$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/3148/LQ_NZ-95TO5T9Ckpw9CS0ppim44.roa File: LQ_NZ-95TO5T9Ckpw9CS0ppim44.roa (raw, json) Hash identifier: 26HL98dDHT94wcrfJgMpNt/NfnBiXeyKeHtDTM9bBx0= Subject key identifier: 2D:0F:CD:67:EF:79:4C:EE:53:F4:29:29:C3:D0:92:D2:9A:62:9B:8E Certificate issuer: /CN=1A58DF54F62A6833085C76FA6198598BF904C0A3 Certificate serial: 21 Authority key identifier: 1A:58:DF:54:F6:2A:68:33:08:5C:76:FA:61:98:59:8B:F9:04:C0:A3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GljfVPYqaDMIXHb6YZhZi_kEwKM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3148/LQ_NZ-95TO5T9Ckpw9CS0ppim44.roa Signing time: Tue 10 Jun 2025 10:45:49 +0000 ROA not before: Tue 10 Jun 2025 10:45:49 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 17683 IP address blocks: 202.11.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3148/GljfVPYqaDMIXHb6YZhZi_kEwKM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3148/GljfVPYqaDMIXHb6YZhZi_kEwKM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GljfVPYqaDMIXHb6YZhZi_kEwKM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A58DF54F62A6833085C76FA6198598BF904C0A3 Validity Not Before: Jun 10 10:45:49 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=2D0FCD67EF794CEE53F42929C3D092D29A629B8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b9:5e:79:b3:9d:2d:95:5b:67:c0:cd:2b:49: 44:6b:8f:e5:1a:9f:1c:b4:b6:5e:0f:07:46:30:af: 5b:ab:ab:5a:e4:22:d1:50:08:01:a6:2c:b5:60:40: 8d:6d:7b:5e:9e:71:ae:cc:06:b7:b8:ce:1a:16:c9: 03:fd:0f:de:33:0e:6c:d0:01:a9:b7:6d:dd:39:d7: c4:75:da:73:a0:2e:b2:3d:f1:b3:18:15:7f:75:43: 61:0d:a1:b7:f2:7f:59:6b:ca:0f:73:d4:31:ca:f9: 8d:5e:18:12:38:12:df:6c:a8:3b:15:dc:59:1e:93: 83:07:12:62:1e:17:06:a3:58:66:7e:a7:35:05:0f: ae:94:11:19:21:73:0e:5e:be:89:cd:90:3c:af:24: 02:09:b5:3a:24:25:e7:66:1c:26:ba:7d:6b:35:8d: 8f:cb:76:c7:8b:d8:57:89:3f:d8:21:92:c2:b3:15: 0b:fa:c1:a1:b5:5e:c2:54:de:07:20:72:f5:cd:1c: 61:09:b5:48:7d:c2:97:ce:a3:b2:38:27:f3:a1:af: 39:58:25:7e:78:89:14:2e:cc:f1:30:3e:a2:d6:5f: 49:cf:e8:47:1a:83:1f:e1:bf:ef:85:47:b9:16:9a: d2:8f:e1:e7:36:33:3c:7d:ba:a4:00:2c:31:15:09: 5b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0F:CD:67:EF:79:4C:EE:53:F4:29:29:C3:D0:92:D2:9A:62:9B:8E X509v3 Authority Key Identifier: keyid:1A:58:DF:54:F6:2A:68:33:08:5C:76:FA:61:98:59:8B:F9:04:C0:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3148/GljfVPYqaDMIXHb6YZhZi_kEwKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GljfVPYqaDMIXHb6YZhZi_kEwKM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/3148/LQ_NZ-95TO5T9Ckpw9CS0ppim44.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.11.156.0/22 Signature Algorithm: sha256WithRSAEncryption 92:fe:c5:7e:fa:cd:2b:82:7e:4a:a0:5c:2b:17:52:22:a4:40: 99:ab:e3:4a:53:1d:76:3d:4e:fc:71:3b:37:41:c9:4c:3e:0b: 82:66:a6:57:2f:ec:df:12:6e:1d:03:b5:90:6b:d2:3e:0f:1d: cc:32:ad:b1:1b:27:64:df:5d:f6:f3:11:b1:d2:b9:35:4c:19: 70:82:99:d5:fa:6f:69:26:a8:5c:66:26:81:21:17:ed:27:08: bc:d3:8c:d7:57:15:25:c5:ca:cc:dd:2a:f7:d7:ae:eb:9e:1a: 91:9f:d1:13:7f:b2:8c:7c:16:6e:50:78:83:f3:35:0e:24:2a: 9d:dd:25:5f:7f:a7:bf:5a:ab:e7:d5:90:3d:e2:0b:d5:2e:79: 4f:11:c1:fb:c2:50:92:1b:4b:99:c5:a8:e3:e5:dc:73:2c:38: 44:e7:2a:23:e5:2d:40:9d:34:aa:f6:d6:be:7d:5e:8f:ad:df: ae:cb:d1:cf:d6:1a:81:ca:d2:7e:f8:45:9b:bb:52:31:11:0d: c9:47:ea:83:c9:8b:53:f7:6f:cc:83:c9:4c:8f:98:a9:32:09: 5d:ee:5d:e0:7e:82:5d:40:6f:e0:9d:96:b3:4b:bf:a4:77:70: 24:2b:8b:57:cd:e9:27:a7:fd:01:29:a4:b5:66:25:23:f4:29: 74:91:36:5a -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQTU4 REY1NEY2MkE2ODMzMDg1Qzc2RkE2MTk4NTk4QkY5MDRDMEEzMB4XDTI1MDYxMDEw NDU0OVoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoMkQwRkNENjdFRjc5NENF RTUzRjQyOTI5QzNEMDkyRDI5QTYyOUI4RTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMG5XnmznS2VW2fAzStJRGuP5RqfHLS2Xg8HRjCvW6urWuQi0VAI AaYstWBAjW17Xp5xrswGt7jOGhbJA/0P3jMObNABqbdt3TnXxHXac6Ausj3xsxgV f3VDYQ2ht/J/WWvKD3PUMcr5jV4YEjgS32yoOxXcWR6TgwcSYh4XBqNYZn6nNQUP rpQRGSFzDl6+ic2QPK8kAgm1OiQl52YcJrp9azWNj8t2x4vYV4k/2CGSwrMVC/rB obVewlTeByBy9c0cYQm1SH3Cl86jsjgn86GvOVglfniJFC7M8TA+otZfSc/oRxqD H+G/74VHuRaa0o/h5zYzPH26pAAsMRUJWwECAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQtD81n73lM7lP0KSnD0JLSmmKbjjAfBgNVHSMEGDAWgBQaWN9U9ipoMwhcdvph mFmL+QTAozAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzE0OC9HbGpmVlBZcWFETUlYSGI2WVpoWmlfa0V3S00uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9HbGpmVlBZcWFETUlYSGI2WVpoWmlf a0V3S00uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzE0OC9MUV9OWi05NVRPNVQ5Q2twdzlDUzBwcGltNDQucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCygucMA0GCSqGSIb3DQEBCwUAA4IBAQCS/sV++s0rgn5KoFwrF1IipECZ q+NKUx12PU78cTs3QclMPguCZqZXL+zfEm4dA7WQa9I+Dx3MMq2xGydk31328xGx 0rk1TBlwgpnV+m9pJqhcZiaBIRftJwi804zXVxUlxcrM3Sr3167rnhqRn9ETf7KM fBZuUHiD8zUOJCqd3SVff6e/Wqvn1ZA94gvVLnlPEcH7wlCSG0uZxajj5dxzLDhE 5yoj5S1AnTSq9ta+fV6Prd+uy9HP1hqBytJ++EWbu1IxEQ3JR+qDyYtT92/Mg8lM j5ipMgld7l3gfoJdQG/gnZazS7+kd3AkK4tXzeknp/0BKaS1ZiUj9Cl0kTZa -----END CERTIFICATE-----Generated at Sat Jul 5 08:24:39 2025 by rpki-client