$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MxSUwEVgQrvybSezwei39pwqVbk.roa File: MxSUwEVgQrvybSezwei39pwqVbk.roa (raw, json) Hash identifier: RWBla6No6DQZOTyuXqtlnuTywftJnj1ywhv1xzIykKk= Subject key identifier: 33:14:94:C0:45:60:42:BB:F2:6D:27:B3:C1:E8:B7:F6:9C:2A:55:B9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BD9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MxSUwEVgQrvybSezwei39pwqVbk.roa Signing time: Tue 01 Apr 2025 01:47:36 +0000 ROA not before: Tue 01 Apr 2025 01:47:36 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.210.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3033 (0xbd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:47:36 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=331494C0456042BBF26D27B3C1E8B7F69C2A55B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:58:15:bf:dc:04:3b:cc:f0:45:44:fa:a6:72: 2a:6a:b2:d6:8d:20:00:e6:36:02:e7:e7:75:a5:d6: 31:b1:ac:78:69:df:ae:6b:1c:12:c7:6a:fc:8d:37: fc:98:78:3e:c2:8e:72:44:07:08:55:8b:4e:e3:4c: 6f:81:c6:be:20:cf:23:f4:1a:e1:dc:32:a8:e1:1e: 27:58:14:17:79:c9:98:eb:57:1c:17:f8:a6:0a:17: 21:12:29:86:3a:a1:76:f1:62:e5:a0:64:ae:23:e8: 00:16:d3:52:14:51:1c:9d:a7:0e:1b:52:20:35:45: 4f:59:dd:f6:80:eb:f2:1e:21:8c:79:8e:29:e5:bd: 93:54:f2:09:9f:5c:ba:0a:af:48:6c:fa:6c:7b:1c: 98:a0:62:82:67:ed:bc:f8:87:a8:21:7c:6d:bd:59: e7:60:10:8d:d7:fa:95:0d:29:7a:04:d9:b4:b7:28: dc:70:c2:88:b2:03:0d:7b:d6:92:4c:7a:cd:34:30: 92:d5:44:05:f5:2b:47:e6:6e:4c:2d:4d:c6:aa:ad: 43:18:2e:38:8f:72:74:75:60:8a:0a:59:c6:3d:c3: 5d:64:56:9e:20:8a:a1:55:fc:4a:ae:b6:2b:53:e2: 62:04:96:0f:1c:e0:96:27:6c:02:59:3d:a8:90:c6: 22:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:14:94:C0:45:60:42:BB:F2:6D:27:B3:C1:E8:B7:F6:9C:2A:55:B9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MxSUwEVgQrvybSezwei39pwqVbk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.76.0/22 Signature Algorithm: sha256WithRSAEncryption 37:99:04:6b:3e:87:6b:63:0e:69:b1:94:af:ff:2e:eb:d4:4c: 53:08:50:fc:1d:fa:73:27:81:ce:ed:38:a7:4e:0a:63:56:b0: 1e:e9:08:d7:40:ed:30:45:a2:2d:3e:aa:80:c2:02:f4:2c:d3: e2:cd:9f:d1:a7:4b:68:cf:47:ab:e2:b1:26:c0:50:87:7c:26: bb:ca:6a:f3:23:9e:85:ca:6e:54:fe:8d:e3:80:fe:8c:3a:0c: 6d:cb:04:25:57:80:d4:48:10:e2:29:00:fe:c7:a6:be:27:89: 77:f3:c7:01:db:04:7c:f5:d5:93:d0:88:50:79:e4:97:c0:e7: 49:b0:e2:10:70:5f:dd:4a:4e:34:63:22:4f:a7:f9:9f:1c:47: 2e:d3:21:4c:b9:43:49:01:ea:bc:0c:3d:5d:98:30:79:a3:f3: 53:3f:17:21:c8:92:9f:eb:c5:13:0f:9a:c6:09:cd:f8:54:c9: 0d:5b:2e:20:dc:d2:e4:57:8f:76:fe:e1:33:de:38:1b:18:85: ec:7f:fe:aa:63:2b:3e:8f:9a:c9:aa:36:1b:c0:45:c5:77:cb: b1:3c:ba:56:58:9b:7e:fa:9e:7e:09:5e:5d:cf:97:39:57:f8: a0:3f:8e:ca:0b:05:00:2e:c1:3a:d2:80:4c:4f:60:ed:4e:29: dc:e8:b8:19 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQ3MzZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMzMTQ5NEMwNDU2MDQy QkJGMjZEMjdCM0MxRThCN0Y2OUMyQTU1QjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGWBW/3AQ7zPBFRPqmcipqstaNIADmNgLn53Wl1jGxrHhp365r HBLHavyNN/yYeD7CjnJEBwhVi07jTG+Bxr4gzyP0GuHcMqjhHidYFBd5yZjrVxwX +KYKFyESKYY6oXbxYuWgZK4j6AAW01IUURydpw4bUiA1RU9Z3faA6/IeIYx5jinl vZNU8gmfXLoKr0hs+mx7HJigYoJn7bz4h6ghfG29WedgEI3X+pUNKXoE2bS3KNxw woiyAw171pJMes00MJLVRAX1K0fmbkwtTcaqrUMYLjiPcnR1YIoKWcY9w11kVp4g iqFV/EqutitT4mIElg8c4JYnbAJZPaiQxiKnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMxSUwEVgQrvybSezwei39pwqVbkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L014U1V3RVZnUXJ2eWJTZXp3ZWkzOXB3cVZiay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0kwwDQYJKoZIhvcNAQELBQADggEBADeZBGs+h2tjDmmxlK//LuvUTFMI UPwd+nMngc7tOKdOCmNWsB7pCNdA7TBFoi0+qoDCAvQs0+LNn9GnS2jPR6visSbA UId8JrvKavMjnoXKblT+jeOA/ow6DG3LBCVXgNRIEOIpAP7Hpr4niXfzxwHbBHz1 1ZPQiFB55JfA50mw4hBwX91KTjRjIk+n+Z8cRy7TIUy5Q0kB6rwMPV2YMHmj81M/ FyHIkp/rxRMPmsYJzfhUyQ1bLiDc0uRXj3b+4TPeOBsYhex//qpjKz6PmsmqNhvA RcV3y7E8ulZYm376nn4JXl3PlzlX+KA/jsoLBQAuwTrSgExPYO1OKdzouBk= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:48 2025 by rpki-client on console.sobornost.net