$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/Epq0wY7YIc2uns3_MjyiDOsJ7L0.roa File: Epq0wY7YIc2uns3_MjyiDOsJ7L0.roa (raw, json) Hash identifier: 1V7Zs7s662doy/dBNiyQpKSH9gxj6VUV22MaIF7pR8A= Subject key identifier: 12:9A:B4:C1:8E:D8:21:CD:AE:9E:CD:FF:32:3C:A2:0C:EB:09:EC:BD Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0374 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/Epq0wY7YIc2uns3_MjyiDOsJ7L0.roa Signing time: Thu 01 May 2025 01:33:29 +0000 ROA not before: Thu 01 May 2025 01:33:29 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 121.50.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 15:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 884 (0x374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:33:29 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=129AB4C18ED821CDAE9ECDFF323CA20CEB09ECBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:27:10:9f:cd:32:22:6a:22:e6:2d:44:20:7d: 60:97:a6:f9:c7:29:ad:4a:75:15:4a:b4:87:0f:58: e4:04:60:58:d2:23:28:8d:f9:6b:14:3c:0c:e2:34: b1:dc:32:28:cc:c0:5f:48:14:d8:b7:b3:47:61:92: b1:8d:e4:70:bd:8f:fd:91:61:54:43:f3:c5:05:d2: fd:bb:0f:49:05:bd:7d:63:f9:7c:c2:80:8b:70:c9: 78:a7:9b:6d:3d:50:61:a7:cb:85:48:8e:fb:29:f7: bc:12:08:9e:3e:2a:6b:a1:1a:80:9b:18:98:69:d2: 0f:d5:5a:8d:05:d6:cc:6b:7c:d2:0e:8c:6e:35:95: 9e:65:c9:2b:28:85:bd:8f:c9:13:e0:39:2a:a9:96: 69:74:70:e8:61:c0:53:ec:83:c9:2e:d7:32:b8:d8: 18:e4:17:5b:6c:d2:6f:8a:84:9e:8a:48:d7:d3:1e: 18:dd:b8:c4:cb:65:9a:27:36:bd:92:00:b3:b2:74: 2a:59:a5:12:fc:e4:e7:2d:5f:f2:2c:01:d2:c6:ca: 92:c7:b1:0e:6b:94:e6:b1:95:97:af:e2:1c:d7:ab: c7:77:eb:59:b0:a9:78:59:17:9f:d7:01:5e:23:82: 2c:d6:1e:30:0f:62:88:68:c3:1b:20:b6:dc:56:fe: 53:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:9A:B4:C1:8E:D8:21:CD:AE:9E:CD:FF:32:3C:A2:0C:EB:09:EC:BD X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/Epq0wY7YIc2uns3_MjyiDOsJ7L0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.50.152.0/21 Signature Algorithm: sha256WithRSAEncryption 25:db:c0:9c:c2:59:3a:8e:b2:db:3b:24:0e:5a:c0:25:dd:f5: 2c:a7:d5:ff:4d:89:05:85:32:13:76:7c:51:bc:b7:ac:d3:04: ed:62:a2:36:f6:5b:71:b8:4d:42:6e:ee:ff:06:69:af:0d:1f: 35:55:86:0a:7c:ff:ea:24:29:8d:f9:02:61:e4:0e:25:80:6b: 85:54:b5:5b:4e:39:1f:b0:5a:d3:04:ed:30:27:df:b7:5d:0f: 95:44:34:5a:48:a1:2f:59:66:cf:ef:bd:46:bb:78:8a:90:bc: 59:91:51:5d:20:5d:68:4c:9c:2f:e4:f8:f3:82:df:e6:75:ef: 8d:09:09:f5:23:b0:36:70:e5:a2:df:93:55:df:ef:d8:8e:78: 17:80:a2:13:c1:43:80:21:66:6a:10:d8:27:62:16:e0:dd:d7: 08:60:a9:82:ac:5a:5e:29:8f:9e:e1:2a:12:3e:bb:67:9c:bb: 6a:da:3e:51:24:c3:4d:c4:9c:05:24:a6:3e:8c:fd:ab:4f:2e: 51:1d:4a:d6:ac:f1:79:0e:a3:3c:52:8e:e4:53:70:b7:03:56: 32:c8:f9:85:7e:11:88:cb:5d:96:dd:40:29:a2:83:b8:c2:b6: 31:73:53:a7:1b:02:8f:74:aa:fd:8c:24:2a:4b:1c:e4:65:b2: 39:79:ef:1a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA3QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTMzMjlaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDEyOUFCNEMxOEVEODIx Q0RBRTlFQ0RGRjMyM0NBMjBDRUIwOUVDQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcJxCfzTIiaiLmLUQgfWCXpvnHKa1KdRVKtIcPWOQEYFjSIyiN +WsUPAziNLHcMijMwF9IFNi3s0dhkrGN5HC9j/2RYVRD88UF0v27D0kFvX1j+XzC gItwyXinm209UGGny4VIjvsp97wSCJ4+KmuhGoCbGJhp0g/VWo0F1sxrfNIOjG41 lZ5lySsohb2PyRPgOSqplml0cOhhwFPsg8ku1zK42BjkF1ts0m+KhJ6KSNfTHhjd uMTLZZonNr2SALOydCpZpRL85OctX/IsAdLGypLHsQ5rlOaxlZev4hzXq8d361mw qXhZF5/XAV4jgizWHjAPYohowxsgttxW/lP/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUEpq0wY7YIc2uns3/MjyiDOsJ7L0wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0VwcTB3WTdZSWMydW5zM19NanlpRE9zSjdMMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN5MpgwDQYJKoZIhvcNAQELBQADggEBACXbwJzCWTqOsts7JA5awCXd9Syn 1f9NiQWFMhN2fFG8t6zTBO1iojb2W3G4TUJu7v8Gaa8NHzVVhgp8/+okKY35AmHk DiWAa4VUtVtOOR+wWtME7TAn37ddD5VENFpIoS9ZZs/vvUa7eIqQvFmRUV0gXWhM nC/k+POC3+Z1740JCfUjsDZw5aLfk1Xf79iOeBeAohPBQ4AhZmoQ2CdiFuDd1whg qYKsWl4pj57hKhI+u2ecu2raPlEkw03EnAUkpj6M/atPLlEdStas8XkOozxSjuRT cLcDVjLI+YV+EYjLXZbdQCmig7jCtjFzU6cbAo90qv2MJCpLHORlsjl57xo= -----END CERTIFICATE-----Generated at Sun May 18 18:55:59 2025 by rpki-client