$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20255/ZXvDioglJrKZ5klMtW2fHwRLrjY.roa File: ZXvDioglJrKZ5klMtW2fHwRLrjY.roa (raw, json) Hash identifier: TuQtJIaftfiZTHzoUCbGhnLWz4+7q2odXkFzDej2anY= Subject key identifier: 65:7B:C3:8A:88:25:26:B2:99:E6:49:4C:B5:6D:9F:1F:04:4B:AE:36 Certificate issuer: /CN=03706FA39B8E454EBA1DC3E73FEDC88A1E40AF74 Certificate serial: 12 Authority key identifier: 03:70:6F:A3:9B:8E:45:4E:BA:1D:C3:E7:3F:ED:C8:8A:1E:40:AF:74 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/A3Bvo5uORU66HcPnP-3Iih5Ar3Q.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20255/ZXvDioglJrKZ5klMtW2fHwRLrjY.roa Signing time: Fri 02 May 2025 02:16:19 +0000 ROA not before: Fri 02 May 2025 02:16:19 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 151385 IP address blocks: 157.66.22.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20255/A3Bvo5uORU66HcPnP-3Iih5Ar3Q.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20255/A3Bvo5uORU66HcPnP-3Iih5Ar3Q.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/A3Bvo5uORU66HcPnP-3Iih5Ar3Q.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03706FA39B8E454EBA1DC3E73FEDC88A1E40AF74 Validity Not Before: May 2 02:16:19 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=657BC38A882526B299E6494CB56D9F1F044BAE36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:84:2a:76:f8:66:38:54:2c:aa:b6:83:f8:02: 23:0c:2c:b7:a2:68:a4:3f:fe:f9:08:c7:19:1c:b3: aa:fc:33:52:b2:eb:bf:db:05:3b:c9:72:c4:0c:99: ef:ed:a8:26:4e:15:86:96:be:d0:61:e4:ec:c5:be: 3e:15:e0:b1:5c:a0:d9:27:61:97:d2:6f:ae:b0:e4: 8e:a9:d2:62:c7:90:85:c9:7c:af:8b:59:69:32:ba: cf:da:9c:71:e4:d5:dd:d8:fb:70:fb:5b:0e:ba:c8: 4a:fe:80:f2:cd:e1:5c:2e:75:a3:a3:ca:cd:93:97: f3:b1:f4:19:f5:91:3a:47:32:d1:de:af:a1:e7:78: aa:76:1b:31:e9:24:37:8e:c8:fa:50:11:97:94:2a: 85:99:d4:64:49:a5:47:ca:cb:3c:f1:97:bc:ed:2b: a8:91:65:06:fc:bb:bb:53:7b:45:96:a1:5a:c6:32: 73:65:c7:8a:1d:ea:07:98:24:00:69:6a:e0:a0:cc: 35:1f:df:70:59:cb:b2:69:d5:69:48:0f:9d:69:d8: ee:6b:4c:11:44:f8:2a:29:93:38:1c:dc:17:b5:87: 62:53:e0:4a:58:59:14:fb:d7:72:81:9c:fe:5d:26: 65:74:4c:d9:d0:f4:27:5b:3c:98:b7:51:56:a0:59: 8e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7B:C3:8A:88:25:26:B2:99:E6:49:4C:B5:6D:9F:1F:04:4B:AE:36 X509v3 Authority Key Identifier: keyid:03:70:6F:A3:9B:8E:45:4E:BA:1D:C3:E7:3F:ED:C8:8A:1E:40:AF:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20255/A3Bvo5uORU66HcPnP-3Iih5Ar3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/A3Bvo5uORU66HcPnP-3Iih5Ar3Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20255/ZXvDioglJrKZ5klMtW2fHwRLrjY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.22.0/23 Signature Algorithm: sha256WithRSAEncryption 96:ed:69:cf:2a:3c:5d:66:8c:90:33:c4:9c:90:15:29:49:18: 0e:46:65:f6:1f:48:6d:74:49:f0:38:59:18:56:7d:91:66:de: 73:ee:fb:cf:2d:ae:ed:08:7a:06:00:5e:94:8b:47:16:99:87: 65:e2:da:ab:9f:06:35:0a:9d:b6:b1:e6:56:d7:37:d0:dc:3d: 9e:b6:fc:94:38:ca:22:84:e3:9e:8b:52:f5:27:e0:e6:ed:39: 10:21:e0:91:cb:5c:d4:ed:fd:31:67:a6:76:cf:2d:95:02:56: f8:09:b4:c3:61:bf:22:05:a1:62:9c:31:98:96:d5:99:61:11: a3:c3:51:c4:d9:00:ae:c2:87:84:d3:ed:03:96:7a:75:13:ae: 3c:a3:02:8f:bf:d4:8e:39:a4:2d:5a:eb:01:7b:42:cd:03:71: 1e:c5:44:1c:42:47:d4:93:19:db:00:a1:fe:9e:01:9c:cd:10: 0f:e4:55:6c:8d:95:c4:5d:b9:6b:a6:ce:be:60:f8:f8:0d:44: cf:a6:76:5e:a5:6f:40:2b:25:19:a1:6e:1a:cf:9e:a7:34:a9: a3:9d:29:d1:ba:3d:61:0d:25:d1:3e:ec:77:e0:94:f4:ff:11: 55:73:a8:21:9b:b7:52:2b:4e:66:5e:98:1f:7f:9f:f1:76:0d: f3:31:8f:97 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwMzcw NkZBMzlCOEU0NTRFQkExREMzRTczRkVEQzg4QTFFNDBBRjc0MB4XDTI1MDUwMjAy MTYxOVoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNjU3QkMzOEE4ODI1MjZC Mjk5RTY0OTRDQjU2RDlGMUYwNDRCQUUzNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJyEKnb4ZjhULKq2g/gCIwwst6JopD/++QjHGRyzqvwzUrLrv9sF O8lyxAyZ7+2oJk4Vhpa+0GHk7MW+PhXgsVyg2Sdhl9JvrrDkjqnSYseQhcl8r4tZ aTK6z9qcceTV3dj7cPtbDrrISv6A8s3hXC51o6PKzZOX87H0GfWROkcy0d6voed4 qnYbMekkN47I+lARl5QqhZnUZEmlR8rLPPGXvO0rqJFlBvy7u1N7RZahWsYyc2XH ih3qB5gkAGlq4KDMNR/fcFnLsmnVaUgPnWnY7mtMEUT4KimTOBzcF7WHYlPgSlhZ FPvXcoGc/l0mZXRM2dD0J1s8mLdRVqBZjkECAwEAAaOCAigwggIkMB0GA1UdDgQW BBRle8OKiCUmspnmSUy1bZ8fBEuuNjAfBgNVHSMEGDAWgBQDcG+jm45FTrodw+c/ 7ciKHkCvdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAyNTUvQTNCdm81dU9SVTY2SGNQblAtM0lpaDVBcjNRLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQTNCdm81dU9SVTY2SGNQblAtM0lp aDVBcjNRLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMjU1L1pYdkRpb2dsSnJLWjVrbE10VzJmSHdSTHJqWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGdQhYwDQYJKoZIhvcNAQELBQADggEBAJbtac8qPF1mjJAzxJyQFSlJ GA5GZfYfSG10SfA4WRhWfZFm3nPu+88tru0IegYAXpSLRxaZh2Xi2qufBjUKnbax 5lbXN9DcPZ62/JQ4yiKE456LUvUn4ObtORAh4JHLXNTt/TFnpnbPLZUCVvgJtMNh vyIFoWKcMZiW1ZlhEaPDUcTZAK7Ch4TT7QOWenUTrjyjAo+/1I45pC1a6wF7Qs0D cR7FRBxCR9STGdsAof6eAZzNEA/kVWyNlcRduWumzr5g+PgNRM+mdl6lb0ArJRmh bhrPnqc0qaOdKdG6PWENJdE+7HfglPT/EVVzqCGbt1IrTmZemB9/n/F2DfMxj5c= -----END CERTIFICATE-----Generated at Sun May 18 21:24:42 2025 by rpki-client