$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/fJonocZBE9_L6coCCtcdmw_ucvY.roa File: fJonocZBE9_L6coCCtcdmw_ucvY.roa (raw, json) Hash identifier: E75M7mkHJC2xNOwlJjWdGECpnVZn8nzYF6lIv6gArsI= Subject key identifier: 7C:9A:27:A1:C6:41:13:DF:CB:E9:CA:02:0A:D7:1D:9B:0F:EE:72:F6 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: D2 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/fJonocZBE9_L6coCCtcdmw_ucvY.roa Signing time: Tue 10 Jun 2025 10:50:39 +0000 ROA not before: Tue 10 Jun 2025 10:50:39 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 17476 IP address blocks: 153.254.87.136/29 maxlen: 29 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Jun 10 10:50:39 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=7C9A27A1C64113DFCBE9CA020AD71D9B0FEE72F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:55:17:b3:8e:39:09:f0:87:4b:59:a4:b6:db: f8:31:8a:d5:af:3e:2b:d6:ba:d3:e1:d1:18:ec:64: e2:27:97:01:96:0d:b0:b3:e7:88:ba:5e:0d:0c:eb: d9:6e:7e:af:4b:1c:ba:0e:fd:ec:08:5e:49:a2:49: a7:7e:5f:8c:03:60:23:40:17:d4:65:c3:0c:0b:37: 4e:95:c4:1d:63:10:03:61:f7:34:8e:f2:c7:5a:b4: fd:4a:7b:ad:ba:26:18:73:5c:5d:00:d2:c8:de:ee: 55:81:c8:1d:c5:2a:e3:a5:38:53:f5:5e:50:94:4b: 7f:9b:40:24:bc:a2:6e:3d:1f:92:bc:a1:0d:1f:04: f5:2f:27:ed:75:a8:41:ee:d4:11:2b:01:3c:18:14: 3f:cd:b5:8d:5d:32:92:a2:b7:1a:f2:08:9a:81:b8: f5:e7:f4:00:32:6d:03:a4:df:6c:f4:8a:4f:69:f6: c0:ec:61:07:db:c4:91:42:c5:1d:dc:0b:8f:d7:53: 7a:18:da:13:29:e8:82:9c:f4:b7:62:c1:4c:4a:ce: 01:b1:7a:30:2d:04:33:5f:1f:eb:e6:12:38:de:29: 9e:aa:2f:5c:5c:5a:93:5d:83:17:7a:3a:96:ac:8e: 69:75:92:a8:1a:d8:b5:40:df:a4:3a:4d:94:75:7c: e3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9A:27:A1:C6:41:13:DF:CB:E9:CA:02:0A:D7:1D:9B:0F:EE:72:F6 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/fJonocZBE9_L6coCCtcdmw_ucvY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.254.87.136/29 Signature Algorithm: sha256WithRSAEncryption 36:0d:4a:33:d7:6e:4c:3b:20:e9:d1:bf:77:2a:65:aa:1d:55: 4d:7e:f7:3e:a3:8c:59:ea:60:ca:33:e2:8e:c9:e8:03:28:95: 12:9f:98:2a:20:e0:87:99:94:f5:77:77:94:27:78:d3:67:04: dd:f3:30:2f:0a:1e:72:70:d6:f4:81:0e:6a:ef:9b:65:01:ad: d3:5a:df:be:c4:6b:cb:a9:81:ba:0c:43:35:a4:a7:03:86:2e: 7b:65:62:0c:bd:08:35:fd:81:49:6b:c3:a3:be:67:7d:26:e4: 1c:40:22:ed:fa:40:c6:62:fd:b8:d4:26:40:9a:7b:f1:17:52: e5:d6:e6:5a:0a:02:fe:92:07:f4:2b:ea:8e:70:9e:4b:59:ee: d2:54:0c:be:6c:5a:c2:15:57:14:4f:ef:6f:64:d6:7d:0f:84: 70:fd:74:bd:0e:cf:cd:a3:af:f7:42:11:0e:9a:21:b0:43:5f: a8:b6:29:4a:b3:70:91:67:45:25:28:07:36:0e:cc:0d:01:74: 4f:f7:f5:9d:e5:17:42:50:0f:21:6e:f7:17:63:03:72:52:35: 6a:c4:a1:4c:d6:9e:2d:87:11:64:eb:aa:6e:d7:50:84:92:82: a2:54:0a:75:b9:bd:0f:44:71:8e:c9:e5:37:90:af:39:76:3c: fc:ec:88:78 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNTA2MTAx MDUwMzlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDdDOUEyN0ExQzY0MTEz REZDQkU5Q0EwMjBBRDcxRDlCMEZFRTcyRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkVRezjjkJ8IdLWaS22/gxitWvPivWutPh0RjsZOInlwGWDbCz 54i6Xg0M69lufq9LHLoO/ewIXkmiSad+X4wDYCNAF9RlwwwLN06VxB1jEANh9zSO 8sdatP1Ke626JhhzXF0A0sje7lWByB3FKuOlOFP1XlCUS3+bQCS8om49H5K8oQ0f BPUvJ+11qEHu1BErATwYFD/NtY1dMpKitxryCJqBuPXn9AAybQOk32z0ik9p9sDs YQfbxJFCxR3cC4/XU3oY2hMp6IKc9LdiwUxKzgGxejAtBDNfH+vmEjjeKZ6qL1xc WpNdgxd6Opasjml1kqga2LVA36Q6TZR1fONzAgMBAAGjggIpMIICJTAdBgNVHQ4E FgQUfJonocZBE9/L6coCCtcdmw/ucvYwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC9mSm9ub2NaQkU5X0w2Y29DQ3RjZG13X3Vjdlku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAATAHAwUDmf5XiDANBgkqhkiG9w0BAQsFAAOCAQEANg1KM9duTDsg6dG/dypl qh1VTX73PqOMWepgyjPijsnoAyiVEp+YKiDgh5mU9Xd3lCd402cE3fMwLwoecnDW 9IEOau+bZQGt01rfvsRry6mBugxDNaSnA4Yue2ViDL0INf2BSWvDo75nfSbkHEAi 7fpAxmL9uNQmQJp78RdS5dbmWgoC/pIH9CvqjnCeS1nu0lQMvmxawhVXFE/vb2TW fQ+EcP10vQ7PzaOv90IRDpohsENfqLYpSrNwkWdFJSgHNg7MDQF0T/f1neUXQlAP IW73F2MDclI1asShTNaeLYcRZOuqbtdQhJKColQKdbm9D0RxjsnlN5CvOXY8/OyI eA== -----END CERTIFICATE-----Generated at Thu Jul 3 08:54:48 2025 by rpki-client