$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/9o3gzOGTyqQf7iI8PVBWDa8X2ks.roa File: 9o3gzOGTyqQf7iI8PVBWDa8X2ks.roa (raw, json) Hash identifier: meJXPPoxGRkCsZ5o12zxbZQgmb+v77fbL8rjXrKVTPo= Subject key identifier: F6:8D:E0:CC:E1:93:CA:A4:1F:EE:22:3C:3D:50:56:0D:AF:17:DA:4B Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03E3 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/9o3gzOGTyqQf7iI8PVBWDa8X2ks.roa Signing time: Thu 01 May 2025 01:42:50 +0000 ROA not before: Thu 01 May 2025 01:42:50 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 111.234.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:42:50 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=F68DE0CCE193CAA41FEE223C3D50560DAF17DA4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f8:33:28:83:73:b5:69:d4:bc:c5:45:bf:aa: 2c:2d:09:0b:6f:35:22:a4:90:0e:76:c7:a0:75:d2: 9b:65:b5:5c:c2:e5:ed:11:3b:a7:ed:e7:59:33:d5: 99:73:6f:d6:1c:14:c9:24:44:cd:d6:1e:5b:12:1c: cf:2e:44:2f:d0:04:c6:e4:77:e6:48:9f:79:5c:6d: e9:77:0d:28:40:96:cc:bd:88:48:d8:45:fa:47:b6: 47:d1:1b:8d:09:19:f2:bd:42:76:cb:90:28:57:b1: 5d:d2:b5:40:93:ab:67:fd:3c:79:7e:50:a9:ef:e5: fc:42:be:3e:05:45:bd:8f:9e:a0:ce:01:91:59:a3: f7:16:aa:34:b9:6e:a0:e2:1d:79:d7:de:11:47:c9: 3f:68:f1:03:c7:91:25:bf:96:fd:c2:c9:72:0a:33: 9a:d6:a4:c3:b2:a0:ae:6f:73:a3:7d:c3:a0:0a:ef: 5f:6e:22:b4:0f:6a:59:12:01:8a:53:f0:86:00:53: a9:53:07:c0:c0:53:98:11:a7:0f:2a:bc:6f:c7:17: cf:20:66:3e:1f:3a:0e:f9:0a:c0:d0:12:11:2c:5c: 89:cc:75:e0:df:46:6b:a5:c1:d8:a0:df:73:93:2f: 72:a0:49:28:5f:8e:1f:b6:1b:2f:11:3b:e7:02:2b: 93:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:8D:E0:CC:E1:93:CA:A4:1F:EE:22:3C:3D:50:56:0D:AF:17:DA:4B X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/9o3gzOGTyqQf7iI8PVBWDa8X2ks.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.234.0.0/19 Signature Algorithm: sha256WithRSAEncryption 85:5e:56:b7:3f:c5:4c:4b:55:25:d7:a4:ae:d5:af:b5:35:76: e7:93:cd:88:9d:50:fb:5c:22:cf:a5:e8:7c:3f:8e:0b:2f:4a: 94:83:a2:02:0f:7d:5c:8e:df:a6:9e:c1:71:6e:2c:05:e2:4f: 33:7f:c0:ed:bf:56:bd:6b:78:7c:07:e8:20:49:2c:40:01:70: af:48:f8:62:5e:de:2d:28:7a:12:6d:25:78:06:a6:d4:fb:29: c1:e6:a9:f5:77:54:0d:f8:a7:db:1c:30:ba:4e:e7:a6:d9:5a: 37:4b:52:cc:a0:e1:c5:63:b1:e1:e0:47:63:ce:9e:d3:b8:09: cc:88:48:19:ec:bf:0e:6c:c7:73:65:ba:06:54:45:a0:61:3d: e0:95:3a:f3:c5:13:94:35:72:2e:c8:2f:9c:0b:c3:a5:7a:09: 40:f3:71:a2:67:06:36:85:c3:a8:01:92:0f:0c:0a:1d:28:a9: 17:60:73:95:74:8c:f0:dd:bc:58:7a:b9:a3:2e:45:c8:38:c4: 80:b1:99:1d:1d:2c:93:ff:03:24:37:ff:e1:8f:48:b7:a7:d6: 3a:21:dd:39:3a:2d:99:eb:29:d6:07:0a:05:82:7e:9b:ed:28: c2:3f:9e:3b:5d:cb:71:3b:60:2a:c1:b3:f2:e2:64:ae:f9:0b: 20:b8:01:28 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQyNTBaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEY2OERFMENDRTE5M0NB QTQxRkVFMjIzQzNENTA1NjBEQUYxN0RBNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM+DMog3O1adS8xUW/qiwtCQtvNSKkkA52x6B10ptltVzC5e0R O6ft51kz1Zlzb9YcFMkkRM3WHlsSHM8uRC/QBMbkd+ZIn3lcbel3DShAlsy9iEjY RfpHtkfRG40JGfK9QnbLkChXsV3StUCTq2f9PHl+UKnv5fxCvj4FRb2PnqDOAZFZ o/cWqjS5bqDiHXnX3hFHyT9o8QPHkSW/lv3CyXIKM5rWpMOyoK5vc6N9w6AK719u IrQPalkSAYpT8IYAU6lTB8DAU5gRpw8qvG/HF88gZj4fOg75CsDQEhEsXInMdeDf Rmulwdig33OTL3KgSShfjh+2Gy8RO+cCK5MhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU9o3gzOGTyqQf7iI8PVBWDa8X2kswHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzlvM2d6T0dUeXFRZjdpSThQVkJXRGE4WDJrcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVv6gAwDQYJKoZIhvcNAQELBQADggEBAIVeVrc/xUxLVSXXpK7Vr7U1dueT zYidUPtcIs+l6Hw/jgsvSpSDogIPfVyO36aewXFuLAXiTzN/wO2/Vr1reHwH6CBJ LEABcK9I+GJe3i0oehJtJXgGptT7KcHmqfV3VA34p9scMLpO56bZWjdLUsyg4cVj seHgR2POntO4CcyISBnsvw5sx3NlugZURaBhPeCVOvPFE5Q1ci7IL5wLw6V6CUDz caJnBjaFw6gBkg8MCh0oqRdgc5V0jPDdvFh6uaMuRcg4xICxmR0dLJP/AyQ3/+GP SLen1joh3Tk6LZnrKdYHCgWCfpvtKMI/njtdy3E7YCrBs/LiZK75CyC4ASg= -----END CERTIFICATE-----Generated at Sun May 18 10:47:14 2025 by rpki-client