$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/Ryn49USU57_cOytthbMnGbVbU30.roa File: Ryn49USU57_cOytthbMnGbVbU30.roa (raw, json) Hash identifier: 3Fb/wl96D5gK0/3/la2TPlACsi3NSFQWfqUIRD3NW7A= Subject key identifier: 47:29:F8:F5:44:94:E7:BF:DC:3B:2B:6D:85:B3:27:19:B5:5B:53:7D Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0240 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/Ryn49USU57_cOytthbMnGbVbU30.roa Signing time: Thu 01 May 2025 01:36:08 +0000 ROA not before: Thu 01 May 2025 01:36:08 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 222.144.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 14:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 1 01:36:08 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=4729F8F54494E7BFDC3B2B6D85B32719B55B537D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6d:16:92:81:3c:2a:4d:95:f4:62:4b:01:f1: 94:d6:f8:11:72:35:5c:18:38:d6:94:04:b0:cf:87: e1:8e:16:19:82:c0:19:d8:f9:f1:4b:9d:58:03:56: 60:2f:8b:90:c2:17:d8:5f:c2:b2:1c:a0:cf:52:da: 7d:b3:31:c7:4e:8e:d8:3a:be:08:85:65:86:10:cc: d4:0e:01:9f:2d:2a:42:88:10:3e:b6:f9:8a:5a:18: 1e:fc:18:c3:fb:33:56:42:cb:f4:37:39:49:56:d8: e5:a7:c9:1d:d0:94:aa:d4:b6:e1:fc:6d:14:2c:91: f9:3a:bc:cf:fb:1c:b2:f9:5b:21:25:1a:b3:91:6f: bc:73:07:19:8f:fd:86:52:ed:f9:1c:3c:93:5e:f6: c0:b9:bf:ee:87:8b:80:03:8e:9a:b6:99:a3:21:84: 8f:df:94:28:05:a7:e7:a8:44:9d:f1:bc:b9:13:6b: d7:86:51:9e:2f:e0:5c:00:50:1d:46:25:16:3e:fa: 43:b6:cf:df:0c:dd:65:7d:4a:43:c9:86:80:fd:42: 74:16:f4:f1:b9:8b:59:d6:e5:1e:1a:9c:09:29:e2: 30:59:3a:d5:32:84:ff:8f:62:e1:3e:75:4e:73:8a: aa:ce:47:0d:2e:e3:b1:53:5d:69:3d:0b:1a:88:51: d1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:29:F8:F5:44:94:E7:BF:DC:3B:2B:6D:85:B3:27:19:B5:5B:53:7D X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/Ryn49USU57_cOytthbMnGbVbU30.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.144.0.0/13 Signature Algorithm: sha256WithRSAEncryption 2f:98:0d:9e:ea:87:dd:ec:e1:f1:52:f2:00:96:50:69:b3:89: d5:5e:b8:1c:27:4f:8a:28:29:2b:f3:a9:b9:22:f4:96:90:1c: 6d:87:d6:83:e6:9d:71:0a:25:a1:69:17:45:a9:9f:7c:a6:93: 8f:4d:99:4c:f3:bf:f2:4d:19:52:17:cb:d4:2e:87:42:b5:8c: 6b:2f:4a:79:62:08:d0:e2:d0:79:d7:17:c6:e2:3b:c8:22:fd: f0:a4:4b:83:33:8a:f4:48:08:09:37:dc:6e:b7:41:33:bd:3c: 6e:8c:7a:d3:23:94:8f:ed:7b:91:5f:49:33:4a:42:c2:a8:6d: 3d:b5:62:81:c6:fe:1a:2a:54:5c:46:dc:57:4b:ef:70:9b:ad: 1e:d7:0e:da:2e:3d:ac:99:ba:2c:f7:2a:12:2b:3a:98:ad:c0: 28:24:ba:82:49:4a:cc:29:7d:e8:14:51:d9:f1:d6:e5:49:1d: da:f2:18:15:97:9e:fe:67:30:f0:8b:c5:be:3f:a9:06:7a:cd: e1:75:ac:76:c4:87:22:fa:10:f2:51:12:aa:d1:2a:4a:86:73: f1:ac:77:f3:1d:f2:a8:80:32:a9:8f:8e:65:c2:e5:6e:d8:df: ec:06:83:88:46:a7:17:e4:e6:20:9c:26:24:1b:31:fc:4b:25: 76:07:1f:ea -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA1MDEw MTM2MDhaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQ3MjlGOEY1NDQ5NEU3 QkZEQzNCMkI2RDg1QjMyNzE5QjU1QjUzN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGbRaSgTwqTZX0YksB8ZTW+BFyNVwYONaUBLDPh+GOFhmCwBnY +fFLnVgDVmAvi5DCF9hfwrIcoM9S2n2zMcdOjtg6vgiFZYYQzNQOAZ8tKkKIED62 +YpaGB78GMP7M1ZCy/Q3OUlW2OWnyR3QlKrUtuH8bRQskfk6vM/7HLL5WyElGrOR b7xzBxmP/YZS7fkcPJNe9sC5v+6Hi4ADjpq2maMhhI/flCgFp+eoRJ3xvLkTa9eG UZ4v4FwAUB1GJRY++kO2z98M3WV9SkPJhoD9QnQW9PG5i1nW5R4anAkp4jBZOtUy hP+PYuE+dU5ziqrORw0u47FTXWk9CxqIUdGjAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQURyn49USU57/cOytthbMnGbVbU30wHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL1J5bjQ5VVNVNTdfY095dHRoYk1uR2JWYlUzMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwPekDANBgkqhkiG9w0BAQsFAAOCAQEAL5gNnuqH3ezh8VLyAJZQabOJ1V64 HCdPiigpK/OpuSL0lpAcbYfWg+adcQoloWkXRamffKaTj02ZTPO/8k0ZUhfL1C6H QrWMay9KeWII0OLQedcXxuI7yCL98KRLgzOK9EgICTfcbrdBM708box60yOUj+17 kV9JM0pCwqhtPbVigcb+GipUXEbcV0vvcJutHtcO2i49rJm6LPcqEis6mK3AKCS6 gklKzCl96BRR2fHW5Ukd2vIYFZee/mcw8IvFvj+pBnrN4XWsdsSHIvoQ8lESqtEq SoZz8ax38x3yqIAyqY+OZcLlbtjf7AaDiEanF+TmIJwmJBsx/Esldgcf6g== -----END CERTIFICATE-----Generated at Sat May 17 18:04:34 2025 by rpki-client