$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ovB9fYTt-66Zauo00Paka_SuFjQ.roa File: ovB9fYTt-66Zauo00Paka_SuFjQ.roa (raw, json) Hash identifier: Kb554/O+edg8PqOsMhFOTfneCe55pQpD4tFvWLzjxzo= Subject key identifier: A2:F0:7D:7D:84:ED:FB:AE:99:6A:EA:34:D0:F6:A4:6B:F4:AE:16:34 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0C35 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ovB9fYTt-66Zauo00Paka_SuFjQ.roa Signing time: Tue 01 Apr 2025 01:54:10 +0000 ROA not before: Tue 01 Apr 2025 01:54:10 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.30.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3125 (0xc35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 01:54:10 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=A2F07D7D84EDFBAE996AEA34D0F6A46BF4AE1634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:55:75:7d:67:3a:79:0f:a6:78:a5:9d:6f:04: 61:ce:18:d8:55:cd:97:89:e3:a4:11:b3:23:eb:dc: f5:4c:bf:92:90:17:92:16:3c:5f:a3:eb:ff:a9:13: 4a:2a:56:47:85:f1:40:12:5e:5c:c0:6e:23:9e:50: 76:80:55:da:ce:69:1d:01:9c:88:e2:02:a5:91:5b: 8a:f3:71:72:8e:c5:80:d6:1b:dd:60:51:c1:32:61: 82:dc:66:7f:08:cb:71:99:9c:23:99:a4:64:75:6f: e5:cb:f7:46:ed:fd:59:0f:44:6b:8f:ff:1a:67:1b: 1a:a1:83:28:9f:07:41:b0:3f:b3:b6:f6:1a:a3:2d: 4a:44:d5:fc:4d:4e:df:5b:71:d7:65:af:46:62:47: 62:0d:4c:01:b8:0c:9b:ae:93:27:02:cd:48:e7:06: c4:5d:18:a2:b9:41:cd:00:a9:48:e9:4f:c4:35:cb: ec:bb:3b:24:e2:61:97:6b:62:b7:89:84:50:d7:9b: 8b:31:78:ee:a6:3f:56:cd:f6:cd:3e:27:e4:3f:2c: 9a:b3:33:e5:44:d9:bb:fb:46:ed:ed:dd:48:68:4c: db:0d:67:7b:e0:94:d5:42:0f:a4:ab:f8:48:a7:1e: 50:e2:56:ee:31:3f:2e:82:cc:4d:ce:42:7b:29:29: 13:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F0:7D:7D:84:ED:FB:AE:99:6A:EA:34:D0:F6:A4:6B:F4:AE:16:34 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ovB9fYTt-66Zauo00Paka_SuFjQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.30.0/23 Signature Algorithm: sha256WithRSAEncryption 03:0e:65:f9:1a:23:a0:fd:a3:48:b2:1a:43:1b:cd:ab:e8:38: 11:00:32:0f:12:a9:f6:32:96:67:67:ce:d4:f6:69:3c:70:1d: d8:c8:f0:a0:fc:1c:f5:eb:fe:26:34:05:f4:f8:36:28:7a:d6: 2b:59:06:c3:a6:3b:0e:b9:30:f3:9e:a4:26:24:4a:e5:1d:02: ce:2e:b1:4b:40:64:16:7a:9e:90:ad:2d:d9:fa:ce:90:68:85: 72:00:44:2e:e6:50:a7:21:ba:16:ac:9e:06:e1:0f:00:a3:7d: 0b:ed:96:29:fb:73:6f:81:1c:af:44:8c:3a:43:cd:cf:7b:68: 22:98:92:28:bc:c1:3b:03:24:79:5c:06:73:ad:c6:3e:6f:35: e4:60:80:8d:4a:37:10:ff:ee:1b:d9:e4:b8:ff:9f:7f:19:fc: 3c:fa:c6:64:20:d3:3d:c7:b9:b9:f8:b3:1b:68:95:c6:51:80: a2:4a:1e:fb:3e:d0:39:8c:0a:b0:1b:8a:d8:bc:0c:87:9e:da: 78:f1:8f:2f:80:bf:ad:9b:3f:a9:f3:c3:7a:27:fa:d8:9a:54: c9:da:25:1d:5d:fa:6b:9b:96:15:26:b0:45:6a:fa:7b:80:3f: e6:83:e9:48:2b:90:37:be:84:0d:a8:47:95:20:1e:b0:dc:67: 6b:f1:08:11 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDDUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MTU0MTBaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEEyRjA3RDdEODRFREZC QUU5OTZBRUEzNEQwRjZBNDZCRjRBRTE2MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyVXV9Zzp5D6Z4pZ1vBGHOGNhVzZeJ46QRsyPr3PVMv5KQF5IW PF+j6/+pE0oqVkeF8UASXlzAbiOeUHaAVdrOaR0BnIjiAqWRW4rzcXKOxYDWG91g UcEyYYLcZn8Iy3GZnCOZpGR1b+XL90bt/VkPRGuP/xpnGxqhgyifB0GwP7O29hqj LUpE1fxNTt9bcddlr0ZiR2INTAG4DJuukycCzUjnBsRdGKK5Qc0AqUjpT8Q1y+y7 OyTiYZdrYreJhFDXm4sxeO6mP1bN9s0+J+Q/LJqzM+VE2bv7Ru3t3UhoTNsNZ3vg lNVCD6Sr+EinHlDiVu4xPy6CzE3OQnspKRP9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUovB9fYTt+66Zauo00Paka/SuFjQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L292QjlmWVR0LTY2WmF1bzAwUGFrYV9TdUZqUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcnx4wDQYJKoZIhvcNAQELBQADggEBAAMOZfkaI6D9o0iyGkMbzavoOBEA Mg8SqfYylmdnztT2aTxwHdjI8KD8HPXr/iY0BfT4Nih61itZBsOmOw65MPOepCYk SuUdAs4usUtAZBZ6npCtLdn6zpBohXIARC7mUKchuhasngbhDwCjfQvtlin7c2+B HK9EjDpDzc97aCKYkii8wTsDJHlcBnOtxj5vNeRggI1KNxD/7hvZ5Lj/n38Z/Dz6 xmQg0z3Hubn4sxtolcZRgKJKHvs+0DmMCrAbiti8DIee2njxjy+Av62bP6nzw3on +tiaVMnaJR1d+mublhUmsEVq+nuAP+aD6UgrkDe+hA2oR5UgHrDcZ2vxCBE= -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:02 2025 by rpki-client on console.sobornost.net