$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/247/Du9OxWIXXKeb1Q8i_rPAwE7kGxQ.roa File: Du9OxWIXXKeb1Q8i_rPAwE7kGxQ.roa (raw, json) Hash identifier: ymQzK2UDEKLDeEid2D6BPrfxDULpSf5/XycsG85A8DE= Subject key identifier: 0E:EF:4E:C5:62:17:5C:A7:9B:D5:0F:22:FE:B3:C0:C0:4E:E4:1B:14 Certificate issuer: /CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Certificate serial: FD Authority key identifier: 9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/Du9OxWIXXKeb1Q8i_rPAwE7kGxQ.roa Signing time: Thu 01 May 2025 01:32:07 +0000 ROA not before: Thu 01 May 2025 01:32:07 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 9370 IP address blocks: 153.125.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Validity Not Before: May 1 01:32:07 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=0EEF4EC562175CA79BD50F22FEB3C0C04EE41B14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:04:aa:19:e1:2f:ee:9c:2f:5f:f6:8a:f5:e5: 8a:2a:20:22:c3:f8:8d:78:50:49:dc:7b:55:14:c5: 18:e8:dc:bf:73:51:5d:2d:dd:79:0c:27:76:ae:7d: 44:3c:5e:b5:a0:d5:0b:38:00:88:9a:92:20:e1:f6: a8:51:05:14:c2:94:a8:9e:cf:81:de:c3:85:81:5a: 4d:4d:51:ca:8e:20:66:71:f9:c2:37:49:ab:21:2f: 3f:23:98:ee:33:8c:93:09:ce:b7:81:34:41:16:d8: 24:31:55:7c:ab:12:06:f6:fe:9d:3c:da:51:88:7c: 63:d7:dc:a3:4e:3f:85:85:a7:33:f1:39:a6:c7:85: 4e:aa:e0:7f:be:af:05:71:a3:6f:86:78:eb:d5:44: 40:82:b4:c1:3b:53:b0:7c:b0:7f:86:b9:6f:ee:0b: 81:40:d9:3a:c6:84:1e:27:b8:79:eb:d5:4e:0e:1f: cd:10:33:05:02:de:71:59:a9:e8:31:48:2d:e3:ce: 09:7c:cb:68:10:1a:b2:97:cb:d9:b1:dc:a7:4c:8c: 9d:91:cc:69:c6:72:ba:ff:5b:9f:0c:31:82:81:8a: 63:64:de:23:33:4a:9e:d0:9e:bc:45:9a:a7:63:59: ba:a2:b9:d8:72:d3:98:9b:a8:50:0b:b2:59:a6:ef: ce:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:EF:4E:C5:62:17:5C:A7:9B:D5:0F:22:FE:B3:C0:C0:4E:E4:1B:14 X509v3 Authority Key Identifier: keyid:9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/Du9OxWIXXKeb1Q8i_rPAwE7kGxQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.125.224.0/20 Signature Algorithm: sha256WithRSAEncryption ae:53:76:17:8a:ad:4f:16:fb:93:45:c9:21:84:6a:db:08:b9: 37:be:cc:39:96:85:06:f2:9c:61:37:4a:f3:66:7e:c4:b8:ca: de:c8:6f:32:34:f3:10:73:1d:0a:7d:bf:eb:0d:8c:e6:64:1b: f0:bb:55:36:29:95:99:d0:7f:02:f4:f9:49:8f:ee:21:1c:f6: a3:3d:cd:f5:8e:96:9a:5d:d9:f4:6d:4b:14:33:85:9f:0b:6e: 88:6d:f3:76:05:36:cc:e8:60:48:da:0d:5c:19:1b:f4:65:ac: aa:89:12:d6:19:64:c2:27:d4:da:26:56:d7:e8:80:1c:fb:2a: f1:9b:e7:9f:27:9e:0b:05:53:3e:56:37:91:27:9a:76:13:be: c0:31:28:89:d1:72:27:e7:fe:46:63:02:38:3c:de:16:12:07: ff:3e:bd:c5:19:3f:fa:96:a4:1d:9c:d6:bd:2a:5d:c0:9e:f1: f9:16:6c:4b:fa:df:2c:04:83:58:aa:1f:79:ad:fe:41:5c:a2: 5e:3a:e5:62:81:af:42:6c:d5:fc:45:18:13:89:6e:76:c0:d8: 71:b1:2f:4c:58:9e:fe:4f:1e:e6:73:d1:07:3c:a9:e9:7d:e7: 29:94:09:ae:00:ab:ac:81:bd:ab:fb:1c:3a:25:f9:46:50:8d: bc:2e:e0:f1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEy MUJERkYyRENBRkNDMTM4RjVCRkQ2QzAzMzBEMDIxOUUwRjUzMjAeFw0yNTA1MDEw MTMyMDdaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBFRUY0RUM1NjIxNzVD QTc5QkQ1MEYyMkZFQjNDMEMwNEVFNDFCMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLBKoZ4S/unC9f9or15YoqICLD+I14UEnce1UUxRjo3L9zUV0t 3XkMJ3aufUQ8XrWg1Qs4AIiakiDh9qhRBRTClKiez4Hew4WBWk1NUcqOIGZx+cI3 SashLz8jmO4zjJMJzreBNEEW2CQxVXyrEgb2/p082lGIfGPX3KNOP4WFpzPxOabH hU6q4H++rwVxo2+GeOvVRECCtME7U7B8sH+GuW/uC4FA2TrGhB4nuHnr1U4OH80Q MwUC3nFZqegxSC3jzgl8y2gQGrKXy9mx3KdMjJ2RzGnGcrr/W58MMYKBimNk3iMz Sp7QnrxFmqdjWbqiudhy05ibqFALslmm785DAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDu9OxWIXXKeb1Q8i/rPAwE7kGxQwHwYDVR0jBBgwFoAUmiG9/y3K/ME49b/W wDMNAhng9TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI0Ny9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFobmc5VEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFo bmc5VEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQ3L0R1OU94V0lYWEtlYjFROGlfclBBd0U3a0d4US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASZfeAwDQYJKoZIhvcNAQELBQADggEBAK5TdheKrU8W+5NFySGEatsIuTe+ zDmWhQbynGE3SvNmfsS4yt7IbzI08xBzHQp9v+sNjOZkG/C7VTYplZnQfwL0+UmP 7iEc9qM9zfWOlppd2fRtSxQzhZ8Lboht83YFNszoYEjaDVwZG/RlrKqJEtYZZMIn 1NomVtfogBz7KvGb558nngsFUz5WN5EnmnYTvsAxKInRcifn/kZjAjg83hYSB/8+ vcUZP/qWpB2c1r0qXcCe8fkWbEv63ywEg1iqH3mt/kFcol465WKBr0Js1fxFGBOJ bnbA2HGxL0xYnv5PHuZz0Qc8qel95ymUCa4Aq6yBvav7HDol+UZQjbwu4PE= -----END CERTIFICATE-----Generated at Sun May 18 10:02:25 2025 by rpki-client