$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/2CTG1slVKAiVzUm41gepL5XmG20.roa File: 2CTG1slVKAiVzUm41gepL5XmG20.roa (raw, json) Hash identifier: MomZ8vulitFuwTUauC3wa08mCB/Sx5KKXnzSvyRa5y4= Subject key identifier: D8:24:C6:D6:C9:55:28:08:95:CD:49:B8:D6:07:A9:2F:95:E6:1B:6D Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: AA Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/2CTG1slVKAiVzUm41gepL5XmG20.roa Signing time: Tue 01 Jul 2025 01:37:17 +0000 ROA not before: Tue 01 Jul 2025 01:37:17 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.192.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jul 1 01:37:17 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=D824C6D6C955280895CD49B8D607A92F95E61B6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:14:f0:3c:ef:21:71:e2:bc:30:df:9e:fe:61: d0:53:ee:ea:4e:4a:7f:f1:15:da:6d:d7:1d:0e:be: 8e:10:d8:49:79:92:07:e7:b7:1d:eb:78:f4:b7:21: 2e:f8:4f:a5:90:25:81:c0:57:bd:42:ed:7e:98:fa: 5f:42:01:0f:4f:c7:ed:04:33:40:cd:33:eb:4c:92: 6d:da:3b:d8:c8:3d:c3:ad:6d:ed:5f:77:43:db:39: e3:bc:e6:ed:df:e6:0c:49:eb:b0:b3:cd:59:a3:d6: a2:05:69:15:ae:25:6a:8a:d1:6a:32:29:ca:34:61: e6:6b:0e:55:11:6d:ef:9a:66:8f:32:28:8c:5e:ff: 53:eb:e9:c4:8d:ea:01:70:89:d5:9f:c0:c0:90:ba: e9:52:89:b5:e9:e0:a1:05:c1:cf:d9:9c:21:d0:3e: 90:0c:b7:60:60:aa:b0:e1:db:45:3c:87:83:7a:e7: 6f:49:68:da:2b:59:28:8d:4f:d3:97:79:9a:b7:40: 34:1b:74:55:33:73:47:47:9c:1c:c1:9d:aa:1f:a2: 3d:6d:b4:bb:0d:38:41:ed:d6:d2:b0:df:64:a9:4e: 69:4e:13:96:50:9c:b8:0d:f8:c3:64:12:06:eb:22: ac:5e:b4:f0:d9:ac:4d:68:d6:91:f6:36:5b:2a:19: e6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:24:C6:D6:C9:55:28:08:95:CD:49:B8:D6:07:A9:2F:95:E6:1B:6D X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/2CTG1slVKAiVzUm41gepL5XmG20.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.192.0/21 Signature Algorithm: sha256WithRSAEncryption 18:ed:21:92:63:f4:aa:be:e9:a8:48:cc:8d:10:39:21:9c:96: 67:3c:93:b7:fb:52:7d:29:63:4b:19:b8:ee:9b:43:8e:a0:2e: a2:a0:a2:a0:44:12:e1:95:1d:87:b2:75:67:9e:ef:c6:93:1b: 08:54:c5:45:4e:83:ec:89:91:41:4f:4f:d7:b8:15:16:89:11: b2:88:76:24:2a:a6:b4:ed:34:db:f6:65:3c:b7:93:9c:20:90: da:db:26:85:ad:1c:e7:94:40:90:56:e6:df:e7:de:c8:da:c3: 91:9c:22:ee:eb:aa:c0:69:85:5c:fb:5a:a1:f3:63:40:17:1e: 13:db:ea:2d:61:5f:f5:ef:3e:f6:91:35:f8:df:14:1b:46:ba: 5b:b0:f6:3f:8b:92:b3:0d:f5:b3:34:bc:e9:01:96:29:19:91: 11:8f:0e:09:d7:0d:ea:89:df:b1:6a:fb:d7:82:fa:c5:cd:3d: 52:ae:f8:1e:0f:71:24:62:c6:10:a1:04:93:2b:f5:51:e8:e0: bb:23:57:49:6c:97:76:90:5c:e4:2c:e8:10:59:2d:c0:a4:cf: 05:5b:b6:1c:33:09:6d:bd:ed:95:23:da:9d:45:d7:03:bf:ba: ee:4c:37:72:e8:64:c1:5a:46:d1:f3:34:99:15:31:8c:ae:9a: 35:88:17:2c -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAKowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTA3MDEw MTM3MTdaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ4MjRDNkQ2Qzk1NTI4 MDg5NUNENDlCOEQ2MDdBOTJGOTVFNjFCNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnFPA87yFx4rww357+YdBT7upOSn/xFdpt1x0Ovo4Q2El5kgfn tx3rePS3IS74T6WQJYHAV71C7X6Y+l9CAQ9Px+0EM0DNM+tMkm3aO9jIPcOtbe1f d0PbOeO85u3f5gxJ67CzzVmj1qIFaRWuJWqK0WoyKco0YeZrDlURbe+aZo8yKIxe /1Pr6cSN6gFwidWfwMCQuulSibXp4KEFwc/ZnCHQPpAMt2BgqrDh20U8h4N6529J aNorWSiNT9OXeZq3QDQbdFUzc0dHnBzBnaofoj1ttLsNOEHt1tKw32SpTmlOE5ZQ nLgN+MNkEgbrIqxetPDZrE1o1pH2NlsqGebTAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQU2CTG1slVKAiVzUm41gepL5XmG20wHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS8yQ1RHMXNsVktBaVZ6VW00MWdlcEw1WG1HMjAucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDoPjAMA0GCSqGSIb3DQEBCwUAA4IBAQAY7SGSY/SqvumoSMyNEDkhnJZnPJO3 +1J9KWNLGbjum0OOoC6ioKKgRBLhlR2HsnVnnu/GkxsIVMVFToPsiZFBT0/XuBUW iRGyiHYkKqa07TTb9mU8t5OcIJDa2yaFrRznlECQVubf597I2sORnCLu66rAaYVc +1qh82NAFx4T2+otYV/17z72kTX43xQbRrpbsPY/i5KzDfWzNLzpAZYpGZERjw4J 1w3qid+xavvXgvrFzT1SrvgeD3EkYsYQoQSTK/VR6OC7I1dJbJd2kFzkLOgQWS3A pM8FW7YcMwltve2VI9qdRdcDv7ruTDdy6GTBWkbR8zSZFTGMrpo1iBcs -----END CERTIFICATE-----Generated at Sat Jul 5 08:48:46 2025 by rpki-client