM+ yp98IK1efARi/SrfGdB6eqhVbnKspa+FPWSwK5RhsAjSB/H8dFesBr6fOtHE0Fq7 AtTrMRNJxHRy5/8I5YrMhPVKAmFE9aCdLTPo8dueTdiVAcaKFz9O+eCK9qGSi5r8 TvuPZDWiDDa2sZ8NKssHCuWGxpO0tp/Y9MhTBYMe5OiUCv3k8oV4YkVl5a6kVMWo PvnZ2ykJsj1LPIdOynqVBXy0Yx2SjBAZKs/Fq01/2iIfQnrwv7bkIeq/qv8= -----END CERTIFICATE-----Generated at Sat Apr 26 18:25:10 2025 by rpki-client