$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yLK_lLxKK_0CrXj0bFVs67-53BI.roa File: yLK_lLxKK_0CrXj0bFVs67-53BI.roa (raw, json) Hash identifier: Bj3o16Nc5Cynd2Rdey19quNpYOy6A1DPD1aWVP4oaBM= Subject key identifier: C8:B2:BF:94:BC:4A:2B:FD:02:AD:78:F4:6C:55:6C:EB:BF:B9:DC:12 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D4F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yLK_lLxKK_0CrXj0bFVs67-53BI.roa Signing time: Tue 01 Apr 2025 02:17:13 +0000 ROA not before: Tue 01 Apr 2025 02:17:13 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3407 (0xd4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:17:13 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=C8B2BF94BC4A2BFD02AD78F46C556CEBBFB9DC12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ff:73:d7:09:0f:81:1a:07:ba:7b:44:3c:c5: 08:d9:d6:c3:a4:4e:80:d5:e7:ff:ff:8a:6b:7d:a9: 8c:0e:e0:05:ac:40:61:3c:39:4a:53:58:98:f4:81: 4a:43:d2:79:d6:ce:f3:67:6c:a7:38:ef:90:46:ff: 1d:ce:69:9d:c2:dc:79:68:47:25:0c:73:6c:7b:6e: b9:99:fb:62:71:2b:88:28:96:8f:c1:44:4b:f7:b8: 68:fa:f6:6b:8c:f3:f2:c0:b3:2c:84:75:8d:60:a8: 2f:dd:b9:c5:b4:53:d3:93:ad:f6:b2:36:d5:6a:00: 45:c5:c2:2b:d1:a4:29:ea:b5:66:2c:16:5d:c4:45: 6d:2d:29:7e:c2:64:8b:4a:bd:78:82:3d:e5:02:a5: aa:f4:38:38:c0:84:2f:8b:08:06:28:89:ff:9b:d7: 10:34:96:c4:28:92:74:81:16:65:8f:01:eb:ee:86: f0:26:08:5a:2f:04:bd:c4:0b:1e:1a:ea:bf:02:23: f7:c1:cd:25:83:6e:ea:01:d3:e2:2e:53:58:04:98: 51:d6:c3:68:3e:1c:45:d2:72:a0:c7:05:f4:cf:3a: 53:ec:11:b1:48:58:89:90:4d:c1:de:64:27:01:07: cf:5c:61:c7:65:25:fb:8f:2c:af:5d:fb:81:a4:0f: e6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B2:BF:94:BC:4A:2B:FD:02:AD:78:F4:6C:55:6C:EB:BF:B9:DC:12 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yLK_lLxKK_0CrXj0bFVs67-53BI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.20.0/24 Signature Algorithm: sha256WithRSAEncryption d6:58:b2:21:d4:4e:b7:b5:39:d9:65:89:6e:34:d0:2b:04:65: 63:49:6b:59:10:11:fb:66:f4:4b:83:25:89:aa:3a:53:51:f5: 95:27:00:2d:a1:0f:c0:d0:3c:50:2e:cb:5d:ff:3f:08:8e:c3: ea:f0:b0:dd:e2:00:9c:4b:ae:73:dc:c6:2e:27:4a:bd:9b:aa: 95:c8:eb:b2:b1:72:9f:06:2a:c0:3f:25:eb:39:a2:62:01:c9: 3f:5d:d3:09:e9:ac:30:f4:8f:c1:52:3f:66:df:78:0f:5f:38: 81:5a:6a:a4:f6:2a:56:5b:f6:80:fd:ae:74:bd:a6:86:45:83: da:70:ff:6a:dc:2b:db:bb:5e:e1:a7:8a:96:e7:5d:51:03:3b: 9d:61:43:94:f9:17:47:5a:d5:c9:b3:45:02:e7:ea:36:da:2f: 10:f5:09:08:ee:c2:6f:4a:a7:ae:5f:ba:c8:0d:59:6c:cb:aa: df:76:34:be:34:30:7f:0c:91:ca:ae:cb:73:d1:05:1f:44:28: 63:5b:36:f9:3d:d1:de:f0:fc:6f:f9:1b:76:91:fd:db:3d:ff: 7f:cc:43:07:43:c1:c0:cf:e4:05:e8:a2:a7:b4:93:bd:f0:31: a0:69:69:9c:4a:03:91:61:b9:4d:60:f7:a3:75:84:df:43:ac: 40:66:8d:10 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDU8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE3MTNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM4QjJCRjk0QkM0QTJC RkQwMkFENzhGNDZDNTU2Q0VCQkZCOURDMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDU/3PXCQ+BGge6e0Q8xQjZ1sOkToDV5///imt9qYwO4AWsQGE8 OUpTWJj0gUpD0nnWzvNnbKc475BG/x3OaZ3C3HloRyUMc2x7brmZ+2JxK4golo/B REv3uGj69muM8/LAsyyEdY1gqC/ducW0U9OTrfayNtVqAEXFwivRpCnqtWYsFl3E RW0tKX7CZItKvXiCPeUCpar0ODjAhC+LCAYoif+b1xA0lsQoknSBFmWPAevuhvAm CFovBL3ECx4a6r8CI/fBzSWDbuoB0+IuU1gEmFHWw2g+HEXScqDHBfTPOlPsEbFI WImQTcHeZCcBB89cYcdlJfuPLK9d+4GkD+bFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUyLK/lLxKK/0CrXj0bFVs67+53BIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3lMS19sTHhLS18wQ3JYajBiRlZzNjctNTNCSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABTxQwDQYJKoZIhvcNAQELBQADggEBANZYsiHUTre1OdlliW400CsEZWNJ a1kQEftm9EuDJYmqOlNR9ZUnAC2hD8DQPFAuy13/PwiOw+rwsN3iAJxLrnPcxi4n Sr2bqpXI67Kxcp8GKsA/Jes5omIByT9d0wnprDD0j8FSP2bfeA9fOIFaaqT2KlZb 9oD9rnS9poZFg9pw/2rcK9u7XuGnipbnXVEDO51hQ5T5F0da1cmzRQLn6jbaLxD1 CQjuwm9Kp65fusgNWWzLqt92NL40MH8Mkcquy3PRBR9EKGNbNvk90d7w/G/5G3aR /ds9/3/MQwdDwcDP5AXooqe0k73wMaBpaZxKA5FhuU1g96N1hN9DrEBmjRA= -----END CERTIFICATE-----Generated at Sat Apr 26 18:19:46 2025 by rpki-client