$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WDkH6nNz4rJnDsVekpSeOOecufI.roa File: WDkH6nNz4rJnDsVekpSeOOecufI.roa (raw, json) Hash identifier: Sv0qHIZTLmryqzk5CzGA5zdf2o9h6P312Z13bIVoSMQ= Subject key identifier: 58:39:07:EA:73:73:E2:B2:67:0E:C5:5E:92:94:9E:38:E7:9C:B9:F2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BA3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WDkH6nNz4rJnDsVekpSeOOecufI.roa Signing time: Tue 01 Apr 2025 01:39:54 +0000 ROA not before: Tue 01 Apr 2025 01:39:54 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.78.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2979 (0xba3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:39:54 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=583907EA7373E2B2670EC55E92949E38E79CB9F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:36:62:74:f5:e9:dd:ac:5e:2f:77:36:1b:dd: ae:1c:65:c5:44:4c:c7:1c:de:5f:fe:7b:62:e6:61: 8f:be:2f:b8:0c:b1:1a:1c:2f:3c:0f:a0:81:89:f2: ed:39:a8:c0:4b:5b:f9:0a:22:d3:db:3a:81:51:eb: bf:05:fe:37:29:fc:01:8a:de:75:3f:6c:f2:64:64: 2f:c0:58:cc:ce:82:12:07:be:0e:3b:65:97:f1:d0: ae:e3:1e:d4:15:a5:04:29:39:67:d5:19:47:c6:d8: 8a:06:5e:53:09:29:87:52:c0:3d:c0:f9:02:a8:4c: 7e:f0:47:ac:24:48:aa:c4:e0:cb:f6:fe:9e:8f:ea: 00:b4:67:99:f5:63:dc:4c:77:12:6f:3f:ba:a6:ee: 03:88:b6:ee:bd:3c:6d:5b:ea:4b:99:b3:e0:9d:9d: 28:20:93:de:b4:c4:ad:7b:22:a8:ed:35:08:44:cd: 9b:1f:6d:0c:d5:77:e1:d4:8b:3c:8a:3f:23:91:e3: 29:cf:c8:f8:bb:f3:9c:b5:20:27:57:c9:b9:14:d6: 4d:8f:49:6e:36:9c:64:02:09:c6:b2:aa:16:29:e7: da:31:e4:bd:16:a0:d2:fb:7c:a1:2e:81:9b:46:61: 26:20:71:29:29:f6:de:7c:53:9e:f5:52:8e:bd:ca: 20:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:39:07:EA:73:73:E2:B2:67:0E:C5:5E:92:94:9E:38:E7:9C:B9:F2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WDkH6nNz4rJnDsVekpSeOOecufI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.12.0/22 Signature Algorithm: sha256WithRSAEncryption a9:fc:0d:bb:a4:79:11:2f:4e:9d:f7:7f:97:e2:06:99:9c:44: f5:e2:4b:e8:47:71:60:57:d0:73:e3:87:1f:d3:9e:9b:79:ee: c0:25:69:93:cb:d5:03:07:9b:4b:89:cb:19:11:d5:35:39:46: a6:c5:7f:9c:48:a5:dc:e8:d2:11:a7:87:ea:60:10:bf:2c:9c: 91:ff:b3:46:84:b9:52:4b:42:e5:2d:31:a0:8c:d3:c5:55:c5: bb:fb:e0:ca:ca:4b:f0:4b:78:c1:cc:1c:bf:a1:f0:6f:44:33: 73:c6:54:38:e7:c5:81:6c:91:5e:58:96:2d:66:61:0d:09:31: 03:f2:e3:45:db:b5:c6:e4:77:8e:48:b0:a6:2d:0c:e5:fa:c6: b6:ef:c5:96:ed:3f:8e:e6:40:c2:3c:d5:a1:b1:60:0a:39:0d: 17:09:bf:58:1e:db:c7:c6:3b:7f:39:76:a7:8d:59:12:f2:ef: fe:65:72:dc:42:43:41:a6:c3:f4:4b:b0:a2:12:20:87:e5:21: 60:d4:d4:27:c5:1d:78:cf:35:26:3f:c5:db:d5:9d:82:6e:e9: 96:e5:26:4c:4c:2c:c4:96:bd:4d:4f:56:99:26:b7:18:df:e4: 75:1f:7d:9e:d1:47:d9:f2:f3:a4:80:7e:24:1b:44:4b:ae:b0: 42:85:e4:71 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM5NTRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU4MzkwN0VBNzM3M0Uy QjI2NzBFQzU1RTkyOTQ5RTM4RTc5Q0I5RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD9NmJ09endrF4vdzYb3a4cZcVETMcc3l/+e2LmYY++L7gMsRoc LzwPoIGJ8u05qMBLW/kKItPbOoFR678F/jcp/AGK3nU/bPJkZC/AWMzOghIHvg47 ZZfx0K7jHtQVpQQpOWfVGUfG2IoGXlMJKYdSwD3A+QKoTH7wR6wkSKrE4Mv2/p6P 6gC0Z5n1Y9xMdxJvP7qm7gOItu69PG1b6kuZs+CdnSggk960xK17IqjtNQhEzZsf bQzVd+HUizyKPyOR4ynPyPi785y1ICdXybkU1k2PSW42nGQCCcayqhYp59ox5L0W oNL7fKEugZtGYSYgcSkp9t58U571Uo69yiBrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWDkH6nNz4rJnDsVekpSeOOecufIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1dEa0g2bk56NHJKbkRzVmVrcFNlT09lY3VmSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTgwwDQYJKoZIhvcNAQELBQADggEBAKn8DbukeREvTp33f5fiBpmcRPXi S+hHcWBX0HPjhx/Tnpt57sAlaZPL1QMHm0uJyxkR1TU5RqbFf5xIpdzo0hGnh+pg EL8snJH/s0aEuVJLQuUtMaCM08VVxbv74MrKS/BLeMHMHL+h8G9EM3PGVDjnxYFs kV5Yli1mYQ0JMQPy40Xbtcbkd45IsKYtDOX6xrbvxZbtP47mQMI81aGxYAo5DRcJ v1ge28fGO385dqeNWRLy7/5lctxCQ0Gmw/RLsKISIIflIWDU1CfFHXjPNSY/xdvV nYJu6ZblJkxMLMSWvU1PVpkmtxjf5HUffZ7RR9ny86SAfiQbREuusEKF5HE= -----END CERTIFICATE-----Generated at Sat Apr 26 19:44:26 2025 by rpki-client