$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fpbrHhL68qmg-Szqgb7IqhlYh_o.roa File: fpbrHhL68qmg-Szqgb7IqhlYh_o.roa (raw, json) Hash identifier: 91Cmn4j+LFuOekcNUCoGy9KNFOi1aiizS/FlkRpj2xM= Subject key identifier: 7E:96:EB:1E:12:FA:F2:A9:A0:F9:2C:EA:81:BE:C8:AA:19:58:87:FA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C51 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fpbrHhL68qmg-Szqgb7IqhlYh_o.roa Signing time: Tue 01 Apr 2025 01:57:23 +0000 ROA not before: Tue 01 Apr 2025 01:57:23 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.76.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3153 (0xc51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:57:23 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=7E96EB1E12FAF2A9A0F92CEA81BEC8AA195887FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ce:31:5a:d2:cf:87:26:4d:2d:b9:79:e4:1b: f3:17:47:f5:26:b1:61:96:d8:53:be:4e:71:a1:5c: 14:6d:fa:76:94:1f:f2:84:d5:4d:82:d2:d1:d1:21: f8:c4:c5:4b:22:fa:52:f3:cc:46:1f:6d:66:b9:b7: 41:61:b6:2e:77:94:38:3b:a6:fb:1f:1a:ee:48:9e: d2:b2:7a:b7:24:89:9b:38:c0:88:31:32:da:57:e6: f6:3d:75:59:81:4e:4d:b6:5b:64:ce:a4:29:6e:94: 53:7c:68:30:87:52:5c:83:30:2b:5e:14:86:85:34: 41:6b:16:74:da:91:bb:0f:a9:8d:67:ac:67:f6:2a: 01:18:8c:8b:16:bf:88:42:07:ae:99:20:07:43:d8: e2:06:6a:d1:b1:8e:bb:ea:a1:b7:1c:75:1a:96:38: 68:95:d4:08:cc:c8:c8:cb:32:d5:49:58:7d:66:e2: a9:9a:2b:ac:db:6b:1d:e0:1d:80:69:21:98:6f:22: 6a:42:5f:b8:7c:82:f6:0e:32:09:f6:2a:7c:ba:b7: 06:a1:8d:07:ae:20:99:52:b5:3c:d8:4a:93:2a:0a: b1:88:3c:52:b0:21:fd:ab:34:4c:5b:05:01:14:ec: c3:f3:ca:3b:fb:7e:00:f3:ac:23:5a:6a:77:ae:83: ec:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:96:EB:1E:12:FA:F2:A9:A0:F9:2C:EA:81:BE:C8:AA:19:58:87:FA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fpbrHhL68qmg-Szqgb7IqhlYh_o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.16.0/20 Signature Algorithm: sha256WithRSAEncryption 97:c9:56:23:d3:8e:73:32:ac:a8:c9:44:ea:41:90:27:75:d4: dc:1b:c8:2f:b5:e6:e4:e6:56:dc:e7:a7:de:95:81:10:ae:3b: 95:b4:73:e0:bc:c1:c3:35:fa:9e:07:a3:b3:31:a1:7b:0b:15: 64:e3:07:01:ef:f4:ff:f5:53:43:2d:ca:49:df:96:46:11:bc: 95:7e:02:e4:c0:0d:d2:eb:7f:37:03:8d:00:c7:28:cd:0a:8b: ab:1a:a7:ea:82:11:86:48:90:ea:9f:99:e0:7c:b0:82:3c:30: 98:30:a3:04:5b:2c:5e:70:9a:bb:6e:ad:ea:6c:09:51:29:b9: 70:ed:37:7b:c6:b3:d8:6f:26:8b:f1:a3:2f:ad:9c:c2:04:1d: 33:c5:1d:a1:5f:89:f3:52:f3:6c:56:11:84:d2:b2:63:21:e1: 8b:f4:b8:3a:64:78:7d:b1:2f:c8:49:7d:08:06:48:c7:b8:60: 33:32:44:72:df:9c:d1:33:eb:1c:11:ee:2e:a1:bd:dd:5d:bd: de:64:9d:5f:bc:9d:ae:52:fd:eb:97:15:8f:66:f1:a6:3d:52: 8f:fa:53:fd:02:f0:03:58:46:3c:28:b0:47:88:03:6e:7f:ee: f3:77:76:d8:45:b6:9c:7e:b8:4e:e5:d5:72:b9:ae:00:21:88: c7:55:4b:fb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDFEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU3MjNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDdFOTZFQjFFMTJGQUYy QTlBMEY5MkNFQTgxQkVDOEFBMTk1ODg3RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDzjFa0s+HJk0tuXnkG/MXR/UmsWGW2FO+TnGhXBRt+naUH/KE 1U2C0tHRIfjExUsi+lLzzEYfbWa5t0Fhti53lDg7pvsfGu5IntKyerckiZs4wIgx MtpX5vY9dVmBTk22W2TOpClulFN8aDCHUlyDMCteFIaFNEFrFnTakbsPqY1nrGf2 KgEYjIsWv4hCB66ZIAdD2OIGatGxjrvqobccdRqWOGiV1AjMyMjLMtVJWH1m4qma K6zbax3gHYBpIZhvImpCX7h8gvYOMgn2Kny6twahjQeuIJlStTzYSpMqCrGIPFKw If2rNExbBQEU7MPzyjv7fgDzrCNaaneug+xjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUfpbrHhL68qmg+Szqgb7IqhlYh/owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2ZwYnJIaEw2OHFtZy1TenFnYjdJcWhsWWhfby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBTBAwDQYJKoZIhvcNAQELBQADggEBAJfJViPTjnMyrKjJROpBkCd11Nwb yC+15uTmVtznp96VgRCuO5W0c+C8wcM1+p4Ho7MxoXsLFWTjBwHv9P/1U0Mtyknf lkYRvJV+AuTADdLrfzcDjQDHKM0Ki6sap+qCEYZIkOqfmeB8sII8MJgwowRbLF5w mrturepsCVEpuXDtN3vGs9hvJovxoy+tnMIEHTPFHaFfifNS82xWEYTSsmMh4Yv0 uDpkeH2xL8hJfQgGSMe4YDMyRHLfnNEz6xwR7i6hvd1dvd5knV+8na5S/euXFY9m 8aY9Uo/6U/0C8ANYRjwosEeIA25/7vN3dthFtpx+uE7l1XK5rgAhiMdVS/s= -----END CERTIFICATE-----Generated at Sat Apr 26 18:22:38 2025 by rpki-client