$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/MUTj80PFLWtto5FamWJtXoVYISg.roa File: MUTj80PFLWtto5FamWJtXoVYISg.roa (raw, json) Hash identifier: lfLdu/sDP1TPF7PjfL6Caa1qWXUWmde3ze6m3sYw9/U= Subject key identifier: 31:44:E3:F3:43:C5:2D:6B:6D:A3:91:5A:99:62:6D:5E:85:58:21:28 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 040A Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/MUTj80PFLWtto5FamWJtXoVYISg.roa Signing time: Thu 01 May 2025 01:45:27 +0000 ROA not before: Thu 01 May 2025 01:45:27 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 122.145.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1034 (0x40a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:45:27 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=3144E3F343C52D6B6DA3915A99626D5E85582128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5b:c5:a5:73:42:70:f7:c6:9e:88:8a:f5:04: 59:1f:dc:29:24:12:9b:c6:df:30:44:e6:0b:e7:e9: 12:a1:0f:4f:f1:98:99:aa:94:17:b3:5e:c2:e7:45: 72:db:61:56:0f:bb:55:c3:db:e8:42:d6:87:62:5f: 09:5d:5e:d3:d5:76:dc:cc:ad:e4:21:90:16:49:32: d2:f3:8d:f0:48:f4:ac:d3:be:fd:f4:30:dd:09:19: 2c:fc:5d:48:37:3f:df:cf:a0:32:e3:a6:81:a6:8e: 10:20:80:e2:db:fd:ad:09:05:fb:9f:a6:83:ac:45: 8e:49:16:3d:13:a5:07:9a:1b:58:ce:bf:2d:8c:b7: bb:cd:30:a4:fe:a0:df:a5:56:06:3b:35:f2:99:3b: 10:31:d5:aa:62:92:20:4d:43:f8:22:ef:55:1c:41: c8:9d:58:6c:67:7a:86:b6:5e:63:41:bc:b0:48:f8: da:27:d2:9e:84:8e:a8:65:85:77:96:6c:04:c0:2d: 54:f2:34:5f:a2:ac:55:fc:b3:8d:18:61:f1:9c:63: 26:af:63:32:f2:fe:4e:a1:60:e3:cf:3d:cb:18:6e: b8:c1:db:e2:bb:78:18:de:09:c8:05:02:6c:f8:11: 20:8c:b6:9d:04:ff:b9:fb:60:29:4f:3c:03:c5:4d: ef:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:44:E3:F3:43:C5:2D:6B:6D:A3:91:5A:99:62:6D:5E:85:58:21:28 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/MUTj80PFLWtto5FamWJtXoVYISg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.145.120.0/21 Signature Algorithm: sha256WithRSAEncryption 4f:24:03:05:80:b3:e0:01:98:05:4a:cd:eb:b3:18:84:88:f0: b7:83:d9:17:6f:ae:f5:89:e7:25:02:b8:a0:52:e6:56:57:28: f0:93:8b:89:a0:8c:d2:77:94:a8:8e:64:bf:da:11:23:06:9a: 23:3c:7c:76:89:76:aa:ab:74:31:31:33:32:7c:83:e4:c7:fe: 8d:1c:ef:8d:a8:da:62:62:a0:c0:1c:8a:12:13:1c:f8:86:34: 7f:36:f6:21:64:fb:08:a6:6a:6f:ef:dc:f7:94:37:63:cf:a5: 01:52:58:0d:95:cb:4e:d1:01:43:0c:6e:3f:94:a6:8a:26:1d: a7:61:b3:17:92:b5:4a:1a:7b:51:e5:59:3d:51:cf:a9:46:e4: 4b:8a:9c:21:10:25:f5:b1:d6:21:3b:c7:fd:df:ad:70:31:7b: 9f:12:01:d0:82:b4:08:37:17:b0:07:39:4f:13:d6:23:41:99: e3:46:d3:bf:99:3a:b5:30:c3:08:5b:8d:4e:75:3c:4f:59:24: 07:c0:96:5b:92:0c:a4:e5:59:81:ae:75:83:62:fa:87:6e:ba: ae:79:dc:23:80:80:93:08:0e:2f:8f:0e:df:a8:d5:48:c8:f8: 09:d0:2b:d1:52:69:81:1c:4e:6d:c8:8e:a8:64:d3:b9:4a:38: 4f:93:ec:a5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBAowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ1MjdaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMxNDRFM0YzNDNDNTJE NkI2REEzOTE1QTk5NjI2RDVFODU1ODIxMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJW8Wlc0Jw98aeiIr1BFkf3CkkEpvG3zBE5gvn6RKhD0/xmJmq lBezXsLnRXLbYVYPu1XD2+hC1odiXwldXtPVdtzMreQhkBZJMtLzjfBI9KzTvv30 MN0JGSz8XUg3P9/PoDLjpoGmjhAggOLb/a0JBfufpoOsRY5JFj0TpQeaG1jOvy2M t7vNMKT+oN+lVgY7NfKZOxAx1apikiBNQ/gi71UcQcidWGxneoa2XmNBvLBI+Non 0p6EjqhlhXeWbATALVTyNF+irFX8s40YYfGcYyavYzLy/k6hYOPPPcsYbrjB2+K7 eBjeCcgFAmz4ESCMtp0E/7n7YClPPAPFTe+BAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMUTj80PFLWtto5FamWJtXoVYISgwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L01VVGo4MFBGTFd0dG81RmFtV0p0WG9WWUlTZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN6kXgwDQYJKoZIhvcNAQELBQADggEBAE8kAwWAs+ABmAVKzeuzGISI8LeD 2RdvrvWJ5yUCuKBS5lZXKPCTi4mgjNJ3lKiOZL/aESMGmiM8fHaJdqqrdDExMzJ8 g+TH/o0c742o2mJioMAcihITHPiGNH829iFk+wimam/v3PeUN2PPpQFSWA2Vy07R AUMMbj+UpoomHadhsxeStUoae1HlWT1Rz6lG5EuKnCEQJfWx1iE7x/3frXAxe58S AdCCtAg3F7AHOU8T1iNBmeNG07+ZOrUwwwhbjU51PE9ZJAfAlluSDKTlWYGudYNi +oduuq553COAgJMIDi+PDt+o1UjI+AnQK9FSaYEcTm3Ijqhk07lKOE+T7KU= -----END CERTIFICATE-----Generated at Sun May 18 03:06:22 2025 by rpki-client