$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/FBTGTDhqMdWLDlvnsi4xtd-KvyY.roa File: FBTGTDhqMdWLDlvnsi4xtd-KvyY.roa (raw, json) Hash identifier: y75PBNDSZ3XiiPyJhr5lrqnUzfszFV16S5wyedzausY= Subject key identifier: 14:14:C6:4C:38:6A:31:D5:8B:0E:5B:E7:B2:2E:31:B5:DF:8A:BF:26 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0422 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/FBTGTDhqMdWLDlvnsi4xtd-KvyY.roa Signing time: Thu 01 May 2025 01:48:47 +0000 ROA not before: Thu 01 May 2025 01:48:47 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 210.143.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1058 (0x422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:48:47 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=1414C64C386A31D58B0E5BE7B22E31B5DF8ABF26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:62:1e:03:6f:29:75:68:d1:e1:e1:0c:32:4d: a0:12:29:a1:5a:e6:f4:ab:d5:92:e8:fc:5b:bd:78: 93:df:4f:d9:af:bb:d3:f5:8f:d3:e2:04:92:02:8b: c4:b8:52:30:e2:5f:e2:f2:68:85:12:1f:d0:1e:71: b1:c4:ad:5a:f3:a7:ec:43:0d:97:61:d4:a0:a1:13: 56:ad:05:e5:3e:0e:b7:80:de:f8:ac:9f:b1:ba:07: f4:3a:fe:75:5b:3c:ba:44:78:19:d8:09:f5:39:d6: 7c:19:3d:0b:ce:c7:b1:95:30:37:cd:22:45:68:ae: dd:f9:a4:b2:1b:ec:2a:a0:f7:5f:4b:20:84:f0:2e: 64:63:84:ac:ac:58:39:cb:a4:3e:c8:e1:81:2c:22: fb:87:89:58:04:e3:47:7d:48:cf:ba:5f:3b:28:db: 5a:16:2d:49:3e:c6:30:ad:e2:a9:d7:c6:e2:f1:8a: c3:af:92:83:f2:d1:e3:b3:cf:22:70:22:e1:84:23: 0a:fc:dc:7f:a4:d1:04:0f:3f:4a:ed:a5:f0:8e:e6: d5:fe:72:a6:39:d9:0e:6d:00:18:2e:53:24:8f:d9: a5:71:6e:c1:92:35:9e:d2:4d:33:25:0d:67:0f:11: 82:84:e8:f7:6b:27:58:91:2a:de:c5:56:f9:e2:6c: 2c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:14:C6:4C:38:6A:31:D5:8B:0E:5B:E7:B2:2E:31:B5:DF:8A:BF:26 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/FBTGTDhqMdWLDlvnsi4xtd-KvyY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.143.144.0/20 Signature Algorithm: sha256WithRSAEncryption 77:c4:df:bf:cb:51:12:e2:f4:a8:de:a4:d5:a6:13:79:a4:c0: 03:8a:7e:1e:3c:63:b8:8c:0e:3b:0e:d5:26:e6:a8:a2:aa:50: d8:a9:52:70:82:17:a1:04:7e:10:03:b0:10:fb:74:0b:86:c8: 8a:e9:93:e7:5f:10:29:76:f2:15:6b:61:53:73:ba:65:b5:3c: 91:74:88:a3:0d:fd:28:e4:bc:02:ac:5f:f3:10:26:e9:0f:ba: cc:3f:d3:18:51:8d:d1:8c:54:da:3e:4b:20:b1:d2:6d:32:c1: 13:ba:f5:54:a3:19:d2:d1:36:e2:49:ae:74:61:5b:b1:80:4d: 5a:fb:0b:d8:cf:e0:bb:7c:b9:ad:eb:3f:84:b8:96:1d:90:79: 5a:56:5c:a3:47:95:28:e6:cb:f2:70:b5:13:bf:da:94:9e:d9: 16:0e:b5:d9:bb:bb:d4:e3:88:54:02:b1:a8:6e:4a:77:64:27: b7:6f:17:14:93:42:0f:72:85:6b:93:1a:d3:9e:04:35:9c:7d: bf:0e:29:c5:ef:17:6e:af:aa:e4:e7:99:32:34:ee:ff:e5:a0: 11:14:15:32:99:df:09:a8:1e:0c:91:78:ea:23:2f:60:c3:28: f1:28:20:4b:70:ae:2d:9c:69:d7:4d:51:15:03:8f:81:88:95: 66:94:b9:26 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBCIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ4NDdaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDE0MTRDNjRDMzg2QTMx RDU4QjBFNUJFN0IyMkUzMUI1REY4QUJGMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUYh4Dbyl1aNHh4QwyTaASKaFa5vSr1ZLo/Fu9eJPfT9mvu9P1 j9PiBJICi8S4UjDiX+LyaIUSH9AecbHErVrzp+xDDZdh1KChE1atBeU+DreA3vis n7G6B/Q6/nVbPLpEeBnYCfU51nwZPQvOx7GVMDfNIkVort35pLIb7Cqg919LIITw LmRjhKysWDnLpD7I4YEsIvuHiVgE40d9SM+6Xzso21oWLUk+xjCt4qnXxuLxisOv koPy0eOzzyJwIuGEIwr83H+k0QQPP0rtpfCO5tX+cqY52Q5tABguUySP2aVxbsGS NZ7STTMlDWcPEYKE6PdrJ1iRKt7FVvnibCyJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUFBTGTDhqMdWLDlvnsi4xtd+KvyYwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0ZCVEdURGhxTWRXTERsdm5zaTR4dGQtS3Z5WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATSj5AwDQYJKoZIhvcNAQELBQADggEBAHfE37/LURLi9KjepNWmE3mkwAOK fh48Y7iMDjsO1SbmqKKqUNipUnCCF6EEfhADsBD7dAuGyIrpk+dfECl28hVrYVNz umW1PJF0iKMN/SjkvAKsX/MQJukPusw/0xhRjdGMVNo+SyCx0m0ywRO69VSjGdLR NuJJrnRhW7GATVr7C9jP4Lt8ua3rP4S4lh2QeVpWXKNHlSjmy/JwtRO/2pSe2RYO tdm7u9TjiFQCsahuSndkJ7dvFxSTQg9yhWuTGtOeBDWcfb8OKcXvF26vquTnmTI0 7v/loBEUFTKZ3wmoHgyReOojL2DDKPEoIEtwri2caddNURUDj4GIlWaUuSY= -----END CERTIFICATE-----Generated at Sun May 18 07:20:50 2025 by rpki-client