$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/CLBZrTohMvN4EFY56tVd6usuVf8.roa File: CLBZrTohMvN4EFY56tVd6usuVf8.roa (raw, json) Hash identifier: beiYinvU6cNAD4dSsy2kPgut6Kkh8bJYOhEoblCQDe0= Subject key identifier: 08:B0:59:AD:3A:21:32:F3:78:10:56:39:EA:D5:5D:EA:EB:2E:55:FF Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03A3 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CLBZrTohMvN4EFY56tVd6usuVf8.roa Signing time: Thu 01 May 2025 01:37:37 +0000 ROA not before: Thu 01 May 2025 01:37:37 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 43.244.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 18:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 931 (0x3a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:37 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=08B059AD3A2132F378105639EAD55DEAEB2E55FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:16:b7:c1:52:4e:85:0b:08:9c:e0:2c:a1:19: d9:9e:bc:18:aa:cc:49:80:4b:ca:0c:04:a3:17:41: dd:74:f3:88:f9:2c:eb:ce:07:a3:d2:16:44:0c:8c: a0:db:42:b2:0a:16:f3:4f:33:b9:74:99:c3:1f:cc: 76:5e:fa:da:c5:71:d3:e5:d3:47:12:38:3d:e3:f5: ac:c9:0b:ea:14:3c:3f:74:91:d4:d9:da:26:57:68: 78:69:77:90:e0:28:57:37:63:d7:21:0c:d0:bf:b3: f0:5a:54:75:cb:95:d4:98:61:fb:90:7c:f0:83:44: b0:b7:00:03:c1:d8:41:54:2d:08:9e:ec:46:0a:c6: 35:b7:ff:34:ae:01:7d:34:15:84:fc:cb:78:de:9f: 06:af:a4:08:84:00:5c:31:c8:6d:18:6a:4e:d1:db: dc:40:e8:63:f4:b8:d9:4b:81:70:53:62:f5:41:39: a7:0f:b4:4b:17:05:0d:7f:1c:00:7e:3c:2b:ba:c1: b2:0a:bf:3a:dd:7f:96:30:ad:29:5f:d1:9e:b1:17: 92:af:cc:51:40:8c:47:16:45:6a:bc:29:f7:8a:b0: cf:f0:4e:a8:d8:2c:89:23:fb:d0:e2:d5:3b:80:fb: 17:aa:be:b2:87:36:ed:ad:3c:cb:4d:bc:49:19:4a: 98:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B0:59:AD:3A:21:32:F3:78:10:56:39:EA:D5:5D:EA:EB:2E:55:FF X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CLBZrTohMvN4EFY56tVd6usuVf8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.244.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:97:97:a1:00:b0:08:9b:39:69:cf:82:24:6e:f3:6d:c0:2b: 6e:91:f0:a6:be:ba:31:fe:4c:59:d9:ce:bd:0d:c3:50:39:b8: 9c:72:c1:b0:7f:74:0b:94:f9:be:a7:31:27:74:d3:c9:c8:29: 36:dd:4d:f7:81:e5:ce:3c:e4:a7:47:a6:18:bb:c9:7a:ec:97: 74:a8:fc:54:bc:12:ee:f0:32:ff:fc:f7:ec:c1:04:a9:63:ec: c3:9f:41:35:1f:8b:56:72:be:b9:df:be:26:c8:fc:a3:52:ab: 46:7c:5c:73:75:ce:e8:a2:31:00:68:1b:6b:fb:60:ab:b1:45: 24:53:9f:64:eb:47:fd:b1:93:53:29:c8:76:89:2c:52:93:cd: a5:13:42:4a:5b:c9:dd:3f:41:77:28:04:8a:d2:61:68:45:20: fd:bf:9e:b3:5d:91:85:97:c5:46:67:58:00:74:2f:3e:25:ed: 59:39:eb:ac:c1:76:b7:18:0a:2e:0a:f6:01:e5:87:89:65:e0: b7:3a:7b:c6:65:1f:ca:64:e5:6f:cf:0e:34:92:d8:c4:fb:14: 5b:bb:19:bc:48:d7:8b:8c:c7:c1:9d:a7:63:75:fe:54:60:45: 5b:b2:77:e0:9f:85:8c:d2:b5:25:50:4d:dd:95:65:52:77:4b: 61:2d:6f:53 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICA6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3MzdaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA4QjA1OUFEM0EyMTMy RjM3ODEwNTYzOUVBRDU1REVBRUIyRTU1RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqFrfBUk6FCwic4CyhGdmevBiqzEmAS8oMBKMXQd1084j5LOvO B6PSFkQMjKDbQrIKFvNPM7l0mcMfzHZe+trFcdPl00cSOD3j9azJC+oUPD90kdTZ 2iZXaHhpd5DgKFc3Y9chDNC/s/BaVHXLldSYYfuQfPCDRLC3AAPB2EFULQie7EYK xjW3/zSuAX00FYT8y3jenwavpAiEAFwxyG0Yak7R29xA6GP0uNlLgXBTYvVBOacP tEsXBQ1/HAB+PCu6wbIKvzrdf5YwrSlf0Z6xF5KvzFFAjEcWRWq8KfeKsM/wTqjY LIkj+9Di1TuA+xeqvrKHNu2tPMtNvEkZSpjdAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUCLBZrTohMvN4EFY56tVd6usuVf8wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0NMQlpyVG9oTXZONEVGWTU2dFZkNnVzdVZmOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAr9DANBgkqhkiG9w0BAQsFAAOCAQEALpeXoQCwCJs5ac+CJG7zbcArbpHw pr66Mf5MWdnOvQ3DUDm4nHLBsH90C5T5vqcxJ3TTycgpNt1N94Hlzjzkp0emGLvJ euyXdKj8VLwS7vAy//z37MEEqWPsw59BNR+LVnK+ud++Jsj8o1KrRnxcc3XO6KIx AGgba/tgq7FFJFOfZOtH/bGTUynIdoksUpPNpRNCSlvJ3T9BdygEitJhaEUg/b+e s12RhZfFRmdYAHQvPiXtWTnrrMF2txgKLgr2AeWHiWXgtzp7xmUfymTlb88ONJLY xPsUW7sZvEjXi4zHwZ2nY3X+VGBFW7J34J+FjNK1JVBN3ZVlUndLYS1vUw== -----END CERTIFICATE-----Generated at Sat May 17 21:30:10 2025 by rpki-client