$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/CA2-Wxpp-SztvBIuVILq2Pdl46o.roa File: CA2-Wxpp-SztvBIuVILq2Pdl46o.roa (raw, json) Hash identifier: hjQuq14NW/G4PvdYlYjMt/+sbBenhBASJUQ5b/UKfYY= Subject key identifier: 08:0D:BE:5B:1A:69:F9:2C:ED:BC:12:2E:54:82:EA:D8:F7:65:E3:AA Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0434 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CA2-Wxpp-SztvBIuVILq2Pdl46o.roa Signing time: Tue 10 Jun 2025 10:45:04 +0000 ROA not before: Tue 10 Jun 2025 10:45:04 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 10013 IP address blocks: 124.255.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jun 10 10:45:04 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=080DBE5B1A69F92CEDBC122E5482EAD8F765E3AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9a:2c:77:fb:d6:99:02:c2:86:eb:45:40:ab: a0:b4:e7:e0:ae:ed:76:0d:ac:84:14:33:d3:50:94: 44:d3:d4:b3:e3:bc:a5:6a:85:32:c2:76:2b:cc:aa: aa:24:12:7f:6b:49:f0:03:f6:cc:78:9c:08:0c:7a: 41:de:cf:6e:35:b4:77:a9:a8:58:7f:a2:63:20:9b: 44:4d:97:53:f3:e9:73:58:3b:e4:7c:90:1a:ff:ef: 1b:58:7d:b2:e2:d9:2b:1f:a6:b5:a3:a3:d3:35:16: 74:24:1f:32:0a:9f:c5:c7:4a:6f:4c:91:bf:0f:8b: 22:a2:aa:59:90:00:8b:34:b3:1a:42:8e:fa:73:ad: 0b:1c:79:60:25:f6:8f:9e:2d:31:24:97:fb:fb:38: e0:d3:9e:f2:3f:f0:3e:2f:f3:32:37:27:15:b2:50: c5:5c:7b:12:58:75:4a:6b:18:b9:b5:6d:0d:39:e5: 42:e5:7b:e9:95:5b:a1:60:93:18:0b:c6:57:7f:5d: 96:37:d9:23:ae:4b:8b:1b:19:f3:d1:18:56:2c:3b: 54:86:db:79:f9:e5:cb:ee:6e:03:6a:60:39:11:5a: bb:66:d9:91:2f:e9:e2:cd:0b:85:c7:38:cb:06:1f: 4f:66:e7:3f:27:c4:fb:b8:3f:e3:a4:f3:0a:26:58: 45:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:0D:BE:5B:1A:69:F9:2C:ED:BC:12:2E:54:82:EA:D8:F7:65:E3:AA X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CA2-Wxpp-SztvBIuVILq2Pdl46o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.255.64.0/18 Signature Algorithm: sha256WithRSAEncryption 22:e7:94:f1:20:f2:15:30:2b:86:89:ba:48:6d:ae:17:27:2b: 98:67:aa:d1:4a:26:05:e5:50:ac:e0:aa:8c:59:d4:7f:c0:49: 59:d4:f3:d9:a6:ef:30:bc:33:6c:fc:cb:5c:1c:2b:f9:c4:84: 57:98:1d:fc:39:50:b2:d3:70:93:b2:cb:ff:3b:e3:c1:9e:4b: fa:f3:85:9b:6e:38:02:56:fb:5d:ad:32:6e:6c:51:12:4f:22: 39:49:38:36:5c:e8:dc:f6:14:31:f9:e3:9c:2a:25:84:a2:b1: a1:f5:c8:90:6e:c9:82:f3:8b:fc:bc:5f:48:7c:b3:9a:3c:30: 91:20:31:b9:03:b1:18:ec:0a:1c:34:a7:dd:52:43:f4:3d:f3: 9b:c3:bb:b8:0b:96:48:e4:35:35:02:2e:54:c3:22:90:9f:e3: df:5d:31:05:ff:52:c8:e1:1d:a0:89:94:c2:e1:65:66:19:e7: 64:3e:08:7e:ff:63:46:26:ec:71:59:6f:95:30:f8:f4:b6:6e: 33:77:ff:97:7a:b9:76:e1:c5:12:b4:01:6c:16:66:19:c1:23: 34:c4:78:bc:19:a2:73:6e:0c:37:88:6c:da:bb:98:b7:81:cc: f5:af:1a:93:2d:d1:65:23:29:02:52:c5:cf:1c:03:6c:49:40: 58:f8:05:e8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA2MTAx MDQ1MDRaFw0yNjA1MjMwOTUxMDBaMDMxMTAvBgNVBAMTKDA4MERCRTVCMUE2OUY5 MkNFREJDMTIyRTU0ODJFQUQ4Rjc2NUUzQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3mix3+9aZAsKG60VAq6C05+Cu7XYNrIQUM9NQlETT1LPjvKVq hTLCdivMqqokEn9rSfAD9sx4nAgMekHez241tHepqFh/omMgm0RNl1Pz6XNYO+R8 kBr/7xtYfbLi2SsfprWjo9M1FnQkHzIKn8XHSm9Mkb8PiyKiqlmQAIs0sxpCjvpz rQsceWAl9o+eLTEkl/v7OODTnvI/8D4v8zI3JxWyUMVcexJYdUprGLm1bQ055ULl e+mVW6FgkxgLxld/XZY32SOuS4sbGfPRGFYsO1SG23n55cvubgNqYDkRWrtm2ZEv 6eLNC4XHOMsGH09m5z8nxPu4P+Ok8womWEXLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCA2+Wxpp+SztvBIuVILq2Pdl46owHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0NBMi1XeHBwLVN6dHZCSXVWSUxxMlBkbDQ2by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ8/0AwDQYJKoZIhvcNAQELBQADggEBACLnlPEg8hUwK4aJukhtrhcnK5hn qtFKJgXlUKzgqoxZ1H/ASVnU89mm7zC8M2z8y1wcK/nEhFeYHfw5ULLTcJOyy/87 48GeS/rzhZtuOAJW+12tMm5sURJPIjlJODZc6Nz2FDH545wqJYSisaH1yJBuyYLz i/y8X0h8s5o8MJEgMbkDsRjsChw0p91SQ/Q985vDu7gLlkjkNTUCLlTDIpCf499d MQX/UsjhHaCJlMLhZWYZ52Q+CH7/Y0Ym7HFZb5Uw+PS2bjN3/5d6uXbhxRK0AWwW ZhnBIzTEeLwZonNuDDeIbNq7mLeBzPWvGpMt0WUjKQJSxc8cA2xJQFj4Beg= -----END CERTIFICATE-----Generated at Fri Jul 4 19:40:28 2025 by rpki-client