$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11247/Zddh3aT4oiDgbph63nHn2IJDkLM.roa File: Zddh3aT4oiDgbph63nHn2IJDkLM.roa (raw, json) Hash identifier: HEuLXXE2VRWtB8Z6tmd2m4yLKoRNVdTz9Ls955RJ7ak= Subject key identifier: 65:D7:61:DD:A4:F8:A2:20:E0:6E:98:7A:DE:71:E7:D8:82:43:90:B3 Certificate issuer: /CN=FBC46294A5D56437E19A11AEF9FB9B877690143E Certificate serial: 6A Authority key identifier: FB:C4:62:94:A5:D5:64:37:E1:9A:11:AE:F9:FB:9B:87:76:90:14:3E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/Zddh3aT4oiDgbph63nHn2IJDkLM.roa Signing time: Tue 01 Apr 2025 01:32:38 +0000 ROA not before: Tue 01 Apr 2025 01:32:38 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 7684 IP address blocks: 157.17.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBC46294A5D56437E19A11AEF9FB9B877690143E Validity Not Before: Apr 1 01:32:38 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=65D761DDA4F8A220E06E987ADE71E7D8824390B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:eb:fb:1f:09:44:21:f8:71:75:17:67:d8:d1: 49:b8:6a:bc:10:92:cb:fd:42:dc:68:40:d1:d3:87: e5:8c:90:d8:97:a0:39:32:5f:f8:34:fa:a5:fb:34: ea:e1:e9:74:60:c5:d0:2a:23:87:3a:56:d2:8a:b7: 5e:ed:da:00:08:3f:66:47:64:0c:1f:e6:fc:01:7a: 2e:75:7e:5e:ff:11:dc:15:c4:85:96:f6:fa:9a:14: a1:60:9c:a9:4a:be:e1:56:84:a3:d2:cb:d1:8f:15: 59:a3:d3:d5:0c:d3:89:9e:c8:55:df:66:f5:34:d4: f2:4b:36:ab:00:55:95:98:e1:dd:fc:33:5e:e1:86: 84:9c:c2:3a:28:a9:04:d4:f5:c5:3a:a4:5b:60:25: 21:90:38:a9:17:02:14:7e:99:fc:bc:0a:58:f4:13: 4d:1c:61:c3:c7:85:e6:74:0e:86:9a:74:35:b5:c8: 84:1f:4d:04:2c:a7:c8:1f:f8:de:3b:b9:97:c6:a6: 42:54:7c:83:5c:d1:44:e4:b9:8a:01:c6:b7:41:df: 4f:62:e6:b6:af:61:29:0c:fb:1c:37:a8:c1:39:dc: 39:ca:72:b1:96:79:5d:37:8f:62:52:a1:8f:a8:0a: de:1a:11:f2:39:a8:21:e0:a8:67:3e:b4:a8:5f:a9: 0f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D7:61:DD:A4:F8:A2:20:E0:6E:98:7A:DE:71:E7:D8:82:43:90:B3 X509v3 Authority Key Identifier: keyid:FB:C4:62:94:A5:D5:64:37:E1:9A:11:AE:F9:FB:9B:87:76:90:14:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/Zddh3aT4oiDgbph63nHn2IJDkLM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.17.84.0/22 Signature Algorithm: sha256WithRSAEncryption b4:09:b5:e4:74:e1:3e:d2:0a:65:31:47:08:6f:28:c1:3e:00: 0e:bc:66:a3:ec:b4:7d:0f:3d:b8:2e:0f:cd:1a:32:03:d3:f7: e3:8b:ed:6e:1d:3b:3b:9f:b7:84:a7:95:df:ea:0b:56:26:3c: d2:48:62:55:e6:ed:15:8f:ad:f8:5d:b5:24:84:f1:d5:2f:34: 83:b1:73:c7:03:59:70:ed:4c:ac:ee:c5:5a:37:8e:69:f7:26: 18:2f:3b:e0:84:e8:d0:77:d0:a3:52:94:ba:a3:5a:3a:08:46: 3c:3f:19:51:04:62:c9:eb:bb:9b:f1:cb:52:27:dd:aa:e4:52: 04:73:87:dc:a5:39:55:6e:6a:0f:02:f8:db:64:64:ac:06:10: bd:50:b8:56:e4:a7:17:b5:ed:8c:45:e2:49:bc:b8:5b:2a:f8: 23:1d:62:9c:9a:4f:f1:d3:b4:85:9a:91:df:a9:04:5c:02:2f: bb:c6:5a:f2:55:4f:66:b8:dd:83:86:86:a4:a8:6f:9b:8f:e4: 24:a9:5e:e6:ab:9b:e9:89:0c:a2:0e:5e:a7:49:6e:ea:5b:0a: e2:5f:e9:0a:ee:03:0f:be:65:be:50:e3:e7:75:1b:c2:99:b0: cb:9a:35:4d:67:76:af:84:69:46:49:c6:4e:59:65:e9:8c:11: 56:04:ce:44 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGQkM0 NjI5NEE1RDU2NDM3RTE5QTExQUVGOUZCOUI4Nzc2OTAxNDNFMB4XDTI1MDQwMTAx MzIzOFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoNjVENzYxRERBNEY4QTIy MEUwNkU5ODdBREU3MUU3RDg4MjQzOTBCMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKTr+x8JRCH4cXUXZ9jRSbhqvBCSy/1C3GhA0dOH5YyQ2JegOTJf +DT6pfs06uHpdGDF0CojhzpW0oq3Xu3aAAg/ZkdkDB/m/AF6LnV+Xv8R3BXEhZb2 +poUoWCcqUq+4VaEo9LL0Y8VWaPT1QzTiZ7IVd9m9TTU8ks2qwBVlZjh3fwzXuGG hJzCOiipBNT1xTqkW2AlIZA4qRcCFH6Z/LwKWPQTTRxhw8eF5nQOhpp0NbXIhB9N BCynyB/43ju5l8amQlR8g1zRROS5igHGt0HfT2Lmtq9hKQz7HDeowTncOcpysZZ5 XTePYlKhj6gK3hoR8jmoIeCoZz60qF+pD1cCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRl12HdpPiiIOBumHrecefYgkOQszAfBgNVHSMEGDAWgBT7xGKUpdVkN+GaEa75 +5uHdpAUPjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTEyNDcvLThSaWxLWFZaRGZobWhHdS1mdWJoM2FRRkQ0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLThSaWxLWFZaRGZobWhHdS1mdWJo M2FRRkQ0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzExMjQ3L1pkZGgzYVQ0b2lEZ2JwaDYzbkhuMklKRGtMTS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAKdEVQwDQYJKoZIhvcNAQELBQADggEBALQJteR04T7SCmUxRwhvKME+ AA68ZqPstH0PPbguD80aMgPT9+OL7W4dOzuft4Snld/qC1YmPNJIYlXm7RWPrfhd tSSE8dUvNIOxc8cDWXDtTKzuxVo3jmn3JhgvO+CE6NB30KNSlLqjWjoIRjw/GVEE Ysnru5vxy1In3arkUgRzh9ylOVVuag8C+NtkZKwGEL1QuFbkpxe17YxF4km8uFsq +CMdYpyaT/HTtIWakd+pBFwCL7vGWvJVT2a43YOGhqSob5uP5CSpXuarm+mJDKIO XqdJbupbCuJf6QruAw++Zb5Q4+d1G8KZsMuaNU1ndq+EaUZJxk5ZZemMEVYEzkQ= -----END CERTIFICATE-----Generated at Mon Apr 28 22:50:55 2025 by rpki-client on console.sobornost.net