$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/drfSg4V0K_zXXm8bh-59xJQMwQE.roa File: drfSg4V0K_zXXm8bh-59xJQMwQE.roa (raw, json) Hash identifier: NWDS9dZvsUliuS26IYsy6+S+ewMgMPQhU8euhNB0c5M= Subject key identifier: 76:B7:D2:83:85:74:2B:FC:D7:5E:6F:1B:87:EE:7D:C4:94:0C:C1:01 Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 3A Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/drfSg4V0K_zXXm8bh-59xJQMwQE.roa Signing time: Thu 01 May 2025 01:32:59 +0000 ROA not before: Thu 01 May 2025 01:32:59 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7672 IP address blocks: 27.133.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 1 01:32:59 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=76B7D28385742BFCD75E6F1B87EE7DC4940CC101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e3:70:3a:98:4c:73:2d:7b:20:dc:d0:1f:a6: b1:a6:68:7e:c5:f3:8f:53:05:c9:a8:42:28:b5:e3: ff:3b:f0:98:59:a5:9d:8d:98:52:2f:e3:3a:68:09: 9f:70:28:25:48:d9:de:d5:a3:43:f9:91:3a:e3:3f: 06:95:fb:93:c2:dc:8d:2e:50:58:07:d3:53:68:fa: 67:e1:9f:98:cb:93:f6:2a:22:5b:c7:c7:a6:4b:99: bb:68:92:15:a4:d6:3a:db:10:ab:2e:d3:be:90:db: 25:92:af:9c:f8:c4:f4:c0:5f:0d:55:a9:6b:65:11: ae:4c:69:83:55:8f:e3:98:96:ed:f8:1c:25:7b:4b: d2:12:93:c6:68:b1:c9:64:21:9a:16:98:f3:67:7f: 45:47:8c:91:37:9b:cf:9e:35:1c:95:4d:27:27:c3: 71:7f:21:35:e7:9b:c6:e0:f6:66:2d:ac:eb:de:8f: 01:90:bd:c3:c7:18:52:ab:fa:50:bd:e1:57:61:bb: b9:8c:15:35:aa:cc:af:e6:7d:c5:61:c7:c6:0c:85: 7a:a5:6d:fb:f0:1b:b9:55:6d:ec:b8:7f:f3:4f:d5: 78:d3:89:53:1d:bf:21:24:c6:8f:ab:ff:c4:98:24: e5:1f:c5:d0:e0:10:87:8a:bd:e9:23:c9:df:cf:89: 34:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B7:D2:83:85:74:2B:FC:D7:5E:6F:1B:87:EE:7D:C4:94:0C:C1:01 X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/drfSg4V0K_zXXm8bh-59xJQMwQE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.133.192.0/20 Signature Algorithm: sha256WithRSAEncryption 62:ad:fe:b0:a5:5d:22:87:ee:68:0c:bc:24:9b:07:52:4e:2a: 18:64:b6:8f:dc:33:3e:e8:46:16:ea:94:d0:07:5f:63:69:d7: 3b:e0:2e:c0:69:47:b9:dc:d4:c5:11:f1:75:31:e6:85:7a:4d: 58:e6:ed:f5:68:f5:d6:18:49:1d:60:2e:6c:75:fb:bf:e2:c2: 90:9f:41:b3:a9:43:47:65:45:e1:e1:0f:c0:35:b1:95:af:fe: 65:08:53:72:81:bb:86:97:93:d0:52:a6:1a:91:6c:64:83:2d: 65:53:5a:12:02:6d:57:c0:cf:6f:13:32:7d:bd:fc:6f:52:8e: d0:6a:ef:40:f7:3b:70:15:1f:3f:af:9d:d7:e1:31:ff:93:ba: 22:20:67:c1:5c:f0:b2:39:87:b4:68:6a:83:26:3e:44:47:4f: d8:59:67:43:ca:0c:1b:7e:5a:e1:0e:a5:df:c0:46:4f:95:af: 75:23:c6:90:13:f3:e9:9a:f8:d1:b9:f7:4f:5e:34:60:24:81: c0:68:47:63:bc:82:1f:61:0b:b6:69:8e:d2:21:87:8c:62:bb: fc:d4:34:a0:6f:81:15:48:22:13:d8:e5:db:03:2f:dc:ca:a2: 60:c6:45:5d:5c:c6:a1:31:9d:0f:d8:b6:ed:75:5d:23:a9:3d: ee:c6:ac:f8 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI1MDUwMTAx MzI1OVoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNzZCN0QyODM4NTc0MkJG Q0Q3NUU2RjFCODdFRTdEQzQ5NDBDQzEwMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMDjcDqYTHMteyDc0B+msaZofsXzj1MFyahCKLXj/zvwmFmlnY2Y Ui/jOmgJn3AoJUjZ3tWjQ/mROuM/BpX7k8LcjS5QWAfTU2j6Z+GfmMuT9ioiW8fH pkuZu2iSFaTWOtsQqy7TvpDbJZKvnPjE9MBfDVWpa2URrkxpg1WP45iW7fgcJXtL 0hKTxmixyWQhmhaY82d/RUeMkTebz541HJVNJyfDcX8hNeebxuD2Zi2s696PAZC9 w8cYUqv6UL3hV2G7uYwVNarMr+Z9xWHHxgyFeqVt+/AbuVVt7Lh/80/VeNOJUx2/ ISTGj6v/xJgk5R/F0OAQh4q96SPJ38+JNNcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBR2t9KDhXQr/NdebxuH7n3ElAzBATAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvZHJmU2c0VjBLX3pYWG04YmgtNTl4SlFNd1FFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBBuFwDANBgkqhkiG9w0BAQsFAAOCAQEAYq3+sKVdIofuaAy8JJsHUk4qGGS2 j9wzPuhGFuqU0AdfY2nXO+AuwGlHudzUxRHxdTHmhXpNWObt9Wj11hhJHWAubHX7 v+LCkJ9Bs6lDR2VF4eEPwDWxla/+ZQhTcoG7hpeT0FKmGpFsZIMtZVNaEgJtV8DP bxMyfb38b1KO0GrvQPc7cBUfP6+d1+Ex/5O6IiBnwVzwsjmHtGhqgyY+REdP2Fln Q8oMG35a4Q6l38BGT5WvdSPGkBPz6Zr40bn3T140YCSBwGhHY7yCH2ELtmmO0iGH jGK7/NQ0oG+BFUgiE9jl2wMv3MqiYMZFXVzGoTGdD9i27XVdI6k97sas+A== -----END CERTIFICATE-----Generated at Sun May 18 21:46:21 2025 by rpki-client