$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/bnUZ1mvIKrvX3C89U_xkpJ9skwY.roa File: bnUZ1mvIKrvX3C89U_xkpJ9skwY.roa (raw, json) Hash identifier: ErLeyRGPRr7JEye+2X0zUUXSqvQn1zkegwFO1Sx+CnE= Subject key identifier: 6E:75:19:D6:6B:C8:2A:BB:D7:DC:2F:3D:53:FC:64:A4:9F:6C:93:06 Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 012D Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/bnUZ1mvIKrvX3C89U_xkpJ9skwY.roa Signing time: Tue 10 Jun 2025 10:46:28 +0000 ROA not before: Tue 10 Jun 2025 10:46:28 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 7530 IP address blocks: 210.231.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: Jun 10 10:46:28 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=6E7519D66BC82ABBD7DC2F3D53FC64A49F6C9306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e1:9a:e6:d5:21:23:79:02:19:ca:60:a9:2c: 04:4e:de:d3:bf:c9:29:fd:ab:67:cc:59:15:e6:01: 61:db:79:df:57:be:b4:b0:98:0d:6c:20:15:98:08: a5:2c:27:ce:d2:45:0b:79:21:ef:94:0c:d5:94:bf: 80:57:cf:90:5a:bf:d1:5c:e4:01:91:32:36:79:f7: 15:30:f7:fd:8b:6d:36:ec:63:c3:15:3b:6a:01:eb: e1:a2:88:38:ac:5f:96:e3:eb:f4:24:8b:b2:6d:23: df:98:3e:0f:c6:e6:9d:d6:ed:95:66:60:d0:1d:dc: 52:09:aa:b9:4c:32:d9:4b:56:e2:bf:5f:a1:89:37: 34:f0:b4:17:ad:39:c5:d2:d2:57:3d:1b:c0:43:f8: fd:36:d1:a5:b3:22:f8:71:a6:46:35:be:ad:86:6c: 13:db:b2:e2:f2:6b:59:82:be:bc:89:38:45:92:74: c2:fa:97:44:f3:8c:ed:e9:02:04:9f:aa:b4:ec:d5: 18:02:75:db:8e:0e:00:b5:f6:0d:11:6a:5a:7d:83: 16:58:a3:cc:df:3d:bb:33:bf:53:7a:af:f0:d2:6b: 07:a5:89:77:c8:a6:c8:61:d0:6c:86:2f:1f:40:05: 54:60:f7:6b:7f:1d:1d:30:9d:c0:ac:9a:7c:88:71: 2c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:75:19:D6:6B:C8:2A:BB:D7:DC:2F:3D:53:FC:64:A4:9F:6C:93:06 X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/bnUZ1mvIKrvX3C89U_xkpJ9skwY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.231.220.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:15:22:57:fa:6f:3e:e8:34:53:2d:eb:d8:03:9f:02:62:b7: 0d:6b:5b:9f:70:33:e1:02:10:ce:34:ac:13:1e:0e:83:f1:7c: 84:e5:66:cc:8e:db:36:ca:3a:7d:ca:eb:92:86:61:56:ab:fb: eb:04:97:e4:9f:f0:c2:f5:c8:96:51:46:c1:ef:21:2c:1d:16: 5e:dc:91:47:df:c8:c0:00:38:55:78:52:01:41:1c:e4:22:bc: e8:b1:da:41:31:5a:21:f9:ff:2b:57:ea:50:01:55:ee:bf:8c: 36:17:0f:cb:62:1f:51:8a:00:bf:c2:9d:60:f6:74:b8:e9:ac: c3:32:31:e2:66:68:01:0c:50:80:31:a7:20:68:19:87:27:cb: 5f:39:33:e3:5b:8b:4e:87:ce:c5:08:e8:c9:37:34:8d:90:d7: ac:d4:fc:be:81:b4:a4:64:60:5c:d9:eb:56:34:6e:fa:b1:bb: d9:c4:0f:61:96:c4:a0:db:22:41:5a:7e:62:4c:66:b7:3b:57: df:aa:79:e6:f1:bb:7e:c2:1d:87:2c:70:f3:6b:8a:af:f4:84: 8d:be:34:5a:52:6d:55:9e:8d:c2:cb:38:84:e1:f5:83:c1:fd: db:86:c7:46:ef:ba:da:11:57:3c:5b:54:b8:fe:c0:2d:01:65: df:49:c5:f4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNTA2MTAx MDQ2MjhaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDZFNzUxOUQ2NkJDODJB QkJEN0RDMkYzRDUzRkM2NEE0OUY2QzkzMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE4Zrm1SEjeQIZymCpLARO3tO/ySn9q2fMWRXmAWHbed9XvrSw mA1sIBWYCKUsJ87SRQt5Ie+UDNWUv4BXz5Bav9Fc5AGRMjZ59xUw9/2LbTbsY8MV O2oB6+GiiDisX5bj6/Qki7JtI9+YPg/G5p3W7ZVmYNAd3FIJqrlMMtlLVuK/X6GJ NzTwtBetOcXS0lc9G8BD+P020aWzIvhxpkY1vq2GbBPbsuLya1mCvryJOEWSdML6 l0TzjO3pAgSfqrTs1RgCdduODgC19g0Ralp9gxZYo8zfPbszv1N6r/DSaweliXfI pshh0GyGLx9ABVRg92t/HR0wncCsmnyIcSzPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbnUZ1mvIKrvX3C89U/xkpJ9skwYwHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0L2JuVVoxbXZJS3J2WDNDODlVX3hrcEo5c2t3WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALS59wwDQYJKoZIhvcNAQELBQADggEBAC8VIlf6bz7oNFMt69gDnwJitw1r W59wM+ECEM40rBMeDoPxfITlZsyO2zbKOn3K65KGYVar++sEl+Sf8ML1yJZRRsHv ISwdFl7ckUffyMAAOFV4UgFBHOQivOix2kExWiH5/ytX6lABVe6/jDYXD8tiH1GK AL/CnWD2dLjprMMyMeJmaAEMUIAxpyBoGYcny185M+Nbi06HzsUI6Mk3NI2Q16zU /L6BtKRkYFzZ61Y0bvqxu9nED2GWxKDbIkFafmJMZrc7V9+qeebxu37CHYcscPNr iq/0hI2+NFpSbVWejcLLOITh9YPB/duGx0bvutoRVzxbVLj+wC0BZd9JxfQ= -----END CERTIFICATE-----Generated at Sat Jul 5 10:01:10 2025 by rpki-client