$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qYJk3ckJgbKJDfL0iC2HweMBIiE.roa File: qYJk3ckJgbKJDfL0iC2HweMBIiE.roa (raw, json) Hash identifier: 0LnxydPHo+vXMjeORouduCAEGQkxRGnb8fHcZlkaelg= Subject key identifier: A9:82:64:DD:C9:09:81:B2:89:0D:F2:F4:88:2D:87:C1:E3:01:22:21 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 7B Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qYJk3ckJgbKJDfL0iC2HweMBIiE.roa Signing time: Tue 10 Jun 2025 11:20:24 +0000 ROA not before: Tue 10 Jun 2025 11:20:24 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 9605 IP address blocks: 157.112.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Jun 10 11:20:24 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=A98264DDC90981B2890DF2F4882D87C1E3012221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:79:cb:12:c2:0b:d5:23:96:ee:c5:0c:7a:bf: e6:65:10:f0:5c:46:58:35:80:6a:19:2c:32:5a:16: 3e:92:d4:71:b8:4a:61:df:ca:d2:8e:1c:09:ad:f6: 3a:38:80:65:af:12:f7:e8:65:55:5a:7f:3d:c4:d6: 32:44:d8:c9:a9:9a:4e:5a:95:e8:fb:72:78:70:c7: 32:0a:c7:4e:c5:8b:96:fc:0c:ba:15:43:2d:c8:25: 0f:68:1a:a5:37:0d:85:91:cc:15:24:2b:98:1a:44: 3d:d6:93:66:e9:f9:98:e1:6c:ab:d8:33:b8:ab:b4: 60:85:52:bc:f5:a5:52:2e:4e:ec:b4:72:be:c4:2e: 72:0c:7b:a6:35:16:8f:0a:cc:55:b2:43:8e:d9:cb: 73:1b:e6:e5:fa:b1:35:c6:df:67:1d:1c:64:6d:a0: 53:41:1d:37:13:25:58:0f:8e:98:c2:01:cc:c8:f7: 08:46:d1:53:e4:81:51:24:e2:0e:db:8e:a5:3d:1b: b7:4b:df:2a:49:5a:cb:1b:c4:de:fb:b2:1f:53:4c: 21:3b:cc:b0:76:e0:51:02:2c:4e:7f:ff:6a:11:53: 1d:c0:16:de:eb:b9:cd:92:a0:34:40:e0:c0:08:1d: 1f:cb:7b:3a:92:1a:4b:f2:f9:06:6f:8f:07:ed:4e: f9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:82:64:DD:C9:09:81:B2:89:0D:F2:F4:88:2D:87:C1:E3:01:22:21 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qYJk3ckJgbKJDfL0iC2HweMBIiE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.112.0.0/19 Signature Algorithm: sha256WithRSAEncryption 39:2c:4b:2c:29:eb:2d:fc:c3:39:34:39:6d:5e:8a:73:fc:a6: f2:e5:75:e1:38:0d:2b:5d:77:4f:c2:6c:27:58:b4:b7:e1:9a: 86:bc:91:aa:2d:01:8a:ca:9e:4b:aa:2c:ec:ed:c5:9f:32:23: 5c:2d:c6:b2:3d:a5:04:3f:60:d5:bb:a0:a0:f7:68:9e:12:06: e8:60:e8:d9:45:f0:da:e6:5e:82:e0:7c:bd:a2:68:0c:af:57: cb:74:50:9d:d3:e4:8f:39:fb:db:0f:d8:a9:4e:c7:7e:0b:e1: e4:a0:0f:bc:56:b3:67:67:f4:47:cb:e4:0c:37:22:32:ab:64: 1d:3e:15:a6:a4:f6:6b:22:12:4e:97:f1:74:8d:c6:14:0e:e7: 95:fa:d4:8e:93:b5:e5:bc:21:fe:a2:7a:85:41:75:aa:61:9e: 7e:3d:bc:20:ef:eb:23:0a:5f:f6:8c:4b:28:69:bd:a7:90:b9: 92:2d:5e:28:ef:7f:e8:4f:a3:7c:2b:36:36:82:7e:90:a4:4d: 17:e7:66:da:73:99:30:2e:2e:9f:aa:1e:d9:28:22:03:ad:0b: 8b:06:d6:fe:07:51:00:a5:52:db:0a:2d:70:8d:79:4b:45:a7: 37:67:e0:8c:23:da:a7:f3:c3:03:b8:ed:b9:95:bf:db:74:80: 72:0d:ca:b5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBezANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI1MDYxMDEx MjAyNFoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoQTk4MjY0RERDOTA5ODFC Mjg5MERGMkY0ODgyRDg3QzFFMzAxMjIyMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKt5yxLCC9Ujlu7FDHq/5mUQ8FxGWDWAahksMloWPpLUcbhKYd/K 0o4cCa32OjiAZa8S9+hlVVp/PcTWMkTYyamaTlqV6PtyeHDHMgrHTsWLlvwMuhVD LcglD2gapTcNhZHMFSQrmBpEPdaTZun5mOFsq9gzuKu0YIVSvPWlUi5O7LRyvsQu cgx7pjUWjwrMVbJDjtnLcxvm5fqxNcbfZx0cZG2gU0EdNxMlWA+OmMIBzMj3CEbR U+SBUSTiDtuOpT0bt0vfKklayxvE3vuyH1NMITvMsHbgUQIsTn//ahFTHcAW3uu5 zZKgNEDgwAgdH8t7OpIaS/L5Bm+PB+1O+ecCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSpgmTdyQmBsokN8vSILYfB4wEiITAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvcVlKazNja0pnYktKRGZMMGlDMkh3ZU1CSWlFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBZ1wADANBgkqhkiG9w0BAQsFAAOCAQEAOSxLLCnrLfzDOTQ5bV6Kc/ym8uV1 4TgNK113T8JsJ1i0t+GahryRqi0BisqeS6os7O3FnzIjXC3Gsj2lBD9g1bugoPdo nhIG6GDo2UXw2uZeguB8vaJoDK9Xy3RQndPkjzn72w/YqU7Hfgvh5KAPvFazZ2f0 R8vkDDciMqtkHT4VpqT2ayISTpfxdI3GFA7nlfrUjpO15bwh/qJ6hUF1qmGefj28 IO/rIwpf9oxLKGm9p5C5ki1eKO9/6E+jfCs2NoJ+kKRNF+dm2nOZMC4un6oe2Sgi A60LiwbW/gdRAKVS2wotcI15S0WnN2fgjCPap/PDA7jtuZW/23SAcg3KtQ== -----END CERTIFICATE-----Generated at Thu Jul 3 12:33:34 2025 by rpki-client