$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/DHepaziny686tdLpEB1cOzaPNqA.roa File: DHepaziny686tdLpEB1cOzaPNqA.roa (raw, json) Hash identifier: RpXqk0MXYCEHC2SQCXRqsCfgdHk0SqzpGu0R72WBAtE= Subject key identifier: 0C:77:A9:6B:38:A7:CB:AF:3A:B5:D2:E9:10:1D:5C:3B:36:8F:36:A0 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: A3 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/DHepaziny686tdLpEB1cOzaPNqA.roa Signing time: Tue 01 Jul 2025 01:28:13 +0000 ROA not before: Tue 01 Jul 2025 01:28:13 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2514 IP address blocks: 128.53.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jul 1 01:28:13 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=0C77A96B38A7CBAF3AB5D2E9101D5C3B368F36A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6a:55:e3:7f:31:92:de:6c:a1:f0:6a:6c:cf: 09:5f:54:6a:51:df:af:55:53:e8:8a:bd:3f:b9:2c: c1:28:0e:4b:30:42:83:d2:29:fa:28:0b:53:3a:ef: 0b:a2:2a:57:ac:ea:4a:e3:cc:76:6b:3d:67:5a:c1: 25:93:19:7d:56:33:b9:c1:77:c7:5f:18:9c:9a:a2: 97:39:17:22:5b:b0:47:e1:9d:ef:f7:90:91:f0:b9: 49:6b:f6:30:0a:1d:51:19:c7:d7:b5:f7:1b:85:89: 20:ea:6d:70:b6:ee:8c:56:20:21:5a:4f:af:7d:dd: 18:86:d5:50:88:0d:5b:9a:04:55:6d:d5:df:e9:4b: a0:3b:82:db:87:b7:5a:19:2a:31:32:3d:f0:91:15: 63:e0:50:58:b3:74:a4:51:d9:f7:f9:d4:31:fe:dd: 90:b4:d2:17:af:22:f6:0c:6b:28:7a:14:45:3e:f4: 3a:55:39:cb:cb:fe:13:9f:ba:f6:13:33:b5:5e:d4: ba:ad:db:57:03:89:26:f8:32:94:f5:fb:63:7f:6c: 00:11:d4:d6:f8:13:f4:e8:ea:3d:f4:c1:59:11:70: b6:ff:37:e6:8e:d3:15:fa:18:a2:fa:1c:b7:13:53: d2:3b:af:89:0e:0c:11:7f:00:8e:90:3d:8b:26:4a: 6a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:77:A9:6B:38:A7:CB:AF:3A:B5:D2:E9:10:1D:5C:3B:36:8F:36:A0 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/DHepaziny686tdLpEB1cOzaPNqA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.53.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:ba:e7:7e:1d:c2:4f:f8:5f:41:4e:d1:9d:80:be:93:3c:10: a3:6f:43:25:9c:89:a9:e6:8b:f8:5e:eb:c1:e5:41:5e:1a:ef: 7c:17:9c:4b:01:2c:53:de:d5:d2:58:a5:37:37:7b:dd:d9:3b: 4e:c1:e7:77:34:fc:e8:c3:85:27:da:42:02:ea:84:cd:90:a7: 94:f7:73:80:47:cb:63:1d:19:fa:2d:a0:a0:6b:03:24:94:94: 7f:2d:32:d6:c5:a7:d3:92:45:c3:8f:8e:4b:4f:39:2d:7a:a2: 4f:dc:50:59:d8:a4:f3:42:34:69:c5:6d:ad:83:c9:ab:0f:eb: a8:fb:eb:9d:da:62:ae:3c:f3:04:8b:68:d9:ad:93:e8:a8:77: 31:83:9d:47:c2:2b:c2:9f:28:d6:ee:e3:ed:8c:e9:49:9f:e2: 51:0d:d8:28:b2:1c:b5:b3:4b:47:d0:e1:9e:8d:79:97:c2:62: 0a:ce:0f:41:5f:73:44:b9:33:9b:fc:47:f0:74:49:3c:8d:33: 84:ee:61:3b:b7:d8:a3:44:9c:55:83:18:fb:93:dd:b2:5e:6b: 79:3e:a8:99:38:ae:56:20:6f:fb:e8:8d:79:e1:2c:b2:d7:ef: 9f:9b:07:c8:0f:95:cb:7e:3e:93:16:5c:61:65:96:bb:d3:dc: d8:2b:a4:2a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTA3MDEw MTI4MTNaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBDNzdBOTZCMzhBN0NC QUYzQUI1RDJFOTEwMUQ1QzNCMzY4RjM2QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGalXjfzGS3myh8GpszwlfVGpR369VU+iKvT+5LMEoDkswQoPS KfooC1M67wuiKles6krjzHZrPWdawSWTGX1WM7nBd8dfGJyaopc5FyJbsEfhne/3 kJHwuUlr9jAKHVEZx9e19xuFiSDqbXC27oxWICFaT6993RiG1VCIDVuaBFVt1d/p S6A7gtuHt1oZKjEyPfCRFWPgUFizdKRR2ff51DH+3ZC00hevIvYMayh6FEU+9DpV OcvL/hOfuvYTM7Ve1Lqt21cDiSb4MpT1+2N/bAAR1Nb4E/To6j30wVkRcLb/N+aO 0xX6GKL6HLcTU9I7r4kODBF/AI6QPYsmSmqrAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUDHepaziny686tdLpEB1cOzaPNqAwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9ESGVwYXppbnk2ODZ0ZExwRUIxY096YVBOcUEucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAgDUwDQYJKoZIhvcNAQELBQADggEBAFq6534dwk/4X0FO0Z2AvpM8EKNvQyWc ianmi/he68HlQV4a73wXnEsBLFPe1dJYpTc3e93ZO07B53c0/OjDhSfaQgLqhM2Q p5T3c4BHy2MdGfotoKBrAySUlH8tMtbFp9OSRcOPjktPOS16ok/cUFnYpPNCNGnF ba2DyasP66j7653aYq488wSLaNmtk+iodzGDnUfCK8KfKNbu4+2M6Umf4lEN2Ciy HLWzS0fQ4Z6NeZfCYgrOD0Ffc0S5M5v8R/B0STyNM4TuYTu32KNEnFWDGPuT3bJe a3k+qJk4rlYgb/vojXnhLLLX75+bB8gPlct+PpMWXGFllrvT3NgrpCo= -----END CERTIFICATE-----Generated at Sat Jul 5 09:21:29 2025 by rpki-client