$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/KKYVVpGulMKEFrUqDYKivmOFA20.roa File: KKYVVpGulMKEFrUqDYKivmOFA20.roa (raw, json) Hash identifier: mr8wBL5Fdn6qHV9joFjWSpLAb2Vf+iJxlZ+EfpcW6fE= Subject key identifier: 28:A6:15:56:91:AE:94:C2:84:16:B5:2A:0D:82:A2:BE:63:85:03:6D Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 037F Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KKYVVpGulMKEFrUqDYKivmOFA20.roa Signing time: Thu 01 May 2025 01:33:34 +0000 ROA not before: Thu 01 May 2025 01:33:34 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 36.54.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:33:34 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=28A6155691AE94C28416B52A0D82A2BE6385036D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:34:b5:9a:14:00:32:83:c7:2c:16:c8:3d:1a: df:20:b3:0c:d6:88:d5:c3:8e:4c:fc:c3:ca:b3:91: 1f:e7:19:2f:32:77:c7:a9:fc:45:b5:15:7a:33:51: cf:05:04:83:7c:eb:2d:d9:f3:84:ba:f2:68:4d:10: 79:4d:fa:97:82:e1:de:f6:20:97:4f:4f:17:f2:a9: f0:ed:5a:9e:0f:10:68:66:16:eb:5c:9b:7e:c0:6d: 0e:f3:c7:21:6c:2d:74:3b:73:0e:49:9b:41:e4:20: 54:13:6b:a4:e8:f4:11:86:ed:a9:9f:9b:11:cb:45: 93:88:7d:11:73:68:3f:63:58:c8:1d:ab:ad:7e:ca: 8f:7b:fe:d0:0c:e9:83:7a:6b:7a:a1:75:4a:65:a1: db:32:de:ca:fd:8f:75:d1:51:ca:fb:b9:ca:ba:93: f7:e7:68:fa:4a:08:bf:9c:90:25:b3:85:b3:59:58: 3f:ed:c8:33:41:c7:bf:50:82:47:ec:4e:3e:c8:37: 06:e4:2c:4c:0b:b4:a0:c4:cf:ba:7f:7e:8d:7e:87: d2:4a:9b:4a:bb:67:62:ab:6f:15:a3:6e:b0:c7:a5: 41:50:c4:9e:a3:0f:64:79:ed:a1:81:0d:58:09:03: fd:12:a8:90:5f:f2:12:a1:6b:d9:63:e1:c1:1a:33: 25:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A6:15:56:91:AE:94:C2:84:16:B5:2A:0D:82:A2:BE:63:85:03:6D X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KKYVVpGulMKEFrUqDYKivmOFA20.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.54.64.0/18 Signature Algorithm: sha256WithRSAEncryption 42:00:85:86:4f:88:68:40:c7:0a:f7:d3:5d:6d:4b:00:b7:25: 6b:19:38:c5:a4:11:a8:b0:b5:e6:23:d5:c5:8d:19:f9:b0:ae: 52:b6:06:19:f6:20:80:fa:7b:52:ba:d9:33:d0:76:b2:3f:bf: 64:58:12:06:fb:33:64:a3:d7:ac:d0:b7:2c:b0:68:3c:c6:03: 11:24:94:7f:4a:5f:5a:e7:19:0f:eb:de:19:36:7b:7e:8f:f5: aa:92:be:cf:7a:0d:94:a0:45:eb:52:70:3c:16:0f:ae:46:14: 45:37:c1:ac:15:ca:f8:27:34:83:ce:b6:bb:3f:b5:54:38:5d: 49:da:d7:b8:9f:4f:b2:67:94:27:8d:18:d0:5e:50:5d:23:2a: 8e:6e:25:50:9b:87:64:18:fe:c9:f6:a7:f9:32:22:10:4e:8e: 36:09:67:9c:9a:95:12:91:d9:a5:67:40:43:50:32:bb:f5:3a: a3:96:03:19:03:5e:81:60:af:b3:7f:70:4b:39:5c:d3:f7:86: 37:62:ca:34:75:cc:ee:32:6b:46:91:5d:3f:29:7a:6a:f5:58: 56:ba:74:33:d2:46:35:25:43:35:65:9b:98:da:96:51:59:af: b5:7f:84:62:01:8d:ad:04:3b:79:45:8a:0e:7a:d4:40:44:81: 7c:53:fb:4b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTMzMzRaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI4QTYxNTU2OTFBRTk0 QzI4NDE2QjUyQTBEODJBMkJFNjM4NTAzNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4NLWaFAAyg8csFsg9Gt8gswzWiNXDjkz8w8qzkR/nGS8yd8ep /EW1FXozUc8FBIN86y3Z84S68mhNEHlN+peC4d72IJdPTxfyqfDtWp4PEGhmFutc m37AbQ7zxyFsLXQ7cw5Jm0HkIFQTa6To9BGG7amfmxHLRZOIfRFzaD9jWMgdq61+ yo97/tAM6YN6a3qhdUplodsy3sr9j3XRUcr7ucq6k/fnaPpKCL+ckCWzhbNZWD/t yDNBx79QgkfsTj7INwbkLEwLtKDEz7p/fo1+h9JKm0q7Z2KrbxWjbrDHpUFQxJ6j D2R57aGBDVgJA/0SqJBf8hKha9lj4cEaMyULAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKKYVVpGulMKEFrUqDYKivmOFA20wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0tLWVZWcEd1bE1LRUZyVXFEWUtpdm1PRkEyMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYkNkAwDQYJKoZIhvcNAQELBQADggEBAEIAhYZPiGhAxwr3011tSwC3JWsZ OMWkEaiwteYj1cWNGfmwrlK2Bhn2IID6e1K62TPQdrI/v2RYEgb7M2Sj16zQtyyw aDzGAxEklH9KX1rnGQ/r3hk2e36P9aqSvs96DZSgRetScDwWD65GFEU3wawVyvgn NIPOtrs/tVQ4XUna17ifT7JnlCeNGNBeUF0jKo5uJVCbh2QY/sn2p/kyIhBOjjYJ Z5yalRKR2aVnQENQMrv1OqOWAxkDXoFgr7N/cEs5XNP3hjdiyjR1zO4ya0aRXT8p emr1WFa6dDPSRjUlQzVlm5jallFZr7V/hGIBja0EO3lFig561EBEgXxT+0s= -----END CERTIFICATE-----Generated at Sat May 17 23:15:36 2025 by rpki-client