$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/khkPAGoSiOiRKxs0wiUVp4IrQTw.roa File: khkPAGoSiOiRKxs0wiUVp4IrQTw.roa (raw, json) Hash identifier: 66Cs5hUemHWFlGuF3Q5ZNXEyD97LOUtxQYO9hD4+Mrc= Subject key identifier: 92:19:0F:00:6A:12:88:E8:91:2B:1B:34:C2:25:15:A7:82:2B:41:3C Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0239 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/khkPAGoSiOiRKxs0wiUVp4IrQTw.roa Signing time: Thu 01 May 2025 01:31:48 +0000 ROA not before: Thu 01 May 2025 01:31:48 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 219.160.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 1 01:31:48 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=92190F006A1288E8912B1B34C22515A7822B413C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:55:96:89:84:70:8b:20:22:c2:2f:3e:15:02: 7e:4b:56:e7:61:b1:a5:7e:45:5b:9f:f8:48:77:10: 18:6e:ef:fc:55:0d:24:d7:76:9f:7f:20:1b:cc:69: 42:8b:fb:2f:00:15:6e:79:9b:67:ea:52:30:99:26: c0:92:70:5c:91:b1:d2:6d:89:ba:07:57:fd:31:be: a5:d1:bd:48:98:f7:86:94:f4:59:c6:cb:d1:84:da: 5c:3f:00:60:9a:86:28:00:d2:af:38:43:69:5d:33: 40:fc:16:67:76:02:50:cf:b1:e0:ac:5e:69:1c:07: 0f:c2:9d:bd:cb:78:05:27:74:fa:44:61:fd:67:d4: e2:21:91:bc:2a:e9:27:5a:c9:77:d3:c3:eb:08:04: be:57:be:fe:95:bd:cd:79:15:61:24:ab:c2:e1:38: 69:4c:b2:b0:d6:6e:2c:91:7a:95:61:91:2e:87:d4: 91:3b:63:9a:25:a4:c6:13:32:94:64:c0:e4:aa:49: bc:05:40:b4:3b:13:8e:32:59:cb:c8:98:71:3e:d0: 84:b4:d3:37:77:f2:90:b1:00:5b:83:48:8d:82:fc: 32:72:d1:86:f3:f0:69:b0:f9:fe:fe:13:85:0d:e0: 6b:e4:2f:0a:02:c4:49:c8:da:be:d9:42:1f:83:95: c0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:19:0F:00:6A:12:88:E8:91:2B:1B:34:C2:25:15:A7:82:2B:41:3C X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/khkPAGoSiOiRKxs0wiUVp4IrQTw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.160.0.0/13 Signature Algorithm: sha256WithRSAEncryption 3b:0b:ff:05:9d:c2:c4:10:ac:db:ce:88:59:7b:68:4e:07:cf: 0a:4a:c5:be:4f:83:92:28:a8:c3:79:03:13:76:73:82:40:14: df:43:37:22:39:ce:9f:80:46:df:1d:05:ae:c0:0e:5d:dd:52: c2:ac:17:50:31:d6:c8:ce:1f:2f:83:30:f8:74:33:c1:b1:cf: b4:2e:63:87:93:f7:8d:2a:ed:8a:bf:9e:cf:d6:c0:75:72:41: 9e:31:2d:13:64:43:a9:63:74:3d:6b:c3:c9:dc:a2:92:f1:78: 17:46:f5:71:20:ba:d5:c9:14:a8:2e:4f:31:bc:91:5a:47:e4: 36:0b:ef:70:ab:c1:cb:b6:60:d9:62:37:15:ed:23:cf:c8:72: e8:62:59:48:a6:48:bc:6d:df:64:95:37:b4:12:b4:14:b7:f9: 9f:42:fb:f0:9f:71:2e:48:bf:ed:89:28:cd:30:5c:4c:c0:d4: ce:9c:b8:ef:da:3d:64:47:e9:de:af:db:42:39:88:6b:fa:16: a4:06:77:cf:e3:28:cc:25:68:35:f4:01:ed:ed:c1:39:4d:19: 07:28:1c:ab:ac:7b:81:3c:aa:f3:d9:cc:60:c8:11:b2:05:52: 84:b6:48:bd:2f:ad:49:59:d7:1e:13:a6:aa:34:c4:49:cf:38: 8c:83:4a:b2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTA1MDEw MTMxNDhaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDkyMTkwRjAwNkExMjg4 RTg5MTJCMUIzNEMyMjUxNUE3ODIyQjQxM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDVZaJhHCLICLCLz4VAn5LVudhsaV+RVuf+Eh3EBhu7/xVDSTX dp9/IBvMaUKL+y8AFW55m2fqUjCZJsCScFyRsdJtiboHV/0xvqXRvUiY94aU9FnG y9GE2lw/AGCahigA0q84Q2ldM0D8Fmd2AlDPseCsXmkcBw/Cnb3LeAUndPpEYf1n 1OIhkbwq6SdayXfTw+sIBL5Xvv6Vvc15FWEkq8LhOGlMsrDWbiyRepVhkS6H1JE7 Y5olpMYTMpRkwOSqSbwFQLQ7E44yWcvImHE+0IS00zd38pCxAFuDSI2C/DJy0Ybz 8Gmw+f7+E4UN4GvkLwoCxEnI2r7ZQh+DlcCrAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUkhkPAGoSiOiRKxs0wiUVp4IrQTwwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL2toa1BBR29TaU9pUkt4czB3aVVWcDRJclFUdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwPboDANBgkqhkiG9w0BAQsFAAOCAQEAOwv/BZ3CxBCs286IWXtoTgfPCkrF vk+Dkiiow3kDE3ZzgkAU30M3IjnOn4BG3x0FrsAOXd1SwqwXUDHWyM4fL4Mw+HQz wbHPtC5jh5P3jSrtir+ez9bAdXJBnjEtE2RDqWN0PWvDydyikvF4F0b1cSC61ckU qC5PMbyRWkfkNgvvcKvBy7Zg2WI3Fe0jz8hy6GJZSKZIvG3fZJU3tBK0FLf5n0L7 8J9xLki/7YkozTBcTMDUzpy479o9ZEfp3q/bQjmIa/oWpAZ3z+MozCVoNfQB7e3B OU0ZBygcq6x7gTyq89nMYMgRsgVShLZIvS+tSVnXHhOmqjTESc84jINKsg== -----END CERTIFICATE-----Generated at Sun May 18 22:42:23 2025 by rpki-client