$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30072/-bPZhPJDFbAnQc6AeyAZkJ9YgPg.roa File: -bPZhPJDFbAnQc6AeyAZkJ9YgPg.roa (raw, json) Hash identifier: 7u+YYDJIzorHtCk59CgbppTCGdkfzW3KkwSWoaAof9k= Subject key identifier: F9:B3:D9:84:F2:43:15:B0:27:41:CE:80:7B:20:19:90:9F:58:80:F8 Certificate issuer: /CN=58AE52C1F36BFAF852F410F1CAD0D3683D541261 Certificate serial: 46 Authority key identifier: 58:AE:52:C1:F3:6B:FA:F8:52:F4:10:F1:CA:D0:D3:68:3D:54:12:61 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WK5SwfNr-vhS9BDxytDTaD1UEmE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30072/-bPZhPJDFbAnQc6AeyAZkJ9YgPg.roa Signing time: Tue 10 Jun 2025 10:48:11 +0000 ROA not before: Tue 10 Jun 2025 10:48:11 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9824 IP address blocks: 2001:c30:40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30072/WK5SwfNr-vhS9BDxytDTaD1UEmE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30072/WK5SwfNr-vhS9BDxytDTaD1UEmE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WK5SwfNr-vhS9BDxytDTaD1UEmE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58AE52C1F36BFAF852F410F1CAD0D3683D541261 Validity Not Before: Jun 10 10:48:11 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=F9B3D984F24315B02741CE807B2019909F5880F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2c:61:91:4d:fb:a1:8e:09:62:47:59:d3:28: 1b:84:56:d4:d8:66:83:c8:c6:01:b6:b5:2e:a4:e4: e8:39:a1:02:d5:0a:13:f0:0a:2d:45:b9:89:66:3d: 62:d4:96:37:f5:0f:76:82:8d:1a:ac:97:f4:2d:c2: 78:7e:a3:3f:fa:85:68:94:bc:ac:8a:36:60:88:d8: 95:5a:27:f1:d6:0f:57:84:69:c9:f2:31:6e:60:93: f3:27:73:09:de:79:d1:6d:7a:57:dc:f1:ee:a6:50: bf:33:c4:5e:e7:6a:ae:b9:c5:67:ef:e9:41:36:9c: 0d:2b:17:72:88:a5:f8:87:e3:50:3c:06:fd:6b:06: c1:bc:90:24:22:da:da:f3:77:d1:3d:9f:8e:53:75: 48:39:79:ad:23:28:60:b1:f4:5c:3c:a9:92:9f:7b: 36:1c:ae:de:76:4c:8d:ec:ee:95:53:65:7f:7c:04: 83:60:b3:bc:2a:49:1c:7b:f1:53:9b:cc:96:8b:a5: 6c:55:74:fa:42:c3:6a:b4:2c:89:c8:fb:2f:4a:0a: e6:19:4f:43:1f:b1:f3:dc:67:fb:4c:da:86:4b:d4: eb:19:1a:19:91:1c:9b:d0:2e:5c:5b:e6:2e:2b:9d: d0:28:6a:12:44:11:a9:46:08:8d:56:94:a6:25:b6: cb:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B3:D9:84:F2:43:15:B0:27:41:CE:80:7B:20:19:90:9F:58:80:F8 X509v3 Authority Key Identifier: keyid:58:AE:52:C1:F3:6B:FA:F8:52:F4:10:F1:CA:D0:D3:68:3D:54:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30072/WK5SwfNr-vhS9BDxytDTaD1UEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WK5SwfNr-vhS9BDxytDTaD1UEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30072/-bPZhPJDFbAnQc6AeyAZkJ9YgPg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:c30:40::/48 Signature Algorithm: sha256WithRSAEncryption 48:3b:74:85:e4:d5:be:8b:2d:69:ed:62:68:9d:4c:67:b0:57: f8:91:fa:c0:19:3c:17:d7:a9:f1:28:af:da:0a:76:dd:e5:e6: 16:0b:79:ef:5b:d4:d6:00:6c:2b:63:57:cb:60:da:a0:b2:e6: 4c:9d:84:f3:9b:dc:e1:b1:a5:51:6c:ae:75:6c:10:0a:5c:5b: 2f:f9:a5:42:4f:b5:9e:65:cb:93:56:c7:3f:55:02:51:bd:ca: c9:97:34:b2:2b:b7:bb:23:43:84:ef:83:0e:30:05:24:9f:fa: eb:98:42:3e:9c:82:36:97:3d:7e:b4:8b:34:a3:e1:3f:9b:62: 1e:61:16:a0:50:5c:ef:93:ac:71:f5:a8:71:b5:1e:fb:c6:76: 37:ad:98:ac:5d:79:b0:b3:46:7c:e4:1a:7d:bc:bd:e3:d5:03: 6b:ce:57:86:0f:8b:fe:68:79:28:ee:b2:1a:58:4f:e9:e6:7e: 6d:95:c7:d5:82:db:a1:68:88:17:b8:bf:00:7c:b6:49:38:e7: 88:88:08:c2:a8:4c:df:f9:2b:87:39:b1:b2:3f:9b:b9:af:e1: d8:65:08:20:54:43:51:c9:f6:2f:b0:93:3b:48:5d:27:3c:52: 4e:5a:3e:43:f7:48:1a:ec:5b:45:fb:31:42:48:f3:28:a1:ab: 34:ea:2f:f8 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgIBRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OEFF NTJDMUYzNkJGQUY4NTJGNDEwRjFDQUQwRDM2ODNENTQxMjYxMB4XDTI1MDYxMDEw NDgxMVoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoRjlCM0Q5ODRGMjQzMTVC MDI3NDFDRTgwN0IyMDE5OTA5RjU4ODBGODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKssYZFN+6GOCWJHWdMoG4RW1Nhmg8jGAba1LqTk6DmhAtUKE/AK LUW5iWY9YtSWN/UPdoKNGqyX9C3CeH6jP/qFaJS8rIo2YIjYlVon8dYPV4RpyfIx bmCT8ydzCd550W16V9zx7qZQvzPEXudqrrnFZ+/pQTacDSsXcoil+IfjUDwG/WsG wbyQJCLa2vN30T2fjlN1SDl5rSMoYLH0XDypkp97Nhyu3nZMjezulVNlf3wEg2Cz vCpJHHvxU5vMloulbFV0+kLDarQsicj7L0oK5hlPQx+x89xn+0zahkvU6xkaGZEc m9AuXFvmLiud0ChqEkQRqUYIjVaUpiW2y9UCAwEAAaOCAiswggInMB0GA1UdDgQW BBT5s9mE8kMVsCdBzoB7IBmQn1iA+DAfBgNVHSMEGDAWgBRYrlLB82v6+FL0EPHK 0NNoPVQSYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwNzIvV0s1U3dmTnItdmhTOUJEeHl0RFRhRDFVRW1FLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvV0s1U3dmTnItdmhTOUJEeHl0RFRh RDFVRW1FLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMDcyLy1iUFpoUEpERmJBblFjNkFleUFaa0o5WWdQZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQwwAEAwDQYJKoZIhvcNAQELBQADggEBAEg7dIXk1b6LLWntYmid TGewV/iR+sAZPBfXqfEor9oKdt3l5hYLee9b1NYAbCtjV8tg2qCy5kydhPOb3OGx pVFsrnVsEApcWy/5pUJPtZ5ly5NWxz9VAlG9ysmXNLIrt7sjQ4Tvgw4wBSSf+uuY Qj6cgjaXPX60izSj4T+bYh5hFqBQXO+TrHH1qHG1HvvGdjetmKxdebCzRnzkGn28 vePVA2vOV4YPi/5oeSjushpYT+nmfm2Vx9WC26FoiBe4vwB8tkk454iICMKoTN/5 K4c5sbI/m7mv4dhlCCBUQ1HJ9i+wkztIXSc8Uk5aPkP3SBrsW0X7MUJI8yihqzTq L/g= -----END CERTIFICATE-----Generated at Sat Jul 5 12:40:45 2025 by rpki-client