$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20095/kaIK89ZK00U-LK6mVFJy9QRtPa4.roa File: kaIK89ZK00U-LK6mVFJy9QRtPa4.roa (raw, json) Hash identifier: QehAfJH19S5d8z5S18ASfVR4VkX/xAVL5CW0xBQ47o0= Subject key identifier: 91:A2:0A:F3:D6:4A:D3:45:3E:2C:AE:A6:54:52:72:F5:04:6D:3D:AE Certificate issuer: /CN=29FE1E79542EB2CEFA4E283BFCAF18A398BC7611 Certificate serial: 16 Authority key identifier: 29:FE:1E:79:54:2E:B2:CE:FA:4E:28:3B:FC:AF:18:A3:98:BC:76:11 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Kf4eeVQuss76Tig7_K8Yo5i8dhE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20095/kaIK89ZK00U-LK6mVFJy9QRtPa4.roa Signing time: Thu 01 May 2025 01:30:19 +0000 ROA not before: Thu 01 May 2025 01:30:19 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 63779 IP address blocks: 202.208.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20095/Kf4eeVQuss76Tig7_K8Yo5i8dhE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20095/Kf4eeVQuss76Tig7_K8Yo5i8dhE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Kf4eeVQuss76Tig7_K8Yo5i8dhE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 May 2025 02:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29FE1E79542EB2CEFA4E283BFCAF18A398BC7611 Validity Not Before: May 1 01:30:19 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=91A20AF3D64AD3453E2CAEA6545272F5046D3DAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b5:5f:e0:a9:5e:e7:05:14:a9:6b:a1:c2:f0: 27:82:e5:67:74:90:96:b8:cd:86:a4:9e:d0:ed:ab: a3:da:85:62:2b:74:40:ac:c2:cd:93:7c:91:98:36: 92:08:8b:57:b8:df:5c:a0:09:ab:77:90:71:b6:3f: de:0f:72:4b:40:63:93:90:bb:13:5b:e9:b8:9b:cb: da:0e:d6:7d:03:6e:d3:09:2b:0b:e2:59:57:37:e5: 71:b2:52:65:d4:30:ac:8f:9a:70:d1:30:f6:c7:48: 54:fb:26:59:2f:17:56:6d:12:f8:0e:cf:7e:e5:c5: da:29:62:8f:35:3f:d1:c7:80:f0:b5:37:54:ff:83: af:d2:e7:fc:60:d7:f7:80:14:f6:fd:fb:83:11:40: 5e:a2:ad:f3:ed:73:a0:65:53:d4:7c:41:f5:6c:37: 9a:ad:fd:22:1b:67:66:b1:f4:a1:16:fa:9a:ce:d3: 98:d9:5f:8d:8c:c7:db:79:f0:0b:ee:27:b6:07:a8: d7:c9:f5:7f:01:b8:ba:f1:fe:33:33:16:f0:b4:5a: 08:ac:1b:ee:b5:54:61:cb:27:ee:91:18:06:82:16: 3b:37:e0:4d:1f:81:ef:84:da:0d:12:18:72:db:71: 5e:97:8a:a6:1b:e4:4a:48:2a:a5:e6:93:65:82:f3: 1c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:A2:0A:F3:D6:4A:D3:45:3E:2C:AE:A6:54:52:72:F5:04:6D:3D:AE X509v3 Authority Key Identifier: keyid:29:FE:1E:79:54:2E:B2:CE:FA:4E:28:3B:FC:AF:18:A3:98:BC:76:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20095/Kf4eeVQuss76Tig7_K8Yo5i8dhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Kf4eeVQuss76Tig7_K8Yo5i8dhE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20095/kaIK89ZK00U-LK6mVFJy9QRtPa4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.208.80.0/21 Signature Algorithm: sha256WithRSAEncryption 1a:e4:b6:10:b5:20:f0:84:89:62:b9:4c:64:ad:75:df:67:0a: 1a:ee:76:23:8f:d4:79:e1:aa:f2:9f:4d:5f:6f:14:71:b2:a3: 48:4d:20:73:28:b2:a4:f7:d9:89:0c:96:34:17:cd:26:c4:a0: b2:12:cf:0f:d2:fc:4b:f8:6c:66:bc:68:60:02:b1:25:01:3c: d8:e4:9b:c1:2b:67:e9:29:0f:2b:47:fe:82:93:9a:2f:43:19: b4:68:66:7c:e8:f6:e0:01:af:a1:ae:7a:81:29:fd:12:f1:78: 29:a4:65:2b:cf:a6:8a:91:2f:23:55:52:61:78:f8:7d:c8:fd: 41:7a:b3:a0:02:be:9b:d2:3b:5d:6b:ae:21:0a:88:01:a3:46: 88:de:4e:52:02:bb:8a:40:3b:39:5f:4e:68:31:ce:0e:a5:48: ba:c0:25:f7:68:8d:b1:7a:b8:a2:eb:ff:69:f4:d0:2d:84:f3: af:38:e7:c3:c4:89:ef:ad:41:fd:7c:02:13:33:48:3d:5c:24: 44:90:72:9a:6f:f9:64:57:e4:44:e2:4f:84:12:09:de:a7:9d: 8e:75:bc:d8:99:87:ce:3d:e9:91:2a:0a:01:ed:a7:b7:c6:11: c4:c4:63:e5:09:17:8c:3d:e4:c8:c0:23:cf:24:95:93:f2:59: 89:55:3d:36 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyOUZF MUU3OTU0MkVCMkNFRkE0RTI4M0JGQ0FGMThBMzk4QkM3NjExMB4XDTI1MDUwMTAx MzAxOVoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoOTFBMjBBRjNENjRBRDM0 NTNFMkNBRUE2NTQ1MjcyRjUwNDZEM0RBRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOy1X+CpXucFFKlrocLwJ4LlZ3SQlrjNhqSe0O2ro9qFYit0QKzC zZN8kZg2kgiLV7jfXKAJq3eQcbY/3g9yS0Bjk5C7E1vpuJvL2g7WfQNu0wkrC+JZ VzflcbJSZdQwrI+acNEw9sdIVPsmWS8XVm0S+A7PfuXF2ilijzU/0ceA8LU3VP+D r9Ln/GDX94AU9v37gxFAXqKt8+1zoGVT1HxB9Ww3mq39IhtnZrH0oRb6ms7TmNlf jYzH23nwC+4ntgeo18n1fwG4uvH+MzMW8LRaCKwb7rVUYcsn7pEYBoIWOzfgTR+B 74TaDRIYcttxXpeKphvkSkgqpeaTZYLzHEkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBSRogrz1krTRT4srqZUUnL1BG09rjAfBgNVHSMEGDAWgBQp/h55VC6yzvpOKDv8 rxijmLx2ETAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwOTUvS2Y0ZWVWUXVzczc2VGlnN19LOFlvNWk4ZGhFLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS2Y0ZWVWUXVzczc2VGlnN19LOFlv NWk4ZGhFLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDk1L2thSUs4OVpLMDBVLUxLNm1WRkp5OVFSdFBhNC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAPK0FAwDQYJKoZIhvcNAQELBQADggEBABrkthC1IPCEiWK5TGStdd9n ChrudiOP1HnhqvKfTV9vFHGyo0hNIHMosqT32YkMljQXzSbEoLISzw/S/Ev4bGa8 aGACsSUBPNjkm8ErZ+kpDytH/oKTmi9DGbRoZnzo9uABr6GueoEp/RLxeCmkZSvP poqRLyNVUmF4+H3I/UF6s6ACvpvSO11rriEKiAGjRojeTlICu4pAOzlfTmgxzg6l SLrAJfdojbF6uKLr/2n00C2E868458PEie+tQf18AhMzSD1cJESQcppv+WRX5ETi T4QSCd6nnY51vNiZh8496ZEqCgHtp7fGEcTEY+UJF4w95MjAI88klZPyWYlVPTY= -----END CERTIFICATE-----Generated at Mon May 19 04:33:50 2025 by rpki-client