$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/247/AJTgcz9Bw3LJJvQUf3Xu3TLE9YY.roa File: AJTgcz9Bw3LJJvQUf3Xu3TLE9YY.roa (raw, json) Hash identifier: SeUlgK7M8U7tJEll3WKSEDfoGUf2r/JVH9d+WfOun20= Subject key identifier: 00:94:E0:73:3F:41:C3:72:C9:26:F4:14:7F:75:EE:DD:32:C4:F5:86 Certificate issuer: /CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Certificate serial: 0106 Authority key identifier: 9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/AJTgcz9Bw3LJJvQUf3Xu3TLE9YY.roa Signing time: Thu 01 May 2025 01:32:10 +0000 ROA not before: Thu 01 May 2025 01:32:10 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 9370 IP address blocks: 202.181.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Validity Not Before: May 1 01:32:10 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=0094E0733F41C372C926F4147F75EEDD32C4F586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:ed:33:78:7f:32:80:8e:59:2a:e9:ed:09: 0e:78:a1:a8:1a:a0:4e:dd:2b:16:38:1d:27:ac:d5: 94:78:c4:41:0d:a8:f7:b0:01:ed:77:09:1f:fe:57: e8:c7:27:3c:89:0a:04:97:13:11:29:c8:09:f1:95: c5:e5:97:cc:d9:2f:c2:5a:df:d1:63:f2:dc:80:ff: 64:f8:6a:60:e7:e9:a1:30:07:49:52:49:bf:91:29: 41:69:c1:e1:5b:89:9e:4f:13:9a:0d:c6:a0:e4:ba: d0:ae:f0:2c:3c:ff:1e:97:43:40:63:fd:c0:a7:85: a0:aa:0d:4e:e0:a4:57:ad:40:0b:b2:09:0c:17:6c: 5d:d7:e7:bd:45:25:6e:08:fc:66:47:31:74:92:38: 5e:90:fa:72:a8:8c:c6:c8:6f:77:19:cb:67:4d:a8: 72:dd:5f:ca:88:db:dc:a5:34:01:51:65:b9:87:fc: eb:1b:47:c3:48:d6:47:67:0c:bf:eb:14:92:b9:91: 7a:8d:91:de:85:7c:83:cf:8e:6d:b1:6a:88:83:ab: 99:de:8c:0c:5f:48:75:e2:3e:9b:00:14:61:22:df: 82:22:6f:26:f0:8b:cd:4e:6c:6f:61:d4:ec:16:fe: cd:0b:61:58:a9:42:fa:47:36:ca:b9:4a:a9:b7:3f: 17:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:94:E0:73:3F:41:C3:72:C9:26:F4:14:7F:75:EE:DD:32:C4:F5:86 X509v3 Authority Key Identifier: keyid:9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/AJTgcz9Bw3LJJvQUf3Xu3TLE9YY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.181.96.0/20 Signature Algorithm: sha256WithRSAEncryption ab:9d:0a:3a:3d:74:6d:36:9b:58:28:6c:2f:0d:41:04:2b:2d: 5a:26:17:98:07:ce:17:e5:61:00:e7:85:c7:66:8b:33:1e:34: 0e:c4:01:c0:f5:fa:2a:44:15:38:5c:1f:f6:04:22:0e:c2:5a: 44:0f:f6:d4:c2:e9:b0:e6:8b:ad:7b:6f:07:ab:48:a8:a8:32: 7b:71:97:49:55:a5:c7:e8:36:85:ee:a3:4c:e7:07:67:b7:68: fa:f4:b0:a4:19:ca:22:45:05:c9:8a:03:92:04:0a:60:49:ce: 8f:b3:1d:1c:11:b5:0f:6f:ca:3d:82:e3:aa:28:1a:4a:8f:60: d0:5a:04:ba:2b:7f:03:d0:de:dc:86:31:28:c7:85:74:46:ce: 98:b8:9b:ad:c6:ff:38:0a:14:ea:c0:50:f2:a3:f1:f9:62:13: 6d:a2:af:70:3e:21:da:8f:cf:9b:99:d0:8c:c9:eb:d8:e3:57: e6:93:1e:1d:5c:dd:31:55:81:b5:8e:14:fe:78:b5:ba:68:b5: a8:f6:94:51:41:6b:e4:82:a8:9f:79:62:65:80:5a:1b:a3:09: 90:63:58:bd:cc:a3:65:20:9f:80:72:c2:5c:6f:db:1f:90:77: 6f:cb:c5:3b:4d:86:73:a7:f5:73:f3:24:fa:28:d3:43:e8:d6: ae:14:0e:21 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEy MUJERkYyRENBRkNDMTM4RjVCRkQ2QzAzMzBEMDIxOUUwRjUzMjAeFw0yNTA1MDEw MTMyMTBaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDAwOTRFMDczM0Y0MUMz NzJDOTI2RjQxNDdGNzVFRUREMzJDNEY1ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3T+0zeH8ygI5ZKuntCQ54oagaoE7dKxY4HSes1ZR4xEENqPew Ae13CR/+V+jHJzyJCgSXExEpyAnxlcXll8zZL8Ja39Fj8tyA/2T4amDn6aEwB0lS Sb+RKUFpweFbiZ5PE5oNxqDkutCu8Cw8/x6XQ0Bj/cCnhaCqDU7gpFetQAuyCQwX bF3X571FJW4I/GZHMXSSOF6Q+nKojMbIb3cZy2dNqHLdX8qI29ylNAFRZbmH/Osb R8NI1kdnDL/rFJK5kXqNkd6FfIPPjm2xaoiDq5nejAxfSHXiPpsAFGEi34Iibybw i81ObG9h1OwW/s0LYVipQvpHNsq5Sqm3PxcHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAJTgcz9Bw3LJJvQUf3Xu3TLE9YYwHwYDVR0jBBgwFoAUmiG9/y3K/ME49b/W wDMNAhng9TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI0Ny9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFobmc5VEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFo bmc5VEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQ3L0FKVGdjejlCdzNMSkp2UVVmM1h1M1RMRTlZWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATKtWAwDQYJKoZIhvcNAQELBQADggEBAKudCjo9dG02m1gobC8NQQQrLVom F5gHzhflYQDnhcdmizMeNA7EAcD1+ipEFThcH/YEIg7CWkQP9tTC6bDmi617bwer SKioMntxl0lVpcfoNoXuo0znB2e3aPr0sKQZyiJFBcmKA5IECmBJzo+zHRwRtQ9v yj2C46ooGkqPYNBaBLorfwPQ3tyGMSjHhXRGzpi4m63G/zgKFOrAUPKj8fliE22i r3A+IdqPz5uZ0IzJ69jjV+aTHh1c3TFVgbWOFP54tbpotaj2lFFBa+SCqJ95YmWA WhujCZBjWL3Mo2Ugn4Bywlxv2x+Qd2/LxTtNhnOn9XPzJPoo00Po1q4UDiE= -----END CERTIFICATE-----Generated at Sat May 17 06:08:18 2025 by rpki-client