$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/cWo14356a9gOEx2mYe-P2Ds8HgY.roa File: cWo14356a9gOEx2mYe-P2Ds8HgY.roa (raw, json) Hash identifier: naAac2wPxDZb9aROTRxZl3oQr7bvaGXdrGBkCiJMHeo= Subject key identifier: 71:6A:35:E3:7E:7A:6B:D8:0E:13:1D:A6:61:EF:8F:D8:3B:3C:1E:06 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C2E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cWo14356a9gOEx2mYe-P2Ds8HgY.roa Signing time: Tue 01 Apr 2025 01:54:06 +0000 ROA not before: Tue 01 Apr 2025 01:54:06 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.210.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3118 (0xc2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:54:06 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=716A35E37E7A6BD80E131DA661EF8FD83B3C1E06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6b:20:40:cd:c0:52:45:c7:c4:56:62:f5:53: 10:42:a6:d3:cb:06:cb:9b:a2:da:c6:e8:f1:d0:c2: 63:22:5f:33:0d:ea:6b:5d:fc:9d:21:52:99:2e:6a: 99:bf:82:a7:92:69:79:a0:ac:d7:e1:9b:82:b8:7d: 69:0b:9f:09:af:1e:65:54:fc:f0:9d:17:f9:cc:e6: 36:81:d4:5b:e9:a9:9e:5b:7e:5a:e8:fe:10:60:50: 57:e9:75:bc:41:d5:0e:2f:69:cf:81:dc:87:45:d5: de:cc:29:a9:28:16:ef:3c:3b:40:78:ef:53:ec:20: c4:5a:4f:9c:74:cd:05:96:4e:eb:8d:72:48:c2:00: cb:87:3e:93:21:15:fa:46:14:03:a6:7b:01:6a:d1: b2:09:da:af:47:85:13:6a:4a:9c:e4:0f:d0:b4:ee: e5:42:2b:df:b8:c5:37:30:c6:50:dd:1a:95:a0:5e: 3e:ca:31:7d:f8:f1:35:62:90:83:9c:28:e9:08:fc: bc:57:bf:bf:2a:00:f6:d3:1e:b8:ba:ac:2a:de:ab: b5:f6:32:49:49:c1:c8:f1:b2:8e:02:89:b9:3f:f3: 4c:3f:1f:e9:fc:27:f6:36:33:e0:55:b1:57:b7:bb: e1:a3:fe:cf:cf:d7:b9:3b:5c:ff:3a:5f:39:5b:ae: 88:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:6A:35:E3:7E:7A:6B:D8:0E:13:1D:A6:61:EF:8F:D8:3B:3C:1E:06 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/cWo14356a9gOEx2mYe-P2Ds8HgY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.60.0/22 Signature Algorithm: sha256WithRSAEncryption a6:05:ab:ed:e4:6f:d1:c1:b9:a6:3b:87:73:22:23:bb:f3:25: 80:9d:1b:b5:4d:a3:7e:ed:09:33:04:dc:33:20:ba:0b:c3:65: fc:c0:a2:1a:77:b3:e3:53:bc:15:c1:de:d6:70:4e:f6:ce:de: 4c:ce:ed:38:d1:94:c9:70:65:ce:cb:b5:5b:51:38:d9:e5:87: cd:da:1e:e1:b3:5a:bd:76:8b:6e:29:9d:4c:8b:29:08:b2:ba: a4:d4:9c:c7:86:ae:4b:9a:57:5a:6b:d7:7d:46:de:b6:15:00: 4d:a3:97:71:24:bb:23:f2:66:e3:0e:92:14:b1:1a:27:84:6e: e7:11:9e:32:be:1f:1a:8a:43:b8:62:31:1d:69:25:62:14:16: 5c:7d:15:ce:5d:f7:39:08:91:b2:07:ea:cf:0a:6b:34:57:9e: 96:0a:a5:a3:3e:0d:a1:de:58:89:e4:49:bb:cd:73:cf:0b:86: 7f:5f:54:77:74:ae:13:d4:36:28:3f:bb:93:ce:ee:5e:c4:50: b6:3a:73:25:08:14:a1:cc:5f:cb:35:01:b4:56:62:0e:ed:97: 28:8b:fd:73:6b:92:3f:4b:53:1f:cb:56:38:e4:e7:5a:66:6c: c9:64:e5:67:a1:0c:6a:2d:30:2c:f5:59:d3:bc:0b:a8:f3:b7: bc:a5:49:92 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU0MDZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcxNkEzNUUzN0U3QTZC RDgwRTEzMURBNjYxRUY4RkQ4M0IzQzFFMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeayBAzcBSRcfEVmL1UxBCptPLBsubotrG6PHQwmMiXzMN6mtd /J0hUpkuapm/gqeSaXmgrNfhm4K4fWkLnwmvHmVU/PCdF/nM5jaB1FvpqZ5bflro /hBgUFfpdbxB1Q4vac+B3IdF1d7MKakoFu88O0B471PsIMRaT5x0zQWWTuuNckjC AMuHPpMhFfpGFAOmewFq0bIJ2q9HhRNqSpzkD9C07uVCK9+4xTcwxlDdGpWgXj7K MX348TVikIOcKOkI/LxXv78qAPbTHri6rCreq7X2MklJwcjxso4Cibk/80w/H+n8 J/Y2M+BVsVe3u+Gj/s/P17k7XP86Xzlbrog5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcWo14356a9gOEx2mYe+P2Ds8HgYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2NXbzE0MzU2YTlnT0V4Mm1ZZS1QMkRzOEhnWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0jwwDQYJKoZIhvcNAQELBQADggEBAKYFq+3kb9HBuaY7h3MiI7vzJYCd G7VNo37tCTME3DMgugvDZfzAohp3s+NTvBXB3tZwTvbO3kzO7TjRlMlwZc7LtVtR ONnlh83aHuGzWr12i24pnUyLKQiyuqTUnMeGrkuaV1pr131G3rYVAE2jl3EkuyPy ZuMOkhSxGieEbucRnjK+HxqKQ7hiMR1pJWIUFlx9Fc5d9zkIkbIH6s8KazRXnpYK paM+DaHeWInkSbvNc88Lhn9fVHd0rhPUNig/u5PO7l7EULY6cyUIFKHMX8s1AbRW Yg7tlyiL/XNrkj9LUx/LVjjk51pmbMlk5WehDGotMCz1WdO8C6jzt7ylSZI= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:57 2025 by rpki-client on console.sobornost.net