$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/lyQuuVUrkzxrYbTlZ1gse71kSgw.roa File: lyQuuVUrkzxrYbTlZ1gse71kSgw.roa (raw, json) Hash identifier: +ECl6iWONrztnrPKXZIGcKtFaQRF4GEU4ybGfoWx6v8= Subject key identifier: 97:24:2E:B9:55:2B:93:3C:6B:61:B4:E5:67:58:2C:7B:BD:64:4A:0C Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: A8 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/lyQuuVUrkzxrYbTlZ1gse71kSgw.roa Signing time: Tue 01 Jul 2025 01:28:16 +0000 ROA not before: Tue 01 Jul 2025 01:28:16 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jul 1 01:28:16 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=97242EB9552B933C6B61B4E567582C7BBD644A0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:93:4e:c4:a5:04:77:0d:58:99:93:81:d8:f5: 58:46:5f:13:96:47:05:fe:1c:5c:a3:31:2a:ba:d4: 53:42:6c:bb:07:37:03:c9:e6:b2:25:b9:41:47:7b: e5:40:9e:20:d5:77:45:50:fd:a2:df:6e:05:d4:a7: e5:ff:5f:2f:59:44:17:b1:25:46:c2:13:71:2c:0f: 28:d2:16:fb:6e:fe:63:da:7a:02:98:8a:b5:d3:3f: de:4e:9e:90:55:a2:b4:42:c9:c0:8e:56:f0:c4:3d: cf:21:e1:b1:08:b8:d6:c0:af:c6:ac:bb:6c:db:0d: d9:da:de:ae:1f:2e:a8:d2:f7:35:a2:4f:a4:fb:49: 5b:56:9e:60:78:4e:f0:c9:12:ff:af:a8:20:2d:fb: 81:78:86:14:5c:5c:9c:02:7a:e2:32:b6:f0:73:04: c3:9c:57:03:98:b9:6a:27:7d:31:3b:57:99:d6:b8: 11:f7:3e:54:db:9a:91:6e:cc:5a:f4:08:8e:9f:b7: 7c:ca:6e:41:b6:c3:03:9a:41:d9:97:fe:8c:c7:9a: ab:49:79:ea:cb:6b:f2:aa:0a:e6:0e:77:ae:f4:60: 96:bc:71:74:b3:11:1c:96:bc:9e:6e:63:31:68:24: b0:9f:d2:4e:a3:11:5c:63:50:da:dc:43:fe:02:c8: 61:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:24:2E:B9:55:2B:93:3C:6B:61:B4:E5:67:58:2C:7B:BD:64:4A:0C X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/lyQuuVUrkzxrYbTlZ1gse71kSgw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.128.0/19 Signature Algorithm: sha256WithRSAEncryption bd:2f:53:bf:1d:ba:1e:f4:d2:43:c0:46:4b:14:de:45:94:d5: 6e:e8:f4:b6:79:21:b5:e0:7c:4f:9c:bf:3a:21:45:07:5d:20: 5a:7c:1a:14:b6:04:4b:56:4c:87:7b:03:ae:b4:e9:21:de:84: 04:c0:2e:e9:4f:ce:a0:c4:cb:bb:b0:46:5a:b1:dd:c9:c4:cb: 1f:2f:d7:da:17:b0:64:b4:9b:b3:c4:ff:74:f8:c7:ae:60:72: 7c:ea:79:1b:a7:1a:1f:85:4c:7a:65:ef:9c:97:ab:06:1d:0a: fe:9c:64:e1:9e:2a:f9:68:bb:0f:54:d3:87:e7:ae:12:62:a7: 91:d7:71:95:b4:8c:ec:9a:f4:94:f9:8d:a1:df:49:c5:d8:f7: 4d:db:5b:81:1f:a5:a1:8f:b3:41:53:63:12:96:3d:ec:86:74: af:a5:2b:d1:96:3a:39:b0:d8:33:3e:01:55:b6:cc:c5:c4:a7: 3b:9b:78:5f:bf:58:1b:4b:72:b9:e0:b6:57:be:a3:a7:74:b2: 6a:51:44:29:2b:b9:79:5b:82:8e:44:76:01:7c:30:27:f8:f5: 06:e6:22:de:e2:83:1c:7f:f4:d7:7a:94:ed:5c:31:7d:7c:a5: 93:9e:37:e7:5c:73:bd:d4:ea:52:9c:93:1e:9b:8d:57:e0:54: 10:af:14:6e -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTA3MDEw MTI4MTZaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk3MjQyRUI5NTUyQjkz M0M2QjYxQjRFNTY3NTgyQzdCQkQ2NDRBMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBk07EpQR3DViZk4HY9VhGXxOWRwX+HFyjMSq61FNCbLsHNwPJ 5rIluUFHe+VAniDVd0VQ/aLfbgXUp+X/Xy9ZRBexJUbCE3EsDyjSFvtu/mPaegKY irXTP95OnpBVorRCycCOVvDEPc8h4bEIuNbAr8asu2zbDdna3q4fLqjS9zWiT6T7 SVtWnmB4TvDJEv+vqCAt+4F4hhRcXJwCeuIytvBzBMOcVwOYuWonfTE7V5nWuBH3 PlTbmpFuzFr0CI6ft3zKbkG2wwOaQdmX/ozHmqtJeerLa/KqCuYOd670YJa8cXSz ERyWvJ5uYzFoJLCf0k6jEVxjUNrcQ/4CyGHBAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUlyQuuVUrkzxrYbTlZ1gse71kSgwwHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9seVF1dVZVcmt6eHJZYlRsWjFnc2U3MWtTZ3cucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFoPiAMA0GCSqGSIb3DQEBCwUAA4IBAQC9L1O/Hboe9NJDwEZLFN5FlNVu6PS2 eSG14HxPnL86IUUHXSBafBoUtgRLVkyHewOutOkh3oQEwC7pT86gxMu7sEZasd3J xMsfL9faF7BktJuzxP90+MeuYHJ86nkbpxofhUx6Ze+cl6sGHQr+nGThnir5aLsP VNOH564SYqeR13GVtIzsmvSU+Y2h30nF2PdN21uBH6Whj7NBU2MSlj3shnSvpSvR ljo5sNgzPgFVtszFxKc7m3hfv1gbS3K54LZXvqOndLJqUUQpK7l5W4KORHYBfDAn +PUG5iLe4oMcf/TXepTtXDF9fKWTnjfnXHO91OpSnJMem41X4FQQrxRu -----END CERTIFICATE-----Generated at Sat Jul 5 10:16:54 2025 by rpki-client