$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30073/aFw2YbOul-slafQzkKYklW8wufI.roa File: aFw2YbOul-slafQzkKYklW8wufI.roa (raw, json) Hash identifier: pMw5Nz/NqnIDusRvTwxNNiYjWEyNUIzb5ER1Z0Qzlt0= Subject key identifier: 68:5C:36:61:B3:AE:97:EB:25:69:F4:33:90:A6:24:95:6F:30:B9:F2 Certificate issuer: /CN=B3C7A19804F728E8FF5E45BEC8DA582105A3DA9D Certificate serial: 59 Authority key identifier: B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/aFw2YbOul-slafQzkKYklW8wufI.roa Signing time: Thu 01 May 2025 01:32:24 +0000 ROA not before: Thu 01 May 2025 01:32:24 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 4713 IP address blocks: 2400:4000::/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 00:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3C7A19804F728E8FF5E45BEC8DA582105A3DA9D Validity Not Before: May 1 01:32:24 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=685C3661B3AE97EB2569F43390A624956F30B9F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f0:20:48:cf:9b:6b:87:1b:c4:77:f6:dd:b9: 88:ac:b5:8a:83:82:2c:a1:d7:c9:9a:6c:2c:06:10: 7f:09:25:90:0a:cc:65:3b:c3:de:a5:e0:da:77:40: 6b:86:25:05:73:44:e9:f0:64:78:56:c9:d9:b6:98: b3:d6:5a:3b:54:bd:f9:c1:5a:2e:44:44:9e:a6:d8: 4e:26:9f:85:6b:d7:a3:ef:5e:73:a5:c7:82:e6:45: 54:a1:e4:a5:df:d1:ba:6e:a1:22:f5:4e:f4:cf:fb: 96:ea:2e:04:89:5a:58:4c:79:a6:80:19:20:cc:44: 6c:8c:b7:ee:4f:60:06:03:3d:d4:30:d2:8b:af:53: c7:11:9f:a6:c0:df:16:e9:ef:f9:e4:a5:42:26:6b: 36:cc:6e:11:ed:1d:58:18:74:35:8e:b1:be:0d:94: 7f:20:a0:04:5f:4c:ab:42:ca:37:3d:cc:fd:d9:09: 3a:2f:a6:c6:32:84:90:22:69:9b:e9:d6:37:52:49: 0e:f0:5e:72:8b:1d:9a:89:f8:b2:ba:d4:9b:ee:eb: 50:a5:a5:40:34:ac:4b:04:a5:05:b4:04:2d:7e:02: 1a:8b:32:10:70:49:ac:7e:08:53:11:aa:7c:c1:8e: c0:32:4d:ce:b4:ce:2f:cc:d4:79:75:0b:1d:f7:33: 7d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:5C:36:61:B3:AE:97:EB:25:69:F4:33:90:A6:24:95:6F:30:B9:F2 X509v3 Authority Key Identifier: keyid:B3:C7:A1:98:04:F7:28:E8:FF:5E:45:BE:C8:DA:58:21:05:A3:DA:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/s8ehmAT3KOj_XkW-yNpYIQWj2p0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/s8ehmAT3KOj_XkW-yNpYIQWj2p0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30073/aFw2YbOul-slafQzkKYklW8wufI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:4000::/22 Signature Algorithm: sha256WithRSAEncryption 22:4e:c6:0d:86:49:5b:79:a2:6c:1a:ca:d1:5b:13:db:6c:fa: 6d:fa:72:04:89:a5:86:66:1d:09:ab:14:c5:ed:46:2d:e4:b6: 6a:e8:7a:82:16:33:ad:05:64:c7:f9:9a:dd:ee:be:16:1f:38: d0:86:0b:d3:36:49:9c:8d:f8:6e:4d:a5:c6:54:28:f9:d9:e5: c4:e8:e3:76:65:ee:06:a7:8d:59:18:18:8a:ad:ef:fc:22:6c: 0b:95:72:3f:12:9e:d5:6a:49:72:f2:94:25:d4:0e:0d:12:dd: b8:e8:eb:c8:a4:02:bf:3e:64:a4:1a:c7:01:a6:04:44:37:d5: 14:63:1b:14:aa:b4:e5:10:8e:a7:fa:4e:f5:f0:d9:a5:64:42: ea:20:f0:99:50:b6:32:39:bf:ea:e8:41:9b:24:36:64:2a:b7: 82:e9:8f:85:01:e4:03:6c:cd:86:90:d8:8b:fe:5e:d5:ef:d6: db:b2:d9:0d:75:81:e1:3f:8b:be:e9:b3:74:3c:f0:6e:c9:94: 46:75:25:e4:21:6c:7e:d5:45:48:f9:83:01:d9:93:52:29:52: 1f:51:96:65:1f:41:14:66:41:36:60:81:25:4b:42:64:85:cf: df:15:42:f3:df:00:4e:43:91:d9:a8:29:18:7e:04:45:d7:03: 91:5e:da:c3 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCM0M3 QTE5ODA0RjcyOEU4RkY1RTQ1QkVDOERBNTgyMTA1QTNEQTlEMB4XDTI1MDUwMTAx MzIyNFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNjg1QzM2NjFCM0FFOTdF QjI1NjlGNDMzOTBBNjI0OTU2RjMwQjlGMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOjwIEjPm2uHG8R39t25iKy1ioOCLKHXyZpsLAYQfwklkArMZTvD 3qXg2ndAa4YlBXNE6fBkeFbJ2baYs9ZaO1S9+cFaLkREnqbYTiafhWvXo+9ec6XH guZFVKHkpd/Rum6hIvVO9M/7luouBIlaWEx5poAZIMxEbIy37k9gBgM91DDSi69T xxGfpsDfFunv+eSlQiZrNsxuEe0dWBh0NY6xvg2UfyCgBF9Mq0LKNz3M/dkJOi+m xjKEkCJpm+nWN1JJDvBecosdmon4srrUm+7rUKWlQDSsSwSlBbQELX4CGosyEHBJ rH4IUxGqfMGOwDJNzrTOL8zUeXULHfczfRkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRoXDZhs66X6yVp9DOQpiSVbzC58jAfBgNVHSMEGDAWgBSzx6GYBPco6P9eRb7I 2lghBaPanTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAwNzMvczhlaG1BVDNLT2pfWGtXLXlOcFlJUVdqMnAwLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvczhlaG1BVDNLT2pfWGtXLXlOcFlJ UVdqMnAwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMDczL2FGdzJZYk91bC1zbGFmUXprS1lrbFc4d3VmSS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgACMAYDBAIkAEAwDQYJKoZIhvcNAQELBQADggEBACJOxg2GSVt5omwaytFbE9ts +m36cgSJpYZmHQmrFMXtRi3ktmroeoIWM60FZMf5mt3uvhYfONCGC9M2SZyN+G5N pcZUKPnZ5cTo43Zl7ganjVkYGIqt7/wibAuVcj8SntVqSXLylCXUDg0S3bjo68ik Ar8+ZKQaxwGmBEQ31RRjGxSqtOUQjqf6TvXw2aVkQuog8JlQtjI5v+roQZskNmQq t4Lpj4UB5ANszYaQ2Iv+XtXv1tuy2Q11geE/i77ps3Q88G7JlEZ1JeQhbH7VRUj5 gwHZk1IpUh9RlmUfQRRmQTZggSVLQmSFz98VQvPfAE5DkdmoKRh+BEXXA5Fe2sM= -----END CERTIFICATE-----Generated at Sat May 17 04:29:14 2025 by rpki-client