$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/240/tAf_RaNICCriyFrd2Mmf9Goz4iQ.roa File: tAf_RaNICCriyFrd2Mmf9Goz4iQ.roa (raw, json) Hash identifier: Kb4z17V6aXek0TS13DDzGO+M0NgpcYhCssnWJ1eeIU0= Subject key identifier: B4:07:FF:45:A3:48:08:2A:E2:C8:5A:DD:D8:C9:9F:F4:6A:33:E2:24 Certificate issuer: /CN=853BCCCA9B306C0459658E288A8D3FDE751B4F6B Certificate serial: 21 Authority key identifier: 85:3B:CC:CA:9B:30:6C:04:59:65:8E:28:8A:8D:3F:DE:75:1B:4F:6B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hTvMypswbARZZY4oio0_3nUbT2s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/tAf_RaNICCriyFrd2Mmf9Goz4iQ.roa Signing time: Tue 01 Jul 2025 01:32:08 +0000 ROA not before: Tue 01 Jul 2025 01:32:08 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 9597 IP address blocks: 194.91.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/hTvMypswbARZZY4oio0_3nUbT2s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/hTvMypswbARZZY4oio0_3nUbT2s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hTvMypswbARZZY4oio0_3nUbT2s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0ZV-xYwI81uqa_535FqXQLpHH54.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853BCCCA9B306C0459658E288A8D3FDE751B4F6B Validity Not Before: Jul 1 01:32:08 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=B407FF45A348082AE2C85ADDD8C99FF46A33E224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:85:cc:a8:d0:54:dd:b8:c5:45:bb:f7:06:43: 8b:42:02:96:fd:66:47:2c:74:09:97:27:48:41:ed: 33:51:4f:5d:57:02:35:98:38:8b:bb:cf:e6:55:35: 13:34:02:72:02:4b:6f:2a:54:2e:3e:f4:a8:5a:62: f7:42:dc:02:78:f9:80:a6:83:4e:84:f5:14:fb:eb: a2:6f:61:6d:7d:9d:49:46:ee:e8:54:5b:ad:0a:7b: 14:05:a4:a7:1a:c1:a3:a5:b9:41:c3:c4:97:8e:a7: 3a:6f:11:e9:f4:97:4c:73:09:51:b4:90:07:fe:90: 89:04:bb:a9:f1:2d:82:c2:0e:fd:35:d6:ea:8c:20: 30:07:56:4c:37:62:da:d0:6c:8c:27:ac:51:aa:f8: 50:5f:4a:e0:ba:b6:bd:07:f6:8e:75:0b:2f:13:8f: 2d:22:5d:7c:ba:88:9e:f5:17:d4:25:61:cd:ec:03: b6:8d:e3:66:97:80:16:a3:32:38:88:fb:52:f0:65: 72:4d:46:6f:47:2f:c9:72:cd:cd:3c:bc:af:ce:31: 7b:f4:2e:f6:0c:84:29:f0:fe:2e:fb:d5:21:0d:a4: 5a:af:a9:21:9e:c1:db:dc:1e:b7:85:c6:01:37:be: d2:ba:18:4b:50:22:3c:2c:c2:67:71:3b:7b:68:73: 74:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:07:FF:45:A3:48:08:2A:E2:C8:5A:DD:D8:C9:9F:F4:6A:33:E2:24 X509v3 Authority Key Identifier: keyid:85:3B:CC:CA:9B:30:6C:04:59:65:8E:28:8A:8D:3F:DE:75:1B:4F:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/hTvMypswbARZZY4oio0_3nUbT2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hTvMypswbARZZY4oio0_3nUbT2s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/tAf_RaNICCriyFrd2Mmf9Goz4iQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 194.91.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:78:fb:cc:4e:98:81:b1:2e:10:5b:bd:cc:07:3f:4b:c9:8b: 54:cd:de:84:a6:f8:06:3e:f7:ba:b1:e2:6b:f1:de:0b:14:c8: d3:44:ab:e6:a1:9e:8c:eb:52:50:5d:18:fb:ab:a6:c0:4e:82: 14:0d:33:c4:fe:31:9a:d5:e1:ea:07:14:43:4c:70:6a:3f:fc: 9c:bc:91:41:1f:25:39:10:e9:24:71:11:67:15:3b:f5:09:9e: 43:96:3d:da:a1:65:d9:38:d0:de:68:5e:17:eb:45:53:45:1e: 39:86:07:6a:15:f4:29:02:4c:28:14:ae:a8:ca:aa:fd:d5:50: 1a:10:9d:60:5c:b5:e9:f6:ef:b6:ac:48:99:b8:89:f1:75:21: 44:2d:66:bd:55:b9:62:d8:19:3e:1b:04:95:aa:fd:31:6a:c2: c5:13:d8:2f:ff:88:db:58:e7:c8:9a:a0:a3:59:a3:ad:a9:15: 4f:b4:d3:67:8d:89:48:b9:26:23:f0:fe:23:b6:aa:6b:7a:5c: 0c:18:ec:cb:7c:1b:ce:28:91:43:01:a7:82:7b:4d:43:7b:db: 09:16:d1:52:47:c0:a8:cf:f5:0b:bd:e6:26:11:03:80:71:13: 9d:32:4b:6d:b7:b8:2f:3c:e0:39:79:33:4f:13:e6:08:ef:de: d6:44:e8:4d -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NTNC Q0NDQTlCMzA2QzA0NTk2NThFMjg4QThEM0ZERTc1MUI0RjZCMB4XDTI1MDcwMTAx MzIwOFoXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoQjQwN0ZGNDVBMzQ4MDgy QUUyQzg1QURERDhDOTlGRjQ2QTMzRTIyNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN6FzKjQVN24xUW79wZDi0IClv1mRyx0CZcnSEHtM1FPXVcCNZg4 i7vP5lU1EzQCcgJLbypULj70qFpi90LcAnj5gKaDToT1FPvrom9hbX2dSUbu6FRb rQp7FAWkpxrBo6W5QcPEl46nOm8R6fSXTHMJUbSQB/6QiQS7qfEtgsIO/TXW6owg MAdWTDdi2tBsjCesUar4UF9K4Lq2vQf2jnULLxOPLSJdfLqInvUX1CVhzewDto3j ZpeAFqMyOIj7UvBlck1Gb0cvyXLNzTy8r84xe/Qu9gyEKfD+LvvVIQ2kWq+pIZ7B 29wet4XGATe+0roYS1AiPCzCZ3E7e2hzdFkCAwEAAaOCAiMwggIfMB0GA1UdDgQW BBS0B/9Fo0gIKuLIWt3YyZ/0ajPiJDAfBgNVHSMEGDAWgBSFO8zKmzBsBFlljiiK jT/edRtPazAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQwL2hUdk15cHN3YkFSWlpZNG9pbzBfM25VYlQycy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hUdk15cHN3YkFSWlpZNG9pbzBfM25V YlQycy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNDAvdEFmX1JhTklDQ3JpeUZyZDJNbWY5R296NGlRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAMJbMA0GCSqGSIb3DQEBCwUAA4IBAQA3ePvMTpiBsS4QW73MBz9LyYtUzd6E pvgGPve6seJr8d4LFMjTRKvmoZ6M61JQXRj7q6bAToIUDTPE/jGa1eHqBxRDTHBq P/ycvJFBHyU5EOkkcRFnFTv1CZ5Dlj3aoWXZONDeaF4X60VTRR45hgdqFfQpAkwo FK6oyqr91VAaEJ1gXLXp9u+2rEiZuInxdSFELWa9Vbli2Bk+GwSVqv0xasLFE9gv /4jbWOfImqCjWaOtqRVPtNNnjYlIuSYj8P4jtqprelwMGOzLfBvOKJFDAaeCe01D e9sJFtFSR8Coz/ULveYmEQOAcROdMkttt7gvPOA5eTNPE+YI797WROhN -----END CERTIFICATE-----Generated at Fri Jul 4 23:27:17 2025 by rpki-client