$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/NVBYUco15qtYKghIBl1XNJmJhpc.roa File: NVBYUco15qtYKghIBl1XNJmJhpc.roa (raw, json) Hash identifier: YchP5AU2wiHJF0/AEuY8SdP6Oc7DadPKIXExFnVW41M= Subject key identifier: 35:50:58:51:CA:35:E6:AB:58:2A:08:48:06:5D:57:34:99:89:86:97 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 023B Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/NVBYUco15qtYKghIBl1XNJmJhpc.roa Signing time: Thu 01 May 2025 01:36:05 +0000 ROA not before: Thu 01 May 2025 01:36:05 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 220.104.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 14:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 1 01:36:05 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=35505851CA35E6AB582A0848065D573499898697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8c:da:12:42:4d:ac:7b:89:c4:08:d2:b0:e4: 1f:7b:2c:15:00:3c:1e:1d:5e:e7:19:19:b1:f9:33: a9:8e:ca:ce:4e:e3:8c:85:23:fd:26:69:7a:12:ad: e0:9c:53:2a:3a:55:d6:42:af:f5:e2:38:46:eb:f7: ac:00:7b:e4:92:85:66:05:a8:1e:32:97:2c:29:2b: 24:c7:a3:42:57:89:7b:2e:86:49:13:90:da:59:4b: ed:17:9b:f3:e0:2e:b1:7e:81:9a:0d:66:49:8c:2b: 22:29:28:b9:c4:c8:6c:3f:13:6f:e8:0b:72:3e:37: ad:fc:a2:23:ab:37:65:8a:be:55:72:95:6d:db:7b: bb:f7:7a:ae:1a:02:50:ff:26:3d:7a:8b:d6:5c:a0: a7:ec:4f:46:7d:67:81:80:fb:1a:5b:01:09:d4:89: 94:5f:4d:26:3a:7c:75:de:13:24:2f:87:78:d1:cf: fa:fa:d9:cf:b9:f2:34:34:17:78:cd:95:5b:fb:5e: 19:38:1c:25:a8:cb:fb:13:97:96:76:54:7f:0c:45: b3:5e:8e:45:8e:70:cb:74:fe:8a:c0:cc:e7:f7:71: 28:6a:4d:bc:c6:7a:39:a4:cd:9e:aa:12:7f:f7:04: fc:41:57:d5:20:3e:c3:a4:ef:bc:72:77:61:de:d7: d8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:50:58:51:CA:35:E6:AB:58:2A:08:48:06:5D:57:34:99:89:86:97 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/NVBYUco15qtYKghIBl1XNJmJhpc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.104.0.0/13 Signature Algorithm: sha256WithRSAEncryption b4:57:eb:e3:bb:af:8f:9f:fc:e2:3a:6c:b5:22:9d:f0:6b:9d: 5b:b2:b9:33:ab:07:4e:33:92:ee:22:fc:65:fc:d4:b3:15:0e: ce:9d:8b:93:a2:48:4a:5a:f7:42:84:25:ae:df:b5:f8:1a:28: c7:e3:80:23:f5:3d:2e:fd:a3:96:47:f2:97:d6:7c:bf:09:e0: 09:bb:c1:b4:79:47:b8:c3:78:d0:d9:45:3d:ee:5a:64:61:c7: 4e:ef:d8:cb:08:b3:10:39:6c:b5:e9:f4:66:9d:78:74:9e:1a: a2:fd:a3:a1:49:c8:9a:0b:73:77:cd:5a:07:2f:43:f3:8a:fe: c0:72:a7:c8:da:f9:28:01:a8:90:4b:55:88:c5:94:64:34:cc: 80:f0:55:df:5a:2d:30:58:00:a1:39:ad:38:4b:2c:3f:5a:6c: 1b:5e:bc:12:7f:42:05:68:5b:02:fb:f3:e5:96:7f:26:f0:a2: d8:8d:cb:71:b0:b9:a8:54:5b:12:92:04:2c:e3:29:4f:89:46: eb:ec:24:7a:a5:fd:e1:cc:da:20:50:ad:24:ee:4d:9f:ad:08: a3:86:27:e4:05:16:89:75:9c:b7:72:93:66:18:f4:83:bd:8d: af:32:56:f4:e8:0d:5f:55:50:a4:2d:1b:73:31:ed:5b:61:2f: af:77:4e:da -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAjswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA1MDEw MTM2MDVaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDM1NTA1ODUxQ0EzNUU2 QUI1ODJBMDg0ODA2NUQ1NzM0OTk4OTg2OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbjNoSQk2se4nECNKw5B97LBUAPB4dXucZGbH5M6mOys5O44yF I/0maXoSreCcUyo6VdZCr/XiOEbr96wAe+SShWYFqB4ylywpKyTHo0JXiXsuhkkT kNpZS+0Xm/PgLrF+gZoNZkmMKyIpKLnEyGw/E2/oC3I+N638oiOrN2WKvlVylW3b e7v3eq4aAlD/Jj16i9ZcoKfsT0Z9Z4GA+xpbAQnUiZRfTSY6fHXeEyQvh3jRz/r6 2c+58jQ0F3jNlVv7Xhk4HCWoy/sTl5Z2VH8MRbNejkWOcMt0/orAzOf3cShqTbzG ejmkzZ6qEn/3BPxBV9UgPsOk77xyd2He19gvAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUNVBYUco15qtYKghIBl1XNJmJhpcwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL05WQllVY28xNXF0WUtnaElCbDFYTkptSmhwYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwPcaDANBgkqhkiG9w0BAQsFAAOCAQEAtFfr47uvj5/84jpstSKd8GudW7K5 M6sHTjOS7iL8ZfzUsxUOzp2Lk6JISlr3QoQlrt+1+Boox+OAI/U9Lv2jlkfyl9Z8 vwngCbvBtHlHuMN40NlFPe5aZGHHTu/YywizEDlsten0Zp14dJ4aov2joUnImgtz d81aBy9D84r+wHKnyNr5KAGokEtViMWUZDTMgPBV31otMFgAoTmtOEssP1psG168 En9CBWhbAvvz5ZZ/JvCi2I3LcbC5qFRbEpIELOMpT4lG6+wkeqX94czaIFCtJO5N n60Io4Yn5AUWiXWct3KTZhj0g72NrzJW9OgNX1VQpC0bczHtW2Evr3dO2g== -----END CERTIFICATE-----Generated at Sat May 17 17:51:46 2025 by rpki-client