$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/BuM5sqn34XvjKvZ9d0QuX29vGDg.roa File: BuM5sqn34XvjKvZ9d0QuX29vGDg.roa (raw, json) Hash identifier: R3AuKWgcCvKKoeRF5yiN2u/BUip9N+jXDOVOWCv2zAU= Subject key identifier: 06:E3:39:B2:A9:F7:E1:7B:E3:2A:F6:7D:77:44:2E:5F:6F:6F:18:38 Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Certificate serial: 058F Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/BuM5sqn34XvjKvZ9d0QuX29vGDg.roa Signing time: Tue 01 Jul 2025 07:14:53 +0000 ROA not before: Tue 01 Jul 2025 07:14:53 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 131933 IP address blocks: 14.14.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1423 (0x58f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6 Validity Not Before: Jul 1 07:14:53 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=06E339B2A9F7E17BE32AF67D77442E5F6F6F1838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6c:ac:55:60:f2:9a:ce:f6:6f:2b:e4:63:b4: 05:1c:b3:11:2a:d9:e2:7b:a1:e6:f2:84:37:5f:04: 00:10:22:fd:92:6a:24:97:7d:80:13:50:7b:cb:b6: 90:1f:19:00:7b:b3:1b:dc:ed:87:4d:c0:1a:42:4e: 87:7c:89:37:64:9e:1c:28:5f:75:5e:95:3f:1c:11: 0e:07:4f:ea:09:fc:79:40:39:d2:fa:1e:8f:11:eb: d6:72:55:88:7d:99:3b:4a:ee:a9:0b:0e:29:fe:6b: a4:19:34:2a:4c:b9:7b:fd:a5:16:ef:61:25:15:b4: fb:eb:99:13:44:ea:28:bd:c7:c6:d9:39:3a:73:69: 46:c4:85:61:47:4d:18:5a:04:93:1b:65:19:f7:6a: 0f:3b:4c:9d:98:d3:48:e9:a9:c6:a4:59:f7:3c:9f: d8:68:07:d5:40:6f:78:5e:d2:4c:2c:c9:60:39:da: 51:b3:12:ab:57:a4:84:4a:fc:a7:cd:8d:f2:62:30: 19:6f:36:f5:98:23:9a:db:28:fc:f8:5b:ba:d0:e1: 23:00:b7:83:0e:35:8d:34:13:57:ac:d4:19:e7:09: d0:bc:ee:6c:08:1b:0f:01:6a:3a:4c:6c:d9:c6:eb: a4:c4:47:e7:80:21:75:9b:72:bf:5b:64:67:a5:e1: a9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E3:39:B2:A9:F7:E1:7B:E3:2A:F6:7D:77:44:2E:5F:6F:6F:18:38 X509v3 Authority Key Identifier: keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/BuM5sqn34XvjKvZ9d0QuX29vGDg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.14.144.0/21 Signature Algorithm: sha256WithRSAEncryption 57:f4:0f:ed:ca:9e:20:8a:a0:7e:d2:f4:56:13:b3:56:ad:c0: 00:c2:02:c4:bc:26:b9:98:f6:b7:97:61:f5:98:2b:c3:90:50: a1:b3:e8:f4:89:46:3b:7c:df:5f:9e:42:66:ec:fe:a4:df:f4: 95:b9:e7:fa:dd:7d:ac:03:2a:3f:a6:0b:1e:8a:f7:0e:a7:0c: 51:54:e0:2d:1e:1f:6d:0e:31:94:14:4a:06:95:10:87:03:40: 79:b1:ca:b5:82:79:e6:df:54:f6:c7:79:d6:9d:1e:f4:46:99: 67:9c:de:b9:c5:d3:24:86:ea:20:45:bd:4f:a5:91:fa:91:33: a9:5c:d5:c2:0c:76:bf:0c:94:31:90:f6:05:18:f2:f8:d2:e2: 8e:12:fe:73:f5:65:bf:31:d5:b4:2e:1d:cb:f2:1a:56:d6:23: d7:ac:6f:00:2f:43:3f:d8:c5:9c:80:15:62:c7:2e:94:a3:06: 40:ce:50:1c:7a:76:75:08:f8:89:c9:54:06:cb:33:7b:5f:a2: 4e:bd:e7:eb:9c:74:3f:36:53:12:3a:f7:30:82:b1:d0:8d:0b: ee:ac:c3:55:da:b1:88:38:1e:2b:a5:a1:3f:28:af:fb:8c:37: 97:d7:47:eb:7f:7b:f0:de:2d:5b:8a:08:b7:a6:20:dc:b7:23: 82:79:49:4f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNTA3MDEw NzE0NTNaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA2RTMzOUIyQTlGN0Ux N0JFMzJBRjY3RDc3NDQyRTVGNkY2RjE4MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgbKxVYPKazvZvK+RjtAUcsxEq2eJ7oebyhDdfBAAQIv2SaiSX fYATUHvLtpAfGQB7sxvc7YdNwBpCTod8iTdknhwoX3VelT8cEQ4HT+oJ/HlAOdL6 Ho8R69ZyVYh9mTtK7qkLDin+a6QZNCpMuXv9pRbvYSUVtPvrmRNE6ii9x8bZOTpz aUbEhWFHTRhaBJMbZRn3ag87TJ2Y00jpqcakWfc8n9hoB9VAb3he0kwsyWA52lGz EqtXpIRK/KfNjfJiMBlvNvWYI5rbKPz4W7rQ4SMAt4MONY00E1es1BnnCdC87mwI Gw8BajpMbNnG66TER+eAIXWbcr9bZGel4anLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBuM5sqn34XvjKvZ9d0QuX29vGDgwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf 2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxL0J1TTVzcW4zNFh2akt2WjlkMFF1WDI5dkdEZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMODpAwDQYJKoZIhvcNAQELBQADggEBAFf0D+3KniCKoH7S9FYTs1atwADC AsS8JrmY9reXYfWYK8OQUKGz6PSJRjt831+eQmbs/qTf9JW55/rdfawDKj+mCx6K 9w6nDFFU4C0eH20OMZQUSgaVEIcDQHmxyrWCeebfVPbHedadHvRGmWec3rnF0ySG 6iBFvU+lkfqRM6lc1cIMdr8MlDGQ9gUY8vjS4o4S/nP1Zb8x1bQuHcvyGlbWI9es bwAvQz/YxZyAFWLHLpSjBkDOUBx6dnUI+InJVAbLM3tfok695+ucdD82UxI69zCC sdCNC+6sw1XasYg4HiuloT8or/uMN5fXR+t/e/DeLVuKCLemINy3I4J5SU8= -----END CERTIFICATE-----Generated at Fri Jul 4 23:31:30 2025 by rpki-client