$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/Ktmh_9U33wY8e5OYXe_l16Ue58o.roa File: Ktmh_9U33wY8e5OYXe_l16Ue58o.roa (raw, json) Hash identifier: eos5n/Eg5+Of5ASBAds6H8BtYZ2HpcVcPInwTjKKGwE= Subject key identifier: 2A:D9:A1:FF:D5:37:DF:06:3C:7B:93:98:5D:EF:E5:D7:A5:1E:E7:CA Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03C8 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/Ktmh_9U33wY8e5OYXe_l16Ue58o.roa Signing time: Thu 01 May 2025 01:40:39 +0000 ROA not before: Thu 01 May 2025 01:40:39 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 61.120.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 10:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 968 (0x3c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:40:39 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=2AD9A1FFD537DF063C7B93985DEFE5D7A51EE7CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:eb:e6:53:fb:8c:8a:ae:8a:b7:91:62:2f: 1c:f6:7e:f5:9f:4c:3a:6f:57:b6:ae:27:0a:c6:c5: 4e:bb:46:f4:ca:db:de:9d:39:71:0d:e9:fb:dd:44: 63:31:e4:50:70:ec:38:73:b5:c8:4c:26:e3:48:65: bb:c0:27:82:c8:62:c8:62:31:79:e5:ef:40:38:ce: d4:fd:8f:b1:6d:1a:1f:97:da:a8:8a:a0:4d:54:4d: f9:19:5f:b4:e0:56:f4:52:e8:ee:d5:b3:49:93:e5: ac:7a:e6:47:bc:e3:1a:c6:e3:69:95:5f:26:32:53: be:9c:e6:88:e0:78:7d:85:52:37:68:6b:e0:bd:99: 88:5c:c2:07:5b:6c:47:78:74:cc:97:8e:98:8c:63: a6:c9:a3:b1:dd:16:71:80:84:75:60:57:94:73:9c: 20:41:da:1a:86:23:65:ab:54:76:c9:b1:08:58:e5: 23:cc:69:06:91:f7:5b:f9:03:55:39:20:5e:a0:c1: f5:f6:5c:f9:8f:a6:f5:b5:31:09:34:cf:e0:6d:df: 3f:f1:24:9b:ae:69:7d:70:96:f2:fb:81:75:1a:67: 50:fd:ff:f2:5b:6d:ee:62:b7:64:3c:67:5a:31:64: 05:a4:5b:81:fa:f6:f0:0f:20:4f:9c:08:2c:8c:c8: 41:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D9:A1:FF:D5:37:DF:06:3C:7B:93:98:5D:EF:E5:D7:A5:1E:E7:CA X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/Ktmh_9U33wY8e5OYXe_l16Ue58o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.120.208.0/22 Signature Algorithm: sha256WithRSAEncryption 57:34:a1:a3:5f:d7:91:5d:00:dd:c3:94:75:c3:2e:0e:8d:a5: b2:ac:25:34:00:e0:bb:07:c1:0e:08:02:5c:96:b4:3d:4a:b5: 96:1a:4c:78:b3:51:f8:3a:37:28:89:ef:ef:44:f8:e5:8a:31: a5:64:b3:28:34:e9:eb:17:21:3f:12:b8:ff:b5:e7:55:55:f4: 75:52:e0:9e:dc:87:33:62:78:1c:85:ef:76:b8:e2:90:48:ad: 76:e8:ce:ec:b0:4e:90:c2:82:e4:14:f2:c5:a8:d9:a9:df:9c: 00:b7:f1:b2:8c:bd:9e:c5:75:cc:75:52:d2:04:08:79:9e:30: f2:19:66:10:e2:2d:84:d1:fa:9d:09:af:5d:b5:02:cc:73:61: 28:2f:5a:a5:b2:5f:15:2f:87:1f:37:fc:e9:d1:5a:f4:d9:d1: 6c:f1:86:2f:8d:2e:30:24:1b:b7:93:98:06:f8:ab:82:02:b1: 68:08:aa:f5:e2:1d:6f:3a:91:8b:31:83:05:96:82:93:a8:eb: 34:fe:08:c9:b3:e5:62:05:f5:d0:30:7c:e5:e0:5b:4d:cc:33: b6:f5:f6:1f:1e:22:47:f4:1b:00:99:3c:19:6f:8b:86:4e:8f: c0:24:e1:cd:c9:c1:11:56:0d:d1:41:34:a7:53:13:2a:21:f2: c6:e8:bc:58 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA8gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQwMzlaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJBRDlBMUZGRDUzN0RG MDYzQzdCOTM5ODVERUZFNUQ3QTUxRUU3Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6f+vmU/uMiq6Kt5FiLxz2fvWfTDpvV7auJwrGxU67RvTK296d OXEN6fvdRGMx5FBw7DhztchMJuNIZbvAJ4LIYshiMXnl70A4ztT9j7FtGh+X2qiK oE1UTfkZX7TgVvRS6O7Vs0mT5ax65ke84xrG42mVXyYyU76c5ojgeH2FUjdoa+C9 mYhcwgdbbEd4dMyXjpiMY6bJo7HdFnGAhHVgV5RznCBB2hqGI2WrVHbJsQhY5SPM aQaR91v5A1U5IF6gwfX2XPmPpvW1MQk0z+Bt3z/xJJuuaX1wlvL7gXUaZ1D9//Jb be5it2Q8Z1oxZAWkW4H69vAPIE+cCCyMyEGfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKtmh/9U33wY8e5OYXe/l16Ue58owHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0t0bWhfOVUzM3dZOGU1T1lYZV9sMTZVZTU4by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI9eNAwDQYJKoZIhvcNAQELBQADggEBAFc0oaNf15FdAN3DlHXDLg6NpbKs JTQA4LsHwQ4IAlyWtD1KtZYaTHizUfg6NyiJ7+9E+OWKMaVksyg06esXIT8SuP+1 51VV9HVS4J7chzNieByF73a44pBIrXbozuywTpDCguQU8sWo2anfnAC38bKMvZ7F dcx1UtIECHmeMPIZZhDiLYTR+p0Jr121AsxzYSgvWqWyXxUvhx83/OnRWvTZ0Wzx hi+NLjAkG7eTmAb4q4ICsWgIqvXiHW86kYsxgwWWgpOo6zT+CMmz5WIF9dAwfOXg W03MM7b19h8eIkf0GwCZPBlvi4ZOj8Ak4c3JwRFWDdFBNKdTEyoh8sbovFg= -----END CERTIFICATE-----Generated at Sun May 18 13:24:44 2025 by rpki-client