$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/TKVenCbR2AkNCiHkK3B-Et6TV7k.roa File: TKVenCbR2AkNCiHkK3B-Et6TV7k.roa (raw, json) Hash identifier: giaycLCl2SHBAQsjLxC0gfVe38Vqno6f+WKi93z1D88= Subject key identifier: 4C:A5:5E:9C:26:D1:D8:09:0D:0A:21:E4:2B:70:7E:12:DE:93:57:B9 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0233 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/TKVenCbR2AkNCiHkK3B-Et6TV7k.roa Signing time: Thu 01 May 2025 01:31:46 +0000 ROA not before: Thu 01 May 2025 01:31:46 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 218.224.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 1 01:31:46 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=4CA55E9C26D1D8090D0A21E42B707E12DE9357B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:be:12:cc:89:c0:5f:16:34:69:a3:01:8b:02: ec:36:63:47:fe:21:f6:2a:f1:b5:62:c3:6b:0a:d4: a9:bd:1a:89:2a:64:b0:a4:7c:a8:34:c7:76:e6:21: dc:c2:69:81:71:36:d3:2e:22:4a:e1:93:70:e7:2a: 4d:45:55:5f:73:82:fb:51:39:29:cc:8e:c2:26:31: 79:00:9c:4d:21:ce:50:cf:a7:85:15:77:3f:31:6b: c2:77:61:d4:bd:7b:9c:9d:dd:2b:34:c1:12:d0:f1: ce:95:98:81:5b:05:53:f3:b0:20:88:1b:a4:7b:2d: ca:c7:51:30:0d:4c:b9:e3:74:6a:7d:ad:f1:8b:8c: a4:33:9f:c3:90:9f:58:8f:6f:12:0d:ad:15:9b:ba: da:a9:ab:f6:a1:97:36:d3:90:8b:21:60:16:59:21: 5a:66:04:97:86:e1:40:39:01:a1:a4:bf:92:0c:83: fb:e0:96:ed:33:c0:f8:9d:58:0d:55:37:30:31:27: 1f:1c:ef:8e:b9:81:e8:ab:12:12:c6:fa:11:09:82: c5:8b:22:c3:b4:90:a0:b1:3f:0b:02:b6:a3:f6:40: a2:46:71:bb:88:d3:0c:17:e9:88:12:c0:7c:62:76: 96:44:7d:fc:37:b1:1f:dc:12:6a:8c:59:4e:f2:b2: 0c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A5:5E:9C:26:D1:D8:09:0D:0A:21:E4:2B:70:7E:12:DE:93:57:B9 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/TKVenCbR2AkNCiHkK3B-Et6TV7k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.224.0.0/16 Signature Algorithm: sha256WithRSAEncryption bd:bb:8f:20:4c:f3:6a:46:be:0d:c3:ca:a0:5b:b5:97:63:5e: dc:54:40:02:ef:4d:51:f8:75:25:da:fa:ed:a1:25:24:44:cf: fd:db:47:b0:6f:f6:d9:9f:4f:e4:2b:56:37:cd:f4:90:88:38: ce:c5:4e:7d:6a:c0:8f:de:ea:0f:1f:1d:1a:4e:f5:2b:0d:fa: 5e:62:f2:2e:a5:5e:7f:21:d6:7d:3c:f4:58:2b:0e:70:be:2e: 0b:6f:4d:35:d8:f3:fb:5c:f8:67:ab:ac:2a:c3:fd:30:da:85: 79:3e:85:0d:a5:5e:09:62:43:0f:12:9c:e6:c7:b5:c0:ed:90: 21:2e:c7:09:33:49:b4:7a:17:6f:20:55:e1:f6:50:ff:f5:a0: 09:83:e6:97:6e:e2:a7:29:32:73:cd:9b:9f:ae:b3:a7:17:d9: 94:7e:fe:00:6a:f3:c7:ac:33:5c:47:66:f9:d9:57:00:ca:aa: 6b:3e:f6:09:10:66:39:5c:90:ac:1a:a8:45:eb:52:02:5a:a5: 62:5e:ca:73:c4:b7:fc:d3:96:64:91:39:ba:49:99:94:2c:dd: eb:66:d6:55:07:ec:88:64:8a:e3:6a:53:00:2d:4f:0e:cd:21: 02:22:fd:5b:a8:34:2d:f6:32:c4:43:25:94:b6:36:34:93:a0: 53:5f:20:54 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA1MDEw MTMxNDZaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDRDQTU1RTlDMjZEMUQ4 MDkwRDBBMjFFNDJCNzA3RTEyREU5MzU3QjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDavhLMicBfFjRpowGLAuw2Y0f+IfYq8bViw2sK1Km9GokqZLCk fKg0x3bmIdzCaYFxNtMuIkrhk3DnKk1FVV9zgvtROSnMjsImMXkAnE0hzlDPp4UV dz8xa8J3YdS9e5yd3Ss0wRLQ8c6VmIFbBVPzsCCIG6R7LcrHUTANTLnjdGp9rfGL jKQzn8OQn1iPbxINrRWbutqpq/ahlzbTkIshYBZZIVpmBJeG4UA5AaGkv5IMg/vg lu0zwPidWA1VNzAxJx8c7465geirEhLG+hEJgsWLIsO0kKCxPwsCtqP2QKJGcbuI 0wwX6YgSwHxidpZEffw3sR/cEmqMWU7ysgzDAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUTKVenCbR2AkNCiHkK3B+Et6TV7kwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL1RLVmVuQ2JSMkFrTkNpSGtLM0ItRXQ2VFY3ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDa4DANBgkqhkiG9w0BAQsFAAOCAQEAvbuPIEzzaka+DcPKoFu1l2Ne3FRA Au9NUfh1Jdr67aElJETP/dtHsG/22Z9P5CtWN830kIg4zsVOfWrAj97qDx8dGk71 Kw36XmLyLqVefyHWfTz0WCsOcL4uC29NNdjz+1z4Z6usKsP9MNqFeT6FDaVeCWJD DxKc5se1wO2QIS7HCTNJtHoXbyBV4fZQ//WgCYPml27ipykyc82bn66zpxfZlH7+ AGrzx6wzXEdm+dlXAMqqaz72CRBmOVyQrBqoRetSAlqlYl7Kc8S3/NOWZJE5ukmZ lCzd62bWVQfsiGSK42pTAC1PDs0hAiL9W6g0LfYyxEMllLY2NJOgU18gVA== -----END CERTIFICATE-----Generated at Sat May 17 07:14:10 2025 by rpki-client