$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/gaIp2PTKDss6G0iK8BZK3a9w_Z0.roa File: gaIp2PTKDss6G0iK8BZK3a9w_Z0.roa (raw, json) Hash identifier: /aIlc2OS9hlnuWkP9f8wkaLvVAArXgRjPkai7Ejv5Yo= Subject key identifier: 81:A2:29:D8:F4:CA:0E:CB:3A:1B:48:8A:F0:16:4A:DD:AF:70:FD:9D Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 0123 Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/gaIp2PTKDss6G0iK8BZK3a9w_Z0.roa Signing time: Thu 01 May 2025 01:28:37 +0000 ROA not before: Thu 01 May 2025 01:28:37 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 9607 IP address blocks: 124.147.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: May 1 01:28:37 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=81A229D8F4CA0ECB3A1B488AF0164ADDAF70FD9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:dd:fc:6b:e0:c5:90:be:e2:2d:68:ef:f0:aa: 06:6d:d2:d8:0d:20:18:7b:05:8d:d7:5e:17:6d:ed: db:ae:81:28:f8:24:d2:11:fc:c2:ef:fe:a0:ed:eb: 8e:c1:9d:37:8d:e6:6a:1b:21:fa:2c:d1:73:bf:0e: cd:f4:fa:ea:8a:dc:35:a5:59:0c:df:2d:66:f2:fb: 4b:9b:01:12:8f:4c:50:b7:3c:3f:1b:19:c8:2b:4a: fb:76:cd:e3:17:a3:12:98:8e:4b:f0:26:7f:8d:92: df:3f:0f:de:40:3a:53:91:fb:55:65:e5:ea:52:15: 93:ca:20:e6:51:70:49:25:e9:b8:30:68:56:6d:9e: 94:f7:50:3f:43:b8:87:45:1a:58:12:e5:4a:c4:76: bc:ad:e2:18:02:49:67:4d:99:18:b1:42:7e:ec:c3: 93:ff:d0:62:3d:b5:62:db:35:53:80:42:88:d6:3f: f3:1b:4d:b3:54:f8:48:d1:29:e3:44:fa:9a:71:95: 43:3c:4f:1d:84:ea:16:62:ca:7b:5b:85:55:ae:38: ef:42:ae:62:ce:44:c4:bb:e1:99:4d:8f:4b:d5:24: 1e:9f:f3:43:9f:ae:6e:29:ca:79:de:36:50:53:c7: 13:1b:f1:16:db:55:94:bc:0c:1d:81:2a:14:33:b5: 90:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A2:29:D8:F4:CA:0E:CB:3A:1B:48:8A:F0:16:4A:DD:AF:70:FD:9D X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/gaIp2PTKDss6G0iK8BZK3a9w_Z0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.147.16.0/21 Signature Algorithm: sha256WithRSAEncryption 9e:58:7e:01:af:c6:65:7c:63:7a:3e:cc:a2:71:f1:88:64:81: d0:21:c1:7d:59:0b:44:be:b9:2f:3e:21:8e:06:ad:1b:cf:94: ba:f3:b0:8d:09:e8:3e:b9:ad:d2:b6:6a:2e:e9:11:2e:cc:33: f9:fb:14:79:50:3b:cf:6b:b1:62:c8:ed:da:b2:a1:33:98:57: 2b:e8:d6:6b:c3:96:25:d6:7f:81:8b:5f:cb:2b:bc:57:c3:1c: bf:43:e7:22:25:09:20:5d:0d:8c:f2:3e:ca:d0:b9:9b:65:d7: c1:e4:b7:5a:20:18:f9:b8:c2:93:4b:ae:04:52:87:3d:f6:9a: ee:a6:bd:7a:96:12:ce:e4:00:9e:3e:79:b7:22:69:46:e3:b7: 5e:2e:03:3d:d6:9a:36:07:95:fa:4a:5e:28:d7:24:fd:11:3e: c0:de:20:a5:78:81:78:c6:6d:21:51:84:5e:86:0a:aa:d1:ad: ff:62:ce:a7:6b:01:24:81:f3:34:50:84:82:4e:16:8a:f1:8b: 9d:11:98:a1:1c:b7:2f:e8:2e:de:d9:7e:c8:ce:62:e1:4d:55: 6e:a4:ba:eb:bc:71:66:1d:e9:c0:55:9b:2e:9c:26:e5:09:49: e2:89:ef:b5:4e:98:fb:24:aa:b2:93:e3:24:e5:cd:17:45:74: de:4c:81:b2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICASMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNTA1MDEw MTI4MzdaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDgxQTIyOUQ4RjRDQTBF Q0IzQTFCNDg4QUYwMTY0QUREQUY3MEZEOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCe3fxr4MWQvuItaO/wqgZt0tgNIBh7BY3XXhdt7duugSj4JNIR /MLv/qDt647BnTeN5mobIfos0XO/Ds30+uqK3DWlWQzfLWby+0ubARKPTFC3PD8b GcgrSvt2zeMXoxKYjkvwJn+Nkt8/D95AOlOR+1Vl5epSFZPKIOZRcEkl6bgwaFZt npT3UD9DuIdFGlgS5UrEdryt4hgCSWdNmRixQn7sw5P/0GI9tWLbNVOAQojWP/Mb TbNU+EjRKeNE+ppxlUM8Tx2E6hZiyntbhVWuOO9CrmLORMS74ZlNj0vVJB6f80Of rm4pynneNlBTxxMb8RbbVZS8DB2BKhQztZCVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUgaIp2PTKDss6G0iK8BZK3a9w/Z0wHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0L2dhSXAyUFRLRHNzNkcwaUs4QlpLM2E5d19aMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN8kxAwDQYJKoZIhvcNAQELBQADggEBAJ5YfgGvxmV8Y3o+zKJx8YhkgdAh wX1ZC0S+uS8+IY4GrRvPlLrzsI0J6D65rdK2ai7pES7MM/n7FHlQO89rsWLI7dqy oTOYVyvo1mvDliXWf4GLX8srvFfDHL9D5yIlCSBdDYzyPsrQuZtl18Hkt1ogGPm4 wpNLrgRShz32mu6mvXqWEs7kAJ4+ebciaUbjt14uAz3WmjYHlfpKXijXJP0RPsDe IKV4gXjGbSFRhF6GCqrRrf9izqdrASSB8zRQhIJOForxi50RmKEcty/oLt7ZfsjO YuFNVW6kuuu8cWYd6cBVmy6cJuUJSeKJ77VOmPskqrKT4yTlzRdFdN5MgbI= -----END CERTIFICATE-----Generated at Sun May 18 21:39:01 2025 by rpki-client