$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WKowIzCAnEeXFuQ1Cn-s3tYLBJc.roa File: WKowIzCAnEeXFuQ1Cn-s3tYLBJc.roa (raw, json) Hash identifier: 9nMBwbvm7nslzyIePClAdTk2k7o7pAoZSJ+gP14EIyA= Subject key identifier: 58:AA:30:23:30:80:9C:47:97:16:E4:35:0A:7F:AC:DE:D6:0B:04:97 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B8B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WKowIzCAnEeXFuQ1Cn-s3tYLBJc.roa Signing time: Tue 01 Apr 2025 01:36:56 +0000 ROA not before: Tue 01 Apr 2025 01:36:56 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:36:56 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=58AA302330809C479716E4350A7FACDED60B0497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:08:a3:a7:fe:98:2d:77:e3:e5:d9:ed:7e:03: e1:e3:92:35:19:f6:42:bb:81:46:d8:4e:8b:f4:b9: 33:eb:17:4c:9e:35:1e:cd:93:c7:a5:0d:5c:6a:fe: b3:99:26:8a:b4:cd:e6:80:84:fd:85:00:56:0e:fb: 94:53:e1:13:72:33:67:4b:14:ea:1b:a8:89:9e:db: a9:2e:db:00:bf:fc:d5:f5:cd:74:16:c0:65:c6:c8: 59:98:1f:73:64:f2:15:f7:ef:6a:4c:b7:6b:f7:ce: a3:91:aa:de:4c:f8:78:80:35:a2:8b:31:93:a7:89: 13:e4:60:8f:a9:fc:47:81:f2:2e:60:de:8e:19:9a: 88:22:4b:9e:a0:e4:c4:ed:2f:66:2f:4a:f8:67:10: a9:d3:51:66:43:15:69:95:77:2e:24:84:c2:8a:6b: 95:66:ab:0e:6a:28:07:24:f5:c6:46:06:88:ba:35: 99:ff:cc:e0:e1:b6:63:51:7a:a2:68:02:27:8f:29: 44:e4:bc:28:8e:5e:b0:74:cb:32:dc:24:2f:33:6b: 57:c6:06:6d:5c:6f:d8:33:82:5c:25:bf:f3:74:fc: c0:cd:17:bc:a4:bc:9e:25:58:51:2e:10:8b:f6:00: 9d:7f:3f:35:14:39:a6:ef:b8:de:49:e9:fe:91:0f: 1c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:AA:30:23:30:80:9C:47:97:16:E4:35:0A:7F:AC:DE:D6:0B:04:97 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WKowIzCAnEeXFuQ1Cn-s3tYLBJc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.232.0/22 Signature Algorithm: sha256WithRSAEncryption b8:93:c6:2c:6a:ac:40:d0:4c:39:8c:04:38:c5:9d:52:1a:25: a1:1d:34:ef:02:46:ad:71:55:93:35:57:59:66:01:aa:8e:35: 4c:de:c6:4b:d6:cc:e0:20:e5:7d:0a:0c:90:6c:83:10:9a:5e: b0:df:42:32:03:44:a1:eb:3c:eb:ba:f8:b9:68:0a:8d:2f:12: 28:ae:88:e4:c0:e7:d9:09:8c:27:b5:21:fa:05:b0:1a:c4:da: 11:a3:72:02:8f:87:f2:20:60:b1:86:fc:0d:a7:fc:bc:3f:67: 42:9a:11:c5:82:0d:3f:9c:6b:3f:80:fd:33:df:13:e6:d8:9d: 36:23:fa:69:04:76:d5:48:a4:09:7a:5a:57:62:88:47:17:2b: 97:93:82:4f:55:62:2e:ca:30:81:85:8d:21:95:e2:62:d0:2c: c7:f1:c5:17:d5:d1:61:ce:73:13:30:96:23:32:e5:10:2e:e7: 91:5e:82:c8:e2:fd:4a:84:f3:49:bb:db:c0:b6:96:a0:12:9f: 0c:e7:21:36:31:67:ab:91:e9:bb:32:75:86:07:6b:0c:33:26: d8:56:cd:4e:a3:eb:cc:18:dc:bc:2c:06:57:a4:89:12:a6:97: 6f:8f:bb:0e:45:87:c8:36:4a:fc:48:f1:79:e5:83:5e:fd:cd: 6e:28:b4:5e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC4swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM2NTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU4QUEzMDIzMzA4MDlD NDc5NzE2RTQzNTBBN0ZBQ0RFRDYwQjA0OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhCKOn/pgtd+Pl2e1+A+HjkjUZ9kK7gUbYTov0uTPrF0yeNR7N k8elDVxq/rOZJoq0zeaAhP2FAFYO+5RT4RNyM2dLFOobqIme26ku2wC//NX1zXQW wGXGyFmYH3Nk8hX372pMt2v3zqORqt5M+HiANaKLMZOniRPkYI+p/EeB8i5g3o4Z mogiS56g5MTtL2YvSvhnEKnTUWZDFWmVdy4khMKKa5Vmqw5qKAck9cZGBoi6NZn/ zODhtmNReqJoAiePKUTkvCiOXrB0yzLcJC8za1fGBm1cb9gzglwlv/N0/MDNF7yk vJ4lWFEuEIv2AJ1/PzUUOabvuN5J6f6RDxxjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWKowIzCAnEeXFuQ1Cn+s3tYLBJcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1dLb3dJekNBbkVlWEZ1UTFDbi1zM3RZTEJKYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS+gwDQYJKoZIhvcNAQELBQADggEBALiTxixqrEDQTDmMBDjFnVIaJaEd NO8CRq1xVZM1V1lmAaqONUzexkvWzOAg5X0KDJBsgxCaXrDfQjIDRKHrPOu6+Llo Co0vEiiuiOTA59kJjCe1IfoFsBrE2hGjcgKPh/IgYLGG/A2n/Lw/Z0KaEcWCDT+c az+A/TPfE+bYnTYj+mkEdtVIpAl6WldiiEcXK5eTgk9VYi7KMIGFjSGV4mLQLMfx xRfV0WHOcxMwliMy5RAu55Fegsji/UqE80m728C2lqASnwznITYxZ6uR6bsydYYH awwzJthWzU6j68wY3LwsBlekiRKml2+Puw5Fh8g2SvxI8Xnlg179zW4otF4= -----END CERTIFICATE-----Generated at Sat Apr 26 18:21:52 2025 by rpki-client