$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1384/a3JpFT4movaR9Qnzv4LKDVNprvI.roa File: a3JpFT4movaR9Qnzv4LKDVNprvI.roa (raw, json) Hash identifier: +5Vpeec/HguVCmDPvW0XexJa05K9WhUa3gkNikaaczU= Subject key identifier: 6B:72:69:15:3E:26:A2:F6:91:F5:09:F3:BF:82:CA:0D:53:69:AE:F2 Certificate issuer: /CN=87AC474F6833E4A01A86B23B51E56A661CF2E1F4 Certificate serial: 50 Authority key identifier: 87:AC:47:4F:68:33:E4:A0:1A:86:B2:3B:51:E5:6A:66:1C:F2:E1:F4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h6xHT2gz5KAahrI7UeVqZhzy4fQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1384/a3JpFT4movaR9Qnzv4LKDVNprvI.roa Signing time: Thu 01 May 2025 01:32:36 +0000 ROA not before: Thu 01 May 2025 01:32:36 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 16509 IP address blocks: 150.70.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1384/h6xHT2gz5KAahrI7UeVqZhzy4fQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1384/h6xHT2gz5KAahrI7UeVqZhzy4fQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h6xHT2gz5KAahrI7UeVqZhzy4fQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87AC474F6833E4A01A86B23B51E56A661CF2E1F4 Validity Not Before: May 1 01:32:36 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=6B7269153E26A2F691F509F3BF82CA0D5369AEF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:57:1c:b9:81:58:69:81:fc:be:ad:ae:b6:5b: 9f:9f:aa:99:a3:91:bd:14:4d:30:19:3b:bb:d5:d6: 32:9c:d0:2f:b4:c6:5c:33:f8:cd:9a:61:51:a1:c5: 79:d3:20:71:8a:2f:c4:ff:94:c0:82:18:7d:94:42: d0:93:b5:a7:83:72:bd:de:15:dd:10:85:ea:37:a5: 53:c7:29:2d:6d:fc:c8:b5:ad:7e:61:88:a8:c6:9e: ee:5f:6f:0b:4a:eb:ca:51:ba:0b:cc:f8:92:41:6f: ac:3b:da:ca:df:7f:2d:ed:92:69:64:45:1f:62:71: 70:0d:d9:12:c3:f0:6d:12:44:29:0d:18:76:7d:15: bc:9a:93:90:c9:98:ce:6e:c0:c2:02:a3:2c:95:a3: 9d:5d:3e:80:cc:b8:38:47:de:d9:5b:7b:cc:d3:74: 99:ab:cd:78:b6:6c:e4:e3:79:82:f9:d7:e9:59:6b: b3:ea:fc:ff:df:b7:23:bf:df:65:bc:65:f5:4d:fd: c5:8f:66:28:10:19:ab:0f:71:44:c0:ed:72:08:88: 57:c6:5b:0e:7f:7e:b9:c8:7f:09:43:d3:b2:5c:a2: 3c:51:eb:e3:ad:08:05:d9:92:54:a0:fe:b8:19:e2: ff:03:20:33:5e:71:33:c7:59:70:7a:10:5b:44:86: 3d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:72:69:15:3E:26:A2:F6:91:F5:09:F3:BF:82:CA:0D:53:69:AE:F2 X509v3 Authority Key Identifier: keyid:87:AC:47:4F:68:33:E4:A0:1A:86:B2:3B:51:E5:6A:66:1C:F2:E1:F4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1384/h6xHT2gz5KAahrI7UeVqZhzy4fQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h6xHT2gz5KAahrI7UeVqZhzy4fQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1384/a3JpFT4movaR9Qnzv4LKDVNprvI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.70.218.0/24 Signature Algorithm: sha256WithRSAEncryption 99:8b:eb:23:a7:e2:11:31:2b:7b:5e:b5:0f:c4:66:ae:9b:f8: 69:e0:71:13:59:3b:ad:36:2f:47:b5:2e:8a:84:81:71:5f:99: 22:98:49:ed:9a:0f:76:a6:57:20:f0:25:59:f4:bd:a0:f7:04: fd:e2:25:62:98:52:43:91:2d:49:71:7a:cd:45:52:18:b7:45: 65:09:7f:5b:21:be:cb:ee:d1:8a:f5:5f:4b:c4:96:8e:0d:f6: c6:ba:5f:51:e0:e4:67:fb:6b:89:4f:fd:aa:fd:f0:90:2a:a7: 49:93:a0:cc:4b:59:42:47:7a:fd:f6:66:8c:3e:d5:53:78:ed: d3:04:48:a9:7c:39:cf:e6:f8:7f:c7:5a:75:46:4d:21:1a:69: bc:c2:c4:01:d2:d6:82:85:aa:67:83:89:23:df:44:19:b1:d1: 6a:ce:a5:e5:bd:42:e4:30:68:1c:e2:c6:c1:bf:0a:b8:84:c7: a4:ea:1b:ad:2a:0e:76:bb:21:5f:51:90:2a:98:5c:87:0f:46: 1c:0d:81:5f:7d:4b:40:25:95:41:00:61:4d:82:ad:e2:89:f6: 1c:2e:49:ec:62:ea:d2:52:13:4f:49:3a:dc:ce:13:6f:4d:b3: ac:b3:30:6a:bd:25:22:3e:ef:12:e0:76:5c:ba:b9:4d:13:e6: 53:5d:17:bd -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBUDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4N0FD NDc0RjY4MzNFNEEwMUE4NkIyM0I1MUU1NkE2NjFDRjJFMUY0MB4XDTI1MDUwMTAx MzIzNloXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNkI3MjY5MTUzRTI2QTJG NjkxRjUwOUYzQkY4MkNBMEQ1MzY5QUVGMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMhXHLmBWGmB/L6trrZbn5+qmaORvRRNMBk7u9XWMpzQL7TGXDP4 zZphUaHFedMgcYovxP+UwIIYfZRC0JO1p4Nyvd4V3RCF6jelU8cpLW38yLWtfmGI qMae7l9vC0rrylG6C8z4kkFvrDvayt9/Le2SaWRFH2JxcA3ZEsPwbRJEKQ0Ydn0V vJqTkMmYzm7AwgKjLJWjnV0+gMy4OEfe2Vt7zNN0mavNeLZs5ON5gvnX6Vlrs+r8 /9+3I7/fZbxl9U39xY9mKBAZqw9xRMDtcgiIV8ZbDn9+uch/CUPTslyiPFHr460I BdmSVKD+uBni/wMgM15xM8dZcHoQW0SGPSsCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBRrcmkVPiai9pH1CfO/gsoNU2mu8jAfBgNVHSMEGDAWgBSHrEdPaDPkoBqGsjtR 5WpmHPLh9DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTM4NC9oNnhIVDJnejVLQWFockk3VWVWcVpoenk0ZlEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9oNnhIVDJnejVLQWFockk3VWVWcVpo enk0ZlEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTM4NC9hM0pwRlQ0bW92YVI5UW56djRMS0RWTnBydkkucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAlkbaMA0GCSqGSIb3DQEBCwUAA4IBAQCZi+sjp+IRMSt7XrUPxGaum/hp 4HETWTutNi9HtS6KhIFxX5kimEntmg92plcg8CVZ9L2g9wT94iVimFJDkS1JcXrN RVIYt0VlCX9bIb7L7tGK9V9LxJaODfbGul9R4ORn+2uJT/2q/fCQKqdJk6DMS1lC R3r99maMPtVTeO3TBEipfDnP5vh/x1p1Rk0hGmm8wsQB0taChapng4kj30QZsdFq zqXlvULkMGgc4sbBvwq4hMek6hutKg52uyFfUZAqmFyHD0YcDYFffUtAJZVBAGFN gq3iifYcLknsYurSUhNPSTrczhNvTbOsszBqvSUiPu8S4HZcurlNE+ZTXRe9 -----END CERTIFICATE-----Generated at Wed May 14 21:04:24 2025 by rpki-client