$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/k0q8U3xDk3wjNGRQoC62yM3ZFSc.roa File: k0q8U3xDk3wjNGRQoC62yM3ZFSc.roa (raw, json) Hash identifier: nWc75O5/7CQCEjblT8RmYhhqXf6L5Yg08xlCW1zuNSI= Subject key identifier: 93:4A:BC:53:7C:43:93:7C:23:34:64:50:A0:2E:B6:C8:CD:D9:15:27 Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 39 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/k0q8U3xDk3wjNGRQoC62yM3ZFSc.roa Signing time: Thu 01 May 2025 01:32:58 +0000 ROA not before: Thu 01 May 2025 01:32:58 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7668 IP address blocks: 210.166.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 May 2025 02:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 1 01:32:58 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=934ABC537C43937C23346450A02EB6C8CDD91527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4f:95:b8:e1:ee:5b:70:2f:c2:eb:1d:23:05: c9:5b:69:8e:f5:7b:b2:a8:da:2c:48:d1:9e:c4:86: b2:55:53:e5:1e:99:e6:68:39:7a:ff:25:31:93:15: ca:17:51:80:8c:58:61:59:f0:b9:04:2b:f9:28:65: 7d:8f:15:84:39:6d:ca:66:d7:8c:ae:b5:51:3f:06: c8:18:85:0e:76:ab:eb:10:07:08:ff:e1:65:45:d0: 73:7d:df:ca:2f:75:0e:51:38:61:c7:4b:fc:6a:c0: 62:fd:ef:e9:5a:52:a4:42:3d:c9:9a:b8:3d:35:4b: 9f:66:0e:36:b6:b8:a6:b1:20:16:db:39:51:04:5e: fe:77:3b:f3:b8:d5:0a:a5:b3:d7:80:b0:83:a7:07: 52:c2:1f:1e:51:eb:b5:03:98:2b:d6:64:40:75:1d: 23:37:a9:3a:22:27:2c:3a:d1:61:a6:49:00:42:c0: 42:14:b9:2e:ce:23:66:f9:0a:b4:ab:ae:a2:b0:4b: 9a:56:82:d9:0a:41:6f:05:00:18:6d:1d:da:5b:7b: 7b:04:84:84:a0:80:b8:32:83:37:46:78:a6:36:b1: ee:ab:de:b3:a2:94:8f:a8:46:64:d9:12:a3:1c:31: 18:67:ec:5d:87:87:15:49:ce:71:b0:50:57:78:77: 6f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:4A:BC:53:7C:43:93:7C:23:34:64:50:A0:2E:B6:C8:CD:D9:15:27 X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/k0q8U3xDk3wjNGRQoC62yM3ZFSc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.166.5.0/24 Signature Algorithm: sha256WithRSAEncryption a5:58:75:4f:a9:c1:ad:e5:a3:d9:01:1e:d7:9c:ef:0d:93:9e: 62:69:2e:4f:55:e7:9a:e2:f1:f7:f7:7c:d8:fa:fd:ad:e5:5c: fb:d6:28:1c:fc:63:40:32:83:ef:e5:80:a0:c6:79:81:86:23: 9e:4f:c7:59:c1:68:9f:e7:ae:9d:07:69:4a:3b:57:10:6c:47: cb:d3:ac:f6:df:e5:a8:8a:d4:63:23:bf:8d:a7:eb:3d:94:0a: 7c:60:a5:e0:a4:79:14:0a:f7:ea:0d:e6:30:e0:1a:b7:07:11: 5c:d4:72:23:22:d9:64:83:69:80:b1:fa:82:94:27:17:c3:8e: a4:df:c4:e4:1e:5d:12:18:bf:4b:0d:21:67:55:59:65:cb:ee: 9a:48:1b:09:ac:33:d9:84:eb:11:1d:ca:3f:29:b5:c8:a3:15: e5:7c:2f:40:27:ac:43:ec:f5:34:30:b7:67:b7:19:43:7b:11: cf:be:c3:95:38:ee:ed:2a:e2:71:a1:1f:4c:5d:86:88:ab:b2: de:ca:04:74:8e:12:32:37:f0:cc:8d:80:32:9f:37:d7:83:57: 5f:4d:fe:65:6b:37:11:ba:7b:21:d6:f0:77:44:2a:06:f4:bd: 14:06:83:9d:02:91:6d:58:83:f4:da:00:05:4b:a8:4e:9e:23: 3b:35:9e:dc -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI1MDUwMTAx MzI1OFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoOTM0QUJDNTM3QzQzOTM3 QzIzMzQ2NDUwQTAyRUI2QzhDREQ5MTUyNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANJPlbjh7ltwL8LrHSMFyVtpjvV7sqjaLEjRnsSGslVT5R6Z5mg5 ev8lMZMVyhdRgIxYYVnwuQQr+ShlfY8VhDltymbXjK61UT8GyBiFDnar6xAHCP/h ZUXQc33fyi91DlE4YcdL/GrAYv3v6VpSpEI9yZq4PTVLn2YONra4prEgFts5UQRe /nc787jVCqWz14Cwg6cHUsIfHlHrtQOYK9ZkQHUdIzepOiInLDrRYaZJAELAQhS5 Ls4jZvkKtKuuorBLmlaC2QpBbwUAGG0d2lt7ewSEhKCAuDKDN0Z4pjax7qves6KU j6hGZNkSoxwxGGfsXYeHFUnOcbBQV3h3b5cCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSTSrxTfEOTfCM0ZFCgLrbIzdkVJzAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvazBxOFUzeERrM3dqTkdSUW9DNjJ5TTNaRlNjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANKmBTANBgkqhkiG9w0BAQsFAAOCAQEApVh1T6nBreWj2QEe15zvDZOeYmku T1XnmuLx9/d82Pr9reVc+9YoHPxjQDKD7+WAoMZ5gYYjnk/HWcFon+eunQdpSjtX EGxHy9Os9t/lqIrUYyO/jafrPZQKfGCl4KR5FAr36g3mMOAatwcRXNRyIyLZZINp gLH6gpQnF8OOpN/E5B5dEhi/Sw0hZ1VZZcvumkgbCawz2YTrER3KPym1yKMV5Xwv QCesQ+z1NDC3Z7cZQ3sRz77DlTju7SricaEfTF2GiKuy3soEdI4SMjfwzI2AMp83 14NXX03+ZWs3Ebp7Idbwd0QqBvS9FAaDnQKRbViD9NoABUuoTp4jOzWe3A== -----END CERTIFICATE-----Generated at Mon May 19 04:21:15 2025 by rpki-client