$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/LAFrO42HZtPUlNVLM4XCAOhdqSA.roa File: LAFrO42HZtPUlNVLM4XCAOhdqSA.roa (raw, json) Hash identifier: fxIDaaZce6LGh5IsA4UdTV6BhD/gDpMxH0zyuXVb8rw= Subject key identifier: 2C:01:6B:3B:8D:87:66:D3:D4:94:D5:4B:33:85:C2:00:E8:5D:A9:20 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 039D Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/LAFrO42HZtPUlNVLM4XCAOhdqSA.roa Signing time: Thu 01 May 2025 01:37:35 +0000 ROA not before: Thu 01 May 2025 01:37:35 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 219.109.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 15:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 925 (0x39d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:35 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=2C016B3B8D8766D3D494D54B3385C200E85DA920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c3:83:71:9c:f1:16:4b:21:50:42:58:74:af: 55:99:61:14:d2:83:b6:be:e9:0a:7a:7e:89:4e:07: e6:50:7b:13:67:44:e9:31:47:0e:9b:cf:86:a8:86: ce:aa:e2:67:0e:45:6e:92:b7:77:f0:eb:80:e8:d0: a7:22:96:b2:71:08:b5:c3:16:5c:bd:c8:bd:00:01: b0:e8:dd:b6:7c:38:df:87:a4:50:23:e3:10:a2:7b: 06:4a:df:57:72:d4:81:ca:4f:7e:b0:b1:c9:c5:4f: 8b:ef:be:42:b3:61:96:ac:82:05:f8:51:53:eb:9a: c8:42:51:29:ec:14:db:a7:7b:2b:1a:cc:85:2e:33: 6c:e3:f1:fe:51:6b:6b:e8:39:ba:97:3e:3a:db:53: 15:b8:a8:db:b8:65:33:19:57:28:de:03:2e:24:69: 9f:09:f1:cd:e9:9a:77:d6:54:43:74:c2:b2:05:3d: 11:9a:23:4a:4b:33:bb:09:ce:4e:37:34:70:45:ab: 48:22:e7:37:7e:a8:2e:85:4b:5b:c2:b1:1a:06:cc: f7:d3:73:a6:b3:47:ba:fb:45:b4:a5:9d:3e:5c:bd: a7:cc:97:cb:6b:aa:06:92:03:31:e9:04:e9:15:1b: 41:42:9e:30:fc:04:10:41:82:ae:32:29:ac:6b:c9: ae:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:01:6B:3B:8D:87:66:D3:D4:94:D5:4B:33:85:C2:00:E8:5D:A9:20 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/LAFrO42HZtPUlNVLM4XCAOhdqSA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.109.224.0/20 Signature Algorithm: sha256WithRSAEncryption 65:08:2b:e3:6e:3e:8f:09:e7:a3:0a:f6:a7:a7:81:b0:b9:2e: b5:8a:c9:78:3f:b4:67:91:11:e3:80:82:46:9c:99:df:4d:56: 52:3a:c6:9c:ab:40:dd:61:08:1b:3a:df:68:46:40:c6:4b:86: 7c:b9:1a:86:54:92:fa:1d:7a:cd:05:ee:ba:5a:b9:36:17:f9: 82:2a:bb:d9:97:57:c4:cb:41:92:44:fb:95:90:32:81:25:5e: 48:98:54:df:fc:6a:4c:16:bc:c4:43:ad:4c:4c:50:18:77:cf: 49:ce:d1:28:d4:97:37:31:64:c8:48:49:6e:85:5c:d8:69:27: 47:97:c2:6c:8f:75:9e:43:29:9f:bd:eb:72:bc:9f:bc:5f:6b: 13:46:8c:68:9c:ea:98:c1:09:1c:51:29:a5:8d:dc:00:d1:1d: 8f:8e:82:c1:8e:87:3c:88:52:ec:61:4b:2f:35:71:a4:90:59: e1:c0:73:91:93:40:1f:5e:41:33:95:e1:97:a1:c0:8d:c7:fc: 07:7e:23:29:1b:76:3c:59:44:6e:70:2b:2d:ce:c4:4a:78:23: 22:a1:20:f7:12:3f:19:50:7c:97:48:3a:43:b7:9f:0b:1a:8c: 85:11:2f:98:5d:04:f6:d1:2e:6e:da:9a:f7:a1:73:0f:f4:ca: 4f:a7:99:f1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3MzVaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJDMDE2QjNCOEQ4NzY2 RDNENDk0RDU0QjMzODVDMjAwRTg1REE5MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClw4NxnPEWSyFQQlh0r1WZYRTSg7a+6Qp6folOB+ZQexNnROkx Rw6bz4aohs6q4mcORW6St3fw64Do0KcilrJxCLXDFly9yL0AAbDo3bZ8ON+HpFAj 4xCiewZK31dy1IHKT36wscnFT4vvvkKzYZasggX4UVPrmshCUSnsFNuneysazIUu M2zj8f5Ra2voObqXPjrbUxW4qNu4ZTMZVyjeAy4kaZ8J8c3pmnfWVEN0wrIFPRGa I0pLM7sJzk43NHBFq0gi5zd+qC6FS1vCsRoGzPfTc6azR7r7RbSlnT5cvafMl8tr qgaSAzHpBOkVG0FCnjD8BBBBgq4yKaxrya7ZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULAFrO42HZtPUlNVLM4XCAOhdqSAwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0xBRnJPNDJIWnRQVWxOVkxNNFhDQU9oZHFTQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATbbeAwDQYJKoZIhvcNAQELBQADggEBAGUIK+NuPo8J56MK9qengbC5LrWK yXg/tGeREeOAgkacmd9NVlI6xpyrQN1hCBs632hGQMZLhny5GoZUkvodes0F7rpa uTYX+YIqu9mXV8TLQZJE+5WQMoElXkiYVN/8akwWvMRDrUxMUBh3z0nO0SjUlzcx ZMhISW6FXNhpJ0eXwmyPdZ5DKZ+963K8n7xfaxNGjGic6pjBCRxRKaWN3ADRHY+O gsGOhzyIUuxhSy81caSQWeHAc5GTQB9eQTOV4ZehwI3H/Ad+IykbdjxZRG5wKy3O xEp4IyKhIPcSPxlQfJdIOkO3nwsajIURL5hdBPbRLm7amvehcw/0yk+nmfE= -----END CERTIFICATE-----Generated at Sun May 18 19:44:51 2025 by rpki-client