$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/KXaUfb7siSO2DoPzJ548WXBCnCc.roa File: KXaUfb7siSO2DoPzJ548WXBCnCc.roa (raw, json) Hash identifier: 5E3hs5ZvEmS6jd19xlaCV2qEAIxmDdryyZHuPpybZ0M= Subject key identifier: 29:76:94:7D:BE:EC:89:23:B6:0E:83:F3:27:9E:3C:59:70:42:9C:27 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03B9 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KXaUfb7siSO2DoPzJ548WXBCnCc.roa Signing time: Thu 01 May 2025 01:40:32 +0000 ROA not before: Thu 01 May 2025 01:40:32 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 59.156.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 953 (0x3b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:40:32 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=2976947DBEEC8923B60E83F3279E3C5970429C27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1d:95:67:b9:f7:66:c2:33:80:cc:4a:94:fc: f3:e4:ca:69:3c:cc:9c:60:8d:c4:c6:6d:63:d3:70: 55:ca:be:bf:6d:11:fe:5d:0f:b5:6a:bf:65:60:c3: 5a:bd:a7:6b:16:d9:c3:5d:60:9b:17:a6:bc:8d:d9: ae:83:a6:20:fe:04:cc:3b:53:cd:47:b6:6d:8b:78: d9:f8:e4:a3:26:5f:50:15:95:91:20:91:eb:9e:89: 76:c2:48:ee:78:96:50:69:21:fa:0b:9a:e0:c7:cc: 88:83:4a:6d:87:f6:65:13:5c:70:10:d6:65:cb:c1: 75:ea:49:ee:0d:de:1f:43:e7:68:24:15:7a:bd:bb: 71:91:f8:40:fa:17:96:6d:a6:b0:52:af:89:b7:e4: f5:76:31:b8:61:01:39:44:ca:62:58:8b:3a:6b:fd: e2:1a:e0:86:76:2a:83:ef:11:43:10:1f:7a:3a:7a: 71:05:38:65:dc:dd:d2:91:b9:a0:82:65:7e:48:0c: 32:d9:c0:cb:86:4b:e8:61:cb:c0:47:0f:32:58:12: 13:01:68:3b:cf:84:3d:b8:c7:ac:2c:6c:f2:91:3d: 54:62:4f:be:87:a3:68:d7:0e:e2:3a:8c:76:4b:bd: fe:59:28:95:d8:73:28:25:92:7b:65:d1:7a:d3:4e: de:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:76:94:7D:BE:EC:89:23:B6:0E:83:F3:27:9E:3C:59:70:42:9C:27 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KXaUfb7siSO2DoPzJ548WXBCnCc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.156.192.0/21 Signature Algorithm: sha256WithRSAEncryption 14:a8:b8:f4:9a:ef:1f:55:c4:59:19:b5:36:e6:fb:f1:dc:89: db:6a:72:f6:a3:fd:f4:e9:9b:b9:41:27:6f:90:a0:4f:61:72: 97:4b:5e:3e:9e:b6:35:37:44:36:1b:2d:53:59:05:cd:ba:58: 2e:10:49:fc:ec:c3:72:de:fd:04:5b:f7:9a:e8:e2:39:76:de: 44:57:d4:90:f1:ee:e0:31:ae:3c:2b:5a:b1:4e:8e:49:b3:7b: de:df:cc:c7:e1:53:01:ee:a1:9b:77:99:8a:84:e0:22:63:2f: 6d:2a:b1:6a:28:ec:72:f3:44:f9:d5:f2:89:ab:35:e4:0b:78: 75:0c:5e:01:55:ae:62:1c:57:a6:99:d1:cd:3d:2a:66:a9:55: 55:5f:76:2a:92:97:24:62:fc:51:9b:9e:3a:6d:fb:fb:3c:5c: 65:64:94:a4:29:77:73:c8:8c:9f:3f:0e:bb:30:2c:d4:77:69: 0d:99:25:3e:8c:6c:b9:e8:c1:dd:04:de:ca:09:f3:55:eb:2d: df:80:92:ab:00:0d:87:29:98:3a:5a:f2:4c:93:ea:fe:72:24: ef:7f:ec:c4:d2:de:6d:78:fc:ae:39:37:0a:15:1c:96:c1:1e: 73:38:a4:36:25:b2:da:6c:49:f7:3a:c4:54:15:d6:02:e7:e1: 81:c8:c0:57 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQwMzJaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI5NzY5NDdEQkVFQzg5 MjNCNjBFODNGMzI3OUUzQzU5NzA0MjlDMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhHZVnufdmwjOAzEqU/PPkymk8zJxgjcTGbWPTcFXKvr9tEf5d D7Vqv2Vgw1q9p2sW2cNdYJsXpryN2a6DpiD+BMw7U81Htm2LeNn45KMmX1AVlZEg keueiXbCSO54llBpIfoLmuDHzIiDSm2H9mUTXHAQ1mXLwXXqSe4N3h9D52gkFXq9 u3GR+ED6F5ZtprBSr4m35PV2MbhhATlEymJYizpr/eIa4IZ2KoPvEUMQH3o6enEF OGXc3dKRuaCCZX5IDDLZwMuGS+hhy8BHDzJYEhMBaDvPhD24x6wsbPKRPVRiT76H o2jXDuI6jHZLvf5ZKJXYcyglkntl0XrTTt51AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKXaUfb7siSO2DoPzJ548WXBCnCcwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0tYYVVmYjdzaVNPMkRvUHpKNTQ4V1hCQ25DYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM7nMAwDQYJKoZIhvcNAQELBQADggEBABSouPSa7x9VxFkZtTbm+/Hcidtq cvaj/fTpm7lBJ2+QoE9hcpdLXj6etjU3RDYbLVNZBc26WC4QSfzsw3Le/QRb95ro 4jl23kRX1JDx7uAxrjwrWrFOjkmze97fzMfhUwHuoZt3mYqE4CJjL20qsWoo7HLz RPnV8omrNeQLeHUMXgFVrmIcV6aZ0c09KmapVVVfdiqSlyRi/FGbnjpt+/s8XGVk lKQpd3PIjJ8/DrswLNR3aQ2ZJT6MbLnowd0E3soJ81XrLd+AkqsADYcpmDpa8kyT 6v5yJO9/7MTS3m14/K45NwoVHJbBHnM4pDYlstpsSfc6xFQV1gLn4YHIwFc= -----END CERTIFICATE-----Generated at Sun May 18 02:00:38 2025 by rpki-client