$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/Xzdq84I9Hym1aZE5WZroPPHhsgw.roa File: Xzdq84I9Hym1aZE5WZroPPHhsgw.roa (raw, json) Hash identifier: nBKKMVyWAOgampS+xH5YFN4f+Lrnog/JNuKHSuqFxuo= Subject key identifier: 5F:37:6A:F3:82:3D:1F:29:B5:69:91:39:59:9A:E8:3C:F1:E1:B2:0C Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 021B Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/Xzdq84I9Hym1aZE5WZroPPHhsgw.roa Signing time: Thu 01 May 2025 01:31:34 +0000 ROA not before: Thu 01 May 2025 01:31:34 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 153.252.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 09:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 1 01:31:34 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=5F376AF3823D1F29B5699139599AE83CF1E1B20C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b7:18:0f:b8:c6:8f:5c:b8:d8:67:08:68:84: f2:88:22:6c:a1:37:b6:5a:17:b4:db:85:cd:8a:21: b3:5d:e7:2a:bf:62:3b:62:7d:b7:26:a0:ce:ca:2e: c1:b6:45:3d:7a:38:8d:70:e0:05:37:2f:66:b5:1b: f9:16:cf:7e:96:27:dc:06:9d:61:83:27:63:1a:f1: 3e:30:ad:48:90:89:bc:51:d1:00:56:93:e0:7c:3f: 84:d1:23:78:c0:53:50:be:a1:3a:36:ff:a6:80:c7: a0:77:c3:dc:2e:eb:17:e6:a4:b3:b5:2e:80:f3:cb: dd:f4:ac:bd:f8:93:56:99:c3:a2:30:58:62:5b:0f: 6e:7f:20:dd:7a:70:a5:e5:fd:a0:ad:00:b4:f0:78: 49:89:77:a9:da:e6:c5:d0:4a:b3:9e:11:6c:ce:ea: 64:ef:43:32:b4:76:75:2f:15:56:89:7b:b0:ca:d4: 42:ed:39:d7:94:d0:9b:d1:cb:9b:0e:bc:90:86:26: dd:7f:f3:0a:f8:be:fc:f8:13:54:a1:0f:09:57:6e: 34:01:7c:f9:8f:12:bc:c9:dd:0c:da:73:13:98:b5: 61:21:15:d2:86:ac:e1:71:e0:64:8e:97:b8:78:98: bd:02:c7:24:47:96:66:b6:1a:13:f0:12:3a:02:94: 3b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:37:6A:F3:82:3D:1F:29:B5:69:91:39:59:9A:E8:3C:F1:E1:B2:0C X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/Xzdq84I9Hym1aZE5WZroPPHhsgw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.252.0.0/15 Signature Algorithm: sha256WithRSAEncryption d9:e9:59:54:e5:2e:a7:e7:3b:e2:23:5f:28:c7:df:e4:9e:0b: 4d:fd:68:a5:d2:94:22:43:f1:af:42:4a:df:92:15:d3:96:99: 73:d7:7e:b6:a5:79:36:05:8d:07:72:11:47:1d:83:28:b7:d4: d1:08:2d:f6:41:d9:98:87:80:f8:2c:fd:75:cb:81:4e:f4:b2: 94:aa:ea:19:0e:35:39:17:63:b9:b1:50:c1:02:1d:c0:8f:91: 6b:26:1b:80:a6:bd:2b:bd:e1:91:9a:a2:e5:b9:61:20:ac:ce: ce:88:99:54:98:3c:57:66:6c:f1:fe:1a:3f:9e:bf:4d:c3:aa: a5:52:f7:07:82:13:eb:25:0d:be:25:f0:80:90:8e:ed:6e:0e: 6e:f5:61:42:c9:0f:17:87:4c:34:bc:04:2d:c1:82:df:ce:3a: 6e:e4:3d:88:5e:f6:18:3a:9d:91:20:4e:2f:0e:85:4e:68:36: 57:9c:90:a6:4c:ed:d8:75:76:a6:27:a4:62:9d:cf:c5:f2:9c: 04:14:4e:b4:90:81:f6:74:13:c4:5d:d3:96:1a:c3:3b:05:9d: fb:e2:26:7f:d2:2f:65:54:09:f9:52:89:4f:a3:33:f9:b7:04: 7b:b6:09:f5:35:a0:be:55:62:ab:3a:0b:1d:67:66:6b:c1:fa: 3b:35:d6:ce -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAhswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA1MDEw MTMxMzRaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVGMzc2QUYzODIzRDFG MjlCNTY5OTEzOTU5OUFFODNDRjFFMUIyMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDutxgPuMaPXLjYZwhohPKIImyhN7ZaF7Tbhc2KIbNd5yq/Yjti fbcmoM7KLsG2RT16OI1w4AU3L2a1G/kWz36WJ9wGnWGDJ2Ma8T4wrUiQibxR0QBW k+B8P4TRI3jAU1C+oTo2/6aAx6B3w9wu6xfmpLO1LoDzy930rL34k1aZw6IwWGJb D25/IN16cKXl/aCtALTweEmJd6na5sXQSrOeEWzO6mTvQzK0dnUvFVaJe7DK1ELt OdeU0JvRy5sOvJCGJt1/8wr4vvz4E1ShDwlXbjQBfPmPErzJ3QzacxOYtWEhFdKG rOFx4GSOl7h4mL0CxyRHlma2GhPwEjoClDtHAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUXzdq84I9Hym1aZE5WZroPPHhsgwwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL1h6ZHE4NEk5SHltMWFaRTVXWnJvUFBIaHNndy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGZ/DANBgkqhkiG9w0BAQsFAAOCAQEA2elZVOUup+c74iNfKMff5J4LTf1o pdKUIkPxr0JK35IV05aZc9d+tqV5NgWNB3IRRx2DKLfU0Qgt9kHZmIeA+Cz9dcuB TvSylKrqGQ41ORdjubFQwQIdwI+RayYbgKa9K73hkZqi5blhIKzOzoiZVJg8V2Zs 8f4aP56/TcOqpVL3B4IT6yUNviXwgJCO7W4ObvVhQskPF4dMNLwELcGC3846buQ9 iF72GDqdkSBOLw6FTmg2V5yQpkzt2HV2piekYp3PxfKcBBROtJCB9nQTxF3TlhrD OwWd++Imf9IvZVQJ+VKJT6Mz+bcEe7YJ9TWgvlViqzoLHWdma8H6OzXWzg== -----END CERTIFICATE-----Generated at Sat May 17 13:27:35 2025 by rpki-client