$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iMDEUSizUE-eArAIX-Hv9Z74inA.roa File: iMDEUSizUE-eArAIX-Hv9Z74inA.roa (raw, json) Hash identifier: zYYVA4kNJRnxcK20U3JDceWT9niudkYLWfY52QHhUjU= Subject key identifier: 88:C0:C4:51:28:B3:50:4F:9E:02:B0:08:5F:E1:EF:F5:9E:F8:8A:70 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D97 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iMDEUSizUE-eArAIX-Hv9Z74inA.roa Signing time: Tue 01 Apr 2025 02:21:37 +0000 ROA not before: Tue 01 Apr 2025 02:21:37 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3479 (0xd97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:21:37 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=88C0C45128B3504F9E02B0085FE1EFF59EF88A70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:72:05:61:ea:a8:9f:27:7c:64:61:b6:ce:0e: ed:c5:b4:f6:c7:ad:ec:47:0e:1a:49:af:63:b4:1b: 76:92:b4:0e:44:80:c1:cc:6c:e1:b6:01:b6:9a:57: ce:f2:c8:8e:ad:8a:9f:03:03:a2:78:4f:14:e5:a2: 98:52:0f:f9:0b:be:0e:4d:e8:5d:58:d5:35:60:b6: ef:97:cb:e9:1a:2f:06:3f:3b:b2:1f:eb:ce:28:11: 2f:77:68:b7:57:47:1a:c8:1a:54:9f:98:16:a5:5f: 36:be:24:76:0a:0d:e7:13:f8:19:3a:d9:77:6d:e1: ec:4b:24:e0:f8:79:68:e8:13:61:31:eb:08:66:cb: 21:3a:8a:7c:ec:28:f8:c5:9e:ad:93:a6:85:fb:38: bf:6a:e5:d3:3c:1b:cf:b0:43:3f:c1:4d:e5:14:4e: 53:ac:7a:e4:9c:e6:85:33:38:f5:ba:e2:eb:c8:a5: 93:88:52:46:50:32:ae:43:66:5f:4f:5e:f6:6f:63: c0:af:c0:8b:b3:86:c0:67:79:41:07:3a:e9:df:65: 74:58:10:e5:ee:30:5c:02:05:1c:7e:da:2b:78:e2: 53:32:de:bd:62:5f:90:de:10:30:06:c5:4d:a5:a7: b6:02:e3:76:2e:5e:f3:46:ef:b0:de:23:9d:38:fa: 7a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C0:C4:51:28:B3:50:4F:9E:02:B0:08:5F:E1:EF:F5:9E:F8:8A:70 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iMDEUSizUE-eArAIX-Hv9Z74inA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.12.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:cb:57:b9:92:45:d3:f0:14:3f:3a:f4:56:12:90:4b:22:1e: fe:d1:71:8e:1b:25:96:11:fd:67:32:be:f0:fb:77:3a:76:ff: d3:23:c2:4e:45:2a:d8:34:d3:25:d1:39:57:f5:27:33:88:e9: a8:25:71:09:36:60:a5:61:87:55:83:3c:e2:5f:21:aa:e6:6f: 1a:31:16:10:b4:10:83:7e:66:6b:ad:02:6a:dc:ae:3d:b1:fb: 10:36:0a:29:1a:32:22:bc:0c:5b:a3:75:fc:22:b8:12:90:2b: 6d:b9:75:cd:4e:65:3d:d9:b3:87:71:f7:ed:7e:86:54:b0:ca: 44:5c:6c:64:0d:bc:79:a9:9b:92:f3:3d:ce:89:e6:ff:04:04: 95:60:33:01:c1:34:e0:f9:a4:28:a1:4e:8d:84:f9:8e:bc:28: 01:8d:6b:d7:f9:78:e1:ac:b0:b7:eb:62:b5:0a:84:5a:a7:dc: 6b:3c:e6:fb:06:ff:4b:71:24:c4:68:fc:e0:5c:50:ee:55:f7: 5b:7b:30:18:63:67:3c:03:46:00:3d:b0:10:a3:8a:cd:5d:99: 21:7e:1b:0c:8e:ff:0b:f1:be:58:fc:6c:53:57:5d:62:81:46: 21:c4:e4:1e:13:ed:fb:42:ae:14:27:5e:6f:a9:78:ee:49:c4: ff:bf:f3:6c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjIxMzdaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg4QzBDNDUxMjhCMzUw NEY5RTAyQjAwODVGRTFFRkY1OUVGODhBNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCscgVh6qifJ3xkYbbODu3FtPbHrexHDhpJr2O0G3aStA5EgMHM bOG2AbaaV87yyI6tip8DA6J4TxTlophSD/kLvg5N6F1Y1TVgtu+Xy+kaLwY/O7If 684oES93aLdXRxrIGlSfmBalXza+JHYKDecT+Bk62Xdt4exLJOD4eWjoE2Ex6whm yyE6inzsKPjFnq2TpoX7OL9q5dM8G8+wQz/BTeUUTlOseuSc5oUzOPW64uvIpZOI UkZQMq5DZl9PXvZvY8CvwIuzhsBneUEHOunfZXRYEOXuMFwCBRx+2it44lMy3r1i X5DeEDAGxU2lp7YC43YuXvNG77DeI504+noTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiMDEUSizUE+eArAIX+Hv9Z74inAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lNREVVU2l6VUUtZUFyQUlYLUh2OVo3NGluQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBSAwwDQYJKoZIhvcNAQELBQADggEBAE7LV7mSRdPwFD869FYSkEsiHv7R cY4bJZYR/WcyvvD7dzp2/9Mjwk5FKtg00yXROVf1JzOI6aglcQk2YKVhh1WDPOJf IarmbxoxFhC0EIN+ZmutAmrcrj2x+xA2CikaMiK8DFujdfwiuBKQK225dc1OZT3Z s4dx9+1+hlSwykRcbGQNvHmpm5LzPc6J5v8EBJVgMwHBNOD5pCihTo2E+Y68KAGN a9f5eOGssLfrYrUKhFqn3Gs85vsG/0txJMRo/OBcUO5V91t7MBhjZzwDRgA9sBCj is1dmSF+GwyO/wvxvlj8bFNXXWKBRiHE5B4T7ftCrhQnXm+peO5JxP+/82w= -----END CERTIFICATE-----Generated at Mon Apr 28 22:51:59 2025 by rpki-client on console.sobornost.net