$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1204/JCkiQwFHtt4VZA-nvOE_DOqPPcc.roa File: JCkiQwFHtt4VZA-nvOE_DOqPPcc.roa (raw, json) Hash identifier: e/2kBpmTz8xyo3NRjvD7/mjAQJFui4EVSXkTh2+WsmA= Subject key identifier: 24:29:22:43:01:47:B6:DE:15:64:0F:A7:BC:E1:3F:0C:EA:8F:3D:C7 Certificate issuer: /CN=3AF2969ACB86165DF223A509BAE1B5DFB4D904B8 Certificate serial: 02 Authority key identifier: 3A:F2:96:9A:CB:86:16:5D:F2:23:A5:09:BA:E1:B5:DF:B4:D9:04:B8 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OvKWmsuGFl3yI6UJuuG137TZBLg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1204/JCkiQwFHtt4VZA-nvOE_DOqPPcc.roa Signing time: Mon 23 Jun 2025 01:31:10 +0000 ROA not before: Mon 23 Jun 2025 01:31:10 +0000 ROA not after: Wed 17 Jun 2026 00:37:12 +0000 asID: 2907 IP address blocks: 160.29.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1204/OvKWmsuGFl3yI6UJuuG137TZBLg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1204/OvKWmsuGFl3yI6UJuuG137TZBLg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OvKWmsuGFl3yI6UJuuG137TZBLg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3AF2969ACB86165DF223A509BAE1B5DFB4D904B8 Validity Not Before: Jun 23 01:31:10 2025 GMT Not After : Jun 17 00:37:12 2026 GMT Subject: CN=242922430147B6DE15640FA7BCE13F0CEA8F3DC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:79:ab:ca:17:a9:a8:0d:86:0f:69:6a:23:23: 2a:7e:a6:72:47:83:b9:7d:9e:3c:f3:6a:17:89:9a: 1f:bf:b3:52:12:92:64:e9:76:15:48:32:c7:8a:79: 6e:2e:f0:38:cc:68:97:b2:fb:53:76:65:fc:fd:a0: 47:18:fb:94:df:30:43:9e:1f:d6:82:91:13:56:8e: fc:56:40:f5:7c:da:2f:5a:6d:df:aa:dc:ef:07:bd: d3:23:a7:b6:37:6c:11:fc:d0:93:35:ea:e1:82:c6: 92:28:19:06:35:82:51:d5:67:90:dd:1e:7a:6a:76: a3:27:03:50:e6:d4:32:17:ee:1f:16:98:89:c8:93: 2a:2a:ed:23:ce:37:6b:28:3b:9b:14:fb:84:0c:04: bc:4f:78:66:49:df:1d:82:78:48:49:6b:16:b3:61: fd:40:2e:5a:00:84:35:19:67:60:14:9a:c8:86:b6: 30:74:94:46:b0:f3:7d:dc:dc:3a:6d:af:42:3f:cd: 16:36:28:f0:ae:f7:9d:d2:00:57:44:84:4e:e8:e8: 91:90:c0:ca:dd:18:ba:b8:bf:04:dc:8c:8d:dc:de: d7:d6:bb:56:f8:49:a3:70:7f:f3:00:02:97:84:7f: f1:4f:01:0f:47:f0:2b:15:a1:68:21:c2:f2:da:ae: b4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:29:22:43:01:47:B6:DE:15:64:0F:A7:BC:E1:3F:0C:EA:8F:3D:C7 X509v3 Authority Key Identifier: keyid:3A:F2:96:9A:CB:86:16:5D:F2:23:A5:09:BA:E1:B5:DF:B4:D9:04:B8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1204/OvKWmsuGFl3yI6UJuuG137TZBLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OvKWmsuGFl3yI6UJuuG137TZBLg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1204/JCkiQwFHtt4VZA-nvOE_DOqPPcc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.29.0.0/16 Signature Algorithm: sha256WithRSAEncryption 50:2d:f7:fa:7f:fb:ab:53:9d:fc:a2:3c:d1:4f:b2:65:ba:62: f0:2e:01:e5:82:24:23:29:2f:6e:ad:ec:3d:b0:2f:cd:35:31: f8:82:4f:8a:ff:cf:15:c2:71:9d:5a:89:92:07:7e:66:45:17: 5e:1b:ea:4e:a7:11:0d:32:bc:d3:71:4d:98:16:1a:c9:3c:39: 74:fb:0c:9c:78:73:76:3d:e3:5d:ed:ab:55:9e:51:48:25:f0: 66:2e:98:45:54:f2:89:a0:b6:47:95:16:57:35:26:bf:fa:66: 15:07:bb:71:f6:e6:81:9d:6f:b8:33:5c:64:e2:32:fe:0c:19: 52:c3:3c:03:75:5f:78:c8:ac:29:17:b8:ab:aa:98:f5:a7:0d: 45:94:80:92:cf:13:51:1e:d9:db:e2:00:47:9f:f8:ef:b4:e0: 2e:0f:34:c3:98:ce:d9:f5:b8:12:0d:4b:1a:b5:2e:6e:ec:3c: 5d:50:ea:82:bc:25:75:20:da:3c:4c:bb:e6:5d:65:a1:49:e3: fc:0b:be:a7:f9:bf:34:49:f6:27:03:d6:3f:28:49:1c:89:82: c4:1d:45:69:db:8b:aa:20:73:07:eb:a4:61:26:92:81:77:21: ef:e7:da:b2:63:b2:83:b5:4a:ad:d0:11:55:e7:8e:8e:19:f7: 80:17:4e:1a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQUYy OTY5QUNCODYxNjVERjIyM0E1MDlCQUUxQjVERkI0RDkwNEI4MB4XDTI1MDYyMzAx MzExMFoXDTI2MDYxNzAwMzcxMlowMzExMC8GA1UEAxMoMjQyOTIyNDMwMTQ3QjZE RTE1NjQwRkE3QkNFMTNGMENFQThGM0RDNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMZ5q8oXqagNhg9paiMjKn6mckeDuX2ePPNqF4maH7+zUhKSZOl2 FUgyx4p5bi7wOMxol7L7U3Zl/P2gRxj7lN8wQ54f1oKRE1aO/FZA9XzaL1pt36rc 7we90yOntjdsEfzQkzXq4YLGkigZBjWCUdVnkN0eemp2oycDUObUMhfuHxaYiciT KirtI843ayg7mxT7hAwEvE94ZknfHYJ4SElrFrNh/UAuWgCENRlnYBSayIa2MHSU RrDzfdzcOm2vQj/NFjYo8K73ndIAV0SETujokZDAyt0Yuri/BNyMjdze19a7VvhJ o3B/8wACl4R/8U8BD0fwKxWhaCHC8tqutH8CAwEAAaOCAiUwggIhMB0GA1UdDgQW BBQkKSJDAUe23hVkD6e84T8M6o89xzAfBgNVHSMEGDAWgBQ68paay4YWXfIjpQm6 4bXftNkEuDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTIwNC9PdktXbXN1R0ZsM3lJNlVKdXVHMTM3VFpCTGcuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9PdktXbXN1R0ZsM3lJNlVKdXVHMTM3 VFpCTGcuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTIwNC9KQ2tpUXdGSHR0NFZaQS1udk9FX0RPcVBQY2Mucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMAoB0wDQYJKoZIhvcNAQELBQADggEBAFAt9/p/+6tTnfyiPNFPsmW6YvAu AeWCJCMpL26t7D2wL801MfiCT4r/zxXCcZ1aiZIHfmZFF14b6k6nEQ0yvNNxTZgW Gsk8OXT7DJx4c3Y9413tq1WeUUgl8GYumEVU8omgtkeVFlc1Jr/6ZhUHu3H25oGd b7gzXGTiMv4MGVLDPAN1X3jIrCkXuKuqmPWnDUWUgJLPE1Ee2dviAEef+O+04C4P NMOYztn1uBINSxq1Lm7sPF1Q6oK8JXUg2jxMu+ZdZaFJ4/wLvqf5vzRJ9icD1j8o SRyJgsQdRWnbi6ogcwfrpGEmkoF3Ie/n2rJjsoO1Sq3QEVXnjo4Z94AXTho= -----END CERTIFICATE-----Generated at Sat Jul 5 12:32:09 2025 by rpki-client