$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/uMtn8t64d-0G_tV2QUUXkRqj8qM.roa File: uMtn8t64d-0G_tV2QUUXkRqj8qM.roa (raw, json) Hash identifier: QOAcy+oEkHMPCupLpFzMHgz6D29RZI7UF7Oe3P4Llww= Subject key identifier: B8:CB:67:F2:DE:B8:77:ED:06:FE:D5:76:41:45:17:91:1A:A3:F2:A3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0E1D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/uMtn8t64d-0G_tV2QUUXkRqj8qM.roa Signing time: Tue 01 Apr 2025 02:31:34 +0000 ROA not before: Tue 01 Apr 2025 02:31:34 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 1.66.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3613 (0xe1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:31:34 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B8CB67F2DEB877ED06FED576414517911AA3F2A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7b:c6:6a:97:0f:d1:49:98:45:89:1d:47:f9: 1a:d9:bc:b9:86:d9:b1:91:4b:f1:66:da:28:f0:cc: 9d:a7:47:ea:ad:e5:38:c9:74:02:27:36:ad:bf:b5: 69:46:78:b6:37:a1:51:6e:a9:0d:b1:8f:5e:de:ed: d8:23:3c:b9:ce:d5:ef:67:71:42:06:fd:f1:b6:66: a6:9d:7e:06:2c:56:1f:76:e7:97:f5:1b:47:dd:77: 1f:b8:19:d3:b4:5f:aa:d0:e5:1b:b4:7c:54:11:7f: 14:2c:10:e2:14:e8:28:ee:06:ce:57:9b:9f:83:38: 49:67:71:2d:ea:91:2a:78:30:c1:e8:95:4a:04:d0: b9:f7:53:d6:0f:34:71:fd:45:8a:00:35:a9:eb:f6: 92:34:98:47:56:b2:06:2d:95:00:cf:c9:51:6b:89: bc:68:4c:9d:3a:23:80:1b:a1:96:ca:08:46:1a:8f: 6b:c7:4c:31:d1:00:02:c1:20:d7:78:bb:62:47:11: 08:57:17:39:c8:d4:72:c3:11:38:02:42:80:41:23: ed:34:35:b4:4e:74:42:49:fa:aa:66:3b:af:a0:77: 35:fe:57:fa:3a:ea:64:76:89:cd:d8:dd:e9:04:62: 79:01:7e:f8:37:75:fa:ce:d5:df:32:4d:d1:d6:02: 16:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:CB:67:F2:DE:B8:77:ED:06:FE:D5:76:41:45:17:91:1A:A3:F2:A3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/uMtn8t64d-0G_tV2QUUXkRqj8qM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.108.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:47:9f:59:67:f3:ca:c4:41:ee:2c:f3:55:6c:d1:b4:39:82: de:bf:24:10:0d:ca:7f:f5:c4:b4:16:bc:7b:78:3c:97:3b:b0: ba:18:d9:97:42:a4:d0:6e:c2:65:1b:76:d5:0c:60:6d:2e:fa: c8:a5:f7:bb:75:de:b3:89:a8:15:bb:1d:f5:1c:a3:2f:e8:e1: de:d3:46:0b:0a:75:81:05:4b:7c:4e:6a:63:c0:67:ef:1f:8c: 84:59:15:69:8d:cc:87:a4:97:75:d2:55:cd:1c:c6:dd:c4:9a: e0:51:2b:aa:00:a5:b6:f1:40:0b:85:70:19:dd:5a:92:de:0d: c0:25:73:44:92:73:2f:04:e9:2c:4b:64:38:74:56:59:ea:c2: fa:54:fb:ec:82:03:9e:a6:64:46:8b:f1:38:e4:a4:7e:8b:33: 6c:2d:37:08:01:50:d6:6f:40:26:3f:54:22:f5:7b:c6:3d:42: 1f:66:f1:e7:c2:c7:e9:ff:5b:39:3d:f5:94:90:1b:b0:ae:4f: 16:88:46:a0:bd:b3:c2:69:3d:97:29:fb:05:cd:74:76:05:49: ee:89:70:7a:7d:6a:f4:56:79:3a:06:78:ad:95:eb:29:0d:74: 9c:37:5d:e1:b9:3e:b1:56:00:b7:66:b3:c5:28:d9:ea:15:7e: 44:7b:ee:06 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDh0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjMxMzRaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI4Q0I2N0YyREVCODc3 RUQwNkZFRDU3NjQxNDUxNzkxMUFBM0YyQTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDve8Zqlw/RSZhFiR1H+RrZvLmG2bGRS/Fm2ijwzJ2nR+qt5TjJ dAInNq2/tWlGeLY3oVFuqQ2xj17e7dgjPLnO1e9ncUIG/fG2ZqadfgYsVh9255f1 G0fddx+4GdO0X6rQ5Ru0fFQRfxQsEOIU6CjuBs5Xm5+DOElncS3qkSp4MMHolUoE 0Ln3U9YPNHH9RYoANanr9pI0mEdWsgYtlQDPyVFribxoTJ06I4AboZbKCEYaj2vH TDHRAALBINd4u2JHEQhXFznI1HLDETgCQoBBI+00NbROdEJJ+qpmO6+gdzX+V/o6 6mR2ic3Y3ekEYnkBfvg3dfrO1d8yTdHWAhaPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUuMtn8t64d+0G/tV2QUUXkRqj8qMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3VNdG44dDY0ZC0wR190VjJRVVVYa1JxajhxTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBQmwwDQYJKoZIhvcNAQELBQADggEBABxHn1ln88rEQe4s81Vs0bQ5gt6/ JBANyn/1xLQWvHt4PJc7sLoY2ZdCpNBuwmUbdtUMYG0u+sil97t13rOJqBW7HfUc oy/o4d7TRgsKdYEFS3xOamPAZ+8fjIRZFWmNzIekl3XSVc0cxt3EmuBRK6oApbbx QAuFcBndWpLeDcAlc0SScy8E6SxLZDh0VlnqwvpU++yCA56mZEaL8TjkpH6LM2wt NwgBUNZvQCY/VCL1e8Y9Qh9m8efCx+n/Wzk99ZSQG7CuTxaIRqC9s8JpPZcp+wXN dHYFSe6JcHp9avRWeToGeK2V6ykNdJw3XeG5PrFWALdms8Uo2eoVfkR77gY= -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:26 2025 by rpki-client on console.sobornost.net