$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ceYTR3_qP1I3u8-kUPrXMX67DBc.roa File: ceYTR3_qP1I3u8-kUPrXMX67DBc.roa (raw, json) Hash identifier: 1rwhTtMl+McL8usAcT0K+6eem6fToKZf8Lt1naFqIt4= Subject key identifier: 71:E6:13:47:7F:EA:3F:52:37:BB:CF:A4:50:FA:D7:31:7E:BB:0C:17 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C38 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ceYTR3_qP1I3u8-kUPrXMX67DBc.roa Signing time: Tue 01 Apr 2025 01:54:12 +0000 ROA not before: Tue 01 Apr 2025 01:54:12 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.76.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3128 (0xc38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:54:12 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=71E613477FEA3F5237BBCFA450FAD7317EBB0C17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:86:05:26:fa:bb:fb:9c:03:2c:de:ea:74:d5: 13:ed:6c:e6:47:3f:a3:48:4d:f0:95:40:4c:98:a8: 11:12:e4:5d:b4:f7:10:96:07:ae:d5:e7:e0:84:e1: 14:30:9f:95:d3:62:18:20:bc:5c:2d:d4:cb:5f:55: ee:27:14:84:ef:e5:41:05:f1:22:37:de:22:1a:9e: 0e:36:e1:3b:f9:27:ac:28:28:3f:4f:10:8d:a3:4c: ff:8c:39:9d:fd:73:0d:23:58:94:2f:a9:f6:38:c4: c0:e4:49:4f:71:71:28:1d:66:17:63:06:43:91:33: ae:6d:04:47:4e:2f:96:48:df:a3:5f:6e:a1:d6:8a: 66:a3:3e:22:0f:62:4f:94:54:70:4b:11:cd:0f:c5: 60:3f:ec:94:c1:6d:7d:0b:f6:4c:b4:4c:88:1d:f7: 9e:98:81:aa:8c:54:43:59:0d:cb:dd:d8:a9:51:1d: d1:3a:05:25:d9:d8:0b:24:2c:57:6f:56:0c:85:d0: 7f:36:0a:c0:2a:e5:9d:81:99:12:fd:fc:71:56:ec: 3e:8c:29:90:19:bf:8c:b1:cc:fc:2d:df:ba:e6:a8: e0:1d:8d:8c:bc:01:61:a4:f6:f0:96:b6:9a:e9:f2: 4a:54:a5:ed:42:5e:92:35:7f:0b:42:fb:61:0b:2b: b1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E6:13:47:7F:EA:3F:52:37:BB:CF:A4:50:FA:D7:31:7E:BB:0C:17 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ceYTR3_qP1I3u8-kUPrXMX67DBc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.192.0/19 Signature Algorithm: sha256WithRSAEncryption 6f:b3:60:d3:34:5a:ed:29:12:00:fa:58:65:61:12:8f:3d:35: 0e:6f:f3:7a:2e:36:bb:e1:74:12:e3:f3:b1:f6:ef:e6:96:dc: e3:48:9a:70:68:d9:dc:38:b3:55:98:06:e1:89:a6:c2:10:14: f1:dc:fd:0d:fe:09:41:f8:f9:50:3a:d6:05:8c:39:ab:0a:f0: 35:d4:96:34:c3:76:80:00:a3:0e:53:a7:ce:16:16:c1:53:5b: 53:2d:79:38:1f:f6:82:a1:9d:5d:92:fe:bb:7b:89:e1:c3:0c: 3d:d6:3b:34:f0:7a:1b:5d:32:9b:d1:05:f4:b2:51:8b:2e:89: 03:e7:e2:b5:3c:34:fa:aa:06:50:2f:b6:2d:6b:06:12:53:58: 16:c4:56:54:4b:1c:95:07:ba:39:f4:ec:21:e6:e6:33:c0:26: d4:d7:2d:e5:a3:a5:11:a7:8f:3f:40:da:dc:cc:3b:63:14:38: 38:cb:48:e8:9b:49:8c:ac:da:67:57:d4:2f:a6:da:63:0a:57: aa:39:a1:be:c3:9f:b5:72:7a:9e:85:21:43:b7:e5:cc:9d:99: 7d:54:61:ed:0e:ae:2b:81:4a:97:f8:44:b1:00:a0:f9:44:1d: 2e:44:b1:a7:dc:d9:e0:58:28:3c:11:69:14:a4:8f:fe:b7:22: a6:7b:52:37 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDDgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU0MTJaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcxRTYxMzQ3N0ZFQTNG NTIzN0JCQ0ZBNDUwRkFENzMxN0VCQjBDMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVhgUm+rv7nAMs3up01RPtbOZHP6NITfCVQEyYqBES5F209xCW B67V5+CE4RQwn5XTYhggvFwt1MtfVe4nFITv5UEF8SI33iIang424Tv5J6woKD9P EI2jTP+MOZ39cw0jWJQvqfY4xMDkSU9xcSgdZhdjBkORM65tBEdOL5ZI36NfbqHW imajPiIPYk+UVHBLEc0PxWA/7JTBbX0L9ky0TIgd956YgaqMVENZDcvd2KlRHdE6 BSXZ2AskLFdvVgyF0H82CsAq5Z2BmRL9/HFW7D6MKZAZv4yxzPwt37rmqOAdjYy8 AWGk9vCWtprp8kpUpe1CXpI1fwtC+2ELK7EvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUceYTR3/qP1I3u8+kUPrXMX67DBcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NlWVRSM19xUDFJM3U4LWtVUHJYTVg2N0RCYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBTMAwDQYJKoZIhvcNAQELBQADggEBAG+zYNM0Wu0pEgD6WGVhEo89NQ5v 83ouNrvhdBLj87H27+aW3ONImnBo2dw4s1WYBuGJpsIQFPHc/Q3+CUH4+VA61gWM OasK8DXUljTDdoAAow5Tp84WFsFTW1MteTgf9oKhnV2S/rt7ieHDDD3WOzTwehtd MpvRBfSyUYsuiQPn4rU8NPqqBlAvti1rBhJTWBbEVlRLHJUHujn07CHm5jPAJtTX LeWjpRGnjz9A2tzMO2MUODjLSOibSYys2mdX1C+m2mMKV6o5ob7Dn7Vyep6FIUO3 5cydmX1UYe0OriuBSpf4RLEAoPlEHS5Esafc2eBYKDwRaRSkj/63IqZ7Ujc= -----END CERTIFICATE-----Generated at Sat Apr 26 18:20:50 2025 by rpki-client