$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/240/St1_yV1zXgiq60VsS0mk_RuKtv0.roa File: St1_yV1zXgiq60VsS0mk_RuKtv0.roa (raw, json) Hash identifier: MKC6fgamub5cfitRoytQO04ZczKR6hwOxtz4ASgHARc= Subject key identifier: 4A:DD:7F:C9:5D:73:5E:08:AA:EB:45:6C:4B:49:A4:FD:1B:8A:B6:FD Certificate issuer: /CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D Certificate serial: 41 Authority key identifier: B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/St1_yV1zXgiq60VsS0mk_RuKtv0.roa Signing time: Tue 01 Jul 2025 01:32:00 +0000 ROA not before: Tue 01 Jul 2025 01:32:00 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 9597 IP address blocks: 27.34.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D Validity Not Before: Jul 1 01:32:00 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=4ADD7FC95D735E08AAEB456C4B49A4FD1B8AB6FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:96:e7:d2:ff:c9:d3:5b:8d:3a:c4:b8:fe:c2: 7b:d5:d6:a0:c3:ac:c5:05:31:95:c6:ae:c4:24:36: b4:e5:79:c8:03:38:f9:cf:2b:1c:b6:06:db:e9:be: 7b:76:be:79:f2:a1:fc:02:69:9e:d4:af:1f:bc:98: 20:94:06:3e:aa:57:4f:51:6e:fd:8d:94:01:b8:52: 4b:cf:f6:16:a8:fd:f1:8e:34:de:60:ec:0c:0b:90: 82:49:3b:df:d6:c5:57:9c:6e:b4:a4:fe:67:d9:73: 23:86:37:0f:82:88:fb:c5:cf:24:c9:6b:ca:d5:c5: 52:eb:70:79:00:dd:3b:0e:10:ff:c4:f1:09:e3:d9: 0a:6b:58:a4:0d:78:81:6b:60:d6:dc:f8:cd:14:62: 1c:9a:94:bd:ce:3b:e2:e7:fb:5d:1f:02:a1:16:5f: 65:3d:83:de:2d:c3:c1:69:42:d0:12:b0:13:66:fb: 96:64:87:7b:44:45:9b:6c:ca:34:59:f9:19:5d:71: 43:65:2e:01:0c:bb:ca:7f:96:fb:f2:d8:b8:b8:e9: df:1b:9d:de:73:bd:0b:52:e0:70:62:1f:07:71:b3: 8a:3e:eb:28:0f:08:08:cc:40:5f:ce:53:c4:a4:c6: 53:31:cb:65:3f:ff:c8:8b:b4:b0:81:9c:55:ce:60: 37:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:DD:7F:C9:5D:73:5E:08:AA:EB:45:6C:4B:49:A4:FD:1B:8A:B6:FD X509v3 Authority Key Identifier: keyid:B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/St1_yV1zXgiq60VsS0mk_RuKtv0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.34.128.0/19 Signature Algorithm: sha256WithRSAEncryption ce:41:69:70:f6:06:c7:57:de:7d:1d:10:7a:4f:11:56:b2:4b: 7e:92:26:64:89:b6:cb:cc:e0:6b:5b:1d:b1:f5:ca:a9:10:eb: 5a:94:2b:71:f8:c7:06:32:0f:79:11:b1:6d:cf:e7:79:5e:0d: 91:42:e7:8d:36:c4:ab:10:7f:ed:c6:52:aa:2d:20:f6:47:27: a4:c2:43:76:36:1f:7b:a2:f5:03:0f:cc:f2:bd:38:0e:c7:a6: 78:d1:c2:1f:c5:b6:7b:f7:1a:93:ee:f5:19:5f:f9:fc:ed:1e: 54:3d:17:2b:8e:d4:68:6b:7f:5d:e3:d7:cf:b7:5d:77:98:41: cd:7d:d1:db:ec:ce:21:ac:2b:6a:92:8f:0d:bc:0a:a7:5e:90: a9:a3:bf:41:ad:5b:ba:4f:e3:47:3c:6d:af:3a:88:23:31:b6: a0:1e:7b:e6:3d:8e:76:6e:cc:d6:cc:ee:1c:c3:8f:9b:4d:f5: 35:8f:f6:9b:91:78:07:16:d0:b0:13:0a:e7:3a:71:3d:e5:01: 2c:dc:b1:d1:c3:70:64:4a:e6:06:c0:35:32:3d:fc:cb:6e:68: f2:df:af:c0:55:e6:e4:bb:80:04:67:31:42:72:f1:a3:68:8b: 94:da:ab:c7:0f:12:21:97:8c:0a:43:9a:72:e2:c2:fc:45:37: 5a:9c:22:04 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTY5 NjRBN0NFMEE1OEY0QUUzNjczRjQ3RDdBMUQ0MjVCRTRBMDdEMB4XDTI1MDcwMTAx MzIwMFoXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoNEFERDdGQzk1RDczNUUw OEFBRUI0NTZDNEI0OUE0RkQxQjhBQjZGRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALqW59L/ydNbjTrEuP7Ce9XWoMOsxQUxlcauxCQ2tOV5yAM4+c8r HLYG2+m+e3a+efKh/AJpntSvH7yYIJQGPqpXT1Fu/Y2UAbhSS8/2Fqj98Y403mDs DAuQgkk739bFV5xutKT+Z9lzI4Y3D4KI+8XPJMlrytXFUutweQDdOw4Q/8TxCePZ CmtYpA14gWtg1tz4zRRiHJqUvc474uf7XR8CoRZfZT2D3i3DwWlC0BKwE2b7lmSH e0RFm2zKNFn5GV1xQ2UuAQy7yn+W+/LYuLjp3xud3nO9C1LgcGIfB3Gzij7rKA8I CMxAX85TxKTGUzHLZT//yIu0sIGcVc5gN0kCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRK3X/JXXNeCKrrRWxLSaT9G4q2/TAfBgNVHSMEGDAWgBS5aWSnzgpY9K42c/R9 eh1CW+SgfTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQwL3VXbGtwODRLV1BTdU5uUDBmWG9kUWx2a29IMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3VXbGtwODRLV1BTdU5uUDBmWG9kUWx2 a29IMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNDAvU3QxX3lWMXpYZ2lxNjBWc1MwbWtfUnVLdHYwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBRsigDANBgkqhkiG9w0BAQsFAAOCAQEAzkFpcPYGx1fefR0Qek8RVrJLfpIm ZIm2y8zga1sdsfXKqRDrWpQrcfjHBjIPeRGxbc/neV4NkULnjTbEqxB/7cZSqi0g 9kcnpMJDdjYfe6L1Aw/M8r04DsemeNHCH8W2e/cak+71GV/5/O0eVD0XK47UaGt/ XePXz7ddd5hBzX3R2+zOIawrapKPDbwKp16QqaO/Qa1buk/jRzxtrzqIIzG2oB57 5j2Odm7M1szuHMOPm031NY/2m5F4BxbQsBMK5zpxPeUBLNyx0cNwZErmBsA1Mj38 y25o8t+vwFXm5LuABGcxQnLxo2iLlNqrxw8SIZeMCkOacuLC/EU3WpwiBA== -----END CERTIFICATE-----Generated at Fri Jul 4 23:36:15 2025 by rpki-client