$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/C2L7JKAFvec0RvO3a9BmiErk0YI.roa File: C2L7JKAFvec0RvO3a9BmiErk0YI.roa (raw, json) Hash identifier: cW17hP/a0Uk/jd8OElJHC3x6WVFm8zd3ykSK5dlmPSg= Subject key identifier: 0B:62:FB:24:A0:05:BD:E7:34:46:F3:B7:6B:D0:66:88:4A:E4:D1:82 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03A7 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/C2L7JKAFvec0RvO3a9BmiErk0YI.roa Signing time: Thu 01 May 2025 01:37:40 +0000 ROA not before: Thu 01 May 2025 01:37:40 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 61.211.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 18:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 935 (0x3a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:40 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=0B62FB24A005BDE73446F3B76BD066884AE4D182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7b:44:38:d9:b9:a7:3e:90:a7:3c:a7:c3:98: 74:ad:c7:ec:6c:65:ba:9c:12:15:b5:2f:29:83:92: 77:5f:0e:76:3c:5c:4a:4c:b2:cd:f5:82:3e:62:bc: 2c:92:66:c4:03:26:69:b2:da:68:59:e8:3e:4d:0c: 5a:72:b9:7b:9a:fa:b6:71:19:01:9b:27:ed:b9:c3: 36:1e:b6:7f:9f:84:2d:5d:ed:47:e7:87:f1:8f:df: 0d:88:ad:67:63:45:ca:f6:4b:b1:07:51:ef:b7:0f: 17:5c:78:7c:1a:de:07:93:5a:09:10:7d:eb:3e:4c: a9:13:70:2c:01:84:5a:d2:bf:6c:f7:94:87:d7:c7: 9a:5b:77:c5:dd:31:0a:46:34:7a:f6:a2:6b:ce:ce: d4:7b:6f:69:95:e5:85:a1:c4:ef:2f:50:3d:42:b5: 78:c0:d0:75:58:13:13:bc:a7:63:96:2b:54:12:50: e8:43:9d:40:6e:eb:48:51:81:8c:a6:1d:ee:ac:6b: 02:37:71:eb:a0:62:03:1a:64:29:16:9c:5c:0c:54: a4:9d:4a:61:7a:5c:49:d2:bd:bf:18:24:6c:4c:bd: 3e:b0:80:22:9d:7d:8e:b3:52:bb:e6:a2:3c:68:24: a4:13:f8:11:aa:8a:7e:ba:b6:f7:85:1b:f5:1c:6a: 43:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:62:FB:24:A0:05:BD:E7:34:46:F3:B7:6B:D0:66:88:4A:E4:D1:82 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/C2L7JKAFvec0RvO3a9BmiErk0YI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.211.240.0/20 Signature Algorithm: sha256WithRSAEncryption 87:ac:b6:ac:4a:c8:9d:17:49:8b:7f:ee:83:47:c5:37:2c:5b: 04:35:db:c7:0a:6a:b9:ee:80:fc:fe:42:47:88:7c:55:75:2b: 6a:b9:87:be:8d:07:9b:61:3d:3a:b2:c9:e5:7e:41:14:b5:99: 9e:e3:09:8e:f9:f8:bb:31:b8:f8:29:86:83:cc:68:44:2a:c9: 30:63:ef:ec:98:73:39:01:55:79:c3:ee:7c:b7:d9:88:fc:c0: 7a:a8:bd:27:e0:02:eb:56:b5:49:ab:88:6b:9a:c5:9f:06:67: cd:bc:f5:e5:a3:dc:01:92:d1:a8:c2:50:0c:d7:52:df:64:d9: 2f:4b:a9:29:3c:1f:c9:14:73:0d:21:e6:14:52:1f:20:a0:4f: c3:48:bf:7d:0c:43:60:b3:31:a0:a9:17:00:4d:96:19:b9:80: 7d:d4:23:40:82:3f:d1:9c:ba:45:3b:00:2d:34:94:20:6b:33: 73:2a:5d:ac:1c:63:08:87:40:5b:0c:15:62:b7:09:8c:1b:ae: f2:30:d7:d2:8a:0b:41:5f:1b:10:56:6c:1c:c4:79:ab:ee:37: 3e:6c:37:ee:ea:de:30:96:cc:13:b1:d3:5f:53:73:b1:9d:9c: ce:40:da:9c:ed:e6:c7:08:a1:45:51:9c:07:b0:10:aa:18:d7: 1d:fc:71:2c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA6cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3NDBaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBCNjJGQjI0QTAwNUJE RTczNDQ2RjNCNzZCRDA2Njg4NEFFNEQxODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUe0Q42bmnPpCnPKfDmHStx+xsZbqcEhW1LymDkndfDnY8XEpM ss31gj5ivCySZsQDJmmy2mhZ6D5NDFpyuXua+rZxGQGbJ+25wzYetn+fhC1d7Ufn h/GP3w2IrWdjRcr2S7EHUe+3DxdceHwa3geTWgkQfes+TKkTcCwBhFrSv2z3lIfX x5pbd8XdMQpGNHr2omvOztR7b2mV5YWhxO8vUD1CtXjA0HVYExO8p2OWK1QSUOhD nUBu60hRgYymHe6sawI3ceugYgMaZCkWnFwMVKSdSmF6XEnSvb8YJGxMvT6wgCKd fY6zUrvmojxoJKQT+BGqin66tveFG/UcakPJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUC2L7JKAFvec0RvO3a9BmiErk0YIwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0MyTDdKS0FGdmVjMFJ2TzNhOUJtaUVyazBZSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ90/AwDQYJKoZIhvcNAQELBQADggEBAIestqxKyJ0XSYt/7oNHxTcsWwQ1 28cKarnugPz+QkeIfFV1K2q5h76NB5thPTqyyeV+QRS1mZ7jCY75+LsxuPgphoPM aEQqyTBj7+yYczkBVXnD7ny32Yj8wHqovSfgAutWtUmriGuaxZ8GZ8289eWj3AGS 0ajCUAzXUt9k2S9LqSk8H8kUcw0h5hRSHyCgT8NIv30MQ2CzMaCpFwBNlhm5gH3U I0CCP9GcukU7AC00lCBrM3MqXawcYwiHQFsMFWK3CYwbrvIw19KKC0FfGxBWbBzE eavuNz5sN+7q3jCWzBOx019Tc7GdnM5A2pzt5scIoUVRnAewEKoY1x38cSw= -----END CERTIFICATE-----Generated at Sat May 17 21:30:19 2025 by rpki-client