$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/dSrhMiMqd8ZbahRbRzzuR8npY3w.roa File: dSrhMiMqd8ZbahRbRzzuR8npY3w.roa (raw, json) Hash identifier: efin0NKZJQuf4U0Ok68+EobUcqYlKrqHtAJgSuJU+ZU= Subject key identifier: 75:2A:E1:32:23:2A:77:C6:5B:6A:14:5B:47:3C:EE:47:C9:E9:63:7C Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: A5 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/dSrhMiMqd8ZbahRbRzzuR8npY3w.roa Signing time: Tue 01 Jul 2025 01:28:15 +0000 ROA not before: Tue 01 Jul 2025 01:28:15 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2514 IP address blocks: 157.65.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jul 1 01:28:15 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=752AE132232A77C65B6A145B473CEE47C9E9637C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ac:b5:22:6a:83:7e:5a:f8:76:e0:cb:b2:96: d6:01:58:f1:db:00:c5:63:8d:73:fe:2d:26:04:46: 3f:65:e9:c5:e2:3b:77:eb:87:c2:d8:67:ce:8b:ac: 07:ad:a0:98:cf:f4:fb:fc:81:04:f9:d5:12:3e:e7: 29:5b:c5:e6:5d:10:58:7f:f1:5b:44:1b:08:b8:27: 96:3a:1f:5d:7d:0f:40:0e:38:61:57:d8:b4:53:0e: 09:5b:6c:a5:03:e0:a6:b4:9c:03:da:22:e4:fb:0a: 05:c3:7a:58:90:a6:e7:4a:17:7e:7b:80:65:ab:68: b7:15:24:bf:93:ee:57:50:99:20:40:1b:d4:8d:d7: c1:94:5e:69:20:60:20:a3:76:23:ff:2b:ea:44:8f: d8:7b:0f:d6:bf:05:90:a5:b1:28:f2:94:09:60:bc: c4:66:ae:ca:a9:b8:03:0a:75:4b:72:a1:bd:de:8d: 61:24:a2:c4:e8:3b:da:f8:5d:f7:e3:4b:9f:1e:40: c9:88:33:ef:7e:7c:4c:7e:db:5d:4a:d0:9b:d8:8e: 25:34:b5:09:96:29:da:43:ae:99:a3:14:2e:4c:e8: a0:7a:53:c3:c6:9a:d3:7d:33:20:ac:6b:c3:81:24: cd:df:53:eb:1b:53:5f:fd:e7:45:31:23:61:c6:26: d3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:2A:E1:32:23:2A:77:C6:5B:6A:14:5B:47:3C:EE:47:C9:E9:63:7C X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/dSrhMiMqd8ZbahRbRzzuR8npY3w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.64.0/18 Signature Algorithm: sha256WithRSAEncryption af:81:13:b2:2a:bc:8c:3e:6f:72:63:83:a2:db:35:30:81:95: 38:1e:8f:82:f9:36:05:f4:66:bb:14:aa:28:ae:52:38:3a:0c: 52:a2:53:d7:31:cc:fb:73:7e:b2:68:a1:23:48:a7:67:91:69: 13:f4:99:f2:36:89:47:28:64:ef:bb:30:12:b6:78:d1:67:f2: 74:17:54:95:24:a6:4f:40:4c:39:19:f0:99:73:0a:fe:fd:d9: d0:2e:ff:a2:f1:8b:01:0d:c0:59:fd:b6:da:81:cf:3e:2d:a9: f5:54:16:ca:75:0a:ab:9e:f2:76:32:75:49:b8:0e:c3:eb:33: 3d:0c:08:36:f9:35:bb:c5:ae:9d:a8:5a:0d:e2:80:ab:cd:87: 98:a8:36:24:a3:d1:ab:c7:07:d9:ab:95:7f:8c:5b:2c:2d:3c: 63:22:f0:31:5d:a9:92:fc:74:0c:c8:ef:14:72:74:05:d8:11: e6:84:f0:16:5b:76:50:4d:1a:66:5d:79:f6:d9:b6:89:04:3e: 0b:a3:66:08:9c:d2:4e:c3:f2:68:1c:04:83:05:c0:1c:7e:43: b0:d1:05:f3:fe:22:66:cc:ab:e9:c5:9d:86:12:54:53:ba:a1: 08:d2:2f:9c:ed:f8:6b:cf:a1:48:28:f0:30:a2:cb:00:e7:d0: 24:67:2f:96 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTA3MDEw MTI4MTVaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDc1MkFFMTMyMjMyQTc3 QzY1QjZBMTQ1QjQ3M0NFRTQ3QzlFOTYzN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/rLUiaoN+Wvh24MuyltYBWPHbAMVjjXP+LSYERj9l6cXiO3fr h8LYZ86LrAetoJjP9Pv8gQT51RI+5ylbxeZdEFh/8VtEGwi4J5Y6H119D0AOOGFX 2LRTDglbbKUD4Ka0nAPaIuT7CgXDeliQpudKF357gGWraLcVJL+T7ldQmSBAG9SN 18GUXmkgYCCjdiP/K+pEj9h7D9a/BZClsSjylAlgvMRmrsqpuAMKdUtyob3ejWEk osToO9r4XffjS58eQMmIM+9+fEx+211K0JvYjiU0tQmWKdpDrpmjFC5M6KB6U8PG mtN9MyCsa8OBJM3fU+sbU1/950UxI2HGJtO9AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUdSrhMiMqd8ZbahRbRzzuR8npY3wwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9kU3JoTWlNcWQ4WmJhaFJiUnp6dVI4bnBZM3cucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQGnUFAMA0GCSqGSIb3DQEBCwUAA4IBAQCvgROyKryMPm9yY4Oi2zUwgZU4Ho+C +TYF9Ga7FKoorlI4OgxSolPXMcz7c36yaKEjSKdnkWkT9JnyNolHKGTvuzAStnjR Z/J0F1SVJKZPQEw5GfCZcwr+/dnQLv+i8YsBDcBZ/bbagc8+Lan1VBbKdQqrnvJ2 MnVJuA7D6zM9DAg2+TW7xa6dqFoN4oCrzYeYqDYko9GrxwfZq5V/jFssLTxjIvAx XamS/HQMyO8UcnQF2BHmhPAWW3ZQTRpmXXn22baJBD4Lo2YInNJOw/JoHASDBcAc fkOw0QXz/iJmzKvpxZ2GElRTuqEI0i+c7fhrz6FIKPAwossA59AkZy+W -----END CERTIFICATE-----Generated at Sat Jul 5 09:30:53 2025 by rpki-client