$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/PXRRFlsyo3IvD0I2F8z4r7ByZQA.roa File: PXRRFlsyo3IvD0I2F8z4r7ByZQA.roa (raw, json) Hash identifier: TQPb6/motINy6MNXZK+52PGX+wYZEX5Dh3LW5KoYCg4= Subject key identifier: 3D:74:51:16:5B:32:A3:72:2F:0F:42:36:17:CC:F8:AF:B0:72:65:00 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03A5 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/PXRRFlsyo3IvD0I2F8z4r7ByZQA.roa Signing time: Thu 01 May 2025 01:37:38 +0000 ROA not before: Thu 01 May 2025 01:37:38 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 59.157.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:38 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=3D7451165B32A3722F0F423617CCF8AFB0726500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6b:ef:b0:9b:8b:57:42:86:4b:08:97:43:0e: 2d:33:e2:fa:0b:01:2c:e3:2a:79:9c:93:34:1c:90: cf:e8:5a:5a:77:f6:93:32:7c:98:a9:d8:93:c9:63: d8:e5:20:52:b0:11:25:5b:05:63:f1:73:20:e6:51: bb:04:ca:0a:89:82:c7:55:1b:cf:51:53:2f:98:c8: 22:1a:4e:d6:f3:79:26:7b:2e:c7:5c:65:8a:5c:a4: b0:2c:56:9a:61:b4:73:fc:f9:50:54:37:17:0f:5f: 19:03:67:ec:ff:96:bc:1f:c0:35:14:ad:7c:cd:a1: a5:44:4d:40:22:8c:9a:ad:da:ef:fe:c7:05:ac:bc: fb:50:ea:95:f8:72:0b:58:cb:30:4c:14:4a:d0:02: 3f:6c:30:2c:b9:75:1a:80:c4:a0:4a:a3:0f:80:30: 64:a7:14:26:ee:12:a0:ba:63:00:61:3d:ee:55:f2: 40:3a:a9:cf:3b:86:61:46:e1:1d:c3:34:02:28:19: ef:d5:c1:16:41:41:17:fd:d0:e0:7e:47:cc:79:96: c6:2b:22:78:07:c8:5a:bb:57:3c:c2:bf:d0:4a:70: 95:07:5d:db:69:c1:35:4a:1a:ad:79:0f:06:30:2b: de:65:86:31:4e:c9:f1:90:ae:97:9d:ca:9b:1f:dd: 1f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:74:51:16:5B:32:A3:72:2F:0F:42:36:17:CC:F8:AF:B0:72:65:00 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/PXRRFlsyo3IvD0I2F8z4r7ByZQA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.157.224.0/19 Signature Algorithm: sha256WithRSAEncryption 68:22:ee:ef:4d:b1:0a:d1:86:dd:cf:7e:54:4b:1f:89:78:4c: 9d:82:03:9b:6e:73:c0:96:4f:f7:00:84:65:c1:62:f6:79:9a: 65:2f:04:73:88:93:86:39:7b:fb:53:6e:c2:9a:fe:cc:d6:da: 7a:48:c2:51:5a:e6:8c:85:fd:a1:fe:ea:5c:ab:c1:67:cc:94: 63:6a:ae:64:23:10:13:c4:82:b2:8f:b4:6d:00:74:8f:82:38: 12:6a:c8:b7:14:f3:a8:2b:83:11:7b:39:b2:18:dd:eb:6b:d2: 3d:71:d3:ed:19:b9:19:fa:09:ed:bf:e0:be:e3:eb:7f:4e:4b: f3:70:7e:4a:dc:08:00:7b:5f:4d:56:20:7a:61:d5:b4:04:bd: 9b:a8:01:9f:d1:4b:b8:99:73:7b:ef:b9:7f:4c:c9:7c:07:94: 91:3b:8b:a6:11:da:68:ca:9e:52:16:11:78:e4:b4:3c:c8:4b: cf:54:10:d4:a9:ef:20:3d:b8:ea:db:98:b1:a6:6a:43:de:21: ab:b7:25:c7:9f:3e:83:19:2a:22:19:1a:81:ee:87:a9:e4:cd: 4d:47:af:b7:11:4d:ae:97:67:9d:f5:27:0f:9f:b8:7c:d1:a8: 29:c1:a7:8d:d5:6c:9a:6a:58:92:83:0c:62:ac:df:8d:5e:4d: 3b:d7:77:6a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3MzhaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDNENzQ1MTE2NUIzMkEz NzIyRjBGNDIzNjE3Q0NGOEFGQjA3MjY1MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVa++wm4tXQoZLCJdDDi0z4voLASzjKnmckzQckM/oWlp39pMy fJip2JPJY9jlIFKwESVbBWPxcyDmUbsEygqJgsdVG89RUy+YyCIaTtbzeSZ7Lsdc ZYpcpLAsVpphtHP8+VBUNxcPXxkDZ+z/lrwfwDUUrXzNoaVETUAijJqt2u/+xwWs vPtQ6pX4cgtYyzBMFErQAj9sMCy5dRqAxKBKow+AMGSnFCbuEqC6YwBhPe5V8kA6 qc87hmFG4R3DNAIoGe/VwRZBQRf90OB+R8x5lsYrIngHyFq7VzzCv9BKcJUHXdtp wTVKGq15DwYwK95lhjFOyfGQrpedypsf3R8fAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPXRRFlsyo3IvD0I2F8z4r7ByZQAwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1BYUlJGbHN5bzNJdkQwSTJGOHo0cjdCeVpRQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU7neAwDQYJKoZIhvcNAQELBQADggEBAGgi7u9NsQrRht3PflRLH4l4TJ2C A5tuc8CWT/cAhGXBYvZ5mmUvBHOIk4Y5e/tTbsKa/szW2npIwlFa5oyF/aH+6lyr wWfMlGNqrmQjEBPEgrKPtG0AdI+COBJqyLcU86grgxF7ObIY3etr0j1x0+0ZuRn6 Ce2/4L7j639OS/NwfkrcCAB7X01WIHph1bQEvZuoAZ/RS7iZc3vvuX9MyXwHlJE7 i6YR2mjKnlIWEXjktDzIS89UENSp7yA9uOrbmLGmakPeIau3JcefPoMZKiIZGoHu h6nkzU1Hr7cRTa6XZ531Jw+fuHzRqCnBp43VbJpqWJKDDGKs341eTTvXd2o= -----END CERTIFICATE-----Generated at Sun May 18 02:16:28 2025 by rpki-client