$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/0vU-M4SPy1Hcgjn7L429POBrj0E.roa File: 0vU-M4SPy1Hcgjn7L429POBrj0E.roa (raw, json) Hash identifier: OhPTYEe/6aqY38oiNhFZM0CCs8I9HhrVOrjngPDWCtE= Subject key identifier: D2:F5:3E:33:84:8F:CB:51:DC:82:39:FB:2F:8D:BD:3C:E0:6B:8F:41 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 021A Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/0vU-M4SPy1Hcgjn7L429POBrj0E.roa Signing time: Thu 01 May 2025 01:31:34 +0000 ROA not before: Thu 01 May 2025 01:31:34 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 153.248.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 13:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 1 01:31:34 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=D2F53E33848FCB51DC8239FB2F8DBD3CE06B8F41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:3c:cb:bb:29:cb:2f:56:68:4f:c2:c2:87: 5d:fb:b2:1d:f4:74:78:41:0f:f6:3a:54:91:21:0a: 2d:ad:25:77:5c:e1:b3:4a:48:f4:e5:ed:29:89:b0: 41:2a:75:7f:94:86:75:0a:7f:35:54:11:85:3d:a8: 3b:fe:b2:6c:f0:c0:49:d4:58:9b:8d:86:1c:52:73: 1f:38:bc:b2:50:12:00:8d:b9:93:f2:3a:f1:e4:e8: 3b:08:2d:4e:13:7e:a3:c4:a2:69:27:9b:53:82:f5: 36:8a:f7:f0:dc:cd:ea:ee:6d:e8:64:65:1c:99:41: 3a:ae:4f:51:ad:4d:3e:03:5b:ba:21:46:1f:18:7c: e8:74:78:2c:98:1f:4d:16:44:95:8d:01:f1:61:fa: 2b:f4:95:8e:50:56:4e:ab:fd:f4:0e:0b:45:ab:34: ba:6d:6d:5b:f6:f5:7f:96:fd:d6:00:bf:18:7c:74: e7:73:ab:eb:94:3e:b2:79:d1:fe:f1:d7:d6:e7:33: 8e:b6:f2:52:e1:3d:8d:bd:6a:85:17:23:33:04:51: 62:74:f6:d5:05:bb:0a:b7:51:c2:74:cf:1d:16:d1: 21:0f:4b:45:31:72:b9:1d:c6:44:2f:91:05:75:57: 23:bb:9f:4e:29:b0:0a:e7:05:3f:fd:3d:6d:98:af: 89:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F5:3E:33:84:8F:CB:51:DC:82:39:FB:2F:8D:BD:3C:E0:6B:8F:41 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/0vU-M4SPy1Hcgjn7L429POBrj0E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.248.0.0/14 Signature Algorithm: sha256WithRSAEncryption a6:15:40:8d:b3:ff:df:26:ed:df:52:38:84:d1:9f:60:0b:5b: 4d:33:89:3b:fd:55:ae:3c:3f:9e:20:e1:68:28:f3:8d:82:0e: 5b:16:13:bb:62:ec:a6:2f:8c:04:c2:b2:4b:8e:c1:44:c4:96: 7c:37:bc:77:79:23:87:bd:ee:d4:71:7b:80:38:20:3d:39:6c: b5:7d:27:3e:d4:42:b1:9d:1d:3a:db:55:3a:f8:c2:66:87:15: 3a:c7:5e:1a:e4:b5:e2:04:f9:03:d7:c4:01:02:2e:48:fc:b8: c6:57:61:39:02:a5:ec:72:56:e3:3a:4f:c3:7f:af:f1:56:b9: d1:ab:e9:a6:31:63:31:68:29:f2:9c:a0:f2:fb:ec:bf:b7:63: d3:b1:eb:5a:9d:52:6f:be:5c:31:b6:7f:59:35:91:2e:14:8e: 86:0d:b4:b0:5e:21:c7:8e:d6:44:d6:44:3f:e8:1a:4b:48:0a: 8b:4a:35:68:7e:df:ff:dc:c1:41:bd:76:f5:7f:e2:e6:02:79: 28:78:3c:51:64:68:aa:f5:21:98:ba:f8:d5:d8:9a:98:ec:0f: 04:0b:77:bc:7d:7a:59:69:f3:35:7a:6f:9a:5c:b7:31:65:a9: 4e:ec:d3:53:b1:64:41:9f:7a:46:7e:b6:67:16:f2:59:87:00: 42:ce:ac:f3 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAhowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA1MDEw MTMxMzRaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQyRjUzRTMzODQ4RkNC NTFEQzgyMzlGQjJGOERCRDNDRTA2QjhGNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC82TzLuynLL1ZoT8LCh137sh30dHhBD/Y6VJEhCi2tJXdc4bNK SPTl7SmJsEEqdX+UhnUKfzVUEYU9qDv+smzwwEnUWJuNhhxScx84vLJQEgCNuZPy OvHk6DsILU4TfqPEomknm1OC9TaK9/DczerubehkZRyZQTquT1GtTT4DW7ohRh8Y fOh0eCyYH00WRJWNAfFh+iv0lY5QVk6r/fQOC0WrNLptbVv29X+W/dYAvxh8dOdz q+uUPrJ50f7x19bnM4628lLhPY29aoUXIzMEUWJ09tUFuwq3UcJ0zx0W0SEPS0Ux crkdxkQvkQV1VyO7n04psArnBT/9PW2Yr4nRAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQU0vU+M4SPy1Hcgjn7L429POBrj0EwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxLzB2VS1NNFNQeTFIY2dqbjdMNDI5UE9CcmowRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwKZ+DANBgkqhkiG9w0BAQsFAAOCAQEAphVAjbP/3ybt31I4hNGfYAtbTTOJ O/1Vrjw/niDhaCjzjYIOWxYTu2Lspi+MBMKyS47BRMSWfDe8d3kjh73u1HF7gDgg PTlstX0nPtRCsZ0dOttVOvjCZocVOsdeGuS14gT5A9fEAQIuSPy4xldhOQKl7HJW 4zpPw3+v8Va50avppjFjMWgp8pyg8vvsv7dj07HrWp1Sb75cMbZ/WTWRLhSOhg20 sF4hx47WRNZEP+gaS0gKi0o1aH7f/9zBQb129X/i5gJ5KHg8UWRoqvUhmLr41dia mOwPBAt3vH16WWnzNXpvmly3MWWpTuzTU7FkQZ96Rn62ZxbyWYcAQs6s8w== -----END CERTIFICATE-----Generated at Sun May 18 15:44:37 2025 by rpki-client