$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sZBQoFDG4O8FSwY0yIwwFUUJyps.roa File: sZBQoFDG4O8FSwY0yIwwFUUJyps.roa (raw, json) Hash identifier: tPYkbHs0/Gaj9Vuk1keth5D0riIpmGD1E/6CbZgvA40= Subject key identifier: B1:90:50:A0:50:C6:E0:EF:05:4B:06:34:C8:8C:30:15:45:09:CA:9B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BF5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sZBQoFDG4O8FSwY0yIwwFUUJyps.roa Signing time: Tue 01 Apr 2025 01:51:25 +0000 ROA not before: Tue 01 Apr 2025 01:51:25 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3061 (0xbf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:51:25 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B19050A050C6E0EF054B0634C88C30154509CA9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f1:16:30:fc:36:48:49:e8:5f:85:27:f2:f6: 1e:a2:01:77:d5:3e:56:bd:e5:a3:1d:79:82:23:7e: 1f:a1:3b:e9:36:ee:d7:2d:b4:7d:0b:a1:7b:07:00: df:f5:09:05:ab:82:1f:57:95:ab:47:d7:bb:1b:5c: bf:3b:4a:f6:f9:cf:18:a2:cf:b6:cd:35:f9:5c:b9: 5f:14:bf:c8:6a:36:b6:4f:a8:f1:05:48:59:5f:95: 38:eb:b4:22:52:e9:cb:7f:bd:e6:d7:1e:67:66:2a: 52:c5:78:ac:55:13:3a:d6:6e:2c:56:e0:d2:52:a4: 6f:dc:dd:51:3d:51:05:14:f6:87:eb:53:d6:8f:78: b6:a2:a7:6f:9f:20:d4:52:10:91:d0:02:88:c3:b0: 97:bc:46:8c:9d:b6:2e:9f:0e:5f:83:5e:bd:75:8c: 59:7f:2b:72:37:76:3c:bf:69:18:62:0a:82:be:2b: 90:bb:32:3e:e1:8e:1b:a5:2f:ed:b3:2a:91:47:4c: 80:43:d4:f9:0e:0b:93:d7:99:76:9b:ea:94:fc:24: 30:d5:4d:b4:76:a8:e4:16:93:7b:f3:e1:61:89:f5: fa:c4:d3:20:df:82:8f:50:54:75:ba:65:f6:e4:36: 34:d7:4f:1e:66:f3:47:ac:ef:e5:e7:34:8f:43:8e: 88:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:90:50:A0:50:C6:E0:EF:05:4B:06:34:C8:8C:30:15:45:09:CA:9B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sZBQoFDG4O8FSwY0yIwwFUUJyps.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.66.0/24 Signature Algorithm: sha256WithRSAEncryption 16:96:6f:17:40:52:87:4b:6a:d1:7e:de:df:e8:03:2a:8e:7d: b1:17:90:3f:ea:c2:2a:9d:9a:08:13:c8:c8:7b:d0:a3:22:23: 81:54:2b:72:cb:a3:e3:80:5b:ad:c4:9a:75:bb:ed:1b:65:b1: ed:df:c1:46:70:d2:7c:f4:d8:36:e0:3e:4c:72:b8:9d:37:fb: b2:34:a2:3d:0e:ed:56:7e:59:e6:12:ef:ca:66:02:0e:27:96: 20:87:f4:0e:6d:98:96:8e:4d:7b:f3:9a:48:55:25:74:a0:01: 23:cf:fd:be:07:d0:5e:46:87:f6:08:de:71:14:e9:0a:08:f4: b7:62:69:e1:4a:5d:78:78:6a:48:cb:f3:da:eb:2d:6e:05:ec: f2:73:b5:b7:ea:ef:6e:1a:04:2c:53:39:1c:3b:35:16:28:fe: 80:a3:93:7e:ea:65:69:a5:f1:84:cd:34:da:a1:79:11:ad:aa: 7a:04:0e:6d:e0:a1:39:b6:e7:a6:27:f4:fb:16:e4:7e:7b:2a: 5a:b5:9f:f8:0e:17:4b:91:52:5a:d2:33:db:2c:af:ba:3d:e0: 84:86:d0:a5:7f:d6:65:b5:91:be:d9:8f:ab:55:5b:28:c2:c5: 66:85:5d:d5:73:a5:b9:73:95:69:a9:01:a3:56:3f:83:b1:1b: d4:8a:c9:a8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC/UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTUxMjVaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIxOTA1MEEwNTBDNkUw RUYwNTRCMDYzNEM4OEMzMDE1NDUwOUNBOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDW8RYw/DZISehfhSfy9h6iAXfVPla95aMdeYIjfh+hO+k27tct tH0LoXsHAN/1CQWrgh9XlatH17sbXL87Svb5zxiiz7bNNflcuV8Uv8hqNrZPqPEF SFlflTjrtCJS6ct/vebXHmdmKlLFeKxVEzrWbixW4NJSpG/c3VE9UQUU9ofrU9aP eLaip2+fINRSEJHQAojDsJe8Roydti6fDl+DXr11jFl/K3I3djy/aRhiCoK+K5C7 Mj7hjhulL+2zKpFHTIBD1PkOC5PXmXab6pT8JDDVTbR2qOQWk3vz4WGJ9frE0yDf go9QVHW6ZfbkNjTXTx5m80es7+XnNI9Djoj5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsZBQoFDG4O8FSwY0yIwwFUUJypswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NaQlFvRkRHNE84RlN3WTB5SXd3RlVVSnlwcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABT0IwDQYJKoZIhvcNAQELBQADggEBABaWbxdAUodLatF+3t/oAyqOfbEX kD/qwiqdmggTyMh70KMiI4FUK3LLo+OAW63EmnW77Rtlse3fwUZw0nz02DbgPkxy uJ03+7I0oj0O7VZ+WeYS78pmAg4nliCH9A5tmJaOTXvzmkhVJXSgASPP/b4H0F5G h/YI3nEU6QoI9LdiaeFKXXh4akjL89rrLW4F7PJztbfq724aBCxTORw7NRYo/oCj k37qZWml8YTNNNqheRGtqnoEDm3goTm256Yn9PsW5H57Klq1n/gOF0uRUlrSM9ss r7o94ISG0KV/1mW1kb7Zj6tVWyjCxWaFXdVzpblzlWmpAaNWP4OxG9SKyag= -----END CERTIFICATE-----Generated at Sat Apr 26 18:20:58 2025 by rpki-client