$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/CgbNhne8NGlUQSniEfZu5CNdVH4.roa File: CgbNhne8NGlUQSniEfZu5CNdVH4.roa (raw, json) Hash identifier: z0N7VJaKjtpBv7h2Wn+v6QJVn1lrABva4NWYd4PhmuI= Subject key identifier: 0A:06:CD:86:77:BC:34:69:54:41:29:E2:11:F6:6E:E4:23:5D:54:7E Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 0125 Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/CgbNhne8NGlUQSniEfZu5CNdVH4.roa Signing time: Thu 01 May 2025 01:28:41 +0000 ROA not before: Thu 01 May 2025 01:28:41 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 9607 IP address blocks: 124.147.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: May 1 01:28:41 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=0A06CD8677BC3469544129E211F66EE4235D547E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:86:71:81:ca:61:63:c1:c5:7a:42:0c:3a:f6: 96:ec:a6:2a:e1:fa:01:b7:b5:f7:92:16:42:97:cc: 2e:85:4c:ff:54:3b:96:00:8b:8f:26:c4:0d:7d:31: 47:f5:74:eb:93:74:60:5f:18:0f:76:ed:e5:7c:49: c9:07:50:5a:b9:3e:67:84:c0:c6:74:a1:90:ce:97: 75:cf:c8:d5:7f:8d:d7:db:db:10:ab:b1:81:44:17: ce:d6:a4:83:5a:4c:4b:2b:8b:2f:4b:e3:ea:aa:d7: fd:41:28:e8:a3:fe:18:a3:f0:7c:a7:53:a3:31:ac: c8:28:6c:2d:1b:37:64:66:0e:67:a9:49:3b:a1:1c: cb:9b:40:1c:39:9a:f7:46:0f:64:93:f4:60:c4:f1: 58:ea:52:41:69:2f:1f:5e:21:b1:22:0d:d5:ec:eb: b2:cb:a3:e9:3b:76:b4:cc:bf:2f:e9:ba:14:15:91: c4:2f:ea:30:ec:22:4f:cd:88:3d:04:89:03:00:62: ac:a8:c0:4e:8e:a0:a9:72:1c:08:d3:db:c6:1d:d4: a2:b1:25:1e:13:ba:96:04:05:61:c5:17:61:ed:5e: 76:e5:aa:98:76:7d:d6:54:c1:5d:b6:a9:6f:4e:96: ef:4b:44:b3:01:05:b1:66:18:ad:9f:c7:1a:6d:58: 79:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:06:CD:86:77:BC:34:69:54:41:29:E2:11:F6:6E:E4:23:5D:54:7E X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/CgbNhne8NGlUQSniEfZu5CNdVH4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.147.28.0/22 Signature Algorithm: sha256WithRSAEncryption af:f0:21:43:51:d3:4d:2f:b5:b0:f6:6c:71:e8:31:ea:30:96: 80:20:af:d9:15:32:ff:16:3d:2e:85:65:7b:fc:32:48:19:01: e1:f8:30:92:6c:a2:88:ee:b3:70:f7:58:66:17:58:fa:b4:1b: cf:95:3d:8d:c3:87:a8:ea:4e:27:b3:2e:e7:22:c2:d7:37:01: 9d:85:c2:bd:58:05:91:d7:83:b3:7a:56:15:cd:63:2c:d0:f5: c0:b6:16:0f:85:f6:4d:fd:62:3f:8c:0d:bf:5a:10:7a:df:bd: 77:e5:67:62:da:de:88:a8:ce:62:fa:b8:b0:ed:96:2d:69:5c: d3:bc:c3:f3:cb:17:0e:92:22:86:1d:44:90:b2:47:6a:0c:8c: 68:ec:bf:67:54:ed:80:86:99:a3:c6:94:86:26:41:0b:74:83: ef:ce:2e:63:f3:dc:90:f1:2f:4b:fa:ed:b8:81:46:5d:36:87: e6:5f:ed:9c:99:6c:a0:3d:4f:20:d0:11:63:e6:07:03:b2:27: 4f:ad:50:04:ab:86:bc:4f:e9:54:35:af:8d:1b:83:34:06:f2: aa:f9:f2:dc:be:91:91:ca:8d:c4:20:45:bf:40:a2:76:9e:fc: 05:b5:b5:2b:ea:da:9f:39:c9:ba:d3:57:22:cb:52:fa:a3:1c: 12:70:c5:11 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICASUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNTA1MDEw MTI4NDFaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBBMDZDRDg2NzdCQzM0 Njk1NDQxMjlFMjExRjY2RUU0MjM1RDU0N0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDhnGBymFjwcV6Qgw69pbspirh+gG3tfeSFkKXzC6FTP9UO5YA i48mxA19MUf1dOuTdGBfGA927eV8SckHUFq5PmeEwMZ0oZDOl3XPyNV/jdfb2xCr sYFEF87WpINaTEsriy9L4+qq1/1BKOij/hij8HynU6MxrMgobC0bN2RmDmepSTuh HMubQBw5mvdGD2ST9GDE8VjqUkFpLx9eIbEiDdXs67LLo+k7drTMvy/puhQVkcQv 6jDsIk/NiD0EiQMAYqyowE6OoKlyHAjT28Yd1KKxJR4TupYEBWHFF2HtXnblqph2 fdZUwV22qW9Olu9LRLMBBbFmGK2fxxptWHnLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCgbNhne8NGlUQSniEfZu5CNdVH4wHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0L0NnYk5obmU4TkdsVVFTbmlFZlp1NUNOZFZINC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ8kxwwDQYJKoZIhvcNAQELBQADggEBAK/wIUNR000vtbD2bHHoMeowloAg r9kVMv8WPS6FZXv8MkgZAeH4MJJsoojus3D3WGYXWPq0G8+VPY3Dh6jqTiezLuci wtc3AZ2Fwr1YBZHXg7N6VhXNYyzQ9cC2Fg+F9k39Yj+MDb9aEHrfvXflZ2La3oio zmL6uLDtli1pXNO8w/PLFw6SIoYdRJCyR2oMjGjsv2dU7YCGmaPGlIYmQQt0g+/O LmPz3JDxL0v67biBRl02h+Zf7ZyZbKA9TyDQEWPmBwOyJ0+tUASrhrxP6VQ1r40b gzQG8qr58ty+kZHKjcQgRb9Aonae/AW1tSvq2p85ybrTVyLLUvqjHBJwxRE= -----END CERTIFICATE-----Generated at Sun May 18 21:48:57 2025 by rpki-client