$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/AHxmKL4n6EO61cuHmQf35XLvii0.roa File: AHxmKL4n6EO61cuHmQf35XLvii0.roa (raw, json) Hash identifier: /dCAKeqmr4FUN6ML/W2L6F1y8ZCw88NcHLwCSGlR4r4= Subject key identifier: 00:7C:66:28:BE:27:E8:43:BA:D5:CB:87:99:07:F7:E5:72:EF:8A:2D Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0386 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/AHxmKL4n6EO61cuHmQf35XLvii0.roa Signing time: Thu 01 May 2025 01:37:26 +0000 ROA not before: Thu 01 May 2025 01:37:26 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 36.52.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 13:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 902 (0x386) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:26 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=007C6628BE27E843BAD5CB879907F7E572EF8A2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c3:01:c6:b3:6d:80:08:91:f7:71:65:d1:55: f8:fa:a7:4a:d8:7d:e4:ed:53:ee:9b:c0:04:64:50: a6:a4:21:df:05:66:47:07:06:39:f9:1f:3a:0b:c5: 3f:d3:5b:40:e6:37:29:94:51:5d:7c:2d:c5:16:0f: 55:ae:11:26:67:b5:8a:57:3b:1b:2d:5d:ce:59:43: d9:11:c1:aa:38:c0:5d:2b:85:8d:20:81:bc:b4:c0: 93:8e:8f:24:17:b2:ff:a9:b1:20:d8:78:d0:07:7d: 71:7e:7c:52:b0:0d:8b:b7:5c:60:71:87:73:d5:43: 0b:ec:ae:97:23:dc:70:35:ca:b2:38:1b:1e:c8:f4: 34:79:0a:e6:80:5c:18:2c:81:33:92:27:e5:a4:6b: 7a:3b:67:72:2a:4a:13:eb:08:df:66:5e:9a:10:df: 3d:77:95:d1:5d:e7:82:b6:ca:ee:cb:78:24:91:db: c9:02:7e:43:91:c9:9b:5c:50:e4:00:34:37:2f:3f: 47:bb:80:6d:84:51:99:08:ad:e5:93:d3:a4:b4:ce: e3:a8:15:68:70:1b:f6:79:36:05:ac:ed:2a:17:05: 91:ea:68:61:a5:82:ff:a7:89:8e:1a:dc:a7:41:1c: 4a:3a:b5:87:1b:ad:c7:14:6b:d7:f6:cb:40:db:27: 57:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:7C:66:28:BE:27:E8:43:BA:D5:CB:87:99:07:F7:E5:72:EF:8A:2D X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/AHxmKL4n6EO61cuHmQf35XLvii0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.208.0/21 Signature Algorithm: sha256WithRSAEncryption 16:c0:fe:29:1b:31:5a:9f:fd:b3:5a:4f:f5:0f:ab:45:61:37: d3:4d:30:01:4e:00:72:a7:0c:c3:94:de:b8:dc:eb:bb:3f:14: 0c:4c:29:f3:2d:2d:10:3f:af:9e:7f:66:9f:30:98:cf:37:67: 2f:55:74:0a:69:93:9e:36:d9:22:7b:7a:b8:7f:6c:44:7c:a0: 41:60:97:51:15:3c:97:a0:6c:55:5e:96:d0:06:f0:f6:33:e5: cd:4a:8e:cc:ad:33:ca:05:cb:91:e9:2e:5d:f6:81:09:f7:be: ba:3e:fc:20:c7:1f:78:cc:fd:12:ad:99:9f:5f:f7:a1:38:4f: 84:a2:ed:5a:56:c4:72:70:41:47:eb:a7:5f:e7:76:ac:ff:5d: aa:74:95:67:e7:fa:6e:81:da:28:4f:a5:e9:ba:0e:85:96:62: c1:bb:7c:43:c9:f8:63:dc:92:61:92:2d:ef:19:00:38:89:5f: f7:3d:ab:93:da:d4:4f:8d:17:d6:3a:e9:cd:22:48:a2:c0:e4: a2:ba:84:85:42:b0:5c:e4:a4:20:4c:22:99:b1:70:23:9e:01: 93:64:a8:4d:75:6a:12:6a:e9:fa:28:f1:35:7a:40:f9:bb:21: 66:e3:89:4f:69:38:cd:14:c7:0c:f8:92:ce:40:fb:b1:1d:46: de:02:da:ac -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA4YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3MjZaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDAwN0M2NjI4QkUyN0U4 NDNCQUQ1Q0I4Nzk5MDdGN0U1NzJFRjhBMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzwwHGs22ACJH3cWXRVfj6p0rYfeTtU+6bwARkUKakId8FZkcH Bjn5HzoLxT/TW0DmNymUUV18LcUWD1WuESZntYpXOxstXc5ZQ9kRwao4wF0rhY0g gby0wJOOjyQXsv+psSDYeNAHfXF+fFKwDYu3XGBxh3PVQwvsrpcj3HA1yrI4Gx7I 9DR5CuaAXBgsgTOSJ+Wka3o7Z3IqShPrCN9mXpoQ3z13ldFd54K2yu7LeCSR28kC fkORyZtcUOQANDcvP0e7gG2EUZkIreWT06S0zuOoFWhwG/Z5NgWs7SoXBZHqaGGl gv+niY4a3KdBHEo6tYcbrccUa9f2y0DbJ1fxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAHxmKL4n6EO61cuHmQf35XLvii0wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0FIeG1LTDRuNkVPNjFjdUhtUWYzNVhMdmlpMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMkNNAwDQYJKoZIhvcNAQELBQADggEBABbA/ikbMVqf/bNaT/UPq0VhN9NN MAFOAHKnDMOU3rjc67s/FAxMKfMtLRA/r55/Zp8wmM83Zy9VdAppk5422SJ7erh/ bER8oEFgl1EVPJegbFVeltAG8PYz5c1KjsytM8oFy5HpLl32gQn3vro+/CDHH3jM /RKtmZ9f96E4T4Si7VpWxHJwQUfrp1/ndqz/Xap0lWfn+m6B2ihPpem6DoWWYsG7 fEPJ+GPckmGSLe8ZADiJX/c9q5Pa1E+NF9Y66c0iSKLA5KK6hIVCsFzkpCBMIpmx cCOeAZNkqE11ahJq6foo8TV6QPm7IWbjiU9pOM0Uxwz4ks5A+7EdRt4C2qw= -----END CERTIFICATE-----Generated at Sun May 18 15:55:12 2025 by rpki-client