$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/sgUI0o7tCbEmw9CUEuO_rYkoiYM.roa File: sgUI0o7tCbEmw9CUEuO_rYkoiYM.roa (raw, json) Hash identifier: Xv4Jukv5GUHOkXl/KwBER0R8r9w2GDlh2tQq6I1ylQc= Subject key identifier: B2:05:08:D2:8E:ED:09:B1:26:C3:D0:94:12:E3:BF:AD:89:28:89:83 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 0238 Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/sgUI0o7tCbEmw9CUEuO_rYkoiYM.roa Signing time: Thu 01 May 2025 01:31:53 +0000 ROA not before: Thu 01 May 2025 01:31:53 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7684 IP address blocks: 112.78.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 14:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: May 1 01:31:53 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=B20508D28EED09B126C3D09412E3BFAD89288983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3a:01:b8:44:df:a3:5f:dc:3c:5d:f2:af:c9: 6c:9e:e8:6b:74:99:c0:d0:27:44:6d:9b:6a:bb:bf: 87:c8:78:1a:fb:d2:37:93:7b:c2:83:87:eb:1e:9c: 2d:f6:23:65:1d:a2:f4:b8:ce:27:61:9d:3a:60:42: 20:b9:4b:b9:6f:eb:a9:ab:ac:95:9e:14:0c:fc:71: db:a8:fd:85:64:fe:52:3f:77:51:00:a9:5b:a1:94: aa:44:7a:fe:a9:6f:5d:2a:63:5f:e2:0d:a6:7e:5b: 45:d5:27:22:f2:be:1f:bb:7c:96:c8:f0:a2:f5:f3: ca:ed:eb:c6:53:af:20:f1:d2:70:ad:23:85:b9:1a: f7:ad:95:1e:d6:6c:68:54:b0:99:ab:88:32:2c:1d: 97:c6:06:eb:43:cf:5e:ed:cd:be:87:73:47:d2:d5: c1:ad:73:e2:da:31:71:b7:91:92:b7:93:76:6a:bb: f4:de:63:f3:2c:24:73:02:91:b6:39:18:c8:fc:0f: ab:c6:ab:15:61:f0:b2:ed:d7:99:e8:f4:f7:38:48: 95:58:88:c8:0c:c1:53:08:e4:26:7a:a6:ff:78:97: 0f:42:a3:a5:c1:a8:ea:93:ab:b8:55:c8:c1:42:9c: b7:e9:88:35:b5:cf:a7:29:f6:bf:fb:95:20:2d:97: 64:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:05:08:D2:8E:ED:09:B1:26:C3:D0:94:12:E3:BF:AD:89:28:89:83 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/sgUI0o7tCbEmw9CUEuO_rYkoiYM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.78.211.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:7d:0c:d1:ec:22:9e:97:cd:45:92:05:ef:9f:4f:90:fb:2a: 3f:03:ca:1a:28:7c:e6:80:91:33:02:8e:60:db:c9:d1:96:fe: 58:be:37:25:20:c6:81:7e:86:b3:df:c1:48:f2:d1:0a:d6:d9: f1:8f:a9:c4:94:dd:5e:9e:53:a8:8d:94:d9:db:7e:73:fb:a1: 0d:b0:b7:82:b0:38:50:72:06:25:ca:9a:ad:7f:f0:f6:5f:2d: 32:5c:d0:9d:90:cb:2f:c8:30:9c:03:5a:8c:7d:5e:44:9d:8d: 5b:46:54:d1:cc:13:4d:9e:55:46:3d:7d:93:8a:ba:b1:be:aa: 62:50:c1:ae:d4:56:31:02:ab:75:6f:2d:77:eb:4a:0b:78:7e: c1:c5:86:ec:10:9d:1d:a0:63:8e:d5:0f:21:a0:40:7c:14:96: 61:73:fe:a8:24:b5:42:70:28:86:2b:e4:88:3e:32:81:37:6c: 9a:13:31:7c:eb:3c:e1:9b:70:7c:99:9e:b3:19:41:68:67:0d: 5c:a7:ab:49:f6:ea:ea:9f:76:ca:67:a0:c0:76:c1:5e:40:55: 8a:03:18:89:c7:a5:20:8d:b6:7d:4c:98:34:79:87:a0:30:0f: ad:b8:e7:18:e5:42:2d:ca:09:99:10:00:9d:5e:62:af:aa:aa: d8:75:17:00 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNTA1MDEw MTMxNTNaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIyMDUwOEQyOEVFRDA5 QjEyNkMzRDA5NDEyRTNCRkFEODkyODg5ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeOgG4RN+jX9w8XfKvyWye6Gt0mcDQJ0Rtm2q7v4fIeBr70jeT e8KDh+senC32I2UdovS4zidhnTpgQiC5S7lv66mrrJWeFAz8cduo/YVk/lI/d1EA qVuhlKpEev6pb10qY1/iDaZ+W0XVJyLyvh+7fJbI8KL188rt68ZTryDx0nCtI4W5 GvetlR7WbGhUsJmriDIsHZfGButDz17tzb6Hc0fS1cGtc+LaMXG3kZK3k3Zqu/Te Y/MsJHMCkbY5GMj8D6vGqxVh8LLt15no9Pc4SJVYiMgMwVMI5CZ6pv94lw9Co6XB qOqTq7hVyMFCnLfpiDW1z6cp9r/7lSAtl2TnAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUsgUI0o7tCbEmw9CUEuO/rYkoiYMwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9zZ1VJMG83dENiRW13OUNVRXVPX3JZa29pWU0u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAcE7TMA0GCSqGSIb3DQEBCwUAA4IBAQBbfQzR7CKel81FkgXvn0+Q +yo/A8oaKHzmgJEzAo5g28nRlv5YvjclIMaBfoaz38FI8tEK1tnxj6nElN1enlOo jZTZ235z+6ENsLeCsDhQcgYlypqtf/D2Xy0yXNCdkMsvyDCcA1qMfV5EnY1bRlTR zBNNnlVGPX2TirqxvqpiUMGu1FYxAqt1by1360oLeH7BxYbsEJ0doGOO1Q8hoEB8 FJZhc/6oJLVCcCiGK+SIPjKBN2yaEzF86zzhm3B8mZ6zGUFoZw1cp6tJ9urqn3bK Z6DAdsFeQFWKAxiJx6UgjbZ9TJg0eYegMA+tuOcY5UItygmZEACdXmKvqqrYdRcA -----END CERTIFICATE-----Generated at Sat May 17 18:06:51 2025 by rpki-client