$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/8824Dh8R-Lbx1rjMZTJuqcT-kcg.roa File: 8824Dh8R-Lbx1rjMZTJuqcT-kcg.roa (raw, json) Hash identifier: 8bP+FPNigtUktugc3DKHT3oXzrEryURHiyOzFmoGqvE= Subject key identifier: F3:CD:B8:0E:1F:11:F8:B6:F1:D6:B8:CC:65:32:6E:A9:C4:FE:91:C8 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0220 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/8824Dh8R-Lbx1rjMZTJuqcT-kcg.roa Signing time: Thu 01 May 2025 01:31:36 +0000 ROA not before: Thu 01 May 2025 01:31:36 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 203.140.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 May 2025 06:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 544 (0x220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 1 01:31:36 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=F3CDB80E1F11F8B6F1D6B8CC65326EA9C4FE91C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:24:be:31:1e:2d:e8:f4:f6:d8:5f:96:08:45: 21:51:10:7a:8f:51:bd:b8:69:54:de:de:5c:dd:fb: 2b:18:8b:ed:6c:00:97:44:9a:e9:63:56:94:bd:f5: fa:4e:dd:4a:7b:0f:ae:76:c2:a0:1f:95:15:0f:a7: 26:fa:a8:5d:78:26:1c:26:86:72:a3:99:00:ea:b3: 71:b9:0b:e8:3b:11:f3:d5:25:12:24:45:00:19:b6: d3:c2:1c:7a:ab:d6:ae:64:4e:09:99:e6:6b:63:b6: 34:18:82:98:fc:b6:ed:24:05:d2:9f:0c:32:a0:d3: 68:ad:f5:74:cb:3e:f8:20:44:72:25:bc:e4:7d:d9: d8:66:86:e8:f1:9a:17:dd:3d:f3:16:21:f9:ca:15: 81:bc:9f:5c:c0:71:42:98:07:83:f3:e6:6f:32:a4: 38:07:65:7e:1c:44:35:11:80:69:ca:d4:47:76:d7: c7:a7:b6:6a:d2:4b:25:2b:d6:6b:71:fb:28:27:4f: 52:35:39:9f:11:42:37:95:1d:76:e8:e4:63:a5:d2: 87:fa:84:56:dc:f5:cf:ea:aa:62:fc:51:ce:d2:4e: 1d:e6:22:43:ba:fe:e4:32:8a:48:51:45:e8:f0:e8: 90:78:ae:e3:05:25:31:32:97:9a:02:8b:cf:94:fa: d9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CD:B8:0E:1F:11:F8:B6:F1:D6:B8:CC:65:32:6E:A9:C4:FE:91:C8 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/8824Dh8R-Lbx1rjMZTJuqcT-kcg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.140.96.0/19 Signature Algorithm: sha256WithRSAEncryption 6d:cc:e1:23:0f:1e:ec:82:65:ea:b2:fa:31:dc:02:cb:f1:f7: a7:f2:53:4d:c9:ed:86:ad:c0:b0:b6:24:91:95:71:85:0a:6a: 21:e1:27:e2:74:6d:2e:6d:b2:7c:69:45:b5:73:de:9b:e3:ff: d3:8e:74:0d:2f:f6:5b:bb:d5:9b:d2:22:29:3a:30:1b:e2:fb: dd:f9:17:23:83:f8:08:0f:92:a6:e1:cd:c1:d9:72:9e:9d:79: 32:21:df:af:16:28:ec:8c:de:d0:ca:d5:59:8d:8d:51:99:59: 0e:70:46:0f:2d:89:dc:f5:5b:aa:df:31:a2:15:22:70:1e:62: bb:9d:02:0d:91:fc:b0:54:a7:f7:84:e9:3c:ad:bb:cc:d9:cb: 36:0e:bc:4f:31:0e:8e:3a:3a:78:10:3e:d6:fc:1b:72:9a:84: a6:9d:3b:9d:7b:f1:fa:e3:f5:b9:f4:b6:76:55:bc:35:dc:f8: 48:60:c2:94:05:8f:57:ab:be:6e:c8:e4:76:a2:de:8d:b1:7e: 24:d9:25:e5:63:64:04:16:8c:97:2b:4f:41:96:3d:54:f9:09: e6:7d:e6:ec:8d:28:bf:7e:81:bb:30:a8:3f:2c:65:92:19:dc: b0:56:5c:41:c1:9e:3f:c4:48:cb:ad:d9:b5:9f:bd:cb:c6:a0: 9d:75:76:88 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA1MDEw MTMxMzZaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEYzQ0RCODBFMUYxMUY4 QjZGMUQ2QjhDQzY1MzI2RUE5QzRGRTkxQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4JL4xHi3o9PbYX5YIRSFREHqPUb24aVTe3lzd+ysYi+1sAJdE muljVpS99fpO3Up7D652wqAflRUPpyb6qF14JhwmhnKjmQDqs3G5C+g7EfPVJRIk RQAZttPCHHqr1q5kTgmZ5mtjtjQYgpj8tu0kBdKfDDKg02it9XTLPvggRHIlvOR9 2dhmhujxmhfdPfMWIfnKFYG8n1zAcUKYB4Pz5m8ypDgHZX4cRDURgGnK1Ed218en tmrSSyUr1mtx+ygnT1I1OZ8RQjeVHXbo5GOl0of6hFbc9c/qqmL8Uc7STh3mIkO6 /uQyikhRRejw6JB4ruMFJTEyl5oCi8+U+tlVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8824Dh8R+Lbx1rjMZTJuqcT+kcgwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxLzg4MjREaDhSLUxieDFyak1aVEp1cWNULWtjZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXLjGAwDQYJKoZIhvcNAQELBQADggEBAG3M4SMPHuyCZeqy+jHcAsvx96fy U03J7YatwLC2JJGVcYUKaiHhJ+J0bS5tsnxpRbVz3pvj/9OOdA0v9lu71ZvSIik6 MBvi+935FyOD+AgPkqbhzcHZcp6deTIh368WKOyM3tDK1VmNjVGZWQ5wRg8tidz1 W6rfMaIVInAeYrudAg2R/LBUp/eE6Tytu8zZyzYOvE8xDo46OngQPtb8G3KahKad O5178frj9bn0tnZVvDXc+EhgwpQFj1ervm7I5Hai3o2xfiTZJeVjZAQWjJcrT0GW PVT5CeZ95uyNKL9+gbswqD8sZZIZ3LBWXEHBnj/ESMut2bWfvcvGoJ11dog= -----END CERTIFICATE-----Generated at Mon May 19 09:56:31 2025 by rpki-client