$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20084/PAfw4jHGry29-66I15iesqzcdTA.roa File: PAfw4jHGry29-66I15iesqzcdTA.roa (raw, json) Hash identifier: k62ZFYve+Vd4rHQWhfdAVpVtP2ke/h+IAL2KSKsW444= Subject key identifier: 3C:07:F0:E2:31:C6:AF:2D:BD:FB:AE:88:D7:98:9E:B2:AC:DC:75:30 Certificate issuer: /CN=381CEBD5718139418E2BA504374D52816234E9EB Certificate serial: 1F Authority key identifier: 38:1C:EB:D5:71:81:39:41:8E:2B:A5:04:37:4D:52:81:62:34:E9:EB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OBzr1XGBOUGOK6UEN01SgWI06es.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/PAfw4jHGry29-66I15iesqzcdTA.roa Signing time: Tue 10 Jun 2025 10:49:24 +0000 ROA not before: Tue 10 Jun 2025 10:49:24 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 131943 IP address blocks: 61.195.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/OBzr1XGBOUGOK6UEN01SgWI06es.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/OBzr1XGBOUGOK6UEN01SgWI06es.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OBzr1XGBOUGOK6UEN01SgWI06es.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=381CEBD5718139418E2BA504374D52816234E9EB Validity Not Before: Jun 10 10:49:24 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=3C07F0E231C6AF2DBDFBAE88D7989EB2ACDC7530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4c:03:17:6d:ae:97:00:33:02:d0:b1:48:07: 08:31:16:09:d7:1b:db:cf:93:5b:3d:ae:45:7a:ce: 69:73:96:6c:35:b8:8c:47:f0:da:18:4a:3b:a1:f0: 28:8c:9f:fd:1e:49:5a:e7:53:8b:e7:6a:2d:4b:29: 72:d7:89:56:5f:72:d9:51:50:b0:3d:e0:b5:99:0b: 1e:d8:8a:51:76:46:44:7f:f2:ab:85:a4:fd:56:d1: 62:dc:94:59:db:38:c1:47:1c:c6:5c:ba:a0:9b:08: 6d:43:d6:23:3b:16:b0:b6:7b:a9:03:d8:45:c6:72: fa:a9:dc:74:8f:28:7a:0c:9e:c3:49:26:9c:61:17: c7:51:01:5a:89:d5:cc:f7:bd:d2:84:a3:86:e4:04: 11:00:42:11:c8:01:ec:aa:53:35:ae:57:fe:bf:42: e7:59:89:74:73:61:62:a8:48:23:f8:9a:f6:dc:42: 05:22:fb:4a:a4:7d:3c:4f:21:d5:d7:2e:58:f3:48: ff:30:f7:ac:fd:7f:32:1c:f2:8e:75:3b:99:a2:ff: b7:83:b5:63:9d:79:56:74:70:c8:fc:f2:b1:a2:69: 46:75:d8:c7:e6:69:e8:25:ca:ae:bf:cc:10:fd:06: 10:09:1f:b6:05:1b:5e:31:01:f5:bf:67:03:c4:8d: 95:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:07:F0:E2:31:C6:AF:2D:BD:FB:AE:88:D7:98:9E:B2:AC:DC:75:30 X509v3 Authority Key Identifier: keyid:38:1C:EB:D5:71:81:39:41:8E:2B:A5:04:37:4D:52:81:62:34:E9:EB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/OBzr1XGBOUGOK6UEN01SgWI06es.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/OBzr1XGBOUGOK6UEN01SgWI06es.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20084/PAfw4jHGry29-66I15iesqzcdTA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.195.40.0/22 Signature Algorithm: sha256WithRSAEncryption 25:f4:2d:f8:e4:ed:6e:64:27:13:05:e8:42:3f:e3:a8:39:af: ab:71:5d:71:9e:50:a0:c6:b0:84:16:38:c4:7a:ef:ff:a2:5f: eb:b9:b1:66:f8:ed:b5:fd:74:13:3e:81:ec:b9:1c:0b:5f:15: 94:3e:f2:47:07:2f:34:f0:39:17:54:bd:0e:10:9c:f5:c6:81: f1:5a:f3:2a:9a:7c:03:48:ea:e1:b0:dc:0f:a2:52:e9:eb:d2: 96:3a:05:3b:f9:3c:00:a8:cc:dc:1f:56:41:2f:eb:27:a1:fb: 4f:26:e7:c6:90:bc:ec:aa:f8:7d:df:5d:9c:19:76:c3:01:c4: 48:75:11:81:dd:57:1d:a0:df:81:8d:ba:b7:c4:4b:69:00:07: 45:de:30:dc:5a:e0:2f:ea:69:8d:dd:0c:a4:fc:c9:d1:b7:cf: 05:62:79:73:e5:b6:b1:19:02:cc:b9:26:33:f6:14:12:e4:cf: 3e:38:5c:7a:58:98:7f:46:f5:67:8d:a3:5b:f4:11:f3:3e:85: 89:ea:70:46:33:e1:69:ff:ad:3a:87:0b:4f:d3:4c:4b:85:8b: 75:a3:02:9e:94:1b:89:7a:fd:dc:55:ab:ed:ce:9e:6e:0f:94: 62:34:13:ea:5f:34:0f:44:0e:c3:c5:89:45:b9:24:ca:70:61: c6:c4:ac:fc -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzODFD RUJENTcxODEzOTQxOEUyQkE1MDQzNzRENTI4MTYyMzRFOUVCMB4XDTI1MDYxMDEw NDkyNFoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoM0MwN0YwRTIzMUM2QUYy REJERkJBRTg4RDc5ODlFQjJBQ0RDNzUzMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANhMAxdtrpcAMwLQsUgHCDEWCdcb28+TWz2uRXrOaXOWbDW4jEfw 2hhKO6HwKIyf/R5JWudTi+dqLUspcteJVl9y2VFQsD3gtZkLHtiKUXZGRH/yq4Wk /VbRYtyUWds4wUccxly6oJsIbUPWIzsWsLZ7qQPYRcZy+qncdI8oegyew0kmnGEX x1EBWonVzPe90oSjhuQEEQBCEcgB7KpTNa5X/r9C51mJdHNhYqhII/ia9txCBSL7 SqR9PE8h1dcuWPNI/zD3rP1/MhzyjnU7maL/t4O1Y515VnRwyPzysaJpRnXYx+Zp 6CXKrr/MEP0GEAkftgUbXjEB9b9nA8SNlW0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBQ8B/DiMcavLb37rojXmJ6yrNx1MDAfBgNVHSMEGDAWgBQ4HOvVcYE5QY4rpQQ3 TVKBYjTp6zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwODQvT0J6cjFYR0JPVUdPSzZVRU4wMVNnV0kwNmVzLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvT0J6cjFYR0JPVUdPSzZVRU4wMVNn V0kwNmVzLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDg0L1BBZnc0akhHcnkyOS02NkkxNWllc3F6Y2RUQS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAI9wygwDQYJKoZIhvcNAQELBQADggEBACX0Lfjk7W5kJxMF6EI/46g5 r6txXXGeUKDGsIQWOMR67/+iX+u5sWb47bX9dBM+gey5HAtfFZQ+8kcHLzTwORdU vQ4QnPXGgfFa8yqafANI6uGw3A+iUunr0pY6BTv5PACozNwfVkEv6yeh+08m58aQ vOyq+H3fXZwZdsMBxEh1EYHdVx2g34GNurfES2kAB0XeMNxa4C/qaY3dDKT8ydG3 zwVieXPltrEZAsy5JjP2FBLkzz44XHpYmH9G9WeNo1v0EfM+hYnqcEYz4Wn/rTqH C0/TTEuFi3WjAp6UG4l6/dxVq+3Onm4PlGI0E+pfNA9EDsPFiUW5JMpwYcbErPw= -----END CERTIFICATE-----Generated at Sat Jul 5 00:26:12 2025 by rpki-client