$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/0OfKBFbYU2lF-M7MBa3Va45axxQ.roa File: 0OfKBFbYU2lF-M7MBa3Va45axxQ.roa (raw, json) Hash identifier: lFnM1eMHlmcfDgW+DnDV1APRh8qPqvYBrdhTXf3rVdE= Subject key identifier: D0:E7:CA:04:56:D8:53:69:45:F8:CE:CC:05:AD:D5:6B:8E:5A:C7:14 Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 012E Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/0OfKBFbYU2lF-M7MBa3Va45axxQ.roa Signing time: Tue 10 Jun 2025 10:46:29 +0000 ROA not before: Tue 10 Jun 2025 10:46:29 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 7530 IP address blocks: 210.231.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: Jun 10 10:46:29 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=D0E7CA0456D8536945F8CECC05ADD56B8E5AC714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b0:62:54:cb:f8:a3:19:ad:7f:5d:d1:08:ac: 9d:03:cd:92:1b:21:67:ad:3d:74:80:b0:15:3f:df: 15:62:81:fb:33:24:8e:f8:6e:0b:0a:40:d1:80:76: ff:58:96:50:e6:f9:3d:bd:9f:cd:22:00:3d:04:85: 6f:b4:24:da:5c:7a:80:66:63:06:6b:91:c3:80:01: 91:95:a1:d5:a0:19:63:1d:6f:9f:05:83:53:7d:89: 77:3d:43:38:4a:82:5e:e3:68:78:c4:55:3d:34:ac: 28:7a:d8:fa:c0:3b:12:26:2e:6e:a5:4d:af:ed:8f: 4d:58:f5:49:54:e5:35:37:ce:13:e4:71:7a:57:a7: c0:06:0c:e5:e9:81:7b:d8:29:ec:e4:10:d0:68:37: 78:ac:d1:a6:f0:ac:bb:eb:e8:5f:c1:1b:d9:76:54: 52:22:42:68:36:01:a2:63:8d:cb:3b:fd:10:27:05: a6:b6:bb:a5:74:a8:c4:89:7b:7d:0c:84:a2:9e:33: 43:45:74:c0:1d:7e:15:06:a6:39:9b:b9:be:c2:66: 78:a6:10:51:da:24:a2:0e:e5:66:fd:63:c7:a0:05: 83:1c:b7:f6:b5:f7:89:50:57:f2:48:8e:00:9d:e9: 32:aa:35:85:17:c7:a9:52:69:2a:89:14:4a:d2:52: 29:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:E7:CA:04:56:D8:53:69:45:F8:CE:CC:05:AD:D5:6B:8E:5A:C7:14 X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/0OfKBFbYU2lF-M7MBa3Va45axxQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.231.208.0/20 Signature Algorithm: sha256WithRSAEncryption 3a:24:a9:64:c8:70:41:b4:98:f5:78:85:b3:e8:9c:5a:09:4d: 8c:80:5a:dc:25:d8:9b:15:e9:63:8d:59:93:5f:f9:88:04:9c: d2:30:22:c4:aa:03:89:6b:87:67:8e:2f:1d:f0:6f:fc:ca:ec: bb:2b:5d:33:8f:c5:89:5d:48:4c:b5:a6:3a:07:07:e3:f4:e6: 62:8c:f0:ed:cb:99:6b:75:5c:17:66:fa:cd:b1:c9:53:6c:97: a1:39:5d:3e:07:c1:c0:c4:c3:ba:6b:63:34:a2:b0:42:e0:17: 84:79:70:bb:37:50:d4:30:08:d0:b0:fe:15:70:c1:e2:3c:7f: 1a:af:14:b6:1a:17:bd:21:7f:66:ad:f5:39:75:4a:80:c9:6b: e2:fd:e4:93:ec:9a:a3:d6:d1:fd:a7:a4:d9:56:09:14:c6:f0: b3:67:35:6a:5f:47:31:ec:4e:e1:d5:60:76:82:b4:c0:cb:eb: 32:19:2d:64:d2:13:7d:92:2f:a3:6a:37:a9:f6:96:32:08:b4: 14:09:78:27:17:d3:9f:57:f1:93:5c:46:77:ec:62:20:95:71: f8:d1:b1:ea:a1:b4:40:8d:63:ba:27:07:0f:37:13:cf:d4:5f: d1:2e:56:64:72:e7:d7:f5:be:ad:11:a1:1e:1e:55:ed:70:01: 65:39:f1:a4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNTA2MTAx MDQ2MjlaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKEQwRTdDQTA0NTZEODUz Njk0NUY4Q0VDQzA1QURENTZCOEU1QUM3MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFsGJUy/ijGa1/XdEIrJ0DzZIbIWetPXSAsBU/3xVigfszJI74 bgsKQNGAdv9YllDm+T29n80iAD0EhW+0JNpceoBmYwZrkcOAAZGVodWgGWMdb58F g1N9iXc9QzhKgl7jaHjEVT00rCh62PrAOxImLm6lTa/tj01Y9UlU5TU3zhPkcXpX p8AGDOXpgXvYKezkENBoN3is0abwrLvr6F/BG9l2VFIiQmg2AaJjjcs7/RAnBaa2 u6V0qMSJe30MhKKeM0NFdMAdfhUGpjmbub7CZnimEFHaJKIO5Wb9Y8egBYMct/a1 94lQV/JIjgCd6TKqNYUXx6lSaSqJFErSUimPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU0OfKBFbYU2lF+M7MBa3Va45axxQwHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0LzBPZktCRmJZVTJsRi1NN01CYTNWYTQ1YXh4US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATS59AwDQYJKoZIhvcNAQELBQADggEBADokqWTIcEG0mPV4hbPonFoJTYyA Wtwl2JsV6WONWZNf+YgEnNIwIsSqA4lrh2eOLx3wb/zK7LsrXTOPxYldSEy1pjoH B+P05mKM8O3LmWt1XBdm+s2xyVNsl6E5XT4HwcDEw7prYzSisELgF4R5cLs3UNQw CNCw/hVwweI8fxqvFLYaF70hf2at9Tl1SoDJa+L95JPsmqPW0f2npNlWCRTG8LNn NWpfRzHsTuHVYHaCtMDL6zIZLWTSE32SL6NqN6n2ljIItBQJeCcX059X8ZNcRnfs YiCVcfjRseqhtECNY7onBw83E8/UX9EuVmRy59f1vq0RoR4eVe1wAWU58aQ= -----END CERTIFICATE-----Generated at Sat Jul 5 06:02:43 2025 by rpki-client