$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zYkE_FeLGuxSqq-DCeJaXKKWE_s.roa File: zYkE_FeLGuxSqq-DCeJaXKKWE_s.roa (raw, json) Hash identifier: B2TzbH+MgRstEQJl57ndMAqnYzETgl5FnL7nENUCQUc= Subject key identifier: CD:89:04:FC:57:8B:1A:EC:52:AA:AF:83:09:E2:5A:5C:A2:96:13:FB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D59 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zYkE_FeLGuxSqq-DCeJaXKKWE_s.roa Signing time: Tue 01 Apr 2025 02:19:13 +0000 ROA not before: Tue 01 Apr 2025 02:19:13 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3417 (0xd59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:19:13 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=CD8904FC578B1AEC52AAAF8309E25A5CA29613FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dd:5a:6a:6b:bb:78:8c:75:45:0a:7c:00:8d: 2a:bc:3b:db:78:0d:48:08:7d:1b:e3:9f:da:00:45: 33:69:a4:a1:d8:39:20:27:0f:2b:d8:54:3f:a0:48: e6:79:e0:54:47:bf:5f:d7:5f:41:69:2a:a6:96:31: 14:31:af:63:55:d7:76:5d:cf:22:24:71:e0:c6:3f: eb:d4:06:11:ec:b5:88:25:ed:95:ce:96:cf:ad:de: 9d:97:12:e2:b2:24:fa:41:a7:cc:70:bd:76:68:63: 92:73:42:cb:75:f6:30:44:7f:46:7c:7a:fa:dc:af: 1f:68:36:d8:39:f2:77:06:24:5d:98:fb:22:b2:6d: 6b:02:7f:37:dc:a2:5e:38:a5:76:b0:b4:91:81:33: 1a:19:ae:f8:3a:45:ea:7e:00:55:c3:53:54:6a:8c: bc:b4:2a:e4:98:7e:90:f0:c2:4f:99:0c:fa:c3:7a: 5a:7f:38:38:c1:9b:06:ca:56:83:39:7d:65:24:a2: d9:6c:72:35:c8:d3:e1:61:92:07:4d:c6:8f:82:d6: b5:f5:8c:08:e0:24:bc:18:ea:30:de:f0:e1:3a:76: bf:bc:b9:32:2b:25:32:7d:0e:16:4a:1a:19:31:f0: 07:b4:c9:44:a0:bd:17:fb:00:d1:bc:e7:ac:37:d6: 4a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:89:04:FC:57:8B:1A:EC:52:AA:AF:83:09:E2:5A:5C:A2:96:13:FB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zYkE_FeLGuxSqq-DCeJaXKKWE_s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.237.0/24 Signature Algorithm: sha256WithRSAEncryption b0:74:c0:b2:94:ca:ed:de:06:eb:bd:4d:b5:fd:98:1a:3a:2b: 07:fb:87:30:75:04:63:de:34:e8:47:b0:ff:e0:d3:f2:d3:e3: 3b:35:e4:32:93:aa:6a:79:da:23:41:91:13:c1:20:38:09:a4: a1:ef:17:71:1f:1b:5a:34:38:ae:4a:a5:06:45:12:07:87:3d: ea:ce:40:21:b4:51:44:8f:9e:b4:ca:27:aa:fc:72:0d:48:57: 89:2c:bf:d3:44:e7:54:4a:61:69:09:10:a8:82:1d:46:8b:01: 93:f4:d3:50:5c:03:5d:01:f9:61:df:e9:2e:6c:60:45:23:76: 1c:71:a9:99:85:f7:1b:1e:63:f8:30:71:3a:61:09:50:fd:b8: 46:84:24:df:2a:28:14:b3:cc:dd:28:fd:34:43:cd:70:f8:0a: 4a:d9:45:5a:07:dd:ac:1c:c6:4a:1b:fd:26:41:23:80:dd:83: e0:9d:a3:a7:c5:28:62:4d:4e:87:a7:04:44:42:9c:22:6e:9c: cd:ee:19:48:9c:3b:cf:77:2b:f2:28:37:22:a3:1d:94:62:38: ca:e7:47:b1:59:fa:06:9a:16:ac:85:3b:24:8d:7b:1d:ea:2c: 58:33:61:d0:54:c9:1c:59:b5:86:f7:ff:41:c0:7c:6e:b2:68: 39:ad:7d:5d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDVkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE5MTNaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENEODkwNEZDNTc4QjFB RUM1MkFBQUY4MzA5RTI1QTVDQTI5NjEzRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu3Vpqa7t4jHVFCnwAjSq8O9t4DUgIfRvjn9oARTNppKHYOSAn DyvYVD+gSOZ54FRHv1/XX0FpKqaWMRQxr2NV13ZdzyIkceDGP+vUBhHstYgl7ZXO ls+t3p2XEuKyJPpBp8xwvXZoY5JzQst19jBEf0Z8evrcrx9oNtg58ncGJF2Y+yKy bWsCfzfcol44pXawtJGBMxoZrvg6Rep+AFXDU1RqjLy0KuSYfpDwwk+ZDPrDelp/ ODjBmwbKVoM5fWUkotlscjXI0+FhkgdNxo+C1rX1jAjgJLwY6jDe8OE6dr+8uTIr JTJ9DhZKGhkx8Ae0yUSgvRf7ANG856w31kpnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzYkE/FeLGuxSqq+DCeJaXKKWE/swHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3pZa0VfRmVMR3V4U3FxLURDZUphWEtLV0Vfcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn+0wDQYJKoZIhvcNAQELBQADggEBALB0wLKUyu3eBuu9TbX9mBo6Kwf7 hzB1BGPeNOhHsP/g0/LT4zs15DKTqmp52iNBkRPBIDgJpKHvF3EfG1o0OK5KpQZF EgeHPerOQCG0UUSPnrTKJ6r8cg1IV4ksv9NE51RKYWkJEKiCHUaLAZP001BcA10B +WHf6S5sYEUjdhxxqZmF9xseY/gwcTphCVD9uEaEJN8qKBSzzN0o/TRDzXD4CkrZ RVoH3awcxkob/SZBI4Ddg+Cdo6fFKGJNToenBERCnCJunM3uGUicO893K/IoNyKj HZRiOMrnR7FZ+gaaFqyFOySNex3qLFgzYdBUyRxZtYb3/0HAfG6yaDmtfV0= -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:29 2025 by rpki-client on console.sobornost.net