$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LOJazQLXpink5PnodBybIjmQ-jI.roa File: LOJazQLXpink5PnodBybIjmQ-jI.roa (raw, json) Hash identifier: ST7UiOofiVOa9lwBcE0fbqUzQwW8OntT1tijRnXjv2Q= Subject key identifier: 2C:E2:5A:CD:02:D7:A6:29:E4:E4:F9:E8:74:1C:9B:22:39:90:FA:32 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 75 Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LOJazQLXpink5PnodBybIjmQ-jI.roa Signing time: Tue 10 Jun 2025 10:56:51 +0000 ROA not before: Tue 10 Jun 2025 10:56:51 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 146.160.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Jun 10 10:56:51 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=2CE25ACD02D7A629E4E4F9E8741C9B223990FA32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:da:ac:ec:58:bb:85:cb:d9:88:2c:2f:58:03: 89:f8:34:57:d7:ee:e4:ee:2d:ef:a7:9d:bd:e4:19: 7e:e3:31:a6:dd:1b:07:7c:fa:52:2a:6f:7e:a6:c2: 31:64:6f:e9:a6:eb:cb:9e:b4:b4:8c:ca:d5:fd:6f: ca:62:8f:f3:42:15:05:d8:2b:ff:3f:e7:8e:65:49: 2b:3b:fd:6f:3d:47:77:86:e3:0b:d7:06:23:3c:13: a8:43:43:76:66:ae:42:d2:1e:91:2c:08:de:a3:a5: 98:25:26:c6:53:36:cc:63:41:39:7f:d4:b4:d5:e0: 0b:ee:bc:56:74:bc:fc:35:d7:be:74:ff:cf:90:8a: 5d:a3:b8:6f:75:89:a8:69:f8:9e:76:c4:70:83:d8: 21:ed:1d:28:ed:7a:02:df:f4:3b:6e:d3:40:c3:a1: f8:9a:e5:db:14:c0:3b:90:d7:fd:b6:4c:13:f5:93: 54:54:89:97:c0:3d:eb:ef:41:b3:0c:32:e9:f9:87: 70:dd:16:92:d1:b9:e4:6d:e3:fd:2f:b2:cb:40:42: 09:18:9d:4e:eb:c3:f5:f1:85:39:77:03:3d:89:39: 58:bd:f2:2e:04:98:01:5a:53:6b:6c:fb:c5:d1:5f: 87:5a:2d:a7:12:37:ae:ba:9c:14:09:7e:ca:05:3f: 7d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:E2:5A:CD:02:D7:A6:29:E4:E4:F9:E8:74:1C:9B:22:39:90:FA:32 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LOJazQLXpink5PnodBybIjmQ-jI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.160.128.0/17 Signature Algorithm: sha256WithRSAEncryption 1a:6b:2a:88:04:94:04:c5:39:07:43:ba:e8:82:00:e5:ab:6e: 62:7b:4b:93:b4:b4:c2:08:2b:2e:2e:07:d5:df:8b:b6:87:ac: e9:0c:87:34:45:c2:a5:5d:ab:7b:47:3b:07:e0:e4:d1:9b:2d: ab:0b:a9:58:8e:d7:9d:ad:f6:08:e3:81:50:5a:45:2f:fd:8e: 1c:52:a1:b8:6c:3b:22:f5:48:13:c3:ac:c4:d6:d3:66:3f:e6: 3a:29:a6:4f:5e:d9:77:bc:59:23:cc:2a:8d:11:24:40:35:70: cb:2a:35:ff:be:ce:c7:41:52:44:5d:4e:a9:a7:f6:53:4c:c7: 29:58:0a:d8:b9:bf:9f:57:ba:21:5d:15:47:25:2f:4b:34:98: 88:c4:f1:46:cc:43:94:53:2d:d0:51:c0:88:a1:ad:7e:a1:7b: 0e:c6:cb:12:66:ec:ed:09:13:48:6b:ef:c8:b0:d8:0b:81:9e: 49:f9:57:bb:bb:b6:82:74:b0:eb:fe:ac:bf:fa:8a:16:81:be: 9d:94:31:16:fd:a8:cd:99:65:e5:09:6b:8c:46:9d:b2:fb:3b: 19:87:24:b9:61:80:27:96:93:88:e4:1d:f3:37:35:2d:6a:dc: 9e:ac:3f:d8:12:eb:44:0a:8c:b6:fa:95:1f:e2:a1:e7:86:42: db:57:79:42 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI1MDYxMDEw NTY1MVoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoMkNFMjVBQ0QwMkQ3QTYy OUU0RTRGOUU4NzQxQzlCMjIzOTkwRkEzMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPLarOxYu4XL2YgsL1gDifg0V9fu5O4t76edveQZfuMxpt0bB3z6 UipvfqbCMWRv6abry560tIzK1f1vymKP80IVBdgr/z/njmVJKzv9bz1Hd4bjC9cG IzwTqENDdmauQtIekSwI3qOlmCUmxlM2zGNBOX/UtNXgC+68VnS8/DXXvnT/z5CK XaO4b3WJqGn4nnbEcIPYIe0dKO16At/0O27TQMOh+Jrl2xTAO5DX/bZME/WTVFSJ l8A96+9Bswwy6fmHcN0WktG55G3j/S+yy0BCCRidTuvD9fGFOXcDPYk5WL3yLgSY AVpTa2z7xdFfh1otpxI3rrqcFAl+ygU/fWUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQs4lrNAtemKeTk+eh0HJsiOZD6MjAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvTE9KYXpRTFhwaW5rNVBub2RCeWJJam1RLWpJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB5KggDANBgkqhkiG9w0BAQsFAAOCAQEAGmsqiASUBMU5B0O66IIA5atuYntL k7S0wggrLi4H1d+Ltoes6QyHNEXCpV2re0c7B+Dk0ZstqwupWI7Xna32COOBUFpF L/2OHFKhuGw7IvVIE8OsxNbTZj/mOimmT17Zd7xZI8wqjREkQDVwyyo1/77Ox0FS RF1Oqaf2U0zHKVgK2Lm/n1e6IV0VRyUvSzSYiMTxRsxDlFMt0FHAiKGtfqF7DsbL Embs7QkTSGvvyLDYC4GeSflXu7u2gnSw6/6sv/qKFoG+nZQxFv2ozZll5QlrjEad svs7GYckuWGAJ5aTiOQd8zc1LWrcnqw/2BLrRAqMtvqVH+Kh54ZC21d5Qg== -----END CERTIFICATE-----Generated at Thu Jul 3 15:47:44 2025 by rpki-client