$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/OpqIL04OzvvaR9PhMtpKgDRFD0M.roa File: OpqIL04OzvvaR9PhMtpKgDRFD0M.roa (raw, json) Hash identifier: RbNSOjbq7Kq1mkAuTXVYnaJV0o0u+Aj6vvY60l7V11E= Subject key identifier: 3A:9A:88:2F:4E:0E:CE:FB:DA:47:D3:E1:32:DA:4A:80:34:45:0F:43 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D03 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OpqIL04OzvvaR9PhMtpKgDRFD0M.roa Signing time: Tue 01 Apr 2025 02:11:38 +0000 ROA not before: Tue 01 Apr 2025 02:11:38 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.76.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3331 (0xd03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:11:38 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=3A9A882F4E0ECEFBDA47D3E132DA4A8034450F43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:19:74:a9:e7:4c:d3:17:fd:40:49:64:1a:b6: 5d:40:03:3c:f9:6e:e5:38:33:9d:e3:06:b7:b9:c9: 6f:1f:9c:24:e7:c1:c0:cf:1a:a0:c9:66:fe:d4:86: 7c:51:44:fb:f5:90:ba:0e:35:11:39:50:9e:30:39: c0:aa:0c:f7:3a:c9:18:54:58:ee:19:28:f0:65:fb: d4:2d:6a:3f:97:05:8d:3f:84:98:71:53:a5:03:17: 23:0c:73:2c:ee:03:08:3d:1f:ce:45:55:56:57:38: c9:a2:d9:c8:cf:39:ca:8a:35:e8:87:14:fd:eb:04: a4:fe:cb:0c:63:35:1c:7a:59:e5:46:a5:58:c9:82: f0:73:9a:59:be:89:ae:47:f9:d8:10:b0:5f:aa:4d: 55:0d:7c:22:cf:d7:0a:91:65:89:e5:ad:f9:86:05: 25:76:28:c1:fc:6b:d3:85:94:37:6c:4c:4b:60:1d: 77:65:68:fe:1c:49:58:bf:b3:70:8f:38:2f:00:a6: 13:ae:90:1a:d9:01:72:33:42:28:6d:60:44:18:9a: 66:6f:60:bc:61:ea:ac:f5:52:e5:d9:6b:d0:6d:06: d5:bb:65:b0:2c:52:51:65:f8:5e:ba:af:59:2a:9b: 50:11:9c:72:80:1f:79:89:19:a1:bf:3f:db:bd:c0: 24:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9A:88:2F:4E:0E:CE:FB:DA:47:D3:E1:32:DA:4A:80:34:45:0F:43 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OpqIL04OzvvaR9PhMtpKgDRFD0M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.4.0/22 Signature Algorithm: sha256WithRSAEncryption 98:e7:93:0b:6c:61:e9:77:17:bd:bd:a7:da:ef:77:1b:33:2e: 68:a5:59:9c:b9:14:27:d3:78:6e:48:a3:ed:a3:c3:6f:17:b6: de:66:f7:e9:6c:83:89:9d:48:83:9e:c9:de:08:c6:b3:b1:c5: cc:ef:8f:86:19:5c:69:98:8c:87:5c:eb:fb:a2:d3:48:e3:1f: e2:c5:c1:ae:db:93:dd:8e:df:ab:66:30:55:0b:e0:85:03:e4: c2:31:45:0b:e7:71:d9:11:2e:6b:36:05:ee:9c:80:fb:76:77: d6:99:84:33:c5:d7:b5:72:30:59:78:72:e0:7f:78:a4:a8:52: 1a:e7:81:53:b7:67:86:69:cb:b8:67:f8:3c:4b:bd:be:75:b3: 10:ea:6e:37:e5:52:1f:ba:ca:d7:ee:cf:a6:f6:0b:a8:ab:9d: 91:c3:e4:56:5f:8a:9e:24:5d:fa:24:e3:3e:f1:c2:e0:35:f5: e8:f7:42:6c:b1:5a:2d:cc:a5:d0:87:41:ca:34:71:ed:76:fb: 94:ab:26:06:65:b5:82:cb:26:01:9f:40:ab:49:52:0a:18:ca: 65:36:c6:97:ac:14:22:58:80:fd:89:2c:ff:f2:bc:71:41:c4: d1:b0:24:07:e0:58:88:b7:c8:12:98:97:20:e5:d5:8e:d5:2a: 23:31:fb:7e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDQMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjExMzhaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNBOUE4ODJGNEUwRUNF RkJEQTQ3RDNFMTMyREE0QTgwMzQ0NTBGNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYGXSp50zTF/1ASWQatl1AAzz5buU4M53jBre5yW8fnCTnwcDP GqDJZv7UhnxRRPv1kLoONRE5UJ4wOcCqDPc6yRhUWO4ZKPBl+9Qtaj+XBY0/hJhx U6UDFyMMcyzuAwg9H85FVVZXOMmi2cjPOcqKNeiHFP3rBKT+ywxjNRx6WeVGpVjJ gvBzmlm+ia5H+dgQsF+qTVUNfCLP1wqRZYnlrfmGBSV2KMH8a9OFlDdsTEtgHXdl aP4cSVi/s3CPOC8AphOukBrZAXIzQihtYEQYmmZvYLxh6qz1UuXZa9BtBtW7ZbAs UlFl+F66r1kqm1ARnHKAH3mJGaG/P9u9wCTDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUOpqIL04OzvvaR9PhMtpKgDRFD0MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L09wcUlMMDRPenZ2YVI5UGhNdHBLZ0RSRkQwTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTAQwDQYJKoZIhvcNAQELBQADggEBAJjnkwtsYel3F729p9rvdxszLmil WZy5FCfTeG5Io+2jw28Xtt5m9+lsg4mdSIOeyd4IxrOxxczvj4YZXGmYjIdc6/ui 00jjH+LFwa7bk92O36tmMFUL4IUD5MIxRQvncdkRLms2Be6cgPt2d9aZhDPF17Vy MFl4cuB/eKSoUhrngVO3Z4Zpy7hn+DxLvb51sxDqbjflUh+6ytfuz6b2C6irnZHD 5FZfip4kXfok4z7xwuA19ej3QmyxWi3MpdCHQco0ce12+5SrJgZltYLLJgGfQKtJ UgoYymU2xpesFCJYgP2JLP/yvHFBxNGwJAfgWIi3yBKYlyDl1Y7VKiMx+34= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:49 2025 by rpki-client on console.sobornost.net