$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/7oz8TmqCWrPjcE6HpXFlMacxaLE.roa File: 7oz8TmqCWrPjcE6HpXFlMacxaLE.roa (raw, json) Hash identifier: jv5lO3aCs+sS4ShwJAwY6S28/M+empjiOGqQNCMuO2Q= Subject key identifier: EE:8C:FC:4E:6A:82:5A:B3:E3:70:4E:87:A5:71:65:31:A7:31:68:B1 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: A2 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/7oz8TmqCWrPjcE6HpXFlMacxaLE.roa Signing time: Tue 01 Jul 2025 01:28:12 +0000 ROA not before: Tue 01 Jul 2025 01:28:12 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2514 IP address blocks: 128.28.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jul 1 01:28:12 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=EE8CFC4E6A825AB3E3704E87A5716531A73168B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:2e:20:fc:4a:ea:c9:53:38:da:18:0c:52: 22:69:2f:8b:ff:cb:d1:6d:38:7a:8d:3c:74:25:ee: 79:bb:d0:9d:e5:af:91:40:3d:ff:ac:ae:21:7d:5b: 49:23:c4:aa:78:1b:73:57:33:28:eb:65:d9:f4:64: c8:d4:40:63:a0:75:dd:6c:50:cb:26:1d:f5:f4:97: ec:9a:6b:2f:16:4e:6a:53:9d:3b:7a:fd:f5:e7:84: 94:08:c6:ee:e0:34:fc:8d:0a:61:63:ae:d8:67:21: 09:44:8e:ed:bb:15:8e:09:dc:e3:49:48:7f:80:90: 7c:fc:af:36:20:17:d1:32:8f:66:c5:bc:67:80:c0: a5:ff:2a:cb:a4:f6:77:64:52:23:5e:e4:9f:23:9f: 47:3d:ea:79:05:61:98:a3:16:64:87:db:ad:ac:b6: 61:16:69:02:13:8b:32:16:df:57:bc:2b:07:8d:3b: 1a:5e:6d:85:0c:41:d7:25:33:fe:0e:c1:0c:33:18: f7:55:a5:c5:43:db:cb:18:54:57:05:e2:52:1b:21: 3d:e6:e5:f1:8c:c5:54:d1:ef:d8:87:63:37:08:2f: b0:52:5e:e1:0e:ae:86:8b:06:6b:95:a4:be:61:52: 1e:19:4f:87:e3:af:48:79:9b:e3:c5:c9:f7:ac:12: 3c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:8C:FC:4E:6A:82:5A:B3:E3:70:4E:87:A5:71:65:31:A7:31:68:B1 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/7oz8TmqCWrPjcE6HpXFlMacxaLE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.28.0.0/16 Signature Algorithm: sha256WithRSAEncryption ac:be:fd:32:3a:fa:e6:61:b7:c4:9c:b8:1c:11:97:aa:20:1b: b6:27:b9:36:21:ba:d9:ae:77:45:91:2a:ee:da:cc:83:2b:0e: 74:68:82:54:0d:ae:9d:83:cb:1a:26:92:81:c6:9a:17:bb:5f: 80:1b:ba:5a:36:bc:e8:02:1c:77:c7:58:80:46:aa:38:50:53: d9:50:96:b1:22:bd:b1:7f:c7:19:a4:87:9b:6d:b3:b4:fa:2c: 76:e8:1a:93:e6:78:5e:c6:ec:25:ed:58:15:32:5c:25:fa:1d: 5c:98:19:4c:c2:44:c2:05:58:c8:a1:79:84:6c:9a:35:1e:7b: 44:6d:1c:fb:d2:45:1a:de:d8:91:1f:aa:cd:a8:96:61:1c:51: 26:bd:0a:fb:36:cd:10:1c:7a:88:0b:ec:e9:8f:3d:1f:7a:39: 9e:b0:4a:06:80:51:5f:09:e0:91:ad:f9:dd:06:ab:e7:18:ed: 42:8c:1d:21:8a:41:e2:11:9b:5b:5d:28:d6:35:97:aa:34:d6: a6:7a:48:d0:e4:6c:4c:14:6f:59:92:63:fc:ac:77:1b:b2:b3: 22:c4:84:6e:5a:fd:60:bf:da:47:bd:9e:f4:f9:f5:a7:d2:bb: 16:b1:44:be:02:42:93:95:ce:81:65:8f:82:6e:cf:c8:85:e3: 52:08:e7:75 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTA3MDEw MTI4MTJaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEVFOENGQzRFNkE4MjVB QjNFMzcwNEU4N0E1NzE2NTMxQTczMTY4QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA7C4g/ErqyVM42hgMUiJpL4v/y9FtOHqNPHQl7nm70J3lr5FA Pf+sriF9W0kjxKp4G3NXMyjrZdn0ZMjUQGOgdd1sUMsmHfX0l+yaay8WTmpTnTt6 /fXnhJQIxu7gNPyNCmFjrthnIQlEju27FY4J3ONJSH+AkHz8rzYgF9Eyj2bFvGeA wKX/Ksuk9ndkUiNe5J8jn0c96nkFYZijFmSH262stmEWaQITizIW31e8KweNOxpe bYUMQdclM/4OwQwzGPdVpcVD28sYVFcF4lIbIT3m5fGMxVTR79iHYzcIL7BSXuEO roaLBmuVpL5hUh4ZT4fjr0h5m+PFyfesEjzRAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQU7oz8TmqCWrPjcE6HpXFlMacxaLEwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS83b3o4VG1xQ1dyUGpjRTZIcFhGbE1hY3hhTEUucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAgBwwDQYJKoZIhvcNAQELBQADggEBAKy+/TI6+uZht8ScuBwRl6ogG7YnuTYh utmud0WRKu7azIMrDnRoglQNrp2DyxomkoHGmhe7X4Abulo2vOgCHHfHWIBGqjhQ U9lQlrEivbF/xxmkh5tts7T6LHboGpPmeF7G7CXtWBUyXCX6HVyYGUzCRMIFWMih eYRsmjUee0RtHPvSRRre2JEfqs2olmEcUSa9Cvs2zRAceogL7OmPPR96OZ6wSgaA UV8J4JGt+d0Gq+cY7UKMHSGKQeIRm1tdKNY1l6o01qZ6SNDkbEwUb1mSY/ysdxuy syLEhG5a/WC/2ke9nvT59afSuxaxRL4CQpOVzoFlj4Juz8iF41II53U= -----END CERTIFICATE-----Generated at Sat Jul 5 08:30:52 2025 by rpki-client