$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/247/Mf4tBe6lPWeW2J4qFbg9DdkAZIk.roa File: Mf4tBe6lPWeW2J4qFbg9DdkAZIk.roa (raw, json) Hash identifier: Gko/sK57gbOtOjlAkVch7hVEJslFk/xMZkOLncHhivQ= Subject key identifier: 31:FE:2D:05:EE:A5:3D:67:96:D8:9E:2A:15:B8:3D:0D:D9:00:64:89 Certificate issuer: /CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Certificate serial: 0102 Authority key identifier: 9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/Mf4tBe6lPWeW2J4qFbg9DdkAZIk.roa Signing time: Thu 01 May 2025 01:32:09 +0000 ROA not before: Thu 01 May 2025 01:32:09 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 9370 IP address blocks: 27.133.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 14:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532 Validity Not Before: May 1 01:32:09 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=31FE2D05EEA53D6796D89E2A15B83D0DD9006489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:90:cf:3e:af:ae:0c:b0:bc:82:65:35:94:ac: 22:37:93:b9:3e:d3:76:bd:e1:2e:78:8a:43:51:d2: 58:ea:a3:a5:98:d8:02:6a:b7:97:57:a9:2d:3a:50: f3:e2:62:1b:f9:e4:ee:cd:5b:09:d3:70:f3:4d:4d: 2c:fa:19:43:04:d9:5b:1a:33:e0:6c:5d:28:17:82: 80:cc:07:77:a5:d1:db:58:3f:ac:36:a4:15:08:7d: cb:68:5d:5d:a8:b5:63:3d:02:6e:e5:27:d0:87:78: fb:9e:f9:2f:ae:12:9a:a6:7a:55:61:6b:0f:2d:44: 43:e7:71:72:e9:38:33:a0:16:46:07:d3:e0:b2:c8: 46:a0:aa:e4:58:56:a4:9e:a6:54:80:20:fb:eb:63: ae:cf:93:22:10:5e:4d:c9:01:dd:a2:bb:ef:70:da: c3:e9:dd:6b:b1:9e:c3:9a:c1:ee:98:85:ec:2d:66: 9b:39:c9:49:b7:9b:b7:03:a5:a1:24:f8:3c:94:61: 01:5a:36:22:d7:2a:c9:b9:b0:45:66:89:84:8b:28: 75:1f:04:aa:9e:86:c6:2a:37:70:fc:5e:c8:36:84: 08:f3:d8:36:31:b3:b7:9d:d4:97:57:e2:a7:ec:2d: d7:fc:08:61:65:50:2f:fc:46:b2:66:09:af:5f:b4: 17:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:FE:2D:05:EE:A5:3D:67:96:D8:9E:2A:15:B8:3D:0D:D9:00:64:89 X509v3 Authority Key Identifier: keyid:9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/Mf4tBe6lPWeW2J4qFbg9DdkAZIk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.133.247.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:6e:45:01:86:59:e7:d9:9c:8f:a9:82:cb:48:fa:f2:1a:bd: 1f:13:5c:15:50:c9:7f:00:3b:41:7e:48:c1:2f:9d:bf:db:9a: e7:ba:97:af:65:25:0c:8c:18:83:18:41:d0:4b:2f:a7:57:ce: 2f:d9:53:60:e4:dc:88:7e:16:99:09:5a:da:23:c1:4f:01:ec: 91:bc:35:3a:d3:f8:42:fa:74:82:be:6d:cb:96:09:02:6d:92: 86:89:2a:e1:13:99:ef:b5:39:52:da:a3:a6:77:88:bb:f4:14: f1:1e:ae:f0:2b:98:0a:31:3c:dc:34:9a:86:d5:cc:7f:7f:c1: 93:03:d8:de:bf:3d:5d:9c:2f:c3:cb:4a:14:5a:3b:cb:3e:de: 7a:90:89:39:20:23:dd:7b:e5:38:aa:71:46:f5:21:cb:89:1f: 85:90:b6:03:7d:6e:b9:36:2f:68:3b:6e:c5:f5:c1:1c:da:23: 06:4a:44:b6:27:62:de:32:ed:9e:36:82:c7:e5:d1:00:0c:d4: 52:1b:cd:e0:ed:58:5d:5b:26:55:70:c8:27:ec:f5:86:4d:a0: 10:67:e4:c1:d0:87:ec:51:a4:38:87:7f:ac:0f:b8:d3:3b:33: 6a:55:1d:01:23:4e:bc:d6:6b:76:3c:f3:a2:aa:5f:a8:59:c7: 31:4c:9e:5d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEy MUJERkYyRENBRkNDMTM4RjVCRkQ2QzAzMzBEMDIxOUUwRjUzMjAeFw0yNTA1MDEw MTMyMDlaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMxRkUyRDA1RUVBNTNE Njc5NkQ4OUUyQTE1QjgzRDBERDkwMDY0ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2kM8+r64MsLyCZTWUrCI3k7k+03a94S54ikNR0ljqo6WY2AJq t5dXqS06UPPiYhv55O7NWwnTcPNNTSz6GUME2VsaM+BsXSgXgoDMB3el0dtYP6w2 pBUIfctoXV2otWM9Am7lJ9CHePue+S+uEpqmelVhaw8tREPncXLpODOgFkYH0+Cy yEagquRYVqSeplSAIPvrY67PkyIQXk3JAd2iu+9w2sPp3WuxnsOawe6YhewtZps5 yUm3m7cDpaEk+DyUYQFaNiLXKsm5sEVmiYSLKHUfBKqehsYqN3D8Xsg2hAjz2DYx s7ed1JdX4qfsLdf8CGFlUC/8RrJmCa9ftBfDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMf4tBe6lPWeW2J4qFbg9DdkAZIkwHwYDVR0jBBgwFoAUmiG9/y3K/ME49b/W wDMNAhng9TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI0Ny9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFobmc5VEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFo bmc5VEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQ3L01mNHRCZTZsUFdlVzJKNHFGYmc5RGRrQVpJay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAbhfcwDQYJKoZIhvcNAQELBQADggEBAH5uRQGGWefZnI+pgstI+vIavR8T XBVQyX8AO0F+SMEvnb/bmue6l69lJQyMGIMYQdBLL6dXzi/ZU2Dk3Ih+FpkJWtoj wU8B7JG8NTrT+EL6dIK+bcuWCQJtkoaJKuETme+1OVLao6Z3iLv0FPEervArmAox PNw0mobVzH9/wZMD2N6/PV2cL8PLShRaO8s+3nqQiTkgI9175TiqcUb1IcuJH4WQ tgN9brk2L2g7bsX1wRzaIwZKRLYnYt4y7Z42gsfl0QAM1FIbzeDtWF1bJlVwyCfs 9YZNoBBn5MHQh+xRpDiHf6wPuNM7M2pVHQEjTrzWa3Y886KqX6hZxzFMnl0= -----END CERTIFICATE-----Generated at Sat May 17 16:27:19 2025 by rpki-client