$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kuZ8HHisvIXRwMExgyp7aivq3EE.roa File: kuZ8HHisvIXRwMExgyp7aivq3EE.roa (raw, json) Hash identifier: dlbHvTqYgv5nZw8TLHbFRopirTRiE998JBQ/7v1ovYI= Subject key identifier: 92:E6:7C:1C:78:AC:BC:85:D1:C0:C1:31:83:2A:7B:6A:2B:EA:DC:41 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0DEA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kuZ8HHisvIXRwMExgyp7aivq3EE.roa Signing time: Tue 01 Apr 2025 02:29:03 +0000 ROA not before: Tue 01 Apr 2025 02:29:03 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3562 (0xdea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:29:03 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=92E67C1C78ACBC85D1C0C131832A7B6A2BEADC41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7e:15:1e:e3:1f:ca:9f:f2:a2:94:4e:52:45: 2b:95:ee:7b:a5:c3:61:c4:21:ac:b5:f6:ab:d1:40: 13:90:0b:86:f5:38:9d:98:a8:83:a6:0a:8e:61:7b: db:15:d0:22:9b:80:d8:4a:4c:1b:d0:25:87:d4:b4: 6e:ed:0a:30:43:9b:65:6b:fb:9a:20:ac:18:1b:bf: a2:a3:2e:25:70:b8:43:99:c8:98:c8:67:e4:4e:07: 08:94:26:cd:76:22:5d:eb:74:e8:72:99:70:3e:2e: 21:55:0f:25:de:c0:60:5c:af:75:d7:18:68:0c:b1: da:77:f9:6a:50:a7:75:d5:60:bb:8d:77:96:99:06: 8f:94:11:86:23:bf:29:54:6b:51:f6:e8:d3:7e:53: dc:9c:6b:3f:32:a0:af:4f:e8:1f:bd:cc:1d:b5:c1: a8:15:97:c3:34:67:24:4e:b6:1e:62:21:2d:88:b8: e2:6a:db:bf:9b:df:cf:05:ed:50:55:a2:c8:f1:f3: ca:9a:0a:99:51:76:3a:46:3f:9f:95:28:54:bd:fc: 58:22:8c:4a:1a:f4:5b:dc:be:06:92:eb:5b:5b:54: 14:46:79:ec:71:ff:be:57:11:cf:2a:4f:2b:4e:86: da:41:c6:97:f0:57:dd:4d:c9:9f:05:71:41:ae:0c: 6b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E6:7C:1C:78:AC:BC:85:D1:C0:C1:31:83:2A:7B:6A:2B:EA:DC:41 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kuZ8HHisvIXRwMExgyp7aivq3EE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.242.0/23 Signature Algorithm: sha256WithRSAEncryption cc:74:9d:8c:1e:29:fc:40:20:a8:1d:67:35:5f:40:70:42:65: 87:7c:0c:89:63:62:0d:f2:ce:8f:46:30:3a:9b:00:dd:02:7a: b9:8a:c9:66:c0:db:c2:58:bc:72:8b:02:e7:c9:20:7a:c3:ed: 29:d2:41:a8:fe:b8:c9:9b:db:42:2a:4f:e3:7b:df:91:19:23: 8b:7e:83:37:0e:5d:f9:da:d5:97:10:aa:9a:00:6e:88:17:13: 47:3b:88:74:7c:ee:77:27:31:a8:a0:62:52:fb:21:ff:09:a5: 3d:09:89:3d:ac:61:7c:9a:c4:f2:5c:23:3d:12:17:73:85:b4: 8d:13:1b:d8:01:aa:10:ea:74:37:2b:20:6b:16:b3:81:5e:5f: 39:ef:ce:fd:6a:66:b8:7f:10:ba:da:e6:3d:63:d7:51:4d:f4: 79:e7:5e:ee:73:4b:91:ae:6c:09:90:1a:61:5a:51:f2:54:a6: fb:7b:09:06:83:33:48:49:ee:af:40:1c:10:e3:73:5a:1a:6b: b7:de:45:c7:0f:71:57:4d:6a:86:b7:1e:e4:d9:51:96:a1:00: 45:9f:b8:03:7a:96:93:25:9b:e5:c3:c1:3b:27:85:cb:eb:5f: 54:26:da:7a:69:31:7a:57:24:2c:da:fd:f1:1d:61:7d:38:e0: 8a:6c:24:bf -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjI5MDNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDkyRTY3QzFDNzhBQ0JD ODVEMUMwQzEzMTgzMkE3QjZBMkJFQURDNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyfhUe4x/Kn/KilE5SRSuV7nulw2HEIay19qvRQBOQC4b1OJ2Y qIOmCo5he9sV0CKbgNhKTBvQJYfUtG7tCjBDm2Vr+5ogrBgbv6KjLiVwuEOZyJjI Z+ROBwiUJs12Il3rdOhymXA+LiFVDyXewGBcr3XXGGgMsdp3+WpQp3XVYLuNd5aZ Bo+UEYYjvylUa1H26NN+U9ycaz8yoK9P6B+9zB21wagVl8M0ZyROth5iIS2IuOJq 27+b388F7VBVosjx88qaCplRdjpGP5+VKFS9/FgijEoa9FvcvgaS61tbVBRGeexx /75XEc8qTytOhtpBxpfwV91NyZ8FcUGuDGvzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkuZ8HHisvIXRwMExgyp7aivq3EEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2t1WjhISGlzdklYUndNRXhneXA3YWl2cTNFRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS/IwDQYJKoZIhvcNAQELBQADggEBAMx0nYweKfxAIKgdZzVfQHBCZYd8 DIljYg3yzo9GMDqbAN0CermKyWbA28JYvHKLAufJIHrD7SnSQaj+uMmb20IqT+N7 35EZI4t+gzcOXfna1ZcQqpoAbogXE0c7iHR87ncnMaigYlL7If8JpT0JiT2sYXya xPJcIz0SF3OFtI0TG9gBqhDqdDcrIGsWs4FeXznvzv1qZrh/ELra5j1j11FN9Hnn Xu5zS5GubAmQGmFaUfJUpvt7CQaDM0hJ7q9AHBDjc1oaa7feRccPcVdNaoa3HuTZ UZahAEWfuAN6lpMlm+XDwTsnhcvrX1Qm2nppMXpXJCza/fEdYX044IpsJL8= -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:00 2025 by rpki-client on console.sobornost.net