$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/891/oQMZwrHY_7SsF6PZmUuhkzIzAB4.roa File: oQMZwrHY_7SsF6PZmUuhkzIzAB4.roa (raw, json) Hash identifier: +alyYAwjCNZj+xmgbX8MSdkrQ5e/ZMwEcx8AERIf3oI= Subject key identifier: A1:03:19:C2:B1:D8:FF:B4:AC:17:A3:D9:99:4B:A1:93:32:33:00:1E Certificate issuer: /CN=DD829D646D53ECF298950B687532DE926EC7EBC0 Certificate serial: 1A Authority key identifier: DD:82:9D:64:6D:53:EC:F2:98:95:0B:68:75:32:DE:92:6E:C7:EB:C0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3YKdZG1T7PKYlQtodTLekm7H68A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/oQMZwrHY_7SsF6PZmUuhkzIzAB4.roa Signing time: Tue 25 Mar 2025 06:19:04 +0000 ROA not before: Tue 25 Mar 2025 06:19:04 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 23827 IP address blocks: 202.226.56.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/3YKdZG1T7PKYlQtodTLekm7H68A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/3YKdZG1T7PKYlQtodTLekm7H68A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3YKdZG1T7PKYlQtodTLekm7H68A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD829D646D53ECF298950B687532DE926EC7EBC0 Validity Not Before: Mar 25 06:19:04 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A10319C2B1D8FFB4AC17A3D9994BA1933233001E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:f0:8f:7c:6d:11:38:29:7a:a0:93:7d:35: b1:5a:76:12:cd:e4:83:1c:7e:3e:eb:3a:f1:33:94: 52:ff:23:d4:66:36:f0:5f:bd:89:6e:10:d6:13:c1: 2e:22:3c:f2:9b:aa:80:0d:79:35:0f:c9:d8:28:e6: 31:36:52:51:12:c2:15:1e:c8:15:14:52:8b:5c:46: 5f:fd:6a:28:b1:cf:90:5d:d4:89:14:bd:31:a8:98: a3:fd:ff:65:f5:f3:26:f6:a6:ea:56:30:3e:af:0b: 1e:12:ac:e2:ca:4a:fe:21:06:9f:c0:e9:d1:dd:4f: 83:ec:3b:20:64:55:d2:e7:db:fc:a6:43:8a:e1:20: e1:9e:e7:2e:ef:d9:1c:b5:30:4a:a8:39:4a:a1:d0: 12:52:22:9a:95:53:af:81:b2:e0:f8:64:68:99:3f: 2e:1e:da:f5:6a:c7:c3:31:99:de:40:0e:1b:bb:6f: 09:7f:19:76:74:e4:d5:ed:74:df:03:28:4f:15:c2: b7:35:ce:fe:05:50:f9:50:2d:ff:3f:6b:f4:81:43: 17:64:00:43:f6:10:dd:c0:b6:20:56:b0:7d:fc:a1: 47:96:92:d2:6d:ce:f9:32:9c:ca:42:ae:53:85:71: 4b:c4:3f:b4:b2:3d:8e:fb:57:27:4f:20:eb:59:46: ba:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:03:19:C2:B1:D8:FF:B4:AC:17:A3:D9:99:4B:A1:93:32:33:00:1E X509v3 Authority Key Identifier: keyid:DD:82:9D:64:6D:53:EC:F2:98:95:0B:68:75:32:DE:92:6E:C7:EB:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/3YKdZG1T7PKYlQtodTLekm7H68A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3YKdZG1T7PKYlQtodTLekm7H68A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/891/oQMZwrHY_7SsF6PZmUuhkzIzAB4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.226.56.0/22 Signature Algorithm: sha256WithRSAEncryption c6:79:f4:d7:a0:c8:04:82:4e:51:c4:4e:6e:db:80:16:d4:2d: f6:c4:1d:03:6b:ae:93:9a:dd:74:8a:ed:f7:15:41:a1:ad:e8: 58:16:59:7b:a1:cf:3a:5b:e2:12:94:bf:3d:9e:3f:d6:98:13: 97:e1:ba:91:09:0b:ec:25:ad:4b:2d:11:59:60:14:5a:68:78: 78:19:65:c3:88:b4:54:ef:44:57:28:86:c1:57:95:46:2b:05: 32:4a:98:1b:4b:7e:fb:e1:51:37:3d:87:46:60:8c:2d:86:b6: 61:90:21:55:f5:39:8b:fa:65:33:8e:4c:69:54:12:c6:d4:8d: 11:9d:4e:55:ac:6f:86:a5:ef:54:30:7b:a2:32:1f:f3:bc:49: 28:cd:36:c2:04:a9:f7:b4:4c:2a:e3:a9:c1:de:3a:d7:6c:42: 86:14:f6:20:5b:7b:dc:32:97:c7:55:9d:e9:1a:48:28:7e:12: 18:6d:47:9d:71:f4:95:c1:f8:63:18:01:43:2c:19:90:dd:b1: 15:c2:1f:a3:69:00:dc:5a:d5:89:f8:c3:58:5b:28:24:0e:93: 75:d8:58:39:21:00:80:59:02:7e:1b:d9:c2:49:45:a1:ce:20: 3d:66:83:e7:c1:6b:ee:68:e8:c4:26:02:34:04:fd:f1:49:84: 5b:25:99:b0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERDgy OUQ2NDZENTNFQ0YyOTg5NTBCNjg3NTMyREU5MjZFQzdFQkMwMB4XDTI1MDMyNTA2 MTkwNFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoQTEwMzE5QzJCMUQ4RkZC NEFDMTdBM0Q5OTk0QkExOTMzMjMzMDAxRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALjT8I98bRE4KXqgk301sVp2Es3kgxx+Pus68TOUUv8j1GY28F+9 iW4Q1hPBLiI88puqgA15NQ/J2CjmMTZSURLCFR7IFRRSi1xGX/1qKLHPkF3UiRS9 MaiYo/3/ZfXzJvam6lYwPq8LHhKs4spK/iEGn8Dp0d1Pg+w7IGRV0ufb/KZDiuEg 4Z7nLu/ZHLUwSqg5SqHQElIimpVTr4Gy4PhkaJk/Lh7a9WrHwzGZ3kAOG7tvCX8Z dnTk1e103wMoTxXCtzXO/gVQ+VAt/z9r9IFDF2QAQ/YQ3cC2IFawffyhR5aS0m3O +TKcykKuU4VxS8Q/tLI9jvtXJ08g61lGukcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBShAxnCsdj/tKwXo9mZS6GTMjMAHjAfBgNVHSMEGDAWgBTdgp1kbVPs8piVC2h1 Mt6SbsfrwDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODkxLzNZS2RaRzFUN1BLWWxRdG9kVExla203SDY4QS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzNZS2RaRzFUN1BLWWxRdG9kVExla203 SDY4QS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84OTEvb1FNWndySFlfN1NzRjZQWm1VdWhrekl6QUI0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsriODANBgkqhkiG9w0BAQsFAAOCAQEAxnn016DIBIJOUcRObtuAFtQt9sQd A2uuk5rddIrt9xVBoa3oWBZZe6HPOlviEpS/PZ4/1pgTl+G6kQkL7CWtSy0RWWAU Wmh4eBllw4i0VO9EVyiGwVeVRisFMkqYG0t+++FRNz2HRmCMLYa2YZAhVfU5i/pl M45MaVQSxtSNEZ1OVaxvhqXvVDB7ojIf87xJKM02wgSp97RMKuOpwd4612xChhT2 IFt73DKXx1Wd6RpIKH4SGG1HnXH0lcH4YxgBQywZkN2xFcIfo2kA3FrVifjDWFso JA6TddhYOSEAgFkCfhvZwklFoc4gPWaD58Fr7mjoxCYCNAT98UmEWyWZsA== -----END CERTIFICATE-----Generated at Sat Apr 26 17:57:34 2025 by rpki-client