$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nDj-k0KFBOrGkg6goRMsnO1rW5Q.roa File: nDj-k0KFBOrGkg6goRMsnO1rW5Q.roa (raw, json) Hash identifier: PUoQGsaPoM7jPqqy5pwaBa1jKERefGKQUEoCnLXRZkI= Subject key identifier: 9C:38:FE:93:42:85:04:EA:C6:92:0E:A0:A1:13:2C:9C:ED:6B:5B:94 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0BCA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nDj-k0KFBOrGkg6goRMsnO1rW5Q.roa Signing time: Tue 01 Apr 2025 01:43:49 +0000 ROA not before: Tue 01 Apr 2025 01:43:49 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.74.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3018 (0xbca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:43:49 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=9C38FE93428504EAC6920EA0A1132C9CED6B5B94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b1:b3:94:b4:e0:26:d2:ee:0b:b0:26:ff:c4: 0e:4d:b6:41:d1:19:db:7a:b3:d1:35:fd:f9:3d:58: 58:fa:f6:41:83:1f:75:4a:dc:c1:ea:2c:a6:1a:81: ad:52:21:ab:7c:be:ad:14:3a:0b:42:72:03:d0:fc: 2d:4d:74:56:fd:27:da:3e:f2:23:44:7c:8d:91:23: f7:aa:86:9b:56:42:9f:ac:25:e2:3a:21:b4:1f:10: bc:8b:eb:3d:49:dd:13:74:b7:80:05:a7:ef:fd:a0: 96:e6:2c:dd:c3:79:57:f0:13:10:75:cb:1e:64:32: e1:2a:b3:01:61:bf:ce:22:90:60:81:7e:f9:db:54: 3b:43:04:9f:92:ff:cc:5b:bc:d1:39:aa:5a:29:1e: be:be:2f:e3:b5:2c:9c:ab:aa:89:83:fc:3b:0e:b6: 97:5f:bd:8e:81:89:bb:04:65:d8:61:4a:f8:e0:d9: 4a:07:0b:e3:b2:e2:8c:ce:a1:dd:80:8b:99:82:06: 23:69:9b:94:92:a2:b9:83:55:d0:da:66:9d:79:80: 41:ff:b0:99:7f:64:74:55:55:6d:75:b3:06:07:44: 1a:3f:99:d8:9d:56:1b:2a:14:60:d2:f7:5c:ce:2d: 6d:65:c0:0a:5c:cf:52:31:3f:dc:e0:2f:94:f5:99: d3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:38:FE:93:42:85:04:EA:C6:92:0E:A0:A1:13:2C:9C:ED:6B:5B:94 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nDj-k0KFBOrGkg6goRMsnO1rW5Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.0.0/18 Signature Algorithm: sha256WithRSAEncryption cd:e2:d4:05:43:b4:4d:8c:2a:2f:9d:d0:df:5f:36:2a:00:3d: 15:e2:be:0f:07:22:55:f8:22:37:a5:ad:95:2a:ad:0c:40:be: 62:a2:99:5e:53:0b:18:3e:38:98:80:47:88:02:4e:19:75:14: ef:f7:d3:f5:bd:3b:e2:09:2e:ef:18:c1:eb:4a:4e:a5:f7:fc: 7a:1c:06:c5:f7:fa:2e:9f:29:c7:f7:a0:5d:64:ee:80:fb:f9: 82:e9:40:32:84:4e:e5:35:74:14:37:fd:d2:87:16:0d:8b:9a: 88:ad:c7:27:ba:ab:b8:3c:19:57:d4:71:c5:bd:e5:bf:74:43: f4:5f:cf:ec:0e:f2:5a:2f:d8:4b:24:b7:0f:bd:a5:f4:d6:04: e0:05:52:c9:c8:07:e1:ba:d6:98:d3:4b:93:22:6c:27:16:43: 20:85:23:21:db:b8:6d:7b:fb:ef:63:16:96:8e:f3:3f:de:41: 7a:7b:49:5c:2d:f4:fb:d7:c4:1a:ed:72:f4:56:82:8f:c6:eb: bf:6c:67:ad:bf:a9:2b:60:d5:9a:94:c9:0d:8a:c2:73:ac:ba: e2:81:d7:5e:97:6a:31:e0:d7:a7:5a:74:1d:2e:84:6e:96:08: 71:5b:29:2f:17:db:3e:c8:bb:94:cd:8c:2e:55:a4:ec:da:a7: ff:03:91:71 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICC8owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTQzNDlaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDlDMzhGRTkzNDI4NTA0 RUFDNjkyMEVBMEExMTMyQzlDRUQ2QjVCOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIsbOUtOAm0u4LsCb/xA5NtkHRGdt6s9E1/fk9WFj69kGDH3VK 3MHqLKYaga1SIat8vq0UOgtCcgPQ/C1NdFb9J9o+8iNEfI2RI/eqhptWQp+sJeI6 IbQfELyL6z1J3RN0t4AFp+/9oJbmLN3DeVfwExB1yx5kMuEqswFhv84ikGCBfvnb VDtDBJ+S/8xbvNE5qlopHr6+L+O1LJyrqomD/DsOtpdfvY6BibsEZdhhSvjg2UoH C+Oy4ozOod2Ai5mCBiNpm5SSormDVdDaZp15gEH/sJl/ZHRVVW11swYHRBo/mdid VhsqFGDS91zOLW1lwApcz1IxP9zgL5T1mdNNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUnDj+k0KFBOrGkg6goRMsnO1rW5QwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L25Eai1rMEtGQk9yR2tnNmdvUk1zbk8xclc1US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYBSgAwDQYJKoZIhvcNAQELBQADggEBAM3i1AVDtE2MKi+d0N9fNioAPRXi vg8HIlX4IjelrZUqrQxAvmKimV5TCxg+OJiAR4gCThl1FO/30/W9O+IJLu8YwetK TqX3/HocBsX3+i6fKcf3oF1k7oD7+YLpQDKETuU1dBQ3/dKHFg2Lmoitxye6q7g8 GVfUccW95b90Q/Rfz+wO8lov2Esktw+9pfTWBOAFUsnIB+G61pjTS5MibCcWQyCF IyHbuG17++9jFpaO8z/eQXp7SVwt9PvXxBrtcvRWgo/G679sZ62/qStg1ZqUyQ2K wnOsuuKB116XajHg16dadB0uhG6WCHFbKS8X2z7Iu5TNjC5VpOzap/8DkXE= -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:02 2025 by rpki-client on console.sobornost.net