$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/NUvVWi3XeFgco-vEN8mRtUv4i5U.roa File: NUvVWi3XeFgco-vEN8mRtUv4i5U.roa (raw, json) Hash identifier: cKO30O8DcCZdV9QHJ7bc+w212bSpFPOxFquaHR9XXBY= Subject key identifier: 35:4B:D5:5A:2D:D7:78:58:1C:A3:EB:C4:37:C9:91:B5:4B:F8:8B:95 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0401 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/NUvVWi3XeFgco-vEN8mRtUv4i5U.roa Signing time: Thu 01 May 2025 01:45:24 +0000 ROA not before: Thu 01 May 2025 01:45:24 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 219.99.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 18:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1025 (0x401) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:45:24 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=354BD55A2DD778581CA3EBC437C991B54BF88B95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:29:23:ea:81:47:41:5f:cd:49:35:48:ac:84: a7:d9:17:f2:91:d9:20:ff:44:d0:02:60:cf:cb:09: 93:1f:2a:c2:f7:58:12:4c:b3:ee:5b:33:a4:75:0d: 24:ac:49:e1:79:d5:c2:6e:01:ae:f2:50:db:79:a6: 10:bf:6e:96:82:5c:82:ef:de:e0:88:24:81:56:23: b5:8a:7d:23:4a:72:f6:82:b5:63:95:93:ce:6f:a4: a2:f8:c3:a6:83:6c:47:88:f1:bc:2f:39:a7:84:06: ec:1c:20:38:32:d4:9f:0a:5b:b3:3c:3f:aa:b2:3b: 87:82:da:3f:85:96:5b:28:7b:b5:40:8b:3c:59:3f: 42:22:2c:fe:57:8d:54:80:b4:8b:2d:b5:d6:ce:49: 8a:5c:60:d8:58:57:e1:0d:6a:91:0a:e5:1e:86:e0: 70:2d:5b:c4:56:c6:43:3e:45:89:4e:f5:3a:aa:5a: 44:20:d3:12:b3:84:16:11:f3:1b:f8:c2:b8:f1:5e: 78:ef:00:36:bc:25:bd:00:5d:68:7d:15:6c:ca:bf: 53:dc:b7:59:c3:15:bc:ac:22:43:46:12:3e:d1:cd: dc:37:ec:54:18:50:2f:af:4d:5c:b9:6f:14:94:39: c1:84:32:87:f9:8f:0b:ec:bd:70:e9:69:df:a6:93: 6e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:4B:D5:5A:2D:D7:78:58:1C:A3:EB:C4:37:C9:91:B5:4B:F8:8B:95 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/NUvVWi3XeFgco-vEN8mRtUv4i5U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.99.80.0/20 Signature Algorithm: sha256WithRSAEncryption 91:47:43:8d:b3:27:2f:fa:63:9d:8f:80:dd:cb:7b:cb:50:0d: 14:e4:f1:26:46:75:90:0c:72:f9:5c:cf:7b:44:8c:22:de:d3: 61:97:75:d9:ab:cf:54:c7:fb:1c:0e:43:d8:d6:e8:0e:ff:9a: 71:46:a3:1c:79:48:b8:77:e7:ef:c7:a5:3c:ba:05:d7:43:41: e6:04:d2:4e:30:60:7f:ce:c8:3b:4d:e7:56:dd:38:ae:0a:81: 3a:25:a9:b1:91:e7:99:7b:87:ca:cb:b0:52:39:4e:f0:b8:98: f7:b7:1d:12:6d:a0:b4:66:0a:0e:36:51:10:3a:0d:0d:63:bb: 12:f7:b2:bf:6b:2d:bf:c1:4a:d2:93:b6:3e:52:62:15:d4:0e: 37:0f:f1:9d:c6:16:80:3a:fe:c1:0f:d1:5f:2c:31:61:b1:77: ab:c0:bb:5b:98:5f:85:cb:aa:71:9a:4d:9e:8b:61:e6:55:96: 65:b8:96:37:65:c7:44:2b:d1:b3:8c:80:6f:9e:df:ee:ab:74: 67:77:4e:e1:24:08:9a:3a:a2:92:30:4b:40:97:e9:96:4d:81: 68:bd:48:df:91:3b:e5:d7:26:4b:99:a7:d5:98:9e:ec:8c:37: 1f:6e:eb:8a:04:33:5b:cd:b9:97:69:2b:78:10:1d:44:f7:f6: 1e:6b:97:60 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBAEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ1MjRaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDM1NEJENTVBMkRENzc4 NTgxQ0EzRUJDNDM3Qzk5MUI1NEJGODhCOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQKSPqgUdBX81JNUishKfZF/KR2SD/RNACYM/LCZMfKsL3WBJM s+5bM6R1DSSsSeF51cJuAa7yUNt5phC/bpaCXILv3uCIJIFWI7WKfSNKcvaCtWOV k85vpKL4w6aDbEeI8bwvOaeEBuwcIDgy1J8KW7M8P6qyO4eC2j+Fllsoe7VAizxZ P0IiLP5XjVSAtIsttdbOSYpcYNhYV+ENapEK5R6G4HAtW8RWxkM+RYlO9TqqWkQg 0xKzhBYR8xv4wrjxXnjvADa8Jb0AXWh9FWzKv1Pct1nDFbysIkNGEj7Rzdw37FQY UC+vTVy5bxSUOcGEMof5jwvsvXDpad+mk24tAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNUvVWi3XeFgco+vEN8mRtUv4i5UwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L05VdlZXaTNYZUZnY28tdkVOOG1SdFV2NGk1VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATbY1AwDQYJKoZIhvcNAQELBQADggEBAJFHQ42zJy/6Y52PgN3Le8tQDRTk 8SZGdZAMcvlcz3tEjCLe02GXddmrz1TH+xwOQ9jW6A7/mnFGoxx5SLh35+/HpTy6 BddDQeYE0k4wYH/OyDtN51bdOK4KgTolqbGR55l7h8rLsFI5TvC4mPe3HRJtoLRm Cg42URA6DQ1juxL3sr9rLb/BStKTtj5SYhXUDjcP8Z3GFoA6/sEP0V8sMWGxd6vA u1uYX4XLqnGaTZ6LYeZVlmW4ljdlx0Qr0bOMgG+e3+6rdGd3TuEkCJo6opIwS0CX 6ZZNgWi9SN+RO+XXJkuZp9WYnuyMNx9u64oEM1vNuZdpK3gQHUT39h5rl2A= -----END CERTIFICATE-----Generated at Sat May 17 21:47:02 2025 by rpki-client