$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11247/aMfgqUWSOLem_rTjo-oDig2GNEU.roa File: aMfgqUWSOLem_rTjo-oDig2GNEU.roa (raw, json) Hash identifier: dcfLgfzfVJM3EPhFOGl+cCPZg1mXUSlz78+zOqPlrYw= Subject key identifier: 68:C7:E0:A9:45:92:38:B7:A6:FE:B4:E3:A3:EA:03:8A:0D:86:34:45 Certificate issuer: /CN=EFC15649A8257F64FC942167E310AD38AD02CDBC Certificate serial: 85 Authority key identifier: EF:C1:56:49:A8:25:7F:64:FC:94:21:67:E3:10:AD:38:AD:02:CD:BC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/aMfgqUWSOLem_rTjo-oDig2GNEU.roa Signing time: Thu 01 May 2025 01:32:00 +0000 ROA not before: Thu 01 May 2025 01:32:00 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7684 IP address blocks: 153.120.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFC15649A8257F64FC942167E310AD38AD02CDBC Validity Not Before: May 1 01:32:00 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=68C7E0A9459238B7A6FEB4E3A3EA038A0D863445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:11:b4:78:a0:6f:d1:94:1f:17:c9:7e:0d:b1: 3c:dd:04:56:bb:26:01:fb:fc:72:17:22:4c:32:86: 7a:6e:d2:6c:49:cc:44:7f:c7:40:8c:90:54:59:ce: da:32:d0:42:1d:9f:cb:a8:14:cb:67:af:48:5e:9b: 46:94:5e:86:32:47:96:f2:8c:f8:a5:c9:2c:d9:66: e9:75:40:41:bb:f2:aa:a1:49:45:b3:33:1e:b2:c1: 60:29:c4:df:09:14:d4:11:9d:ee:ad:a2:b0:64:8f: 08:4a:56:e6:20:43:f4:48:2b:3d:2c:cd:5f:2c:69: 90:32:27:1c:08:a5:57:ba:68:3c:97:55:60:36:8d: aa:73:b7:a2:3c:12:8e:74:69:79:e0:c4:fe:1e:5f: b5:c2:46:88:f1:d9:42:84:29:ad:1b:3a:f2:f1:9a: 3f:a7:59:32:bf:3e:01:d3:9e:39:18:f3:52:3e:d5: d5:16:c8:18:c5:08:ed:32:83:88:96:64:73:60:9f: 1c:4c:b7:c0:fb:2b:d8:c5:aa:0a:ce:fb:d3:f1:9d: e7:ed:97:ad:27:fb:1e:a6:65:5e:d3:f9:22:71:e4: 9c:b8:0b:c3:f8:98:5c:1a:33:7f:cc:59:3f:2b:1a: f1:88:d9:4c:62:05:7a:c3:2d:27:4e:19:e7:7f:cb: b3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C7:E0:A9:45:92:38:B7:A6:FE:B4:E3:A3:EA:03:8A:0D:86:34:45 X509v3 Authority Key Identifier: keyid:EF:C1:56:49:A8:25:7F:64:FC:94:21:67:E3:10:AD:38:AD:02:CD:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/aMfgqUWSOLem_rTjo-oDig2GNEU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.120.0.0/17 Signature Algorithm: sha256WithRSAEncryption 20:3e:01:32:c8:e0:06:d7:58:08:69:e1:88:8b:eb:54:8c:35: a6:6e:9c:70:3b:9f:69:24:3e:ec:82:51:1d:67:d7:a9:05:34: 21:1d:af:73:68:ce:48:7a:62:be:37:69:85:68:4b:3e:d9:80: ed:ae:88:79:ef:87:82:fa:61:ef:41:a1:9d:86:d2:6a:45:0c: e5:c0:a6:0e:20:67:ec:78:89:be:fc:98:3d:cc:0d:4e:22:b8: d2:37:ac:ca:8e:35:df:fc:42:cd:5f:b7:85:62:ec:c3:80:19: 1e:81:25:5f:60:89:10:00:66:d4:28:76:e0:cd:52:43:b5:d9: 05:c7:e5:8d:ab:d3:11:04:69:5a:d7:01:99:85:36:59:4e:08: 7f:24:c2:33:9f:ef:80:b6:31:c7:87:67:2e:65:b0:34:f2:e0: 6d:79:79:3d:8d:12:c5:a2:61:fa:2b:bd:2a:52:96:3a:a1:57: f2:32:f9:7b:57:42:81:d3:a2:27:f3:94:62:f0:af:92:1b:aa: ca:02:53:e0:95:17:fa:1f:7a:51:8a:da:95:2f:02:84:49:89: 74:a9:9b:ca:30:b8:dd:68:1c:26:2c:1f:e1:50:b9:ea:ef:a7: 6b:21:38:41:95:64:4c:3d:be:e7:dd:00:af:75:94:13:c5:b4: 14:cf:39:63 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUZD MTU2NDlBODI1N0Y2NEZDOTQyMTY3RTMxMEFEMzhBRDAyQ0RCQzAeFw0yNTA1MDEw MTMyMDBaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDY4QzdFMEE5NDU5MjM4 QjdBNkZFQjRFM0EzRUEwMzhBMEQ4NjM0NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkEbR4oG/RlB8XyX4NsTzdBFa7JgH7/HIXIkwyhnpu0mxJzER/ x0CMkFRZztoy0EIdn8uoFMtnr0hem0aUXoYyR5byjPilySzZZul1QEG78qqhSUWz Mx6ywWApxN8JFNQRne6torBkjwhKVuYgQ/RIKz0szV8saZAyJxwIpVe6aDyXVWA2 japzt6I8Eo50aXngxP4eX7XCRojx2UKEKa0bOvLxmj+nWTK/PgHTnjkY81I+1dUW yBjFCO0yg4iWZHNgnxxMt8D7K9jFqgrO+9Pxneftl60n+x6mZV7T+SJx5Jy4C8P4 mFwaM3/MWT8rGvGI2UxiBXrDLSdOGed/y7OxAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUaMfgqUWSOLem/rTjo+oDig2GNEUwHwYDVR0jBBgwFoAU78FWSaglf2T8lCFn 4xCtOK0CzbwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzExMjQ3Lzc4RldTYWdsZjJUOGxDRm40eEN0T0swQ3pidy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzc4RldTYWdsZjJUOGxDRm40eEN0 T0swQ3pidy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMTI0Ny9hTWZncVVXU09MZW1fclRqby1vRGlnMkdORVUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQHmXgAMA0GCSqGSIb3DQEBCwUAA4IBAQAgPgEyyOAG11gIaeGIi+tU jDWmbpxwO59pJD7sglEdZ9epBTQhHa9zaM5IemK+N2mFaEs+2YDtroh574eC+mHv QaGdhtJqRQzlwKYOIGfseIm+/Jg9zA1OIrjSN6zKjjXf/ELNX7eFYuzDgBkegSVf YIkQAGbUKHbgzVJDtdkFx+WNq9MRBGla1wGZhTZZTgh/JMIzn++AtjHHh2cuZbA0 8uBteXk9jRLFomH6K70qUpY6oVfyMvl7V0KB06In85Ri8K+SG6rKAlPglRf6H3pR itqVLwKESYl0qZvKMLjdaBwmLB/hULnq76drIThBlWRMPb7n3QCvdZQTxbQUzzlj -----END CERTIFICATE-----Generated at Sat May 17 05:36:53 2025 by rpki-client