$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/M53-ojemmC72Di6a_uSKb2n3fms.roa File: M53-ojemmC72Di6a_uSKb2n3fms.roa (raw, json) Hash identifier: RPdHJ/NUnKNIEFV6Oj4eZHQPYS7P0pFC0kDYnsU8yms= Subject key identifier: 33:9D:FE:A2:37:A6:98:2E:F6:0E:2E:9A:FE:E4:8A:6F:69:F7:7E:6B Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03C2 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/M53-ojemmC72Di6a_uSKb2n3fms.roa Signing time: Thu 01 May 2025 01:40:36 +0000 ROA not before: Thu 01 May 2025 01:40:36 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 59.156.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 18:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:40:36 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=339DFEA237A6982EF60E2E9AFEE48A6F69F77E6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:31:61:b9:d6:40:db:e6:7d:09:bc:de:0e:b5: 5b:aa:04:33:df:7c:5d:a8:2e:a0:d2:cc:25:fa:44: 1f:bb:92:32:26:55:6b:48:27:79:8c:9f:1f:6b:61: 91:ff:43:1d:74:86:0a:28:d8:20:ae:21:8b:e7:98: 80:db:c0:29:45:d8:8d:93:97:73:81:3d:06:df:98: 79:5e:6b:bb:93:65:dd:59:dc:6d:71:7b:8f:ed:b5: 33:8b:9a:b0:70:51:c7:78:e8:71:5d:cb:ba:a5:66: 31:d7:36:c9:ed:02:f5:27:a6:4a:fd:fb:2f:34:b5: ea:e8:19:98:57:ce:49:c9:b2:14:78:85:7f:1c:83: cd:df:52:18:78:cb:e0:ac:5d:c5:8c:92:b2:ec:24: 55:e8:80:ef:73:fa:65:ab:d7:93:a9:29:b2:23:65: 98:ea:62:cf:a6:ca:5f:fc:3e:f4:35:e6:53:1f:51: 90:be:96:1e:25:be:5d:b5:4d:1c:f4:d2:36:88:cb: 92:82:e2:47:7a:f7:2b:fe:f6:4b:50:3a:22:59:b4: 97:38:03:ca:11:d9:b4:a9:96:c1:59:a3:ce:a0:8c: 05:b2:ca:30:aa:40:b0:cf:1d:ee:71:e8:c4:80:c4: b2:f2:1f:a1:7e:0e:c8:55:e2:30:cd:46:9e:d6:72: a7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:9D:FE:A2:37:A6:98:2E:F6:0E:2E:9A:FE:E4:8A:6F:69:F7:7E:6B X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/M53-ojemmC72Di6a_uSKb2n3fms.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.156.64.0/18 Signature Algorithm: sha256WithRSAEncryption 43:2e:e5:e1:bf:e9:8b:c4:41:a8:a1:1d:da:2e:ff:82:10:b0: 0a:9b:9e:89:18:87:35:e8:f9:2d:0b:62:13:8e:c6:79:4f:ba: 80:50:b3:e2:2e:0e:b0:8d:b2:d6:54:b0:42:46:ac:26:a4:ee: 8a:4b:1b:e0:b7:be:0a:2f:91:4d:92:0a:06:99:a9:06:87:3f: 8d:09:92:94:07:0a:2d:ac:90:7e:eb:98:3d:45:fc:6e:fc:7c: c4:b1:55:1e:3e:a7:d6:b0:c9:4b:87:3d:4f:d2:26:7f:b7:55: 04:1e:f1:72:c2:25:f0:1f:47:8b:b7:0e:d5:25:2b:e9:c1:81: e8:e3:f6:ca:d4:9e:f5:d7:40:1c:d7:0c:25:18:f8:b3:87:d8: 54:d9:08:36:a3:38:54:ac:9b:02:53:93:ef:86:85:30:fb:1e: 00:54:3f:41:b4:82:90:c8:64:c2:bc:a6:39:ac:dd:91:37:94: 82:52:7a:8e:fe:98:d7:a9:a5:3b:7f:da:97:7f:69:98:51:f7: 67:a1:e8:b7:54:3f:2c:bf:25:0b:9d:13:8d:6e:83:ed:12:f5: b5:49:f5:b9:b7:4b:35:6f:3c:ec:1c:ce:9b:b3:ab:14:83:bb: fe:c8:0e:1e:ce:1c:6c:7a:76:eb:3b:bc:23:e0:4c:83:3e:8c: 9a:0c:86:20 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQwMzZaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMzOURGRUEyMzdBNjk4 MkVGNjBFMkU5QUZFRTQ4QTZGNjlGNzdFNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0MWG51kDb5n0JvN4OtVuqBDPffF2oLqDSzCX6RB+7kjImVWtI J3mMnx9rYZH/Qx10hgoo2CCuIYvnmIDbwClF2I2Tl3OBPQbfmHlea7uTZd1Z3G1x e4/ttTOLmrBwUcd46HFdy7qlZjHXNsntAvUnpkr9+y80teroGZhXzknJshR4hX8c g83fUhh4y+CsXcWMkrLsJFXogO9z+mWr15OpKbIjZZjqYs+myl/8PvQ15lMfUZC+ lh4lvl21TRz00jaIy5KC4kd69yv+9ktQOiJZtJc4A8oR2bSplsFZo86gjAWyyjCq QLDPHe5x6MSAxLLyH6F+DshV4jDNRp7WcqdDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUM53+ojemmC72Di6a/uSKb2n3fmswHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L001My1vamVtbUM3MkRpNmFfdVNLYjJuM2Ztcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY7nEAwDQYJKoZIhvcNAQELBQADggEBAEMu5eG/6YvEQaihHdou/4IQsAqb nokYhzXo+S0LYhOOxnlPuoBQs+IuDrCNstZUsEJGrCak7opLG+C3vgovkU2SCgaZ qQaHP40JkpQHCi2skH7rmD1F/G78fMSxVR4+p9awyUuHPU/SJn+3VQQe8XLCJfAf R4u3DtUlK+nBgejj9srUnvXXQBzXDCUY+LOH2FTZCDajOFSsmwJTk++GhTD7HgBU P0G0gpDIZMK8pjms3ZE3lIJSeo7+mNeppTt/2pd/aZhR92eh6LdUPyy/JQudE41u g+0S9bVJ9bm3SzVvPOwczpuzqxSDu/7IDh7OHGx6dus7vCPgTIM+jJoMhiA= -----END CERTIFICATE-----Generated at Sat May 17 22:39:21 2025 by rpki-client