$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/9QxIRLSmCgvbMvp7Ilt-bcKo3zU.roa File: 9QxIRLSmCgvbMvp7Ilt-bcKo3zU.roa (raw, json) Hash identifier: /pbvjIoU+xok2E5+YO33xQhgAJ+QjTvaTlPCVN3szF4= Subject key identifier: F5:0C:48:44:B4:A6:0A:0B:DB:32:FA:7B:22:5B:7E:6D:C2:A8:DF:35 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 023C Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/9QxIRLSmCgvbMvp7Ilt-bcKo3zU.roa Signing time: Thu 01 May 2025 01:36:06 +0000 ROA not before: Thu 01 May 2025 01:36:06 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 220.220.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 21:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 1 01:36:06 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=F50C4844B4A60A0BDB32FA7B225B7E6DC2A8DF35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a5:5e:0a:07:22:a1:38:8e:e2:60:6f:fc:18: ca:cd:57:92:04:e4:97:d9:4c:74:30:03:00:26:92: c7:ea:43:1f:8a:b8:6f:ec:8d:32:c5:74:6f:09:87: 76:25:0f:5b:3f:9a:d6:0a:d8:2c:bb:41:b9:06:79: 0c:e5:9a:87:8c:60:18:22:81:ca:5d:8c:fb:36:67: 04:82:5e:28:ff:f9:c3:ad:36:05:53:cb:9d:3e:0a: 52:3c:3c:ba:50:de:a4:a9:21:d7:b6:61:c8:4a:fd: ce:5a:28:5b:99:33:e0:4c:10:db:86:04:55:a6:d2: 6e:4f:54:1a:21:6a:47:fb:a6:36:af:75:8c:e0:53: 39:17:5c:57:23:f6:56:bb:77:2c:18:77:5b:01:33: 79:87:d8:5f:81:65:08:05:65:4e:56:c8:42:43:bc: 9f:aa:37:52:68:21:9f:a5:4c:5d:e0:8f:f0:7f:e2: 69:5c:fd:3e:63:79:fe:ea:e8:6a:7f:e0:d8:dd:39: 17:92:65:15:fc:65:50:74:6c:1e:6f:95:ed:92:c2: 5e:e3:7d:09:37:5d:54:4d:96:e0:50:f4:16:a0:f4: f9:ab:a3:fd:4c:55:f4:b8:6f:5f:14:38:58:e0:87: 65:04:0b:81:56:bf:29:25:18:7a:01:bc:d3:e1:00: a6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:0C:48:44:B4:A6:0A:0B:DB:32:FA:7B:22:5B:7E:6D:C2:A8:DF:35 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/9QxIRLSmCgvbMvp7Ilt-bcKo3zU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.220.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0f:56:0a:c4:05:77:c2:e4:8f:27:52:61:fe:7b:59:42:b1:61: 62:4c:de:25:31:8a:3c:a4:e2:65:6b:d3:d5:c5:9e:b1:7f:a3: f8:14:25:35:33:a7:f8:f0:5b:7f:e2:6f:6e:e2:1f:45:59:9a: d7:f8:c9:d8:04:34:fe:78:0a:51:4b:66:91:98:4f:34:3b:ee: 8a:b7:9c:f3:d3:8a:20:28:4d:b2:5d:36:17:37:c6:ff:0c:5a: 9c:bf:ab:bd:ed:0e:d8:f3:9c:b9:b2:2e:70:c0:99:a3:be:13: 5e:23:cb:20:46:84:98:2a:87:af:62:86:9a:7a:1c:fe:fd:cc: ab:a5:48:42:5c:ba:9f:ed:6c:6c:ed:01:9f:5f:ed:9e:3d:28: 2e:87:9f:48:85:9b:0a:75:9a:be:8c:55:b7:14:8c:15:00:62: 98:dc:62:0e:05:75:44:f6:15:60:7c:f4:b0:15:a9:98:bf:f3: 54:ba:27:59:c4:da:cb:93:66:31:9e:19:ab:b3:b8:1b:5e:24: f2:fe:b4:1e:37:29:5c:45:2a:3d:61:37:a8:39:38:90:b1:64: b6:02:d1:ad:43:ee:a7:a5:f2:db:f8:49:e9:de:60:58:85:be: 97:e9:b8:0a:43:31:c8:78:0a:ea:68:c0:42:01:1a:50:dc:6e: 8f:ba:69:8e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA1MDEw MTM2MDZaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEY1MEM0ODQ0QjRBNjBB MEJEQjMyRkE3QjIyNUI3RTZEQzJBOERGMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtpV4KByKhOI7iYG/8GMrNV5IE5JfZTHQwAwAmksfqQx+KuG/s jTLFdG8Jh3YlD1s/mtYK2Cy7QbkGeQzlmoeMYBgigcpdjPs2ZwSCXij/+cOtNgVT y50+ClI8PLpQ3qSpIde2YchK/c5aKFuZM+BMENuGBFWm0m5PVBohakf7pjavdYzg UzkXXFcj9la7dywYd1sBM3mH2F+BZQgFZU5WyEJDvJ+qN1JoIZ+lTF3gj/B/4mlc /T5jef7q6Gp/4NjdOReSZRX8ZVB0bB5vle2Swl7jfQk3XVRNluBQ9Bag9Pmro/1M VfS4b18UOFjgh2UEC4FWvyklGHoBvNPhAKZ3AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQU9QxIRLSmCgvbMvp7Ilt+bcKo3zUwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxLzlReElSTFNtQ2d2Yk12cDdJbHQtYmNLbzN6VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwHc3DANBgkqhkiG9w0BAQsFAAOCAQEAD1YKxAV3wuSPJ1Jh/ntZQrFhYkze JTGKPKTiZWvT1cWesX+j+BQlNTOn+PBbf+JvbuIfRVma1/jJ2AQ0/ngKUUtmkZhP NDvuirec89OKIChNsl02FzfG/wxanL+rve0O2POcubIucMCZo74TXiPLIEaEmCqH r2KGmnoc/v3Mq6VIQly6n+1sbO0Bn1/tnj0oLoefSIWbCnWavoxVtxSMFQBimNxi DgV1RPYVYHz0sBWpmL/zVLonWcTay5NmMZ4Zq7O4G14k8v60HjcpXEUqPWE3qDk4 kLFktgLRrUPup6Xy2/hJ6d5gWIW+l+m4CkMxyHgK6mjAQgEaUNxuj7ppjg== -----END CERTIFICATE-----Generated at Fri May 16 23:21:28 2025 by rpki-client