$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/UimErMhtMyrgZEX4cQDcVIhhbJo.roa File: UimErMhtMyrgZEX4cQDcVIhhbJo.roa (raw, json) Hash identifier: F7kC0TuHqCbqm26ZCVKfanIrWbKx/HHUmQW7P2t2i18= Subject key identifier: 52:29:84:AC:C8:6D:33:2A:E0:64:45:F8:71:00:DC:54:88:61:6C:9A Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Certificate serial: 0501 Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/UimErMhtMyrgZEX4cQDcVIhhbJo.roa Signing time: Tue 10 Jun 2025 10:45:23 +0000 ROA not before: Tue 10 Jun 2025 10:45:23 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 240a:0:200::/41 maxlen: 41 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB Validity Not Before: Jun 10 10:45:23 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=522984ACC86D332AE06445F87100DC5488616C9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:4f:4d:94:3c:d7:8b:6e:01:c8:6a:1d:bc: 98:cc:8a:db:06:e5:53:44:fa:f6:47:a7:9c:9b:cb: 3d:e2:17:66:1a:2d:ee:df:a6:fc:35:81:94:77:c3: 87:6c:ce:51:15:9d:a5:60:52:4f:31:6c:6f:1f:9c: 98:dd:ba:4a:18:7b:8e:c3:0d:6d:cd:23:3d:b0:af: 1d:6a:83:e0:bd:05:50:71:e7:23:2c:d3:0b:62:45: 51:d3:1c:48:40:cb:53:a4:94:5d:dc:fa:0a:b2:d2: e5:e3:07:57:64:b2:fd:1e:42:29:60:cf:4a:a4:c6: 24:4b:f5:b8:86:cf:7c:b6:55:77:01:53:62:6e:58: 09:00:4c:71:a9:eb:db:fa:23:0f:98:7c:43:41:48: be:43:6c:a9:cb:13:94:86:84:2b:5a:37:c7:94:8e: 61:b9:6f:e6:3f:7b:93:ac:bb:59:e2:cd:b3:32:ac: d1:93:5b:9f:17:43:80:8f:bd:70:49:88:49:f8:66: de:63:35:05:d3:b8:c0:b0:3b:8e:b4:f0:34:13:ce: 80:c8:c4:db:6c:60:75:da:14:9b:4e:c2:ec:20:a9: 06:c2:7a:4e:5d:8e:44:ba:46:52:d4:19:60:c5:b4: 75:f0:77:8f:6e:89:0e:3a:d0:bb:1e:c1:f9:3b:fc: 78:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:29:84:AC:C8:6D:33:2A:E0:64:45:F8:71:00:DC:54:88:61:6C:9A X509v3 Authority Key Identifier: keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/UimErMhtMyrgZEX4cQDcVIhhbJo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 240a:0:200::/41 Signature Algorithm: sha256WithRSAEncryption 63:1a:7c:33:c2:db:24:94:19:d5:42:26:21:55:25:e3:57:e1: 8f:74:75:8f:fc:c0:ae:7c:b7:d6:22:36:c6:c8:4b:31:b4:cc: 9c:e0:0a:11:df:dc:6b:5d:09:38:ab:02:72:67:a1:c0:c7:5a: 86:d8:48:c0:30:67:35:de:95:94:ab:3e:94:79:d8:05:30:c4: 5e:e6:78:1a:c9:7c:30:d5:7c:0e:f5:18:25:f6:e4:3a:9e:ed: 66:fb:66:b5:17:39:b7:f0:c0:d1:95:19:fe:61:e7:55:66:2d: 9b:a2:da:03:6d:ea:bc:15:55:2e:18:46:78:d0:5d:8b:33:f0: d7:23:d8:fc:02:f1:57:71:4a:a9:3d:fc:12:0e:db:4f:1a:9f: 73:fd:24:06:80:fe:10:5f:39:13:10:68:20:4a:57:77:21:46: 4b:ce:93:f6:1c:6d:9e:50:96:8d:2a:95:1c:af:22:cf:09:96: 5e:b2:20:2c:bd:35:74:d2:2a:8a:de:b9:85:3a:3e:89:21:76: 7e:80:fd:87:8d:a9:f4:0d:b4:1f:39:b5:45:80:aa:5d:5b:b4: 9d:aa:cd:87:1e:aa:ff:a3:0a:fe:c0:26:e0:ac:39:2b:97:48: d4:8f:81:cd:20:cf:98:a1:d1:71:f1:bd:0a:51:17:d0:e5:04: 1b:1e:ee:1a -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTEy NjE3M0I4RDZCM0ZGMTBFM0YwM0ZCMDU2MEZFNjU1MURFQTJEQjAeFw0yNTA2MTAx MDQ1MjNaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDUyMjk4NEFDQzg2RDMz MkFFMDY0NDVGODcxMDBEQzU0ODg2MTZDOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDChU9NlDzXi24ByGodvJjMitsG5VNE+vZHp5ybyz3iF2YaLe7f pvw1gZR3w4dszlEVnaVgUk8xbG8fnJjdukoYe47DDW3NIz2wrx1qg+C9BVBx5yMs 0wtiRVHTHEhAy1OklF3c+gqy0uXjB1dksv0eQilgz0qkxiRL9biGz3y2VXcBU2Ju WAkATHGp69v6Iw+YfENBSL5DbKnLE5SGhCtaN8eUjmG5b+Y/e5Osu1nizbMyrNGT W58XQ4CPvXBJiEn4Zt5jNQXTuMCwO4608DQTzoDIxNtsYHXaFJtOwuwgqQbCek5d jkS6RlLUGWDFtHXwd49uiQ460Lsewfk7/HhJAgMBAAGjggIrMIICJzAdBgNVHQ4E FgQUUimErMhtMyrgZEX4cQDcVIhhbJowHwYDVR0jBBgwFoAUUSYXO41rP/EOPwP7 BWD+ZVHeotswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwMTI5L1VTWVhPNDFyUF9FT1B3UDdCV0QtWlZIZW90cy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VTWVhPNDFyUF9FT1B3UDdCV0Qt WlZIZW90cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8zMDEyOS9VaW1Fck1odE15cmdaRVg0Y1FEY1ZJaGhiSm8u cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcHJAoAAAIAMA0GCSqGSIb3DQEBCwUAA4IBAQBjGnwzwtsklBnVQiYh VSXjV+GPdHWP/MCufLfWIjbGyEsxtMyc4AoR39xrXQk4qwJyZ6HAx1qG2EjAMGc1 3pWUqz6UedgFMMRe5ngayXww1XwO9Rgl9uQ6nu1m+2a1Fzm38MDRlRn+YedVZi2b otoDbeq8FVUuGEZ40F2LM/DXI9j8AvFXcUqpPfwSDttPGp9z/SQGgP4QXzkTEGgg Sld3IUZLzpP2HG2eUJaNKpUcryLPCZZesiAsvTV00iqK3rmFOj6JIXZ+gP2Hjan0 DbQfObVFgKpdW7Sdqs2HHqr/owr+wCbgrDkrl0jUj4HNIM+YodFx8b0KURfQ5QQb Hu4a -----END CERTIFICATE-----Generated at Thu Jul 3 12:31:35 2025 by rpki-client