$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Uo2sJjqIwwkEVjlILTWN7xvmovQ.roa File: Uo2sJjqIwwkEVjlILTWN7xvmovQ.roa (raw, json) Hash identifier: cnaztnwToAPqtzH6jyZLFfeG7jlfm89cbWPfWwcsX9M= Subject key identifier: 52:8D:AC:26:3A:88:C3:09:04:56:39:48:2D:35:8D:EF:1B:E6:A2:F4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B7B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Uo2sJjqIwwkEVjlILTWN7xvmovQ.roa Signing time: Tue 01 Apr 2025 01:36:49 +0000 ROA not before: Tue 01 Apr 2025 01:36:49 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.210.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2939 (0xb7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:36:49 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=528DAC263A88C309045639482D358DEF1BE6A2F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:96:e1:7f:f6:f1:8e:8e:32:c0:8b:40:c8:85: 7c:bb:d8:66:b6:27:4d:1e:58:a8:1b:b2:e5:ac:7c: 4b:22:f4:1f:71:d5:7c:06:ab:cf:d4:c9:f5:a1:ba: c5:1b:34:55:69:88:07:17:d3:d6:20:c5:80:9d:28: 5f:e0:84:41:a8:14:e6:1c:19:d9:e0:de:da:05:ba: af:ff:9c:98:6a:08:eb:13:fb:4e:ed:6c:c7:64:6f: 4d:32:4b:43:b8:f0:6f:a1:e0:c7:ec:28:cb:00:03: 16:d0:47:30:6c:1c:82:8c:3b:e2:35:33:ff:4f:4e: 59:90:37:bb:c4:a1:3b:09:c3:1a:11:ee:09:e2:fa: e9:7c:d9:88:66:49:84:f5:6a:00:fb:4f:bb:b2:d0: 10:f7:7a:2a:fb:2b:ab:83:ff:b4:5f:49:99:80:35: 01:b6:b1:59:ba:b2:3c:7a:e6:ce:7e:ab:9c:da:dc: 93:56:c9:d9:19:ff:cd:39:d5:b1:65:92:e2:50:c3: de:91:b2:45:96:2a:1a:32:ea:e9:01:79:1a:0e:4e: c1:f7:1b:03:ca:61:95:0f:a8:49:cc:8e:f4:a4:0c: bc:76:e5:9d:e4:96:87:a7:10:63:42:ea:90:6e:c4: 20:4d:65:64:6e:df:f6:6f:6a:75:98:6e:3c:84:17: 34:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:8D:AC:26:3A:88:C3:09:04:56:39:48:2D:35:8D:EF:1B:E6:A2:F4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Uo2sJjqIwwkEVjlILTWN7xvmovQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.64.0/22 Signature Algorithm: sha256WithRSAEncryption bd:a6:8f:a5:5f:ee:00:d3:c2:4f:5b:cf:bd:2b:08:47:0c:cd: b0:c2:28:89:e6:41:41:83:c6:28:04:09:63:82:c2:ba:db:65: 94:0d:2b:d0:cb:15:97:b6:69:2c:4f:5b:d7:3c:f2:8e:c3:2a: fa:08:53:f2:29:ec:df:bc:30:14:39:ff:a4:63:1f:52:45:57: 25:36:8c:3e:4f:33:1e:0f:e7:01:4a:a5:65:e1:80:b7:5e:15: 29:ae:46:08:10:3a:63:80:8f:23:a4:28:7a:fa:e9:78:17:9c: b1:e7:be:22:5c:2b:3b:37:f7:67:5e:7d:33:e6:8b:5b:fa:73: e3:1c:f1:8d:42:bb:a8:f2:42:2a:b1:4d:66:ab:7c:bf:ce:43: 56:f0:ae:1b:71:44:f7:ef:ce:48:66:63:c6:80:b4:ae:3c:68: 1a:cb:43:da:48:43:85:be:5c:dc:57:de:9b:f2:02:f0:da:18: 81:84:44:c8:74:5c:88:23:8d:77:ac:2e:23:71:df:eb:25:ea: 10:36:2d:ee:bf:4f:f7:41:c3:8d:83:4f:9d:a4:33:11:49:06: ca:19:52:63:22:79:0b:75:7d:0e:cd:5d:56:dd:7e:ee:4a:0e: 09:52:76:df:4c:a8:a1:64:10:b6:e9:cd:d0:cf:03:58:6a:b8: 67:e0:6a:4b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC3swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM2NDlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDUyOERBQzI2M0E4OEMz MDkwNDU2Mzk0ODJEMzU4REVGMUJFNkEyRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDluF/9vGOjjLAi0DIhXy72Ga2J00eWKgbsuWsfEsi9B9x1XwG q8/UyfWhusUbNFVpiAcX09YgxYCdKF/ghEGoFOYcGdng3toFuq//nJhqCOsT+07t bMdkb00yS0O48G+h4MfsKMsAAxbQRzBsHIKMO+I1M/9PTlmQN7vEoTsJwxoR7gni +ul82YhmSYT1agD7T7uy0BD3eir7K6uD/7RfSZmANQG2sVm6sjx65s5+q5za3JNW ydkZ/8051bFlkuJQw96RskWWKhoy6ukBeRoOTsH3GwPKYZUPqEnMjvSkDLx25Z3k loenEGNC6pBuxCBNZWRu3/ZvanWYbjyEFzTVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUo2sJjqIwwkEVjlILTWN7xvmovQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VvMnNKanFJd3drRVZqbElMVFdON3h2bW92US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0kAwDQYJKoZIhvcNAQELBQADggEBAL2mj6Vf7gDTwk9bz70rCEcMzbDC KInmQUGDxigECWOCwrrbZZQNK9DLFZe2aSxPW9c88o7DKvoIU/Ip7N+8MBQ5/6Rj H1JFVyU2jD5PMx4P5wFKpWXhgLdeFSmuRggQOmOAjyOkKHr66XgXnLHnviJcKzs3 92defTPmi1v6c+Mc8Y1Cu6jyQiqxTWarfL/OQ1bwrhtxRPfvzkhmY8aAtK48aBrL Q9pIQ4W+XNxX3pvyAvDaGIGERMh0XIgjjXesLiNx3+sl6hA2Le6/T/dBw42DT52k MxFJBsoZUmMieQt1fQ7NXVbdfu5KDglSdt9MqKFkELbpzdDPA1hquGfgaks= -----END CERTIFICATE-----Generated at Sat Apr 26 19:43:19 2025 by rpki-client