$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/6GIhsCmbT0frV48WPD51f7tnzhU.roa File: 6GIhsCmbT0frV48WPD51f7tnzhU.roa (raw, json) Hash identifier: OiMerpJjqBm7HC8xVO1MGllFGNw1r2+dajACE8e/Ybg= Subject key identifier: E8:62:21:B0:29:9B:4F:47:EB:57:8F:16:3C:3E:75:7F:BB:67:CE:15 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03F9 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/6GIhsCmbT0frV48WPD51f7tnzhU.roa Signing time: Thu 01 May 2025 01:45:19 +0000 ROA not before: Thu 01 May 2025 01:45:19 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 111.235.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 18:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1017 (0x3f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:45:19 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=E86221B0299B4F47EB578F163C3E757FBB67CE15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:2c:0b:f8:b0:c4:62:49:78:ae:b6:f3:0c:ea: 3f:2f:ba:3f:85:91:00:20:56:e5:4d:9a:53:83:ef: 6a:fe:30:b8:1a:4c:e3:66:0b:a8:60:e2:24:f4:44: d7:de:5a:6e:29:70:e0:2d:10:5f:2e:b4:42:75:e7: dc:88:75:74:77:3f:d4:d7:fe:d6:4b:a6:ab:15:0c: 0a:9a:2b:47:8e:66:39:ab:e8:5a:89:a1:37:1c:59: f8:e4:79:22:2f:d9:d9:f0:f9:d6:a8:88:4e:7b:d0: 6d:e7:30:29:fc:3b:2f:79:74:0e:e4:d2:a2:0a:db: 2e:00:95:8a:39:ff:cb:1a:8a:98:c7:47:06:d4:52: 2d:c0:ee:aa:eb:65:94:39:db:20:1a:59:18:67:4c: d7:3c:b0:2a:3d:1e:9f:84:a8:21:f0:a3:0f:33:74: 38:58:e6:0c:bf:2c:df:04:63:52:97:cb:7b:54:3d: 29:da:b5:c4:34:42:0d:66:42:e7:7a:e8:3a:60:25: 53:13:e9:1f:10:73:9d:24:b1:be:5f:da:e9:0e:96: 48:b4:c1:eb:6f:87:89:76:8b:50:4e:60:d6:75:94: 6f:56:63:a9:da:1d:f7:bb:56:d9:37:8a:11:c6:49: 36:e1:8c:e0:b4:6a:bc:7e:b9:94:9f:a4:54:65:aa: 80:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:62:21:B0:29:9B:4F:47:EB:57:8F:16:3C:3E:75:7F:BB:67:CE:15 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/6GIhsCmbT0frV48WPD51f7tnzhU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.235.40.0/22 Signature Algorithm: sha256WithRSAEncryption 02:e3:14:03:92:72:87:1a:5f:64:78:1b:1b:27:88:82:14:1e: 43:ae:8c:db:e2:50:1f:99:d8:cc:2f:6e:13:88:47:fb:c5:78: 5b:ed:30:f3:2a:0e:81:c4:74:6e:5b:34:a0:39:47:33:a1:d2: b8:fd:57:78:96:f1:3f:e5:32:15:6b:bc:e6:0e:92:56:ca:69: e2:c8:6d:e5:35:a8:7a:3b:ba:f0:a6:0a:6d:92:2b:2d:ca:72: 7a:04:14:d1:be:19:78:99:cc:e3:c8:11:04:cb:19:b1:bf:2f: 4d:d0:90:54:79:3f:d6:62:fa:68:53:83:33:7a:31:e9:cf:e1: 47:f6:ba:e6:8e:7a:77:1e:00:ba:1c:cf:e4:40:81:b3:ad:d9: 02:f2:a2:32:f4:96:02:2a:fd:6f:ab:fe:b9:dd:73:f4:6f:3e: 6e:53:9e:86:18:8a:81:0c:d8:fd:47:55:80:38:53:30:ff:c5: dc:89:a6:6e:f9:9f:ea:7a:89:ad:61:26:e2:6e:56:74:c4:5c: 96:31:d2:45:bb:d5:05:b7:f3:da:d5:da:68:49:5d:4b:06:c1: 11:34:f2:51:2e:93:c5:7c:d4:9b:34:01:3a:d1:0c:f6:bc:34: 05:08:21:22:72:6c:f9:d9:1a:8d:03:89:d1:71:a0:b0:a2:4a: 66:82:14:8f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ1MTlaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU4NjIyMUIwMjk5QjRG NDdFQjU3OEYxNjNDM0U3NTdGQkI2N0NFMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyLAv4sMRiSXiutvMM6j8vuj+FkQAgVuVNmlOD72r+MLgaTONm C6hg4iT0RNfeWm4pcOAtEF8utEJ159yIdXR3P9TX/tZLpqsVDAqaK0eOZjmr6FqJ oTccWfjkeSIv2dnw+daoiE570G3nMCn8Oy95dA7k0qIK2y4AlYo5/8saipjHRwbU Ui3A7qrrZZQ52yAaWRhnTNc8sCo9Hp+EqCHwow8zdDhY5gy/LN8EY1KXy3tUPSna tcQ0Qg1mQud66DpgJVMT6R8Qc50ksb5f2ukOlki0wetvh4l2i1BOYNZ1lG9WY6na Hfe7Vtk3ihHGSTbhjOC0arx+uZSfpFRlqoA/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU6GIhsCmbT0frV48WPD51f7tnzhUwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzZHSWhzQ21iVDBmclY0OFdQRDUxZjd0bnpoVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJv6ygwDQYJKoZIhvcNAQELBQADggEBAALjFAOScocaX2R4GxsniIIUHkOu jNviUB+Z2MwvbhOIR/vFeFvtMPMqDoHEdG5bNKA5RzOh0rj9V3iW8T/lMhVrvOYO klbKaeLIbeU1qHo7uvCmCm2SKy3KcnoEFNG+GXiZzOPIEQTLGbG/L03QkFR5P9Zi +mhTgzN6MenP4Uf2uuaOenceALocz+RAgbOt2QLyojL0lgIq/W+r/rndc/RvPm5T noYYioEM2P1HVYA4UzD/xdyJpm75n+p6ia1hJuJuVnTEXJYx0kW71QW389rV2mhJ XUsGwRE08lEuk8V81Js0ATrRDPa8NAUIISJybPnZGo0DidFxoLCiSmaCFI8= -----END CERTIFICATE-----Generated at Sat May 17 21:27:03 2025 by rpki-client