$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/nppdk3fGqnLTvvMDGYwxlP9yjK8.roa File: nppdk3fGqnLTvvMDGYwxlP9yjK8.roa (raw, json) Hash identifier: +qK6hwH7asuWUbB/TLCXfQt2YhehmdIh3V4fzb1IyU8= Subject key identifier: 9E:9A:5D:93:77:C6:AA:72:D3:BE:F3:03:19:8C:31:94:FF:72:8C:AF Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 42 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/nppdk3fGqnLTvvMDGYwxlP9yjK8.roa Signing time: Thu 01 May 2025 01:33:02 +0000 ROA not before: Thu 01 May 2025 01:33:02 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7672 IP address blocks: 202.125.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 1 01:33:02 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=9E9A5D9377C6AA72D3BEF303198C3194FF728CAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:59:dd:25:6c:37:3e:74:8e:73:5d:6c:32:17: 50:39:4a:41:56:18:a3:41:4a:10:df:4e:18:2b:a2: e9:d3:60:95:b1:90:31:22:40:6e:76:bb:4d:9f:37: 6e:ad:35:24:98:15:c0:ea:cf:44:ae:6e:40:ef:d1: 7b:ce:21:12:64:17:81:83:f5:c7:0b:f2:d4:a7:35: 45:b6:f1:1d:af:2c:7e:10:1d:8d:c7:08:c7:ee:6d: 1a:e1:84:8c:4e:29:22:7f:de:8c:bf:a3:25:42:96: 4c:94:d6:ee:9b:11:8e:7c:c4:f3:8c:0d:be:26:af: 63:84:98:37:39:9f:b2:bb:3f:c3:c0:f1:fc:f6:52: 93:a9:ae:74:d4:40:9d:56:e0:94:fa:cc:91:51:cb: c6:5b:f8:a4:9c:37:02:ee:9a:93:08:be:80:2a:0a: 7e:b0:90:c3:31:5b:19:fb:8b:6c:40:60:10:c9:64: 89:b8:bc:f0:76:ea:ea:78:27:26:5a:79:41:fc:25: 86:99:48:6e:79:52:4c:23:59:21:32:b5:a0:31:0d: c6:6e:1f:3d:fa:5b:d4:29:c7:ef:ab:cc:16:54:f0: 11:c1:f2:dd:32:5e:52:ae:b3:e8:cb:b7:ca:11:52: b2:fd:6f:a1:af:16:2f:26:8d:19:5b:7e:d6:67:d3: b5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:9A:5D:93:77:C6:AA:72:D3:BE:F3:03:19:8C:31:94:FF:72:8C:AF X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/nppdk3fGqnLTvvMDGYwxlP9yjK8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.125.48.0/20 Signature Algorithm: sha256WithRSAEncryption 9c:cc:58:e8:9b:2f:aa:57:2d:33:48:d7:51:b9:82:c6:bd:26: 1e:5b:56:ac:7a:da:5f:eb:57:88:3c:6e:0b:d7:a3:d5:85:99: e8:23:1c:53:98:a5:b1:bb:b6:5e:13:ac:0b:95:10:5b:03:f7: f1:90:08:59:08:4e:94:0f:17:45:37:22:b0:e1:f3:d9:5b:d7: dc:47:80:32:54:15:81:fe:45:19:11:35:60:06:33:ad:7b:fd: fa:28:ae:63:95:27:ce:6c:59:8a:79:22:d5:78:f0:e2:0e:2b: 67:da:53:1b:c1:85:ef:50:d1:f8:e4:a0:e3:5a:0c:cf:4d:a6: c8:24:0d:a2:00:ea:cb:ca:6b:3c:df:1d:d8:88:e8:a0:b6:a1: 63:7c:34:c0:30:7c:96:86:d5:da:28:7d:c5:4b:b4:8a:00:bb: 58:a5:38:a1:98:01:16:8e:d0:e2:b5:1a:1d:6c:e4:39:03:81: e8:21:df:b4:69:17:66:7f:63:b9:da:93:90:e7:a8:af:4c:7f: 18:36:dd:5e:84:cf:ec:0e:2a:9d:76:18:97:fe:2b:20:aa:f4: 2d:f7:2c:83:60:72:ab:52:45:6b:03:52:96:0d:d1:5f:e4:28: 2b:62:65:5a:67:a9:96:c8:50:25:c7:a6:5c:8d:d3:76:6b:85: 6c:72:d1:e2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI1MDUwMTAx MzMwMloXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoOUU5QTVEOTM3N0M2QUE3 MkQzQkVGMzAzMTk4QzMxOTRGRjcyOENBRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMFZ3SVsNz50jnNdbDIXUDlKQVYYo0FKEN9OGCui6dNglbGQMSJA bna7TZ83bq01JJgVwOrPRK5uQO/Re84hEmQXgYP1xwvy1Kc1RbbxHa8sfhAdjccI x+5tGuGEjE4pIn/ejL+jJUKWTJTW7psRjnzE84wNviavY4SYNzmfsrs/w8Dx/PZS k6mudNRAnVbglPrMkVHLxlv4pJw3Au6akwi+gCoKfrCQwzFbGfuLbEBgEMlkibi8 8Hbq6ngnJlp5QfwlhplIbnlSTCNZITK1oDENxm4fPfpb1CnH76vMFlTwEcHy3TJe Uq6z6Mu3yhFSsv1voa8WLyaNGVt+1mfTtbMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSeml2Td8aqctO+8wMZjDGU/3KMrzAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvbnBwZGszZkdxbkxUdnZNREdZd3hsUDl5aks4LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMp9MDANBgkqhkiG9w0BAQsFAAOCAQEAnMxY6JsvqlctM0jXUbmCxr0mHltW rHraX+tXiDxuC9ej1YWZ6CMcU5ilsbu2XhOsC5UQWwP38ZAIWQhOlA8XRTcisOHz 2VvX3EeAMlQVgf5FGRE1YAYzrXv9+iiuY5UnzmxZinki1Xjw4g4rZ9pTG8GF71DR +OSg41oMz02myCQNogDqy8prPN8d2IjooLahY3w0wDB8lobV2ih9xUu0igC7WKU4 oZgBFo7Q4rUaHWzkOQOB6CHftGkXZn9judqTkOeor0x/GDbdXoTP7A4qnXYYl/4r IKr0Lfcsg2Byq1JFawNSlg3RX+QoK2JlWmeplshQJcemXI3TdmuFbHLR4g== -----END CERTIFICATE-----Generated at Sun May 18 21:22:21 2025 by rpki-client