$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20257/kt2QoyiXC26KIam6NuAVKIq-VL0.roa File: kt2QoyiXC26KIam6NuAVKIq-VL0.roa (raw, json) Hash identifier: cpFZ2imrYa1kAbjEBdYWziX0wIX1fdaHVgyS4EEl4hA= Subject key identifier: 92:DD:90:A3:28:97:0B:6E:8A:21:A9:BA:36:E0:15:28:8A:BE:54:BD Certificate issuer: /CN=F7FCBB98375357213F81D24BE1E19A8C64EBDD0B Certificate serial: 02 Authority key identifier: F7:FC:BB:98:37:53:57:21:3F:81:D2:4B:E1:E1:9A:8C:64:EB:DD:0B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9_y7mDdTVyE_gdJL4eGajGTr3Qs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20257/kt2QoyiXC26KIam6NuAVKIq-VL0.roa Signing time: Tue 15 Apr 2025 03:38:52 +0000 ROA not before: Tue 15 Apr 2025 03:38:52 +0000 ROA not after: Wed 15 Apr 2026 03:30:48 +0000 asID: 151387 IP address blocks: 157.66.72.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20257/9_y7mDdTVyE_gdJL4eGajGTr3Qs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20257/9_y7mDdTVyE_gdJL4eGajGTr3Qs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9_y7mDdTVyE_gdJL4eGajGTr3Qs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7FCBB98375357213F81D24BE1E19A8C64EBDD0B Validity Not Before: Apr 15 03:38:52 2025 GMT Not After : Apr 15 03:30:48 2026 GMT Subject: CN=92DD90A328970B6E8A21A9BA36E015288ABE54BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:aa:0d:ab:ba:0c:2c:c9:b5:4e:13:cf:84:f1: 51:0c:c4:74:ae:85:e9:ca:a8:53:85:03:9a:28:e8: e4:f1:88:e7:b6:6e:f6:3e:3a:b2:9d:90:8b:fe:fe: 5b:dc:ad:0c:92:47:00:8d:3e:fb:27:cc:52:c7:09: ed:a2:67:43:b5:45:21:01:1c:01:03:2c:fa:86:86: b9:78:e5:8b:9a:13:eb:46:5d:d0:4d:35:58:39:1e: 33:a2:11:8c:e5:0b:cb:07:ef:3e:79:ea:0a:dd:78: 0a:b0:ab:0e:0d:ce:76:32:da:8d:38:53:a6:67:c1: e3:73:29:a3:31:4d:53:c9:72:ac:ae:c7:6a:bd:3e: 2c:56:49:11:af:60:41:21:cf:f4:89:e9:b8:eb:14: da:30:49:f4:a2:b4:83:4d:cc:f5:0f:b0:3b:f8:2a: 48:77:20:5c:60:22:26:4b:59:21:1e:59:ee:ea:dc: 5e:60:26:6f:f1:61:56:47:5c:a3:85:64:dc:ec:aa: fa:b3:8a:48:04:a6:41:17:21:6d:9f:42:f2:86:a5: 89:a2:21:84:f5:44:4e:68:05:07:a3:75:63:73:77: 78:97:12:eb:7f:c1:e3:14:b8:bf:31:4b:87:3d:76: 05:82:3b:b5:52:09:68:e8:8a:13:cc:fc:0e:12:d0: 37:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DD:90:A3:28:97:0B:6E:8A:21:A9:BA:36:E0:15:28:8A:BE:54:BD X509v3 Authority Key Identifier: keyid:F7:FC:BB:98:37:53:57:21:3F:81:D2:4B:E1:E1:9A:8C:64:EB:DD:0B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20257/9_y7mDdTVyE_gdJL4eGajGTr3Qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9_y7mDdTVyE_gdJL4eGajGTr3Qs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20257/kt2QoyiXC26KIam6NuAVKIq-VL0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.72.0/23 Signature Algorithm: sha256WithRSAEncryption ac:16:65:93:9e:e4:69:15:87:37:6c:30:86:84:ca:4d:14:c2: 49:7c:50:0a:a6:70:32:c8:51:34:34:16:d8:e2:32:f6:72:6d: 9c:17:4a:7e:6c:d1:ad:f5:1c:ad:12:df:65:81:e5:d1:74:0e: 41:dc:56:d0:af:1d:0c:fd:5e:82:e2:7c:b6:00:0e:37:ad:60: 38:71:a8:a6:dc:0a:55:93:2b:0a:35:c3:09:52:d2:20:13:3f: fc:35:db:c4:b0:2f:07:c8:05:c7:b5:46:ab:f6:68:e2:d0:e5: b9:a0:2a:e0:43:df:66:36:c6:5e:bd:da:ba:c9:03:ca:ad:7d: 1c:82:56:7a:6a:34:0a:7e:79:ba:38:07:b4:3c:e3:a2:81:52: 14:ac:13:82:06:2f:61:22:3c:1b:47:c3:d3:72:0f:99:49:8b: b8:60:5f:0a:2e:8f:0b:3a:99:2a:09:5d:ea:3d:cb:03:88:05: b0:70:98:9b:1c:63:f2:38:7b:cd:d1:54:a7:25:5e:e3:ed:79: 95:9f:d5:cf:01:61:27:a0:82:0d:bb:43:af:16:d1:c2:0e:30: 5e:92:ca:8c:89:53:71:31:f4:5f:8e:4e:8f:da:42:67:6c:77: 0f:a7:fe:f3:05:71:a7:ae:83:06:43:f9:ab:aa:66:1e:0f:b1: 16:76:bc:3d -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGN0ZD QkI5ODM3NTM1NzIxM0Y4MUQyNEJFMUUxOUE4QzY0RUJERDBCMB4XDTI1MDQxNTAz Mzg1MloXDTI2MDQxNTAzMzA0OFowMzExMC8GA1UEAxMoOTJERDkwQTMyODk3MEI2 RThBMjFBOUJBMzZFMDE1Mjg4QUJFNTRCRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPCqDau6DCzJtU4Tz4TxUQzEdK6F6cqoU4UDmijo5PGI57Zu9j46 sp2Qi/7+W9ytDJJHAI0++yfMUscJ7aJnQ7VFIQEcAQMs+oaGuXjli5oT60Zd0E01 WDkeM6IRjOULywfvPnnqCt14CrCrDg3OdjLajThTpmfB43MpozFNU8lyrK7Har0+ LFZJEa9gQSHP9InpuOsU2jBJ9KK0g03M9Q+wO/gqSHcgXGAiJktZIR5Z7urcXmAm b/FhVkdco4Vk3Oyq+rOKSASmQRchbZ9C8oaliaIhhPVETmgFB6N1Y3N3eJcS63/B 4xS4vzFLhz12BYI7tVIJaOiKE8z8DhLQN2MCAwEAAaOCAigwggIkMB0GA1UdDgQW BBSS3ZCjKJcLboohqbo24BUoir5UvTAfBgNVHSMEGDAWgBT3/LuYN1NXIT+B0kvh 4ZqMZOvdCzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAyNTcvOV95N21EZFRWeUVfZ2RKTDRlR2FqR1RyM1FzLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvOV95N21EZFRWeUVfZ2RKTDRlR2Fq R1RyM1FzLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMjU3L2t0MlFveWlYQzI2S0lhbTZOdUFWS0lxLVZMMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGdQkgwDQYJKoZIhvcNAQELBQADggEBAKwWZZOe5GkVhzdsMIaEyk0U wkl8UAqmcDLIUTQ0FtjiMvZybZwXSn5s0a31HK0S32WB5dF0DkHcVtCvHQz9XoLi fLYADjetYDhxqKbcClWTKwo1wwlS0iATP/w128SwLwfIBce1Rqv2aOLQ5bmgKuBD 32Y2xl692rrJA8qtfRyCVnpqNAp+ebo4B7Q846KBUhSsE4IGL2EiPBtHw9NyD5lJ i7hgXwoujws6mSoJXeo9ywOIBbBwmJscY/I4e83RVKclXuPteZWf1c8BYSeggg27 Q68W0cIOMF6SyoyJU3Ex9F+OTo/aQmdsdw+n/vMFcaeugwZD+auqZh4PsRZ2vD0= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:14 2025 by rpki-client on console.sobornost.net