$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q60vShAXeZdRz8kyOyx0rP_CahI.roa File: Q60vShAXeZdRz8kyOyx0rP_CahI.roa (raw, json) Hash identifier: xUsJYODqDOvIGFrpJTb93HIL/AQwkpBN7MApUbtx7hc= Subject key identifier: 43:AD:2F:4A:10:17:79:97:51:CF:C9:32:3B:2C:74:AC:FF:C2:6A:12 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DBD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q60vShAXeZdRz8kyOyx0rP_CahI.roa Signing time: Tue 01 Apr 2025 02:24:47 +0000 ROA not before: Tue 01 Apr 2025 02:24:47 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3517 (0xdbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:24:47 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=43AD2F4A1017799751CFC9323B2C74ACFFC26A12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:59:72:fb:b6:17:c4:23:04:26:77:9a:02: 4c:30:4f:1a:75:4c:24:ff:0e:2c:b5:45:9a:f4:99: 0b:09:e0:3a:61:06:da:55:91:1c:29:e8:0b:01:de: 44:ce:08:56:1e:7f:83:26:24:05:d9:52:9d:be:63: 20:e7:c9:53:0a:87:d5:d4:73:51:39:d8:e7:57:fd: 8c:2a:e2:34:61:9e:f6:17:6a:bc:1d:37:00:dc:b8: f8:8e:e7:80:a4:31:75:72:f4:38:91:10:41:07:f3: 4b:36:28:17:db:64:a5:28:ce:e4:ec:2b:9c:a7:63: 09:89:6e:e9:9a:b8:46:7d:83:7a:b6:c0:fe:4e:0d: 26:db:ce:88:91:16:27:30:f7:2b:d0:44:c5:17:5b: 39:fb:9c:57:3c:96:2e:19:c7:51:8b:51:53:5e:dd: f8:8c:75:0b:c7:76:50:f4:c3:bc:4d:be:c1:7d:1b: ce:0c:72:14:e4:b4:08:74:89:c2:ba:0b:2e:b2:1c: b8:23:2d:b2:0c:87:5f:8f:59:e3:1d:e9:15:dc:43: 79:1a:2e:74:41:7c:ab:47:2b:22:57:66:de:70:5e: b7:d1:88:b8:b6:8e:17:a7:5c:78:69:25:16:34:c1: 2c:8c:29:ee:73:6f:73:56:91:e4:c1:eb:91:f7:39: 69:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:AD:2F:4A:10:17:79:97:51:CF:C9:32:3B:2C:74:AC:FF:C2:6A:12 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q60vShAXeZdRz8kyOyx0rP_CahI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.88.0/23 Signature Algorithm: sha256WithRSAEncryption 55:8c:e8:9b:a4:f8:38:92:de:cd:5a:49:6d:30:17:c7:0c:7b: 46:46:75:4d:54:20:78:a2:6c:1f:c9:12:7d:a3:8e:7d:3b:e9: ac:29:b4:b4:dd:bd:9e:19:40:a9:a9:f2:f6:a0:31:51:c8:7e: ae:e1:95:60:2e:f4:c4:62:bd:e1:fe:c3:64:13:bc:3c:2d:ce: 40:22:d2:7b:e2:bc:af:53:fe:8e:10:a6:60:1e:b3:24:3b:1a: eb:f6:1b:18:0f:02:aa:2c:2e:3b:26:ae:1e:32:3c:fd:5c:13: ad:67:b5:d1:78:8c:c4:fe:2c:3c:44:bc:72:58:5a:8d:ca:2b: ef:08:81:0c:cf:16:60:af:56:7c:5d:6d:4a:e0:24:3f:79:4e: 04:00:b2:8a:bc:be:76:a3:ab:b2:1d:47:b0:9e:cf:4e:d8:51: de:4c:ad:14:d2:4b:cf:d4:f9:a5:0a:33:52:3d:24:bd:18:95: 5f:59:20:ee:ec:76:78:ce:e1:a5:c5:a6:37:cd:6f:9d:22:8f: 15:e5:73:bb:f6:2c:3c:ec:b0:b3:64:3a:4b:2d:57:3a:9d:3b: 2c:19:3c:42:d9:db:64:3d:0c:d2:0c:b4:e9:a6:be:49:92:bb: 72:c5:47:82:ea:60:04:a2:18:63:fb:b9:ac:a0:d9:cf:0f:85: 97:42:a7:1d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDb0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI0NDdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQzQUQyRjRBMTAxNzc5 OTc1MUNGQzkzMjNCMkM3NEFDRkZDMjZBMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt4Fly+7YXxCMEJneaAkwwTxp1TCT/Diy1RZr0mQsJ4DphBtpV kRwp6AsB3kTOCFYef4MmJAXZUp2+YyDnyVMKh9XUc1E52OdX/Ywq4jRhnvYXarwd NwDcuPiO54CkMXVy9DiREEEH80s2KBfbZKUozuTsK5ynYwmJbumauEZ9g3q2wP5O DSbbzoiRFicw9yvQRMUXWzn7nFc8li4Zx1GLUVNe3fiMdQvHdlD0w7xNvsF9G84M chTktAh0icK6Cy6yHLgjLbIMh1+PWeMd6RXcQ3kaLnRBfKtHKyJXZt5wXrfRiLi2 jhenXHhpJRY0wSyMKe5zb3NWkeTB65H3OWnLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQ60vShAXeZdRz8kyOyx0rP/CahIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1E2MHZTaEFYZVpkUno4a3lPeXgwclBfQ2FoSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT1gwDQYJKoZIhvcNAQELBQADggEBAFWM6Juk+DiS3s1aSW0wF8cMe0ZG dU1UIHiibB/JEn2jjn076awptLTdvZ4ZQKmp8vagMVHIfq7hlWAu9MRiveH+w2QT vDwtzkAi0nvivK9T/o4QpmAesyQ7Guv2GxgPAqosLjsmrh4yPP1cE61ntdF4jMT+ LDxEvHJYWo3KK+8IgQzPFmCvVnxdbUrgJD95TgQAsoq8vnajq7IdR7Cez07YUd5M rRTSS8/U+aUKM1I9JL0YlV9ZIO7sdnjO4aXFpjfNb50ijxXlc7v2LDzssLNkOkst VzqdOywZPELZ22Q9DNIMtOmmvkmSu3LFR4LqYASiGGP7uayg2c8PhZdCpx0= -----END CERTIFICATE-----Generated at Sat Apr 26 18:20:47 2025 by rpki-client