$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/2RQHdA1giXO2T_jXGQEyUjCd47k.roa File: 2RQHdA1giXO2T_jXGQEyUjCd47k.roa (raw, json) Hash identifier: 7UFAwaUFF1wRWoCzatKG54hzkdZ+NyTOhaNV88s0iQI= Subject key identifier: D9:14:07:74:0D:60:89:73:B6:4F:F8:D7:19:01:32:52:30:9D:E3:B9 Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 43 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/2RQHdA1giXO2T_jXGQEyUjCd47k.roa Signing time: Thu 01 May 2025 01:33:03 +0000 ROA not before: Thu 01 May 2025 01:33:03 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7672 IP address blocks: 203.88.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 1 01:33:03 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=D91407740D608973B64FF8D719013252309DE3B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0f:48:70:08:56:a7:ed:c0:4a:a2:ff:97:a9: 7d:3e:07:88:ea:a2:c4:ae:65:2b:94:e6:27:47:58: ff:9f:07:48:59:db:b2:5a:0f:39:f2:da:0f:f0:5d: 92:aa:66:93:64:a4:98:9b:ff:4d:52:ee:60:d2:44: 13:ea:d7:28:76:7f:44:1e:6b:09:09:9b:de:2e:b6: 4b:77:cf:39:bb:5f:6c:b0:ca:3b:44:46:78:88:b5: e3:da:34:96:a5:ff:57:3a:bb:2a:47:6d:28:a0:0d: 7d:c8:a8:02:d6:63:46:7e:30:af:4d:87:c2:44:1a: 43:0e:c4:8b:3a:ea:2d:52:54:d9:a1:3d:76:30:bb: 47:3e:8b:49:de:d2:a6:6a:14:55:bf:44:25:a6:cd: 9f:dc:8e:11:12:2b:51:fe:26:22:15:f6:81:4a:cc: ce:0b:3c:57:04:db:6f:4b:ed:ab:df:c8:c2:f7:d7: 68:5a:dd:0b:34:c3:96:24:b6:b3:9c:4b:89:d4:74: 71:75:4f:b1:23:77:1f:aa:08:53:28:b2:16:2a:69: a4:4d:83:ae:50:fc:a0:7a:07:4d:17:f6:e8:a9:f9: 03:f7:1a:19:ad:05:3e:cc:85:7b:de:a6:f4:45:02: 48:57:e1:51:c5:76:a3:17:55:5a:84:b0:76:36:46: e3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:14:07:74:0D:60:89:73:B6:4F:F8:D7:19:01:32:52:30:9D:E3:B9 X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/2RQHdA1giXO2T_jXGQEyUjCd47k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.88.176.0/20 Signature Algorithm: sha256WithRSAEncryption 9c:1b:a0:92:5e:d9:93:6c:45:89:de:23:a6:0e:56:b4:a3:0f: 9e:b4:2e:4c:6a:a4:45:b0:b4:94:0a:84:04:fb:2b:1f:e3:3b: f1:ef:fc:fe:67:82:3a:4a:19:67:5b:35:bc:83:88:5a:cb:3d: f9:22:c6:f8:11:cf:32:c3:0a:aa:9d:0e:bb:8c:6d:ff:5d:2b: cd:2e:44:d8:0d:83:14:d9:f6:f7:dd:26:d0:4d:f2:fc:5c:30: 13:f6:b2:17:50:78:c9:7f:c0:3e:d2:75:70:05:5f:cd:fb:9e: 39:65:18:0d:94:22:3e:4c:a3:b5:30:6f:53:32:ae:63:18:60: 3d:9c:cb:46:82:37:16:5f:0b:34:a2:c2:23:40:e1:a2:00:61: 9e:fa:c1:06:da:62:82:3a:96:3d:f0:83:88:ff:6d:e0:2e:28: bb:9f:40:e1:2f:cd:9a:36:3a:f7:d3:f9:b7:33:9c:ea:60:41: c4:ef:ac:08:a4:8f:85:b8:15:da:9c:1c:fa:2e:6e:41:a8:e3: 55:dc:68:90:39:17:7c:27:2a:08:fb:52:5b:fe:d1:3a:11:f5: b6:b2:49:19:e5:31:50:19:22:5b:54:e8:f6:f7:a5:4f:e3:c9: 85:2b:d9:6f:d7:2a:39:0e:74:7f:f3:cc:d0:61:2d:38:12:2c: 78:e2:82:06 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI1MDUwMTAx MzMwM1oXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoRDkxNDA3NzQwRDYwODk3 M0I2NEZGOEQ3MTkwMTMyNTIzMDlERTNCOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKMPSHAIVqftwEqi/5epfT4HiOqixK5lK5TmJ0dY/58HSFnbsloP OfLaD/Bdkqpmk2SkmJv/TVLuYNJEE+rXKHZ/RB5rCQmb3i62S3fPObtfbLDKO0RG eIi149o0lqX/Vzq7KkdtKKANfcioAtZjRn4wr02HwkQaQw7EizrqLVJU2aE9djC7 Rz6LSd7SpmoUVb9EJabNn9yOERIrUf4mIhX2gUrMzgs8VwTbb0vtq9/IwvfXaFrd CzTDliS2s5xLidR0cXVPsSN3H6oIUyiyFipppE2DrlD8oHoHTRf26Kn5A/caGa0F PsyFe96m9EUCSFfhUcV2oxdVWoSwdjZG46kCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTZFAd0DWCJc7ZP+NcZATJSMJ3juTAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvMlJRSGRBMWdpWE8yVF9qWEdRRXlVakNkNDdrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMtYsDANBgkqhkiG9w0BAQsFAAOCAQEAnBugkl7Zk2xFid4jpg5WtKMPnrQu TGqkRbC0lAqEBPsrH+M78e/8/meCOkoZZ1s1vIOIWss9+SLG+BHPMsMKqp0Ou4xt /10rzS5E2A2DFNn2990m0E3y/FwwE/ayF1B4yX/APtJ1cAVfzfueOWUYDZQiPkyj tTBvUzKuYxhgPZzLRoI3Fl8LNKLCI0DhogBhnvrBBtpigjqWPfCDiP9t4C4ou59A 4S/NmjY699P5tzOc6mBBxO+sCKSPhbgV2pwc+i5uQajjVdxokDkXfCcqCPtSW/7R OhH1trJJGeUxUBkiW1To9velT+PJhSvZb9cqOQ50f/PM0GEtOBIseOKCBg== -----END CERTIFICATE-----Generated at Sun May 18 21:33:51 2025 by rpki-client