$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QcKUIVMTIFVJyUuiBfJdRNqc1ig.roa File: QcKUIVMTIFVJyUuiBfJdRNqc1ig.roa (raw, json) Hash identifier: oFqMFRYH0kWtRu9T7CZ+NRw9Tbk+k0JsrlfEFmTv5gw= Subject key identifier: 41:C2:94:21:53:13:20:55:49:C9:4B:A2:05:F2:5D:44:DA:9C:D6:28 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E30 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QcKUIVMTIFVJyUuiBfJdRNqc1ig.roa Signing time: Tue 01 Apr 2025 02:33:33 +0000 ROA not before: Tue 01 Apr 2025 02:33:33 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3632 (0xe30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:33:33 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=41C294215313205549C94BA205F25D44DA9CD628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b1:46:5f:00:c2:87:66:ff:e2:89:30:a8:45: 2a:2d:74:19:fc:84:02:8f:f4:8f:96:8c:5f:72:3c: 94:cd:82:8e:3c:aa:d9:94:e9:8d:e3:e1:f9:01:74: ed:db:8f:5d:17:54:60:26:00:1d:b2:2d:b8:0a:c6: 61:5a:72:17:9d:4d:5a:d1:2c:35:1b:72:d7:2c:b4: ab:f1:73:8c:72:d1:8a:5a:d5:c4:b3:32:8f:59:ef: 41:86:f7:b6:d3:f8:fa:13:2f:88:13:0a:e9:02:bc: b0:96:a4:5a:d7:75:ef:78:9a:b1:0d:a8:87:ed:e2: a4:ec:66:e7:69:8e:9d:70:8b:6d:29:74:fe:08:8f: 39:aa:e7:99:5b:a9:48:b7:e4:12:e1:82:c6:74:d2: 98:ce:10:06:b7:76:6d:d0:45:09:fc:f7:ea:57:e9: 28:41:fd:b9:b8:68:22:5a:5f:87:2a:3f:2b:4c:fb: 13:eb:ba:ae:9c:61:8b:ae:17:14:c4:2b:3d:e8:ff: 32:9e:64:fa:f0:eb:69:4a:a6:2b:37:1d:2e:e2:3a: 9e:c6:90:fe:aa:3b:47:47:ce:77:1e:a7:dc:f3:f8: 2a:86:39:42:d4:49:f5:eb:cf:6c:ef:57:91:52:50: f4:77:09:24:0d:fd:57:03:4b:a2:83:bf:54:08:29: 69:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C2:94:21:53:13:20:55:49:C9:4B:A2:05:F2:5D:44:DA:9C:D6:28 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QcKUIVMTIFVJyUuiBfJdRNqc1ig.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.74.0/24 Signature Algorithm: sha256WithRSAEncryption 02:15:71:5d:ed:e3:62:75:10:6e:9e:b4:8c:2c:90:96:7e:d0: 3b:60:ec:b7:72:85:44:a7:6b:f0:ae:f5:33:75:d5:e7:4f:47: b1:54:a5:79:78:6f:c7:d6:35:f1:e5:d1:c3:96:bd:a3:78:0b: a7:3c:9a:9c:ad:34:b4:60:8a:63:e2:06:a9:80:0c:a8:b0:93: 93:24:b1:24:28:4b:cf:db:47:34:71:da:d0:51:fc:f7:b7:22: 07:9a:ee:28:cb:cc:50:00:74:59:22:ca:07:70:28:61:4e:f8: e7:68:16:65:5f:89:39:39:28:30:c1:88:74:4e:fc:f9:05:97: 1c:f1:cd:64:c4:07:54:bb:d6:bf:ca:bb:0b:e6:bb:c6:9a:59: a8:e3:5b:2a:d3:0a:ce:0c:2e:be:aa:e6:60:8c:5d:4d:28:4e: 08:3a:fd:63:19:23:2e:97:04:a1:6a:3a:06:a0:20:bf:e8:fe: 91:ba:41:1a:a2:91:13:e2:21:03:27:5e:12:40:0b:62:10:81: d6:45:65:b9:b4:ae:d1:c7:80:23:e3:27:7c:39:d5:0a:de:6f: d5:bf:7f:da:ad:f3:f3:17:d7:46:ec:9e:0a:75:11:ff:59:a5: 39:5d:35:33:88:ea:bb:82:fe:88:be:88:95:68:ab:61:a0:6a: c2:9b:c5:3a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDjAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMzMzNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQxQzI5NDIxNTMxMzIw NTU0OUM5NEJBMjA1RjI1RDQ0REE5Q0Q2MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZsUZfAMKHZv/iiTCoRSotdBn8hAKP9I+WjF9yPJTNgo48qtmU 6Y3j4fkBdO3bj10XVGAmAB2yLbgKxmFachedTVrRLDUbctcstKvxc4xy0Ypa1cSz Mo9Z70GG97bT+PoTL4gTCukCvLCWpFrXde94mrENqIft4qTsZudpjp1wi20pdP4I jzmq55lbqUi35BLhgsZ00pjOEAa3dm3QRQn89+pX6ShB/bm4aCJaX4cqPytM+xPr uq6cYYuuFxTEKz3o/zKeZPrw62lKpis3HS7iOp7GkP6qO0dHzncep9zz+CqGOULU SfXrz2zvV5FSUPR3CSQN/VcDS6KDv1QIKWm1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQcKUIVMTIFVJyUuiBfJdRNqc1igwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1FjS1VJVk1USUZWSnlVdWlCZkpkUk5xYzFpZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABT0owDQYJKoZIhvcNAQELBQADggEBAAIVcV3t42J1EG6etIwskJZ+0Dtg 7LdyhUSna/Cu9TN11edPR7FUpXl4b8fWNfHl0cOWvaN4C6c8mpytNLRgimPiBqmA DKiwk5MksSQoS8/bRzRx2tBR/Pe3Igea7ijLzFAAdFkiygdwKGFO+OdoFmVfiTk5 KDDBiHRO/PkFlxzxzWTEB1S71r/Kuwvmu8aaWajjWyrTCs4MLr6q5mCMXU0oTgg6 /WMZIy6XBKFqOgagIL/o/pG6QRqikRPiIQMnXhJAC2IQgdZFZbm0rtHHgCPjJ3w5 1Qreb9W/f9qt8/MX10bsngp1Ef9ZpTldNTOI6ruC/oi+iJVoq2GgasKbxTo= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:50 2025 by rpki-client on console.sobornost.net