$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/OQ2ngxvKnuoDuoWWtwTrrRfPIfc.roa File: OQ2ngxvKnuoDuoWWtwTrrRfPIfc.roa (raw, json) Hash identifier: 5EoOGy8CXzFJittubSarsBFA+CzlObn31muyGdQkAY0= Subject key identifier: 39:0D:A7:83:1B:CA:9E:EA:03:BA:85:96:B7:04:EB:AD:17:CF:21:F7 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: A4 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/OQ2ngxvKnuoDuoWWtwTrrRfPIfc.roa Signing time: Tue 01 Jul 2025 01:28:14 +0000 ROA not before: Tue 01 Jul 2025 01:28:14 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2514 IP address blocks: 157.65.32.0/19 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jul 1 01:28:14 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=390DA7831BCA9EEA03BA8596B704EBAD17CF21F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7e:08:5d:6b:fe:4a:5b:4a:31:7e:a3:6d:8f: bf:e6:86:4d:61:f5:31:7c:4f:85:e2:04:c2:a4:0a: 8c:d5:4d:60:c1:81:8a:ae:91:cc:88:6a:44:51:39: 68:1d:4d:80:13:5c:64:2a:53:92:05:32:25:02:85: aa:74:6d:19:c1:c3:02:ca:fa:ca:d0:55:49:81:76: 3e:b9:44:93:a6:d5:ee:5e:ed:71:cc:b9:b3:3f:58: 05:98:3d:76:e7:ed:44:cb:0f:a1:6d:99:e0:f5:d5: 2e:44:c3:d2:13:c0:e5:95:db:2b:98:d2:94:25:cc: 9b:d2:75:b4:4f:60:62:a7:7b:f9:9d:6e:31:f1:7d: b4:41:0c:3d:3c:d9:ff:79:7d:16:66:86:36:46:69: df:96:97:07:63:cf:5d:1b:c9:a2:20:2b:42:35:30: 7c:e9:5b:00:23:3a:f7:5d:78:10:e3:53:73:36:02: e1:43:8d:8c:e0:ef:4f:13:72:24:6c:a9:02:bd:7a: 3e:b2:fa:a3:81:d2:62:41:7e:dc:be:96:64:72:07: b6:3e:f9:08:49:cc:f7:3e:8b:5c:51:01:d6:23:42: 74:a0:96:ed:6e:27:0d:06:f3:37:70:8b:50:46:c3: 7a:89:2f:ba:6d:43:b6:c3:92:0f:cd:94:bc:68:61: 5b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0D:A7:83:1B:CA:9E:EA:03:BA:85:96:B7:04:EB:AD:17:CF:21:F7 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/OQ2ngxvKnuoDuoWWtwTrrRfPIfc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.32.0/19 Signature Algorithm: sha256WithRSAEncryption 73:42:25:69:6d:05:40:70:70:7d:cf:c3:c9:fd:e5:3e:d4:a7: c3:ae:a6:b1:46:c8:45:d2:b0:3b:15:bf:6c:72:a7:9e:2e:fa: ed:52:2e:40:f3:23:65:ff:e0:ff:31:b2:87:23:02:9d:7b:25: 6c:0c:23:b6:00:84:97:16:1b:9b:44:39:de:b1:98:3e:10:b0: 7e:2f:a0:83:6a:9b:b0:97:d9:7b:9f:a4:a0:b7:df:5d:6b:a1: 80:f6:1e:a7:78:1f:bd:6b:c1:8e:f6:b6:ef:52:be:4a:ed:a3: a1:17:78:cc:e9:36:59:e0:66:48:88:42:f7:5c:d8:e6:59:ce: 79:d5:00:bf:1a:89:0c:00:fa:ec:f0:ea:93:f4:77:78:68:82: 5a:a1:10:91:c7:a1:4a:87:89:0f:12:e1:b3:99:3a:8e:15:02: 54:51:1f:e8:f9:68:ab:fe:35:f0:55:de:3f:8e:ce:43:0a:88: eb:9c:91:e4:56:f4:71:18:13:45:ab:5e:15:d2:dd:e3:da:b5: b8:c3:fc:0b:c9:55:1a:82:54:28:0e:ba:df:86:09:7b:b9:a8: fe:35:17:71:e2:24:5e:7b:e1:16:e6:58:c8:31:b7:18:d9:ad: 45:8d:1c:6c:f8:90:48:d3:5d:09:1b:71:a7:12:ff:9d:cc:4e: 40:dd:6b:67 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTA3MDEw MTI4MTRaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM5MERBNzgzMUJDQTlF RUEwM0JBODU5NkI3MDRFQkFEMTdDRjIxRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmfghda/5KW0oxfqNtj7/mhk1h9TF8T4XiBMKkCozVTWDBgYqu kcyIakRROWgdTYATXGQqU5IFMiUChap0bRnBwwLK+srQVUmBdj65RJOm1e5e7XHM ubM/WAWYPXbn7UTLD6FtmeD11S5Ew9ITwOWV2yuY0pQlzJvSdbRPYGKne/mdbjHx fbRBDD082f95fRZmhjZGad+Wlwdjz10byaIgK0I1MHzpWwAjOvddeBDjU3M2AuFD jYzg708TciRsqQK9ej6y+qOB0mJBfty+lmRyB7Y++QhJzPc+i1xRAdYjQnSglu1u Jw0G8zdwi1BGw3qJL7ptQ7bDkg/NlLxoYVvzAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUOQ2ngxvKnuoDuoWWtwTrrRfPIfcwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9PUTJuZ3h2S251b0R1b1dXdHdUcnJSZlBJZmMucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFnUEgMA0GCSqGSIb3DQEBCwUAA4IBAQBzQiVpbQVAcHB9z8PJ/eU+1KfDrqax RshF0rA7Fb9scqeeLvrtUi5A8yNl/+D/MbKHIwKdeyVsDCO2AISXFhubRDnesZg+ ELB+L6CDapuwl9l7n6Sgt99da6GA9h6neB+9a8GO9rbvUr5K7aOhF3jM6TZZ4GZI iEL3XNjmWc551QC/GokMAPrs8OqT9Hd4aIJaoRCRx6FKh4kPEuGzmTqOFQJUUR/o +Wir/jXwVd4/js5DCojrnJHkVvRxGBNFq14V0t3j2rW4w/wLyVUaglQoDrrfhgl7 uaj+NRdx4iRee+EW5ljIMbcY2a1FjRxs+JBI010JG3GnEv+dzE5A3Wtn -----END CERTIFICATE-----Generated at Sat Jul 5 08:28:39 2025 by rpki-client