$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IsiT1ha0w9OZkpfxKxz39wtC0EY.roa File: IsiT1ha0w9OZkpfxKxz39wtC0EY.roa (raw, json) Hash identifier: W+r7PnYKz/MmQO6knJd37KKI8LNXOrZrEbAuPYpxuWk= Subject key identifier: 22:C8:93:D6:16:B4:C3:D3:99:92:97:F1:2B:1C:F7:F7:0B:42:D0:46 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0B6C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IsiT1ha0w9OZkpfxKxz39wtC0EY.roa Signing time: Tue 01 Apr 2025 01:36:41 +0000 ROA not before: Tue 01 Apr 2025 01:36:41 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2924 (0xb6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:36:41 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=22C893D616B4C3D3999297F12B1CF7F70B42D046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ec:c5:03:68:3d:f2:95:45:a7:e3:30:17:3e: a1:71:1a:84:34:d2:60:04:de:f2:f8:0d:82:3d:6e: 53:2c:a4:77:c1:87:9d:7d:1b:3e:4e:9a:40:c2:fb: df:0e:af:8c:6b:22:4d:4d:97:ad:dc:5b:92:3d:c8: 49:65:00:6f:5d:7c:c1:ac:ae:2c:21:3f:89:83:cc: 66:f3:18:fa:17:55:da:6e:6c:99:cb:bb:c0:02:bc: 0c:8c:b8:72:51:fe:1f:f8:bb:04:0a:db:5b:f1:0c: d0:62:a7:f8:31:30:9a:36:0b:d9:69:d2:d9:5c:9a: 0a:b9:d6:01:6a:ca:5a:af:e7:9a:63:79:53:aa:69: 24:32:81:be:70:20:4b:e6:81:c7:f8:da:c2:6d:7d: 91:bf:52:65:94:cb:f2:0b:04:4c:61:28:86:f5:00: f7:42:41:ec:f2:ca:c4:c6:d7:8f:4f:e8:76:81:25: 63:59:1f:0c:e6:71:e6:de:0e:26:6d:53:61:7b:f6: 63:68:1e:d4:cf:d9:73:a3:97:60:6c:74:af:7e:ed: b2:1a:2f:44:13:7e:fd:ed:33:0e:f0:82:54:c4:d6: 4c:ce:e6:d2:0b:77:fa:4b:fc:53:da:b7:5b:f7:45: d7:91:4e:db:ef:e2:77:d1:cb:ef:17:fd:35:ec:ae: 9c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C8:93:D6:16:B4:C3:D3:99:92:97:F1:2B:1C:F7:F7:0B:42:D0:46 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IsiT1ha0w9OZkpfxKxz39wtC0EY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.64.0/18 Signature Algorithm: sha256WithRSAEncryption 29:43:28:dd:bd:87:5e:d3:21:80:1d:af:ee:39:36:d6:01:de: e8:6d:18:09:f8:33:94:26:b5:c3:c4:d2:28:8f:61:6e:37:04: 61:86:90:25:fa:0d:03:76:f0:d9:fd:32:2b:e4:c3:7f:13:74: 4b:bb:77:55:b8:a5:fb:fb:9e:33:4f:a8:7d:8b:4d:6b:6a:0c: 80:35:cb:b1:50:92:0e:91:37:0d:5f:f7:af:80:8d:94:e2:04: df:72:30:e5:9c:9f:8a:fd:99:cb:88:3d:82:b8:bc:ed:d5:be: d2:c8:2d:1f:e7:08:b6:c6:46:60:9c:13:0a:a0:74:dd:43:c8: 6e:0f:15:6d:72:74:c5:50:fb:58:5a:3e:15:97:9e:c7:d4:77: cf:d7:e6:e9:11:3b:fd:9d:90:1b:23:b3:03:10:92:ff:d5:de: 03:a3:a3:77:a7:76:2a:4d:0c:cc:b1:e1:75:6d:9c:0e:f9:7c: d6:91:49:b3:d9:e2:7e:1b:30:78:3e:b4:33:fb:e0:f5:62:34: f1:47:2d:ea:3a:bc:54:3e:76:21:2e:a0:7f:94:ca:d7:f3:d0: 78:d4:49:c6:65:6c:98:52:ce:22:55:94:94:4b:55:f3:a0:ee: d7:2e:9d:b2:97:c9:80:e7:18:d0:62:7e:51:8e:a3:b6:17:0e: 7f:04:e6:8b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTM2NDFaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDIyQzg5M0Q2MTZCNEMz RDM5OTkyOTdGMTJCMUNGN0Y3MEI0MkQwNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDl7MUDaD3ylUWn4zAXPqFxGoQ00mAE3vL4DYI9blMspHfBh519 Gz5OmkDC+98Or4xrIk1Nl63cW5I9yEllAG9dfMGsriwhP4mDzGbzGPoXVdpubJnL u8ACvAyMuHJR/h/4uwQK21vxDNBip/gxMJo2C9lp0tlcmgq51gFqylqv55pjeVOq aSQygb5wIEvmgcf42sJtfZG/UmWUy/ILBExhKIb1APdCQezyysTG149P6HaBJWNZ HwzmcebeDiZtU2F79mNoHtTP2XOjl2BsdK9+7bIaL0QTfv3tMw7wglTE1kzO5tIL d/pL/FPat1v3RdeRTtvv4nfRy+8X/TXsrpzxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIsiT1ha0w9OZkpfxKxz39wtC0EYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0lzaVQxaGEwdzlPWmtwZnhLeHozOXd0QzBFWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbcn0AwDQYJKoZIhvcNAQELBQADggEBAClDKN29h17TIYAdr+45NtYB3uht GAn4M5QmtcPE0iiPYW43BGGGkCX6DQN28Nn9Mivkw38TdEu7d1W4pfv7njNPqH2L TWtqDIA1y7FQkg6RNw1f96+AjZTiBN9yMOWcn4r9mcuIPYK4vO3VvtLILR/nCLbG RmCcEwqgdN1DyG4PFW1ydMVQ+1haPhWXnsfUd8/X5ukRO/2dkBsjswMQkv/V3gOj o3endipNDMyx4XVtnA75fNaRSbPZ4n4bMHg+tDP74PViNPFHLeo6vFQ+diEuoH+U ytfz0HjUScZlbJhSziJVlJRLVfOg7tcunbKXyYDnGNBiflGOo7YXDn8E5os= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:46 2025 by rpki-client on console.sobornost.net