$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/pob3afSmzCUhMwR91PNCoBnvR2o.roa File: pob3afSmzCUhMwR91PNCoBnvR2o.roa (raw, json) Hash identifier: U9YzFXPJ22MnIjFUdHYbd8gdSEYJI8xljiZCXjnMtic= Subject key identifier: A6:86:F7:69:F4:A6:CC:25:21:33:04:7D:D4:F3:42:A0:19:EF:47:6A Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: AC Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/pob3afSmzCUhMwR91PNCoBnvR2o.roa Signing time: Tue 01 Jul 2025 01:37:18 +0000 ROA not before: Tue 01 Jul 2025 01:37:18 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2514 IP address blocks: 160.248.232.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jul 1 01:37:18 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=A686F769F4A6CC252133047DD4F342A019EF476A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c3:f3:15:15:df:23:69:01:d5:07:89:99:92: 88:23:fa:f9:7e:9f:9e:45:7c:b1:b6:b2:51:ad:7f: 9a:b1:03:2b:45:65:39:ad:65:0c:65:a4:4b:68:1b: ed:f6:f7:ea:60:cd:57:86:ea:08:af:13:21:63:87: 6e:d2:e9:11:27:3c:79:3b:66:13:ba:48:fe:30:7e: fb:13:e2:4f:20:ac:87:b4:57:c5:8c:75:51:e1:bc: 07:a6:d5:02:83:2c:79:3e:0c:37:0c:05:7f:3b:e2: 2b:53:61:ca:d5:70:fc:a5:3a:8b:be:3e:ab:30:90: 97:5c:f5:ff:94:b6:61:4e:90:f2:cb:fd:0a:03:2f: fc:f1:3e:38:cb:ba:c2:ac:e7:f6:7d:d8:22:8d:82: 05:09:48:f5:de:24:78:5d:11:37:d9:96:73:18:b5: b2:a5:ac:6a:89:9c:ee:d2:6d:36:85:a7:49:07:1f: d5:1c:54:fd:ab:7b:9a:39:ee:77:de:69:13:b5:83: 1b:1a:7d:eb:b3:10:69:4c:f7:ba:ad:dd:37:cd:74: ad:8e:4e:33:25:6c:a9:e7:fb:8f:67:d0:0c:ed:36: c5:6a:2a:99:91:cb:17:bd:89:94:0b:aa:cb:7f:02: 18:73:42:a6:85:97:fd:dd:30:1b:e7:bc:01:55:06: 0c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:86:F7:69:F4:A6:CC:25:21:33:04:7D:D4:F3:42:A0:19:EF:47:6A X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/pob3afSmzCUhMwR91PNCoBnvR2o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.232.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:92:a7:40:8c:be:3b:c2:70:d1:ad:38:73:60:94:80:6a:b2: 41:a0:e4:34:6b:0d:a0:6c:b8:33:d3:50:fe:75:f4:09:d5:b9: 6d:55:a5:74:e3:e8:9d:a7:2d:77:6b:55:ee:4e:68:4b:d3:61: 65:b6:f3:56:eb:ee:10:18:af:bf:f4:81:7c:3f:72:b5:d2:5b: 54:c5:25:e7:b6:39:4b:1a:5c:e0:3a:78:73:2b:ae:ce:31:f8: 5a:bf:bf:a6:bc:df:17:08:a2:e2:af:70:d4:6a:16:b5:29:85: 3f:d2:e9:68:c2:60:06:11:d5:c0:3e:52:ab:9d:cd:33:d6:12: 3e:01:4f:ec:9f:7e:6f:71:4f:16:61:09:ad:e4:30:e3:b1:9b: c3:bd:d3:9c:24:61:45:47:19:60:9a:99:84:44:ee:5d:54:bc: 50:45:15:79:f2:c1:90:4e:e7:37:cd:ab:5f:f1:40:d2:ba:14: 3b:a5:2f:c8:39:e1:df:dc:25:34:21:8d:1d:03:dc:a9:d1:b7: a1:6e:58:34:9f:f1:70:1e:f9:e5:48:51:76:ce:b1:2a:ae:3c: ba:8b:21:75:6c:5f:c7:07:c7:42:d6:e0:0e:fd:82:25:4a:d9: 43:a3:bf:7a:f4:a5:c7:58:39:98:be:84:72:18:88:1a:04:fb: 4a:44:3c:d3 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDE0 MDBBQjg5QjZENzJGN0RCNDI0RjRBQUE4Q0NGRjY0MzhEM0Q0QTAeFw0yNTA3MDEw MTM3MThaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEE2ODZGNzY5RjRBNkND MjUyMTMzMDQ3REQ0RjM0MkEwMTlFRjQ3NkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7w/MVFd8jaQHVB4mZkogj+vl+n55FfLG2slGtf5qxAytFZTmt ZQxlpEtoG+329+pgzVeG6givEyFjh27S6REnPHk7ZhO6SP4wfvsT4k8grIe0V8WM dVHhvAem1QKDLHk+DDcMBX874itTYcrVcPylOou+PqswkJdc9f+UtmFOkPLL/QoD L/zxPjjLusKs5/Z92CKNggUJSPXeJHhdETfZlnMYtbKlrGqJnO7SbTaFp0kHH9Uc VP2re5o57nfeaRO1gxsafeuzEGlM97qt3TfNdK2OTjMlbKnn+49n0AztNsVqKpmR yxe9iZQLqst/AhhzQqaFl/3dMBvnvAFVBgw1AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUpob3afSmzCUhMwR91PNCoBnvR2owHwYDVR0jBBgwFoAU0UAKuJttcvfbQk9K qozP9kONPUowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzI5LzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtPTlBVby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBVQUt1SnR0Y3ZmYlFrOUtxb3pQOWtP TlBVby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOS9wb2IzYWZTbXpDVWhNd1I5MVBOQ29CbnZSMm8ucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCoPjoMA0GCSqGSIb3DQEBCwUAA4IBAQALkqdAjL47wnDRrThzYJSAarJBoOQ0 aw2gbLgz01D+dfQJ1bltVaV04+idpy13a1XuTmhL02FltvNW6+4QGK+/9IF8P3K1 0ltUxSXntjlLGlzgOnhzK67OMfhav7+mvN8XCKLir3DUaha1KYU/0ulowmAGEdXA PlKrnc0z1hI+AU/sn35vcU8WYQmt5DDjsZvDvdOcJGFFRxlgmpmERO5dVLxQRRV5 8sGQTuc3zatf8UDSuhQ7pS/IOeHf3CU0IY0dA9yp0behblg0n/FwHvnlSFF2zrEq rjy6iyF1bF/HB8dC1uAO/YIlStlDo7969KXHWDmYvoRyGIgaBPtKRDzT -----END CERTIFICATE-----Generated at Sat Jul 5 08:34:06 2025 by rpki-client