$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/jXtORonTHhwSYcwD8tV5TOhFnN0.roa File: jXtORonTHhwSYcwD8tV5TOhFnN0.roa (raw, json) Hash identifier: BBVG+LRxgkGcinQcjfC8VuJTlVOfv06kjp0YrLJ25cM= Subject key identifier: 8D:7B:4E:46:89:D3:1E:1C:12:61:CC:03:F2:D5:79:4C:E8:45:9C:DD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C80 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jXtORonTHhwSYcwD8tV5TOhFnN0.roa Signing time: Tue 01 Apr 2025 02:03:16 +0000 ROA not before: Tue 01 Apr 2025 02:03:16 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3200 (0xc80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:16 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=8D7B4E4689D31E1C1261CC03F2D5794CE8459CDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6f:60:2a:cb:6a:19:26:6a:98:61:37:24:d0: a8:cc:d2:7c:b8:17:ba:ef:93:f0:02:67:28:99:37: ca:50:83:c2:b9:f6:40:eb:89:e4:54:4e:89:fc:5d: eb:4b:fa:a3:99:50:60:a0:cb:ba:22:68:1c:ac:da: b5:d6:9b:a3:4f:68:06:19:39:25:9d:68:14:73:df: 02:55:c2:f0:f5:50:c0:a6:08:f3:96:36:88:01:5e: c1:32:95:5e:03:19:e0:c4:01:b8:6c:18:09:04:7a: 59:9b:04:a7:32:c0:a1:47:1a:4d:77:12:8f:b7:ee: 87:f1:df:de:08:38:9b:42:ea:01:24:cb:d4:d6:50: e2:2a:5a:b9:fd:ae:38:fc:d1:76:03:e0:eb:4c:a7: c7:52:53:9b:12:48:1d:7d:8c:98:f2:19:6e:f9:a1: 98:31:b7:76:d6:8c:10:74:7c:2c:76:1b:5b:5e:72: c3:b0:00:5e:b8:7a:6f:f0:be:76:bb:31:e9:68:b3: a9:22:cc:7f:8f:46:30:68:59:65:c3:f4:08:cf:46: b5:0e:ff:06:6f:0c:5f:f2:cb:96:3c:6a:0e:0d:b7: e6:9e:80:03:78:32:d0:ee:4d:c8:8d:66:72:07:ee: 88:28:c9:f2:40:38:f1:91:71:57:f0:77:36:3b:10: 93:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7B:4E:46:89:D3:1E:1C:12:61:CC:03:F2:D5:79:4C:E8:45:9C:DD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/jXtORonTHhwSYcwD8tV5TOhFnN0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.98.0/23 Signature Algorithm: sha256WithRSAEncryption 73:16:f9:45:0b:b5:5a:42:92:38:75:b6:94:75:4b:3c:99:54: 8d:43:4b:0b:13:a0:4b:76:f3:55:02:89:eb:15:06:ea:5a:45: 8b:58:8f:8e:c3:92:28:61:4d:c4:46:92:e2:07:99:08:62:25: 5d:15:0c:3d:34:37:0f:47:d8:c3:ab:86:12:24:ed:24:99:06: 8c:93:37:0a:a8:dc:0a:75:9f:ba:ed:5f:00:87:ad:f3:ed:81: a5:e0:d2:c7:3b:a5:78:a3:95:ae:2d:35:65:6e:fd:7b:40:38: 76:54:4b:ae:41:57:2a:3e:e0:2d:0c:c9:3d:e0:56:f7:9a:c4: 51:fc:56:94:f6:24:ef:51:39:96:71:0f:98:f1:7e:53:27:62: a8:18:25:f1:0d:73:b7:28:3e:cf:bc:f0:ee:6f:49:84:fa:3e: 66:cf:a5:91:ba:fb:61:1c:4c:a0:48:d1:17:10:7f:1e:35:26: f5:39:a2:e8:4b:df:59:4d:95:70:f1:3c:4a:92:50:78:5f:9a: 57:51:91:58:26:c1:cc:17:90:95:6f:23:a3:b5:5d:96:55:05: 3b:f1:82:c1:3a:11:13:ac:7f:b2:05:8e:19:30:83:da:a0:5d: db:43:2a:7a:34:bf:b0:71:49:2b:a4:d6:57:b6:1d:ee:bb:b4: 51:42:36:e1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDIAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMTZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDhEN0I0RTQ2ODlEMzFF MUMxMjYxQ0MwM0YyRDU3OTRDRTg0NTlDREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3b2Aqy2oZJmqYYTck0KjM0ny4F7rvk/ACZyiZN8pQg8K59kDr ieRUTon8XetL+qOZUGCgy7oiaBys2rXWm6NPaAYZOSWdaBRz3wJVwvD1UMCmCPOW NogBXsEylV4DGeDEAbhsGAkEelmbBKcywKFHGk13Eo+37ofx394IOJtC6gEky9TW UOIqWrn9rjj80XYD4OtMp8dSU5sSSB19jJjyGW75oZgxt3bWjBB0fCx2G1tecsOw AF64em/wvna7Melos6kizH+PRjBoWWXD9AjPRrUO/wZvDF/yy5Y8ag4Nt+aegAN4 MtDuTciNZnIH7ogoyfJAOPGRcVfwdzY7EJNPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjXtORonTHhwSYcwD8tV5TOhFnN0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2pYdE9Sb25USGh3U1ljd0Q4dFY1VE9oRm5OMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT2IwDQYJKoZIhvcNAQELBQADggEBAHMW+UULtVpCkjh1tpR1SzyZVI1D SwsToEt281UCiesVBupaRYtYj47DkihhTcRGkuIHmQhiJV0VDD00Nw9H2MOrhhIk 7SSZBoyTNwqo3Ap1n7rtXwCHrfPtgaXg0sc7pXijla4tNWVu/XtAOHZUS65BVyo+ 4C0MyT3gVveaxFH8VpT2JO9ROZZxD5jxflMnYqgYJfENc7coPs+88O5vSYT6PmbP pZG6+2EcTKBI0RcQfx41JvU5ouhL31lNlXDxPEqSUHhfmldRkVgmwcwXkJVvI6O1 XZZVBTvxgsE6EROsf7IFjhkwg9qgXdtDKno0v7BxSSuk1le2He67tFFCNuE= -----END CERTIFICATE-----Generated at Sat Apr 26 18:22:42 2025 by rpki-client