$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lFwy2CPdjt_tWdotfaB-ZPHsy2c.roa File: lFwy2CPdjt_tWdotfaB-ZPHsy2c.roa (raw, json) Hash identifier: DHCSmLgk7D2amRVXTO+8GSb6DjArBoUU8hukgkO/rLs= Subject key identifier: 94:5C:32:D8:23:DD:8E:DF:ED:59:DA:2D:7D:A0:7E:64:F1:EC:CB:67 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C9E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lFwy2CPdjt_tWdotfaB-ZPHsy2c.roa Signing time: Tue 01 Apr 2025 02:03:27 +0000 ROA not before: Tue 01 Apr 2025 02:03:27 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 27.230.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3230 (0xc9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:03:27 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=945C32D823DD8EDFED59DA2D7DA07E64F1ECCB67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:25:20:d0:a3:fe:20:f1:12:82:87:51:88:dd: 4e:ac:7d:13:86:61:6c:ef:32:e7:4f:f0:a1:d8:ce: a7:b7:a0:15:3b:12:77:c5:99:a7:04:0b:20:31:21: 73:ff:dc:7a:bb:27:f3:7d:1d:e4:0b:6c:48:ab:d2: 45:dd:2d:8b:f4:d4:13:88:ab:9b:ff:eb:b7:7c:32: ba:57:61:87:39:99:fa:0d:ab:a1:17:4e:4a:37:ae: d5:78:d8:10:97:55:66:1f:e2:7a:63:de:f1:8d:df: 35:f0:a8:b9:ee:c6:65:9c:f2:fc:c5:2e:53:4d:a3: cd:f9:f7:b0:f3:8e:5f:83:9a:f2:ec:60:13:00:c6: 29:8e:d8:9c:a3:c4:a3:28:9c:5e:ab:ae:b9:66:af: f6:4e:96:44:1b:29:45:a8:ac:15:ee:6b:6f:29:b9: 18:51:58:5c:70:4a:95:db:b0:11:9f:1a:c5:24:11: 39:a3:7f:2d:27:c3:d1:33:91:5d:25:aa:7c:d5:c1: e3:10:c1:cf:94:27:38:b3:21:eb:1d:bc:e8:9d:d8: e4:77:15:a0:e0:37:71:c6:cf:81:17:71:a9:46:10: e3:e0:cb:c7:9c:32:d4:33:4e:5c:f3:71:ab:08:f8: 35:f3:96:65:0b:08:54:25:e4:70:97:19:56:15:0e: 83:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:5C:32:D8:23:DD:8E:DF:ED:59:DA:2D:7D:A0:7E:64:F1:EC:CB:67 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lFwy2CPdjt_tWdotfaB-ZPHsy2c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.230.41.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:bc:fa:b4:73:7d:a2:e9:7a:16:72:cb:65:3b:41:f0:74:2d: 48:a0:ed:8d:e7:8b:14:87:b9:fb:ce:09:45:36:1d:41:b5:80: cf:5e:ab:68:d8:5f:33:43:d0:62:1a:dd:dd:b6:68:78:7d:38: c9:8c:c7:e1:92:0d:3d:6b:d7:bf:1f:38:47:0d:09:0f:08:c3: 41:95:03:f9:48:81:43:05:1e:dd:42:e0:a3:79:76:68:40:c6: b7:19:10:16:d0:98:e3:90:99:63:e8:bd:de:69:95:e9:5b:62: 6a:aa:1d:9f:d5:04:f2:c3:bd:6a:4c:47:b2:fd:ec:d1:61:20: 53:17:d2:ed:97:e8:53:b4:b8:d7:84:63:52:63:84:7f:32:17: d0:fb:89:fa:17:f2:da:8a:8a:24:dd:0f:58:0f:8f:3f:e9:5b: bd:21:1c:e7:30:24:bc:3c:9d:68:70:c4:ad:5d:98:fc:4a:94: 81:42:69:b9:89:fd:67:c9:f6:1a:f6:15:d3:35:b2:29:71:d7: 5a:02:5c:8f:d7:37:de:99:0f:c3:7e:c8:1f:45:f1:32:93:22: 0b:a2:ef:8a:ef:0c:51:c6:c8:07:53:48:01:48:f1:35:0a:3f: 1e:43:2a:de:61:16:2e:78:57:03:a0:02:21:0a:2b:27:dc:d2: 50:e6:03:75 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDJ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjAzMjdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk0NUMzMkQ4MjNERDhF REZFRDU5REEyRDdEQTA3RTY0RjFFQ0NCNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmJSDQo/4g8RKCh1GI3U6sfROGYWzvMudP8KHYzqe3oBU7EnfF macECyAxIXP/3Hq7J/N9HeQLbEir0kXdLYv01BOIq5v/67d8MrpXYYc5mfoNq6EX Tko3rtV42BCXVWYf4npj3vGN3zXwqLnuxmWc8vzFLlNNo83597Dzjl+DmvLsYBMA ximO2JyjxKMonF6rrrlmr/ZOlkQbKUWorBXua28puRhRWFxwSpXbsBGfGsUkETmj fy0nw9EzkV0lqnzVweMQwc+UJzizIesdvOid2OR3FaDgN3HGz4EXcalGEOPgy8ec MtQzTlzzcasI+DXzlmULCFQl5HCXGVYVDoPbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlFwy2CPdjt/tWdotfaB+ZPHsy2cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2xGd3kyQ1BkanRfdFdkb3RmYUItWlBIc3kyYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAb5ikwDQYJKoZIhvcNAQELBQADggEBAF28+rRzfaLpehZyy2U7QfB0LUig 7Y3nixSHufvOCUU2HUG1gM9eq2jYXzND0GIa3d22aHh9OMmMx+GSDT1r178fOEcN CQ8Iw0GVA/lIgUMFHt1C4KN5dmhAxrcZEBbQmOOQmWPovd5plelbYmqqHZ/VBPLD vWpMR7L97NFhIFMX0u2X6FO0uNeEY1JjhH8yF9D7ifoX8tqKiiTdD1gPjz/pW70h HOcwJLw8nWhwxK1dmPxKlIFCabmJ/WfJ9hr2FdM1silx11oCXI/XN96ZD8N+yB9F 8TKTIgui74rvDFHGyAdTSAFI8TUKPx5DKt5hFi54VwOgAiEKKyfc0lDmA3U= -----END CERTIFICATE-----Generated at Sun Apr 27 05:25:46 2025 by rpki-client