$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/9eg6t5ZPfrl3cq1hlI8ukhmT01s.roa File: 9eg6t5ZPfrl3cq1hlI8ukhmT01s.roa (raw, json) Hash identifier: wjSM36WPcW0wrbsLW6DBrMMzzMqWtGWdAq8KlsGRivQ= Subject key identifier: F5:E8:3A:B7:96:4F:7E:B9:77:72:AD:61:94:8F:2E:92:19:93:D3:5B Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 44 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/9eg6t5ZPfrl3cq1hlI8ukhmT01s.roa Signing time: Thu 01 May 2025 01:33:03 +0000 ROA not before: Thu 01 May 2025 01:33:03 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7672 IP address blocks: 210.171.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 22:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 1 01:33:03 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=F5E83AB7964F7EB97772AD61948F2E921993D35B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b0:d7:cd:ba:18:e2:91:18:b3:a5:89:30:a2: 2b:9e:db:2b:df:7d:6d:0e:03:f1:2a:2f:c5:a9:69: 16:1a:3d:26:eb:aa:99:10:24:cf:64:b2:19:a5:11: ad:59:19:cd:fa:b4:1e:75:60:21:20:2f:9d:17:ca: 71:a8:d0:a8:f7:95:0a:42:71:12:0d:0f:1e:d9:09: a1:01:9b:30:30:06:3c:3c:78:19:bf:e1:38:ef:6b: 7e:80:b4:78:a7:60:7c:45:df:a3:73:af:57:0c:ce: 90:c3:13:0a:15:e1:1c:e4:5b:31:04:34:51:4e:41: 58:d6:8d:be:41:30:74:2b:66:f3:09:38:ad:e5:43: 2e:64:f6:f6:22:83:3e:d5:63:3b:65:37:bf:dc:f2: 54:f4:92:88:c7:6a:1e:a1:86:33:7c:d6:f7:6a:51: c7:e2:31:e1:4f:5c:25:a3:8f:36:90:58:89:c0:32: c1:1f:c1:b1:df:f2:94:ce:5f:b7:fc:9e:16:f9:ef: 1b:d2:c5:33:f0:8e:bb:47:3c:94:33:a2:7d:09:b2: 7b:70:fb:0a:99:56:80:39:27:60:34:6c:58:67:d0: 7e:ae:5f:d7:cc:7a:22:17:c2:78:72:e6:c3:9a:b3: ba:58:f8:70:3c:32:ea:4f:88:31:2b:d0:4e:0b:d4: c4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E8:3A:B7:96:4F:7E:B9:77:72:AD:61:94:8F:2E:92:19:93:D3:5B X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/9eg6t5ZPfrl3cq1hlI8ukhmT01s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.171.208.0/20 Signature Algorithm: sha256WithRSAEncryption 4f:a8:4c:ff:dc:79:67:ab:35:a0:e3:4e:5b:de:4f:b1:60:9b: 64:0c:70:31:91:db:ec:dc:1e:27:97:37:93:78:30:17:ec:ac: 47:1e:44:07:63:18:e9:99:fb:8c:20:6e:2f:5d:b9:81:ba:06: 56:f4:6a:73:3a:1f:c7:61:91:fe:8c:c4:01:b9:59:eb:66:25: 7b:51:01:a2:fe:70:4c:a1:26:c7:3d:20:75:ab:60:aa:40:05: 59:ca:44:5d:f8:85:37:eb:a0:fd:a6:77:07:35:87:39:23:da: f3:bb:94:5e:1f:c2:36:9b:17:46:00:da:78:d5:24:46:a9:98: b5:4b:98:89:db:6a:6f:53:31:c3:c8:81:c1:1a:d9:1f:55:ad: 20:8d:3b:c7:13:7b:bf:e6:49:13:62:70:03:c4:8a:c2:e3:6a: 5f:40:f4:da:2a:e4:9f:4e:bd:7b:df:fb:c5:70:51:82:dd:39: a9:c5:df:f9:dd:1e:66:ba:1e:af:50:31:2a:dc:cd:2a:e9:e1: 2c:8e:85:8e:c8:db:13:d1:9b:c8:ee:51:b1:55:2c:37:99:c1: 19:b4:f6:b4:d2:3f:4b:84:1a:b7:35:7b:0f:2f:04:cf:3c:d2: 2c:3c:36:69:8f:0d:1d:ec:c0:e5:d0:a7:7e:65:09:63:03:81: 88:0b:2a:d7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI1MDUwMTAx MzMwM1oXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoRjVFODNBQjc5NjRGN0VC OTc3NzJBRDYxOTQ4RjJFOTIxOTkzRDM1QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKqw1826GOKRGLOliTCiK57bK999bQ4D8SovxalpFho9JuuqmRAk z2SyGaURrVkZzfq0HnVgISAvnRfKcajQqPeVCkJxEg0PHtkJoQGbMDAGPDx4Gb/h OO9rfoC0eKdgfEXfo3OvVwzOkMMTChXhHORbMQQ0UU5BWNaNvkEwdCtm8wk4reVD LmT29iKDPtVjO2U3v9zyVPSSiMdqHqGGM3zW92pRx+Ix4U9cJaOPNpBYicAywR/B sd/ylM5ft/yeFvnvG9LFM/COu0c8lDOifQmye3D7CplWgDknYDRsWGfQfq5f18x6 IhfCeHLmw5qzulj4cDwy6k+IMSvQTgvUxM0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBT16Dq3lk9+uXdyrWGUjy6SGZPTWzAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvOWVnNnQ1WlBmcmwzY3ExaGxJOHVraG1UMDFzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNKr0DANBgkqhkiG9w0BAQsFAAOCAQEAT6hM/9x5Z6s1oONOW95PsWCbZAxw MZHb7NweJ5c3k3gwF+ysRx5EB2MY6Zn7jCBuL125gboGVvRqczofx2GR/ozEAblZ 62Yle1EBov5wTKEmxz0gdatgqkAFWcpEXfiFN+ug/aZ3BzWHOSPa87uUXh/CNpsX RgDaeNUkRqmYtUuYidtqb1Mxw8iBwRrZH1WtII07xxN7v+ZJE2JwA8SKwuNqX0D0 2irkn069e9/7xXBRgt05qcXf+d0eZroer1AxKtzNKunhLI6FjsjbE9GbyO5RsVUs N5nBGbT2tNI/S4QatzV7Dy8EzzzSLDw2aY8NHezA5dCnfmUJYwOBiAsq1w== -----END CERTIFICATE-----Generated at Mon May 19 01:08:25 2025 by rpki-client