$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20063/Kz91HkeQjh4fK9IQa14DIBLhHcs.roa File: Kz91HkeQjh4fK9IQa14DIBLhHcs.roa (raw, json) Hash identifier: OiZeIG5Z7iJl2KPslUN7LXpNree/aPmzHo1KraDZpAE= Subject key identifier: 2B:3F:75:1E:47:90:8E:1E:1F:2B:D2:10:6B:5E:03:20:12:E1:1D:CB Certificate issuer: /CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A Certificate serial: 9C Authority key identifier: 9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/Kz91HkeQjh4fK9IQa14DIBLhHcs.roa Signing time: Thu 01 May 2025 01:29:46 +0000 ROA not before: Thu 01 May 2025 01:29:46 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 24277 IP address blocks: 203.160.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 May 2025 02:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A Validity Not Before: May 1 01:29:46 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=2B3F751E47908E1E1F2BD2106B5E032012E11DCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3d:b5:04:33:9b:54:9b:d4:54:7e:3c:6a:de: 59:4a:a2:e1:df:31:36:2a:e5:4a:77:39:d1:bf:cd: f7:f3:d9:1e:55:f8:b9:a8:b0:d8:98:86:19:3b:ad: 20:aa:ad:f6:52:e6:95:f6:6d:99:e2:bd:66:f9:95: f1:80:a0:67:61:fa:01:c8:66:54:57:3e:96:ef:4f: 27:db:4b:66:1f:4d:ab:33:56:ed:77:4c:2e:6f:93: e6:2d:a0:0f:84:63:ba:e6:f3:e6:39:00:b7:3a:2b: a1:6b:c8:0e:74:79:93:d6:d4:ac:29:b1:72:f8:c5: 00:fe:7e:15:99:c9:88:8a:69:b8:df:2c:94:11:37: 4e:fd:a0:fd:5d:f9:f8:94:c2:87:38:8c:b2:db:b3: 15:96:83:82:ab:81:a9:75:81:d7:56:b8:d9:77:10: cd:26:13:bc:3e:47:a6:49:4e:60:5d:90:77:0f:f9: c9:29:55:dd:c3:ac:16:4a:94:08:24:9a:1c:c6:4e: d7:4e:96:ff:05:ac:69:9d:ed:c5:80:74:7f:46:3e: f8:d5:41:58:c6:60:02:f8:58:49:e0:b6:47:8b:9d: 50:43:99:35:e2:3f:2a:d9:b3:92:6c:a6:cf:00:0f: e3:db:79:66:81:02:d4:7a:9d:b7:cc:3d:38:55:40: 2b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:3F:75:1E:47:90:8E:1E:1F:2B:D2:10:6B:5E:03:20:12:E1:1D:CB X509v3 Authority Key Identifier: keyid:9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/Kz91HkeQjh4fK9IQa14DIBLhHcs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.160.16.0/20 Signature Algorithm: sha256WithRSAEncryption 24:1a:3a:2e:28:8e:60:45:35:94:01:ae:5f:28:9c:ac:8b:f7: 6e:80:55:ba:05:71:86:5b:57:f9:67:1d:6f:78:a3:e5:0d:3a: 2a:38:8a:ff:f2:d8:0d:2d:27:e1:af:b4:f6:66:8a:c2:ab:2e: 78:2d:d4:5b:9f:65:be:98:18:c8:73:db:4d:11:02:f6:13:c6: 18:ce:ff:30:d6:8e:b6:6c:73:70:46:9f:52:0a:b1:7c:1c:9d: 78:eb:0f:df:a0:cb:7c:7b:32:ae:51:84:c2:ca:5d:cd:8e:cc: f6:87:e4:38:9b:b1:8e:09:9d:d6:ec:87:6f:8d:0e:db:64:24: 26:a0:db:2b:38:d5:90:96:39:87:2f:9d:cf:c9:39:e5:ef:5c: 3b:76:41:76:a4:92:85:14:71:ef:de:b3:e1:2b:c8:11:5d:2c: 13:f5:7f:64:69:f2:eb:5d:1b:0b:a5:b0:69:43:4a:a1:f1:05: 1b:f0:c5:d6:2e:66:74:29:b1:f0:67:81:4a:88:a9:f7:29:7b: d8:2a:3a:b2:8b:4d:e6:df:00:af:06:55:03:df:d0:cd:5a:21: c5:75:11:d6:52:47:e1:a8:c1:7f:49:59:6c:85:cb:f2:b7:57: 81:e1:36:c4:11:ba:5f:ee:57:2b:ac:e5:c3:ed:92:ff:9a:51: 96:99:53:6f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOURC MDc2NEM2REZDMUUzREY2QkQ1ODBFQTY5OTRBMUU3MDk4RjUyQTAeFw0yNTA1MDEw MTI5NDZaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJCM0Y3NTFFNDc5MDhF MUUxRjJCRDIxMDZCNUUwMzIwMTJFMTFEQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAPbUEM5tUm9RUfjxq3llKouHfMTYq5Up3OdG/zffz2R5V+Lmo sNiYhhk7rSCqrfZS5pX2bZnivWb5lfGAoGdh+gHIZlRXPpbvTyfbS2YfTaszVu13 TC5vk+YtoA+EY7rm8+Y5ALc6K6FryA50eZPW1KwpsXL4xQD+fhWZyYiKabjfLJQR N079oP1d+fiUwoc4jLLbsxWWg4Krgal1gddWuNl3EM0mE7w+R6ZJTmBdkHcP+ckp Vd3DrBZKlAgkmhzGTtdOlv8FrGmd7cWAdH9GPvjVQVjGYAL4WEngtkeLnVBDmTXi PyrZs5Jsps8AD+PbeWaBAtR6nbfMPThVQCvHAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUKz91HkeQjh4fK9IQa14DIBLhHcswHwYDVR0jBBgwFoAUnbB2TG38Hj32vVgO pplKHnCY9SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDYzL25iQjJURzM4SGozMnZWZ09wcGxLSG5DWTlTby5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL25iQjJURzM4SGozMnZWZ09wcGxL SG5DWTlTby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA2My9LejkxSGtlUWpoNGZLOUlRYTE0RElCTGhIY3Mu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEy6AQMA0GCSqGSIb3DQEBCwUAA4IBAQAkGjouKI5gRTWUAa5fKJys i/dugFW6BXGGW1f5Zx1veKPlDToqOIr/8tgNLSfhr7T2ZorCqy54LdRbn2W+mBjI c9tNEQL2E8YYzv8w1o62bHNwRp9SCrF8HJ146w/foMt8ezKuUYTCyl3Njsz2h+Q4 m7GOCZ3W7IdvjQ7bZCQmoNsrONWQljmHL53PyTnl71w7dkF2pJKFFHHv3rPhK8gR XSwT9X9kafLrXRsLpbBpQ0qh8QUb8MXWLmZ0KbHwZ4FKiKn3KXvYKjqyi03m3wCv BlUD39DNWiHFdRHWUkfhqMF/SVlshcvyt1eB4TbEEbpf7lcrrOXD7ZL/mlGWmVNv -----END CERTIFICATE-----Generated at Mon May 19 04:25:21 2025 by rpki-client