$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/7EEQdl1I62d-E87sHN0-qj7OBys.roa File: 7EEQdl1I62d-E87sHN0-qj7OBys.roa (raw, json) Hash identifier: 7zu38B3AvOcS4+Ye8onBIkflOkwjhHtOZDN4WJyATjc= Subject key identifier: EC:41:10:76:5D:48:EB:67:7E:13:CE:EC:1C:DD:3E:AA:3E:CE:07:2B Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0388 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/7EEQdl1I62d-E87sHN0-qj7OBys.roa Signing time: Thu 01 May 2025 01:37:27 +0000 ROA not before: Thu 01 May 2025 01:37:27 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 36.52.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 904 (0x388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:27 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=EC4110765D48EB677E13CEEC1CDD3EAA3ECE072B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:64:c9:54:61:68:6a:41:47:93:53:4f:d9:f2: f6:f2:ea:15:ab:fe:b8:5a:9a:7a:cb:f3:14:9b:b7: 93:25:b6:9f:ab:c8:60:0c:ad:8e:ed:05:6a:10:17: 4e:4a:5a:12:35:4a:9b:e6:d7:75:97:3a:5e:b6:49: 42:07:67:b4:ad:5a:dc:7a:22:a1:c3:9a:b7:13:47: d1:09:8b:a4:41:e6:81:dc:fb:e2:10:1b:8d:9d:8a: b1:d6:cf:38:97:e3:86:39:ba:fe:0d:0e:0f:09:0d: 4a:ce:21:27:21:cf:49:52:d3:ab:51:55:ba:ed:95: 8b:d4:68:2e:9b:49:33:6b:9a:6e:96:18:e0:6b:80: 08:e6:32:21:75:8b:5e:42:14:39:96:48:61:44:27: a3:3b:90:91:45:9e:35:d4:01:52:f9:fb:21:d9:f7: ee:b5:0b:f6:83:c4:8a:ec:58:f1:d4:53:6e:d5:25: f9:b9:64:ba:f3:13:cc:c4:81:6a:24:fb:17:01:81: 36:c4:ac:5b:58:06:50:4e:2e:2e:86:0e:40:ac:5b: 46:25:f0:ac:ff:00:36:30:78:fe:47:3a:de:93:c6: 9d:46:9e:f6:3f:18:52:f2:10:5e:6c:08:5a:6d:00: 8d:d0:94:1c:8a:5d:b9:41:d0:27:59:ec:13:d6:3f: da:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:41:10:76:5D:48:EB:67:7E:13:CE:EC:1C:DD:3E:AA:3E:CE:07:2B X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/7EEQdl1I62d-E87sHN0-qj7OBys.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.238.0/23 Signature Algorithm: sha256WithRSAEncryption 03:90:b4:0f:ba:c0:47:b1:5b:b7:89:d4:ff:74:7b:76:eb:7f: 01:29:ec:61:35:b1:40:2b:6f:d1:29:fd:90:9f:18:65:8f:ee: 7a:bb:45:7d:f2:fe:67:c5:82:e8:b9:8b:51:33:23:c7:ff:de: 8f:27:70:7c:89:5a:a6:e8:e4:7b:b7:99:05:24:3d:af:94:59: c4:1d:8e:b4:c3:be:b8:83:35:84:bd:e0:4a:6f:98:b2:5b:48: 9c:d7:ae:fe:35:50:9e:58:ac:10:c0:40:8f:ac:ec:96:20:42: 5c:92:b3:a3:02:80:aa:bf:41:db:8e:3d:48:4c:ba:3c:1d:d9: 33:30:90:8f:cb:6c:27:f2:09:32:e9:6d:07:f2:2f:5f:0d:f8: 2a:26:e1:ff:fc:c6:05:b0:45:d3:d6:e3:fc:c4:e7:69:6d:4d: 10:38:94:0c:e0:3d:32:8d:7b:6e:f7:87:71:ca:e9:2b:af:b8: 39:1e:84:50:70:7e:1b:39:cf:96:7d:1a:80:c1:4b:2c:21:62: bb:9b:9e:01:24:21:3c:50:9e:6c:ab:0b:c4:84:c1:08:b5:07: 0d:70:e1:12:ff:ba:e7:a2:8f:94:51:04:f3:7c:bf:5e:37:b4: 0f:44:f8:58:29:ef:97:d0:c4:b0:b9:9d:4a:97:bf:1a:22:f6: b6:f3:09:bb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA4gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3MjdaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEVDNDExMDc2NUQ0OEVC Njc3RTEzQ0VFQzFDREQzRUFBM0VDRTA3MkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8ZMlUYWhqQUeTU0/Z8vby6hWr/rhamnrL8xSbt5Mltp+ryGAM rY7tBWoQF05KWhI1Spvm13WXOl62SUIHZ7StWtx6IqHDmrcTR9EJi6RB5oHc++IQ G42dirHWzziX44Y5uv4NDg8JDUrOISchz0lS06tRVbrtlYvUaC6bSTNrmm6WGOBr gAjmMiF1i15CFDmWSGFEJ6M7kJFFnjXUAVL5+yHZ9+61C/aDxIrsWPHUU27VJfm5 ZLrzE8zEgWok+xcBgTbErFtYBlBOLi6GDkCsW0Yl8Kz/ADYweP5HOt6Txp1GnvY/ GFLyEF5sCFptAI3QlByKXblB0CdZ7BPWP9q5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU7EEQdl1I62d+E87sHN0+qj7OByswHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzdFRVFkbDFJNjJkLUU4N3NITjAtcWo3T0J5cy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEkNO4wDQYJKoZIhvcNAQELBQADggEBAAOQtA+6wEexW7eJ1P90e3brfwEp 7GE1sUArb9Ep/ZCfGGWP7nq7RX3y/mfFgui5i1EzI8f/3o8ncHyJWqbo5Hu3mQUk Pa+UWcQdjrTDvriDNYS94EpvmLJbSJzXrv41UJ5YrBDAQI+s7JYgQlySs6MCgKq/ QduOPUhMujwd2TMwkI/LbCfyCTLpbQfyL18N+Com4f/8xgWwRdPW4/zE52ltTRA4 lAzgPTKNe273h3HK6SuvuDkehFBwfhs5z5Z9GoDBSywhYrubngEkITxQnmyrC8SE wQi1Bw1w4RL/uueij5RRBPN8v143tA9E+Fgp75fQxLC5nUqXvxoi9rbzCbs= -----END CERTIFICATE-----Generated at Sat May 17 23:19:06 2025 by rpki-client