$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JcxDaTwVvaGNQY-WLwjpqvVWNzI.roa File: JcxDaTwVvaGNQY-WLwjpqvVWNzI.roa (raw, json) Hash identifier: YJMkyk7ww3XRK/GoXZz4IJbzENpxz5bf3x6vLdWa1cs= Subject key identifier: 25:CC:43:69:3C:15:BD:A1:8D:41:8F:96:2F:08:E9:AA:F5:56:37:32 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BE0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JcxDaTwVvaGNQY-WLwjpqvVWNzI.roa Signing time: Tue 01 Apr 2025 01:47:39 +0000 ROA not before: Tue 01 Apr 2025 01:47:39 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3040 (0xbe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:39 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=25CC43693C15BDA18D418F962F08E9AAF5563732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ea:02:a6:95:e0:cd:e8:82:e6:b4:93:4d:07: a6:2f:eb:82:9b:d9:9d:ce:4d:33:10:54:0d:84:a3: d7:e0:76:7e:69:4f:26:07:ac:f1:1a:66:35:d5:a9: 19:91:59:e0:8b:c8:e7:68:2f:2e:3d:cf:43:0c:02: e9:c1:48:aa:b8:35:10:4e:a7:e1:6f:6f:31:e8:0d: e1:37:ac:98:9e:eb:39:d6:fe:af:b6:05:5b:8e:2b: db:e3:eb:61:bb:a1:39:23:63:3a:67:87:a2:b8:99: c3:dc:18:7f:a6:73:85:7d:ab:f6:79:30:74:9c:ab: f1:9d:76:3b:0c:04:bc:52:7e:fb:6a:cc:96:b4:09: 07:40:ab:10:3f:07:c4:7a:76:26:7e:0a:4f:98:3a: ed:42:ad:be:72:06:b0:75:e8:b2:84:86:bc:8b:ca: 0e:c8:b6:ba:a5:fd:62:0c:df:fe:b6:6d:3d:35:1b: 70:cc:11:b9:bb:fc:5a:09:d1:10:d6:c0:c2:db:8d: 9d:1d:75:b6:a8:91:be:e1:94:e4:4e:12:86:f3:4d: d1:37:45:b0:9f:88:98:03:60:bc:cb:06:b3:e5:46: 69:79:73:3a:6b:bc:f9:00:0e:fd:b4:56:0a:4a:37: 16:56:bb:29:2b:5d:4a:65:18:19:04:c3:64:31:da: a1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:CC:43:69:3C:15:BD:A1:8D:41:8F:96:2F:08:E9:AA:F5:56:37:32 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JcxDaTwVvaGNQY-WLwjpqvVWNzI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.230.0/23 Signature Algorithm: sha256WithRSAEncryption 70:59:eb:9a:47:f0:0d:83:cb:a7:93:36:58:e7:cb:4d:60:7b: 16:f8:13:48:46:07:89:df:d8:1d:59:de:2a:b5:13:81:ce:22: c2:e6:9a:b0:ba:40:88:ab:4a:a2:2a:d4:e8:58:ed:b9:3f:5d: 71:c5:8d:0e:42:b2:82:3d:0c:7e:8e:0e:e6:2d:e9:a3:04:4a: 05:6f:60:c6:74:d1:cf:bf:cb:b6:38:cb:69:d5:d9:d2:ae:7e: 1b:a7:76:26:79:dd:56:9d:58:40:6d:4f:4b:5c:f9:41:d2:3e: d8:64:8b:16:65:21:03:1f:19:5d:6e:7e:e7:b5:dc:ec:a8:bb: 2a:99:4e:58:3c:55:16:b0:44:42:59:40:ce:f6:38:97:f0:02: 96:a9:78:fa:d3:e4:5c:8c:71:72:2c:83:85:c2:5a:fd:54:7e: 0f:bc:29:16:cb:a6:1a:13:1e:49:87:53:5f:8c:08:d8:ba:53: 5c:75:1b:5d:8c:a8:07:cb:98:71:53:4d:4e:84:19:df:3f:4c: 35:81:3f:f1:3e:51:ff:7b:40:be:6a:f7:fd:a4:34:64:48:4a: 7b:e5:97:07:7e:0b:91:d7:eb:11:70:3d:a8:45:40:33:4a:ad: ff:96:34:00:92:a5:cc:00:3e:07:4f:db:05:5e:f6:57:29:2f: bc:b1:26:f8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC+AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3MzlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI1Q0M0MzY5M0MxNUJE QTE4RDQxOEY5NjJGMDhFOUFBRjU1NjM3MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDn6gKmleDN6ILmtJNNB6Yv64Kb2Z3OTTMQVA2Eo9fgdn5pTyYH rPEaZjXVqRmRWeCLyOdoLy49z0MMAunBSKq4NRBOp+FvbzHoDeE3rJie6znW/q+2 BVuOK9vj62G7oTkjYzpnh6K4mcPcGH+mc4V9q/Z5MHScq/GddjsMBLxSfvtqzJa0 CQdAqxA/B8R6diZ+Ck+YOu1Crb5yBrB16LKEhryLyg7Itrql/WIM3/62bT01G3DM Ebm7/FoJ0RDWwMLbjZ0ddbaokb7hlOROEobzTdE3RbCfiJgDYLzLBrPlRml5czpr vPkADv20VgpKNxZWuykrXUplGBkEw2Qx2qFbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJcxDaTwVvaGNQY+WLwjpqvVWNzIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0pjeERhVHdWdmFHTlFZLVdMd2pwcXZWV056SS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS+YwDQYJKoZIhvcNAQELBQADggEBAHBZ65pH8A2Dy6eTNljny01gexb4 E0hGB4nf2B1Z3iq1E4HOIsLmmrC6QIirSqIq1OhY7bk/XXHFjQ5CsoI9DH6ODuYt 6aMESgVvYMZ00c+/y7Y4y2nV2dKufhundiZ53VadWEBtT0tc+UHSPthkixZlIQMf GV1ufue13OyouyqZTlg8VRawREJZQM72OJfwApapePrT5FyMcXIsg4XCWv1Ufg+8 KRbLphoTHkmHU1+MCNi6U1x1G12MqAfLmHFTTU6EGd8/TDWBP/E+Uf97QL5q9/2k NGRISnvllwd+C5HX6xFwPahFQDNKrf+WNACSpcwAPgdP2wVe9lcpL7yxJvg= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:46 2025 by rpki-client on console.sobornost.net