$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/eptCZfqVWRl_fbpurFZZt6YF0EQ.roa File: eptCZfqVWRl_fbpurFZZt6YF0EQ.roa (raw, json) Hash identifier: 5ASlWvXtvnGIUA16C3gqJkXjSu8TZsbxuaskU5Py5g0= Subject key identifier: 7A:9B:42:65:FA:95:59:19:7F:7D:BA:6E:AC:56:59:B7:A6:05:D0:44 Certificate issuer: /CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Certificate serial: 8C Authority key identifier: C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/eptCZfqVWRl_fbpurFZZt6YF0EQ.roa Signing time: Tue 10 Jun 2025 10:50:51 +0000 ROA not before: Tue 10 Jun 2025 10:50:51 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 38631 IP address blocks: 203.104.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Validity Not Before: Jun 10 10:50:51 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=7A9B4265FA9559197F7DBA6EAC5659B7A605D044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d5:80:91:a3:e7:a4:9b:63:47:73:db:94:29: 3a:25:46:d6:0b:21:53:c8:ae:55:98:51:51:32:e0: b6:a2:12:5c:23:0f:c2:c7:47:0b:df:86:6a:28:3c: 49:3a:70:33:90:42:fa:04:46:07:42:5a:9f:04:e9: 7a:47:b0:0e:63:00:64:2c:5f:35:db:1a:46:b5:03: 9c:71:b7:ee:39:52:1b:6f:a8:70:9a:32:6e:a9:38: 13:85:9f:ee:cd:47:52:eb:8f:05:8f:de:06:fe:d1: 74:5d:f4:36:ba:e3:59:9e:fa:2f:75:80:ba:c3:91: 4f:9e:f3:35:70:cb:e2:b9:6c:6d:a4:98:89:7b:e7: 4c:7f:ee:bd:3d:17:6f:11:36:d2:30:92:0b:69:77: 4c:c0:3c:a9:0a:e3:fb:94:7c:f5:d5:06:db:f5:3a: ca:74:38:fb:e8:1f:1c:54:32:6f:8c:58:7c:57:dc: af:9c:5c:eb:f8:a6:01:37:7e:e8:a3:78:11:d6:b6: 29:24:1f:94:48:a8:8a:89:b0:e5:17:e2:02:24:c8: 80:a8:b6:35:26:2f:16:eb:97:fa:ec:cc:86:ca:0d: fd:59:f2:50:52:8d:7b:26:46:28:ed:68:85:a3:88: da:75:32:bf:15:9d:85:a9:78:ff:ee:90:14:08:b2: 74:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:9B:42:65:FA:95:59:19:7F:7D:BA:6E:AC:56:59:B7:A6:05:D0:44 X509v3 Authority Key Identifier: keyid:C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/eptCZfqVWRl_fbpurFZZt6YF0EQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.104.152.0/22 Signature Algorithm: sha256WithRSAEncryption bd:61:17:d3:56:ee:6e:63:9c:c6:7c:48:b9:a1:ae:0d:5a:e9: ef:e7:e6:12:3e:72:6d:4d:00:b9:4e:f7:78:ca:77:a7:2d:ba: 26:c6:fd:7d:a3:1d:8e:47:97:f8:67:0e:37:cb:d9:09:80:4e: da:1c:78:84:b5:7a:3b:05:17:0e:32:00:0d:4c:ee:4e:63:0d: 11:7e:b5:90:30:63:02:0a:93:f3:95:fd:e3:2c:5f:51:77:45: 2d:b1:18:8c:97:70:47:e9:5d:4e:76:f6:19:56:ec:54:5e:a6: 90:71:76:e9:1e:00:72:af:5b:1b:ff:1c:1f:16:fc:bf:f5:31: 70:20:5e:5e:a5:d5:eb:f6:cd:7a:b3:41:8d:cf:0b:4c:04:44: 38:71:5a:5c:18:d2:de:f7:11:8d:c3:64:04:6f:68:cf:9f:19: f9:1c:11:75:be:9a:89:62:57:89:30:f6:79:d6:a6:31:fe:74: 76:da:05:cc:03:7a:97:73:ee:66:67:4c:70:75:f9:97:ae:9a: 9f:9d:1a:e7:92:dc:56:bd:35:f3:22:ae:d4:77:73:5c:2f:62: 6f:55:bd:d6:3a:8c:a1:8f:af:49:3e:2d:75:c8:8a:c2:b4:f4: 48:73:dc:4d:38:88:cf:6a:08:98:3e:be:b4:5b:2f:84:0a:a0: 4c:f3:4f:d6 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTY0RkI3QzhDN0M2QjVDRDdDNzcwMTg4MkU4NTk3QzQyODM4RTAeFw0yNTA2MTAx MDUwNTFaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDdBOUI0MjY1RkE5NTU5 MTk3RjdEQkE2RUFDNTY1OUI3QTYwNUQwNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCk1YCRo+ekm2NHc9uUKTolRtYLIVPIrlWYUVEy4LaiElwjD8LH RwvfhmooPEk6cDOQQvoERgdCWp8E6XpHsA5jAGQsXzXbGka1A5xxt+45UhtvqHCa Mm6pOBOFn+7NR1LrjwWP3gb+0XRd9Da641me+i91gLrDkU+e8zVwy+K5bG2kmIl7 50x/7r09F28RNtIwkgtpd0zAPKkK4/uUfPXVBtv1Osp0OPvoHxxUMm+MWHxX3K+c XOv4pgE3fuijeBHWtikkH5RIqIqJsOUX4gIkyICotjUmLxbrl/rszIbKDf1Z8lBS jXsmRijtaIWjiNp1Mr8VnYWpeP/ukBQIsnTpAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUeptCZfqVWRl/fbpurFZZt6YF0EQwHwYDVR0jBBgwFoAUxJ5k+3yMfGtc18dw GILoWXxCg44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTE2L3hKNWstM3lNZkd0YzE4ZHdHSUxvV1h4Q2c0NC5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hKNWstM3lNZkd0YzE4ZHdHSUxv V1h4Q2c0NC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDExNi9lcHRDWmZxVldSbF9mYnB1ckZaWnQ2WUYwRVEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy2iYMA0GCSqGSIb3DQEBCwUAA4IBAQC9YRfTVu5uY5zGfEi5oa4N Wunv5+YSPnJtTQC5Tvd4ynenLbomxv19ox2OR5f4Zw43y9kJgE7aHHiEtXo7BRcO MgANTO5OYw0RfrWQMGMCCpPzlf3jLF9Rd0UtsRiMl3BH6V1OdvYZVuxUXqaQcXbp HgByr1sb/xwfFvy/9TFwIF5epdXr9s16s0GNzwtMBEQ4cVpcGNLe9xGNw2QEb2jP nxn5HBF1vpqJYleJMPZ51qYx/nR22gXMA3qXc+5mZ0xwdfmXrpqfnRrnktxWvTXz Iq7Ud3NcL2JvVb3WOoyhj69JPi11yIrCtPRIc9xNOIjPagiYPr60Wy+ECqBM80/W -----END CERTIFICATE-----Generated at Sat Jul 5 19:33:31 2025 by rpki-client