$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/5Ot-qqkEABklCL5l-_LfvkXxKv8.roa File: 5Ot-qqkEABklCL5l-_LfvkXxKv8.roa (raw, json) Hash identifier: fR/FYxuW8jWqcy1yvGCEocveax8Pvf0zZZ6EQv87sB8= Subject key identifier: E4:EB:7E:AA:A9:04:00:19:25:08:BE:65:FB:F2:DF:BE:45:F1:2A:FF Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 040C Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/5Ot-qqkEABklCL5l-_LfvkXxKv8.roa Signing time: Thu 01 May 2025 01:45:28 +0000 ROA not before: Thu 01 May 2025 01:45:28 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 122.145.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 18:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:45:28 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=E4EB7EAAA90400192508BE65FBF2DFBE45F12AFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fc:61:c8:54:77:43:8e:32:33:6d:91:8f:18: 5f:7c:6b:8d:38:ce:27:f6:75:4f:3d:4d:c5:1b:16: c5:64:bd:a9:8a:57:e9:d6:17:31:05:2d:25:1b:44: 21:17:95:8d:03:8c:94:f2:0d:7e:4f:e1:b2:17:c3: 1f:c4:32:bc:9c:33:cb:8d:10:d8:9a:25:5e:0f:02: 96:14:bb:b8:4b:b8:43:04:04:b1:9c:16:e5:9b:10: 68:60:46:75:a9:58:bc:ed:d0:fe:a3:19:fc:96:92: fa:d3:23:16:86:2a:bd:13:1c:ad:19:ff:36:f8:75: 36:01:8e:32:90:6a:fe:b9:f3:fe:36:76:ed:fe:86: 40:45:0d:f4:17:1e:f9:28:0f:d4:79:65:03:d9:a8: ef:b2:c3:21:6e:97:df:80:73:0a:fc:1c:cc:6f:5e: 6f:2f:d7:e5:21:8f:39:a4:70:10:c9:6e:a6:fd:73: b1:c7:47:a6:54:74:97:f8:3e:05:ef:00:22:1f:e6: 91:0e:b0:69:10:ae:e6:5f:f5:16:f7:03:92:3e:71: fc:89:55:12:97:95:e7:ba:2b:9f:ea:ae:d2:a7:42: 3b:0f:41:e1:a7:d2:b8:e3:3e:a9:2b:8a:33:63:0e: 4a:8d:fd:da:1b:b7:bf:d4:06:b7:aa:b8:d8:36:e2: 4c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:EB:7E:AA:A9:04:00:19:25:08:BE:65:FB:F2:DF:BE:45:F1:2A:FF X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/5Ot-qqkEABklCL5l-_LfvkXxKv8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.145.131.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:6f:9e:2e:c6:3e:d5:f4:7d:b2:c2:97:72:8e:9b:3b:84:a3: 51:b7:ec:33:9e:89:34:de:a8:2d:4b:6a:2f:6f:47:81:8f:6e: 8c:9e:31:e1:60:ee:5c:5d:72:45:22:29:df:48:d0:24:c0:2e: dd:82:cc:7f:c4:e2:ba:fb:d0:57:e5:92:88:af:6e:81:49:ac: a0:ec:33:24:a2:c9:c2:c5:00:a1:7a:07:95:42:3d:23:41:75: 80:e4:3c:23:c7:e7:d6:4d:cf:e8:1a:5d:f6:31:68:09:b0:7c: 8a:9e:c4:46:28:60:d4:67:f3:fb:58:13:44:6d:f7:4a:8d:aa: b7:cc:dd:00:03:48:46:82:23:27:3c:9c:fc:c9:60:21:db:c0: 93:75:f5:13:0a:4c:23:3c:04:a4:06:b0:08:72:d8:8f:1a:fa: 84:ca:57:0d:d2:c4:e2:a2:a6:37:b1:f5:ff:c0:4c:79:03:36: 29:6b:c4:fb:10:97:f1:1e:28:fb:88:88:a5:93:f3:9f:8e:78: 6a:06:bf:b2:89:83:9b:56:6a:55:06:39:80:80:e5:1f:ec:e7: be:93:2c:bf:3c:23:21:71:eb:02:3e:8a:08:7e:16:13:ca:23: 23:48:e1:95:2a:e0:a3:cd:bb:fa:54:42:8f:e4:52:c2:ec:77: d1:1a:9b:46 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ1MjhaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU0RUI3RUFBQTkwNDAw MTkyNTA4QkU2NUZCRjJERkJFNDVGMTJBRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4/GHIVHdDjjIzbZGPGF98a404zif2dU89TcUbFsVkvamKV+nW FzEFLSUbRCEXlY0DjJTyDX5P4bIXwx/EMrycM8uNENiaJV4PApYUu7hLuEMEBLGc FuWbEGhgRnWpWLzt0P6jGfyWkvrTIxaGKr0THK0Z/zb4dTYBjjKQav658/42du3+ hkBFDfQXHvkoD9R5ZQPZqO+ywyFul9+Acwr8HMxvXm8v1+UhjzmkcBDJbqb9c7HH R6ZUdJf4PgXvACIf5pEOsGkQruZf9Rb3A5I+cfyJVRKXlee6K5/qrtKnQjsPQeGn 0rjjPqkrijNjDkqN/dobt7/UBrequNg24kyJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5Ot+qqkEABklCL5l+/LfvkXxKv8wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzVPdC1xcWtFQUJrbENMNWwtX0xmdmtYeEt2OC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB6kYMwDQYJKoZIhvcNAQELBQADggEBAHtvni7GPtX0fbLCl3KOmzuEo1G3 7DOeiTTeqC1Lai9vR4GPboyeMeFg7lxdckUiKd9I0CTALt2CzH/E4rr70Fflkoiv boFJrKDsMySiycLFAKF6B5VCPSNBdYDkPCPH59ZNz+gaXfYxaAmwfIqexEYoYNRn 8/tYE0Rt90qNqrfM3QADSEaCIyc8nPzJYCHbwJN19RMKTCM8BKQGsAhy2I8a+oTK Vw3SxOKipjex9f/ATHkDNilrxPsQl/EeKPuIiKWT85+OeGoGv7KJg5tWalUGOYCA 5R/s576TLL88IyFx6wI+igh+FhPKIyNI4ZUq4KPNu/pUQo/kUsLsd9Eam0Y= -----END CERTIFICATE-----Generated at Sat May 17 20:14:48 2025 by rpki-client