$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30151/xHltWKd2VNP3XSjBlzxkWjk2z5I.roa File: xHltWKd2VNP3XSjBlzxkWjk2z5I.roa (raw, json) Hash identifier: Aio2xNbALmZ+OpBu7iGUEt+wdXovQNjBCs0FuxlboF0= Subject key identifier: C4:79:6D:58:A7:76:54:D3:F7:5D:28:C1:97:3C:64:5A:39:36:CF:92 Certificate issuer: /CN=99461ADF579F53CA2BC47EFFF9407E7FCB9CE56E Certificate serial: 14 Authority key identifier: 99:46:1A:DF:57:9F:53:CA:2B:C4:7E:FF:F9:40:7E:7F:CB:9C:E5:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mUYa31efU8orxH7_-UB-f8uc5W4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30151/xHltWKd2VNP3XSjBlzxkWjk2z5I.roa Signing time: Thu 01 May 2025 01:30:20 +0000 ROA not before: Thu 01 May 2025 01:30:20 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 7672 IP address blocks: 2404:200::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30151/mUYa31efU8orxH7_-UB-f8uc5W4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30151/mUYa31efU8orxH7_-UB-f8uc5W4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mUYa31efU8orxH7_-UB-f8uc5W4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99461ADF579F53CA2BC47EFFF9407E7FCB9CE56E Validity Not Before: May 1 01:30:20 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=C4796D58A77654D3F75D28C1973C645A3936CF92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:dd:4c:07:9e:e2:ff:61:c4:83:88:c3:c6:e5: 00:fc:19:c3:b8:7b:0b:be:ca:21:d8:52:6b:53:cc: 7b:f5:d6:a6:3b:a4:3c:a4:e5:9a:26:2e:a3:f9:53: c3:5a:e6:f5:2f:2b:07:31:d8:ed:4e:d3:e0:7e:7d: 88:2c:7d:1f:26:82:9b:f1:20:e5:71:12:fb:14:48: 7a:42:09:1f:01:ec:86:58:e6:42:e3:1d:a0:06:e4: 41:e9:01:f6:5f:63:a0:aa:ce:ea:71:d2:5f:1b:a0: 3a:f0:91:d9:ed:54:f7:bb:fb:da:35:a6:f2:e1:d0: d6:8f:7e:6c:a0:26:f3:34:81:bb:a7:09:4e:10:df: 7a:3d:bc:c9:ab:5c:d1:62:bc:89:52:6b:36:ec:fa: 57:af:30:63:66:5c:00:7b:68:81:5e:35:de:9b:34: c1:d0:ad:55:23:7d:7a:6a:2e:12:82:bf:a6:73:f8: 85:77:bf:8f:59:6b:27:de:ed:c5:09:ab:7e:64:44: f3:05:11:86:00:fb:fa:f9:63:2f:ea:71:cf:43:34: 74:4c:d2:73:8a:c4:e0:41:fe:1f:cb:01:8f:39:b0: e8:71:96:aa:bb:15:ef:5d:20:23:5a:e0:b5:23:b3: aa:7c:36:81:db:f6:1b:a3:5e:ef:33:bc:94:6a:c6: a8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:79:6D:58:A7:76:54:D3:F7:5D:28:C1:97:3C:64:5A:39:36:CF:92 X509v3 Authority Key Identifier: keyid:99:46:1A:DF:57:9F:53:CA:2B:C4:7E:FF:F9:40:7E:7F:CB:9C:E5:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30151/mUYa31efU8orxH7_-UB-f8uc5W4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mUYa31efU8orxH7_-UB-f8uc5W4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30151/xHltWKd2VNP3XSjBlzxkWjk2z5I.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:200::/32 Signature Algorithm: sha256WithRSAEncryption 8f:b9:55:d7:e0:57:28:67:d3:09:3e:99:bf:67:c0:0b:fd:07: f4:1a:c3:6b:5d:02:8f:be:39:af:8a:0a:1c:85:f1:e1:89:02: 11:ce:8b:ad:28:f9:76:ee:85:d6:39:2d:38:64:ef:f1:88:5c: d3:d6:fc:f4:3f:03:cf:36:3d:32:87:40:a1:ff:f7:e6:76:6c: 00:b9:22:19:bb:3a:dd:e5:fd:38:f6:b1:9b:54:78:a5:ac:a3: c9:68:b8:b7:cb:58:47:75:8f:f3:45:af:d9:61:c4:38:27:cb: 67:6d:3a:d0:c4:f6:94:09:a4:60:6e:b8:c0:ed:72:a6:86:c4: 3d:af:40:8a:2d:08:29:1c:c0:ac:8d:7c:b6:11:d0:00:3a:56: 77:d6:7e:6e:f9:ce:90:04:63:9a:7f:ee:bc:fe:61:d8:ec:58: 83:aa:31:e5:01:36:61:41:f4:b2:55:04:4e:41:58:75:85:7d: ed:d5:25:6d:ec:23:a9:2a:e1:73:96:b4:bf:2e:22:e0:cf:1d: cf:c3:50:99:80:00:69:7c:4b:49:21:20:af:9c:c8:21:8b:0a: aa:bb:da:c1:97:fc:bc:2f:62:a2:de:7d:2c:5f:e4:98:e7:b8: c1:e6:8d:6a:a7:36:84:a4:c2:60:7f:95:66:25:2a:73:8e:b6: 70:ee:07:90 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBFDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5OTQ2 MUFERjU3OUY1M0NBMkJDNDdFRkZGOTQwN0U3RkNCOUNFNTZFMB4XDTI1MDUwMTAx MzAyMFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoQzQ3OTZENThBNzc2NTRE M0Y3NUQyOEMxOTczQzY0NUEzOTM2Q0Y5MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMDdTAee4v9hxIOIw8blAPwZw7h7C77KIdhSa1PMe/XWpjukPKTl miYuo/lTw1rm9S8rBzHY7U7T4H59iCx9HyaCm/Eg5XES+xRIekIJHwHshljmQuMd oAbkQekB9l9joKrO6nHSXxugOvCR2e1U97v72jWm8uHQ1o9+bKAm8zSBu6cJThDf ej28yatc0WK8iVJrNuz6V68wY2ZcAHtogV413ps0wdCtVSN9emouEoK/pnP4hXe/ j1lrJ97txQmrfmRE8wURhgD7+vljL+pxz0M0dEzSc4rE4EH+H8sBjzmw6HGWqrsV 710gI1rgtSOzqnw2gdv2G6Ne7zO8lGrGqIMCAwEAAaOCAikwggIlMB0GA1UdDgQW BBTEeW1Yp3ZU0/ddKMGXPGRaOTbPkjAfBgNVHSMEGDAWgBSZRhrfV59TyivEfv/5 QH5/y5zlbjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzAxNTEvbVVZYTMxZWZVOG9yeEg3Xy1VQi1mOHVjNVc0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbVVZYTMxZWZVOG9yeEg3Xy1VQi1m OHVjNVc0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzMwMTUxL3hIbHRXS2QyVk5QM1hTakJsenhrV2prMno1SS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkBAIAMA0GCSqGSIb3DQEBCwUAA4IBAQCPuVXX4FcoZ9MJPpm/Z8AL /Qf0GsNrXQKPvjmvigochfHhiQIRzoutKPl27oXWOS04ZO/xiFzT1vz0PwPPNj0y h0Ch//fmdmwAuSIZuzrd5f049rGbVHilrKPJaLi3y1hHdY/zRa/ZYcQ4J8tnbTrQ xPaUCaRgbrjA7XKmhsQ9r0CKLQgpHMCsjXy2EdAAOlZ31n5u+c6QBGOaf+68/mHY 7FiDqjHlATZhQfSyVQROQVh1hX3t1SVt7COpKuFzlrS/LiLgzx3Pw1CZgABpfEtJ ISCvnMghiwqqu9rBl/y8L2Ki3n0sX+SY57jB5o1qpzaEpMJgf5VmJSpzjrZw7geQ -----END CERTIFICATE-----Generated at Sun May 18 21:54:21 2025 by rpki-client