$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20260/TbF7RxjjPrszr7lvXhjFhHX-W58.roa File: TbF7RxjjPrszr7lvXhjFhHX-W58.roa (raw, json) Hash identifier: UOSh1lxOySSyjdMquVhIG7mDwSwMIi7tEcaD4PHTGHk= Subject key identifier: 4D:B1:7B:47:18:E3:3E:BB:33:AF:B9:6F:5E:18:C5:84:75:FE:5B:9F Certificate issuer: /CN=DB70B12B416AE2434641E5ACD256FB224B4C5B9B Certificate serial: 12 Authority key identifier: DB:70:B1:2B:41:6A:E2:43:46:41:E5:AC:D2:56:FB:22:4B:4C:5B:9B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/23CxK0Fq4kNGQeWs0lb7IktMW5s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/TbF7RxjjPrszr7lvXhjFhHX-W58.roa Signing time: Sun 11 May 2025 16:38:15 +0000 ROA not before: Sun 11 May 2025 16:38:15 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 55911 IP address blocks: 157.66.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/23CxK0Fq4kNGQeWs0lb7IktMW5s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/23CxK0Fq4kNGQeWs0lb7IktMW5s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/23CxK0Fq4kNGQeWs0lb7IktMW5s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB70B12B416AE2434641E5ACD256FB224B4C5B9B Validity Not Before: May 11 16:38:15 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=4DB17B4718E33EBB33AFB96F5E18C58475FE5B9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:12:18:47:44:5a:8a:c8:9c:0e:90:40:94:d0: f3:b4:ba:2c:bf:fa:de:48:59:7d:ff:f4:93:13:e7: ee:bc:c4:25:d7:2c:8b:6f:cb:56:e2:d2:9f:fc:aa: f9:3a:4d:dd:b8:46:f0:67:48:4a:5a:d4:cd:b9:b4: 1b:b9:6d:ef:96:ed:1f:51:1a:78:f2:0a:d4:0b:11: d5:c7:68:5d:bc:29:aa:f8:6d:df:7c:8e:cf:66:d8: cb:df:2b:a2:59:0c:b9:af:ab:32:d8:64:42:55:08: a1:3a:7a:e0:a5:f9:0a:bd:69:bc:63:45:74:16:07: 79:27:63:52:f3:9e:f4:39:2d:1a:8e:6f:dc:59:4c: ee:53:b3:b9:74:67:dd:55:45:16:12:2e:65:ea:6a: d2:9f:4b:1c:d7:dd:34:db:7e:26:32:e1:58:0d:6b: e4:d6:0d:56:86:7f:77:04:a6:0f:27:79:45:9b:fb: 11:0d:64:9a:d5:73:e3:bf:4f:9a:bf:5a:ed:d9:ce: c8:36:64:ab:50:f1:c8:d0:27:4c:6d:8b:c8:d3:47: 76:4a:43:d0:7c:89:a5:6b:fa:33:e8:90:15:e1:00: b8:0e:36:7d:3b:b1:4f:25:c1:6e:2a:2e:c2:2d:f3: 1a:47:44:f7:35:ee:31:23:73:55:71:7d:2f:5e:45: 0c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B1:7B:47:18:E3:3E:BB:33:AF:B9:6F:5E:18:C5:84:75:FE:5B:9F X509v3 Authority Key Identifier: keyid:DB:70:B1:2B:41:6A:E2:43:46:41:E5:AC:D2:56:FB:22:4B:4C:5B:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/23CxK0Fq4kNGQeWs0lb7IktMW5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/23CxK0Fq4kNGQeWs0lb7IktMW5s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20260/TbF7RxjjPrszr7lvXhjFhHX-W58.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.180.0/23 Signature Algorithm: sha256WithRSAEncryption ac:c4:ad:f3:6e:6b:bb:5d:91:74:0a:90:75:f4:36:fa:12:44: 9f:f2:a0:7d:eb:8c:87:e6:06:c2:83:55:9b:12:1d:a5:75:44: f6:3f:4e:9f:2b:04:d1:c3:e7:10:49:6e:5f:d6:84:30:1f:5c: 07:58:95:7f:20:8d:1c:74:83:8a:cf:47:ee:98:ec:fa:87:f5: e7:ab:e4:3e:0d:2e:47:c2:ac:de:30:00:2f:ff:35:fb:32:8b: 40:96:fa:c2:ba:b3:bf:31:26:61:9a:89:af:c9:b1:09:b0:fc: 1f:83:13:59:c2:9f:d1:63:ba:92:90:04:c2:8b:f3:f0:15:d0: 4d:7c:ca:8f:88:91:37:ca:03:d4:76:52:29:32:18:c1:02:6b: 81:b3:8d:67:09:77:7d:83:6e:59:da:35:01:d3:fb:b3:de:7b: 79:68:17:0e:cc:cb:e7:5c:a1:cc:0f:cf:f9:da:dc:47:11:09: 52:8a:53:c9:2e:ea:03:fa:ed:60:06:d5:44:91:c7:2b:14:00: 66:3d:e9:94:25:15:a6:56:4d:32:de:49:d3:75:87:79:23:62: bb:39:28:d4:54:55:a8:83:71:8d:99:82:af:e0:6d:69:4e:64: 80:ec:3a:94:6d:fa:d1:c2:f1:1d:65:a7:cc:0b:92:da:20:a9: 5e:54:14:38 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEQjcw QjEyQjQxNkFFMjQzNDY0MUU1QUNEMjU2RkIyMjRCNEM1QjlCMB4XDTI1MDUxMTE2 MzgxNVoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNERCMTdCNDcxOEUzM0VC QjMzQUZCOTZGNUUxOEM1ODQ3NUZFNUI5RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKMSGEdEWorInA6QQJTQ87S6LL/63khZff/0kxPn7rzEJdcsi2/L VuLSn/yq+TpN3bhG8GdISlrUzbm0G7lt75btH1EaePIK1AsR1cdoXbwpqvht33yO z2bYy98rolkMua+rMthkQlUIoTp64KX5Cr1pvGNFdBYHeSdjUvOe9DktGo5v3FlM 7lOzuXRn3VVFFhIuZepq0p9LHNfdNNt+JjLhWA1r5NYNVoZ/dwSmDyd5RZv7EQ1k mtVz479Pmr9a7dnOyDZkq1DxyNAnTG2LyNNHdkpD0HyJpWv6M+iQFeEAuA42fTux TyXBbiouwi3zGkdE9zXuMSNzVXF9L15FDLECAwEAAaOCAigwggIkMB0GA1UdDgQW BBRNsXtHGOM+uzOvuW9eGMWEdf5bnzAfBgNVHSMEGDAWgBTbcLErQWriQ0ZB5azS VvsiS0xbmzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAyNjAvMjNDeEswRnE0a05HUWVXczBsYjdJa3RNVzVzLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMjNDeEswRnE0a05HUWVXczBsYjdJ a3RNVzVzLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMjYwL1RiRjdSeGpqUHJzenI3bHZYaGpGaEhYLVc1OC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGdQrQwDQYJKoZIhvcNAQELBQADggEBAKzErfNua7tdkXQKkHX0NvoS RJ/yoH3rjIfmBsKDVZsSHaV1RPY/Tp8rBNHD5xBJbl/WhDAfXAdYlX8gjRx0g4rP R+6Y7PqH9eer5D4NLkfCrN4wAC//Nfsyi0CW+sK6s78xJmGaia/JsQmw/B+DE1nC n9FjupKQBMKL8/AV0E18yo+IkTfKA9R2UikyGMECa4GzjWcJd32DblnaNQHT+7Pe e3loFw7My+dcocwPz/na3EcRCVKKU8ku6gP67WAG1USRxysUAGY96ZQlFaZWTTLe SdN1h3kjYrs5KNRUVaiDcY2Zgq/gbWlOZIDsOpRt+tHC8R1lp8wLktogqV5UFDg= -----END CERTIFICATE-----Generated at Mon May 19 07:41:20 2025 by rpki-client