$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/IYeCRCYaJvjHIWaiolqMzE55yxQ.roa File: IYeCRCYaJvjHIWaiolqMzE55yxQ.roa (raw, json) Hash identifier: CiTCm2/XL8AcWuk2qtZhs4rzYnA2XmBT1IGdIRQz068= Subject key identifier: 21:87:82:44:26:1A:26:F8:C7:21:66:A2:A2:5A:8C:CC:4E:79:CB:14 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0379 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/IYeCRCYaJvjHIWaiolqMzE55yxQ.roa Signing time: Thu 01 May 2025 01:33:32 +0000 ROA not before: Thu 01 May 2025 01:33:32 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 220.150.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 889 (0x379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:33:32 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=21878244261A26F8C72166A2A25A8CCC4E79CB14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:80:6b:61:09:13:64:2d:c3:8c:6c:c0:66:e2: 31:c8:1c:a8:e1:75:a3:98:ea:80:96:ad:4a:7f:e2: 25:e3:88:20:a9:6c:a1:e4:76:03:78:0e:63:91:c3: 02:59:d4:7f:80:a6:59:8a:b1:f6:1d:21:a3:d9:55: 1a:f6:d1:67:d2:ac:06:90:ab:c7:a4:14:1d:92:ac: e8:ba:04:03:ff:e3:0b:f9:ca:36:f4:b9:33:08:0e: 08:cc:24:50:8f:18:87:26:e4:d9:ab:71:bc:c6:f1: 02:6f:ff:74:ec:2d:97:1c:c7:6a:85:68:5f:a2:8a: 3f:fa:da:c5:7f:1f:e8:6b:8c:a1:7e:db:b9:fd:6c: ca:94:5e:3b:8d:77:0c:e9:2e:d6:97:e8:b4:2d:2d: f7:43:22:0b:bb:f2:88:00:da:b7:51:bc:01:e2:95: 3c:c8:c2:c5:8e:e2:30:51:28:eb:88:e5:5b:84:8c: 62:a2:51:a7:f5:a1:58:75:6d:1f:be:4f:5e:de:e8: e2:68:d2:61:8f:61:45:ee:21:70:45:01:f6:db:06: f6:c9:6a:e7:07:4d:eb:fb:82:8f:7f:8d:bd:10:93: 2a:b4:6b:81:d4:59:19:a0:f4:17:47:f2:2f:96:af: 43:ae:5f:ac:59:f7:d6:d4:96:9c:54:d4:64:6a:d1: 0c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:87:82:44:26:1A:26:F8:C7:21:66:A2:A2:5A:8C:CC:4E:79:CB:14 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/IYeCRCYaJvjHIWaiolqMzE55yxQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.150.0.0/20 Signature Algorithm: sha256WithRSAEncryption 48:9b:d4:5a:82:d8:b0:fe:ba:3f:e3:98:1c:9b:7e:28:a7:96: b4:59:88:ab:3e:d2:6d:43:29:f2:20:cd:6e:76:20:96:7e:ab: e7:7c:70:82:92:1f:09:09:0c:4c:55:24:a1:6f:a1:91:c4:87: 0a:a7:3f:6f:52:9c:1c:2e:02:0b:d7:54:7c:04:51:52:31:54: da:42:2b:6c:4b:da:7b:08:1d:79:19:8d:c1:c0:1e:5f:29:ab: 6d:7c:34:04:d3:f1:57:5d:28:8e:b3:85:6a:df:4e:3d:c5:ce: 2f:56:47:0e:09:0e:2a:09:48:ee:11:b3:cf:5b:95:c6:fa:62: 8d:24:68:77:e3:8f:a4:e1:b1:f2:22:1d:eb:92:9f:a4:eb:30: 84:7e:e9:d2:82:6a:1f:62:0f:6b:b8:83:f0:4e:a2:3d:11:2e: fb:a9:f0:b2:f9:9a:f8:02:15:94:17:78:8d:04:d2:9a:5a:43: bc:cc:78:25:b0:e3:79:cf:18:63:fa:b8:d1:df:8a:16:fa:50: 23:56:ce:93:69:c3:e5:55:6a:2f:9b:10:61:e2:e8:fc:93:02: 32:f6:91:17:15:0c:72:84:1c:7f:4d:60:ee:30:f8:71:1a:73: 20:a2:5e:73:b5:fb:62:3f:21:73:3f:78:94:64:53:b4:5a:76: 26:34:aa:88 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTMzMzJaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDIxODc4MjQ0MjYxQTI2 RjhDNzIxNjZBMkEyNUE4Q0NDNEU3OUNCMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2gGthCRNkLcOMbMBm4jHIHKjhdaOY6oCWrUp/4iXjiCCpbKHk dgN4DmORwwJZ1H+AplmKsfYdIaPZVRr20WfSrAaQq8ekFB2SrOi6BAP/4wv5yjb0 uTMIDgjMJFCPGIcm5NmrcbzG8QJv/3TsLZccx2qFaF+iij/62sV/H+hrjKF+27n9 bMqUXjuNdwzpLtaX6LQtLfdDIgu78ogA2rdRvAHilTzIwsWO4jBRKOuI5VuEjGKi Uaf1oVh1bR++T17e6OJo0mGPYUXuIXBFAfbbBvbJaucHTev7go9/jb0Qkyq0a4HU WRmg9BdH8i+Wr0OuX6xZ99bUlpxU1GRq0QzNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIYeCRCYaJvjHIWaiolqMzE55yxQwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0lZZUNSQ1lhSnZqSElXYWlvbHFNekU1NXl4US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATclgAwDQYJKoZIhvcNAQELBQADggEBAEib1FqC2LD+uj/jmBybfiinlrRZ iKs+0m1DKfIgzW52IJZ+q+d8cIKSHwkJDExVJKFvoZHEhwqnP29SnBwuAgvXVHwE UVIxVNpCK2xL2nsIHXkZjcHAHl8pq218NATT8VddKI6zhWrfTj3Fzi9WRw4JDioJ SO4Rs89blcb6Yo0kaHfjj6ThsfIiHeuSn6TrMIR+6dKCah9iD2u4g/BOoj0RLvup 8LL5mvgCFZQXeI0E0ppaQ7zMeCWw43nPGGP6uNHfihb6UCNWzpNpw+VVai+bEGHi 6PyTAjL2kRcVDHKEHH9NYO4w+HEacyCiXnO1+2I/IXM/eJRkU7RadiY0qog= -----END CERTIFICATE-----Generated at Sun May 18 22:23:52 2025 by rpki-client