$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/R4UVfSvwHiZL6BhX--EQ3cpD_gM.roa File: R4UVfSvwHiZL6BhX--EQ3cpD_gM.roa (raw, json) Hash identifier: qnGTjZdvxtKKIp28yY0nSgo1p+XhRZBEPgth6Gi62fE= Subject key identifier: 47:85:15:7D:2B:F0:1E:26:4B:E8:18:57:FB:E1:10:DD:CA:43:FE:03 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03F4 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/R4UVfSvwHiZL6BhX--EQ3cpD_gM.roa Signing time: Thu 01 May 2025 01:45:18 +0000 ROA not before: Thu 01 May 2025 01:45:18 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 175.28.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:45:18 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=4785157D2BF01E264BE81857FBE110DDCA43FE03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:1e:bc:ce:b9:f7:2a:b6:ca:7b:d1:f9:a2:79: 30:15:93:69:fc:78:da:d1:55:79:00:a3:33:83:c3: ff:9b:fb:8e:70:ff:1e:1f:7c:2d:ef:f2:59:24:65: a5:8e:df:00:32:b6:9b:62:18:b1:a7:35:ed:62:25: 02:de:48:dc:00:0b:96:b6:f7:0f:ec:8c:43:ec:1e: 02:ec:82:85:8c:03:67:6a:ef:db:bf:70:77:d4:a8: 89:80:1f:a6:15:39:7a:b1:df:d9:2b:4f:e2:99:45: 15:eb:13:34:58:8c:da:41:73:e5:44:29:3f:23:2a: db:a6:ac:96:62:54:92:ae:48:9e:63:49:3f:a7:04: 0b:df:f0:29:40:3a:d5:6d:66:74:11:af:25:f7:be: ca:86:93:ba:66:8e:60:87:4c:bc:82:ef:bd:79:db: 5d:e4:b7:4c:74:4e:28:fe:92:b1:60:b0:23:d4:25: 15:b1:37:18:03:e1:5c:d8:f2:1a:30:3d:7a:09:e4: 0c:b2:f8:d0:11:b6:8a:5f:2b:52:98:92:39:87:5d: 62:61:13:f5:1e:a5:8c:11:48:f6:75:29:1a:90:6d: 14:13:eb:6b:82:a0:16:a8:b4:ad:55:99:9f:ac:12: 75:e4:d8:70:33:eb:41:4c:98:e6:49:5e:4e:f3:f0: f5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:85:15:7D:2B:F0:1E:26:4B:E8:18:57:FB:E1:10:DD:CA:43:FE:03 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/R4UVfSvwHiZL6BhX--EQ3cpD_gM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.28.52.0/22 Signature Algorithm: sha256WithRSAEncryption 37:99:cd:13:02:a4:fa:6f:72:9e:e3:c6:cd:eb:21:98:1b:89: 56:32:e1:78:35:99:d5:06:79:56:15:f1:3a:07:e9:88:3b:5a: 8c:a8:c5:c1:b9:9e:ca:13:7c:26:e1:08:36:7b:b6:dd:83:28: c2:e0:b5:6e:a0:1f:7a:a9:0c:54:6c:ed:8f:9b:b9:8d:04:cd: 10:4f:9e:ab:8b:27:4e:43:09:35:e9:78:40:06:e9:3b:c6:c9: 26:e8:cf:15:b6:cf:a5:9e:d3:de:61:9c:fd:cb:96:a1:ba:d7: bd:bc:2d:b9:1c:40:89:03:db:90:65:a5:43:22:e6:5e:bc:7a: 94:cb:61:aa:f5:af:f2:6c:90:db:1c:58:1c:9d:7b:f5:02:51: 99:79:32:0f:a5:3d:fa:e6:2a:51:10:ae:05:b9:60:23:33:25: d3:2e:c2:97:75:4b:49:d8:cf:c1:55:e4:d0:3e:dd:46:6e:eb: 6d:72:73:a5:05:20:74:40:93:64:9a:b2:39:f6:bc:0b:10:0b: 39:52:48:8c:3e:f1:75:ff:1a:d7:32:75:f4:c5:23:28:1b:c3: 92:67:9f:19:74:4f:88:39:4f:97:d9:e4:0b:7a:a6:a0:6d:9d: ea:2c:02:68:25:30:bd:6d:bd:c7:6a:f7:58:f9:a9:48:de:8e: 10:68:c8:79 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ1MThaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQ3ODUxNTdEMkJGMDFF MjY0QkU4MTg1N0ZCRTExMEREQ0E0M0ZFMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD5HrzOufcqtsp70fmieTAVk2n8eNrRVXkAozODw/+b+45w/x4f fC3v8lkkZaWO3wAytptiGLGnNe1iJQLeSNwAC5a29w/sjEPsHgLsgoWMA2dq79u/ cHfUqImAH6YVOXqx39krT+KZRRXrEzRYjNpBc+VEKT8jKtumrJZiVJKuSJ5jST+n BAvf8ClAOtVtZnQRryX3vsqGk7pmjmCHTLyC7715213kt0x0Tij+krFgsCPUJRWx NxgD4VzY8howPXoJ5Ayy+NARtopfK1KYkjmHXWJhE/UepYwRSPZ1KRqQbRQT62uC oBaotK1VmZ+sEnXk2HAz60FMmOZJXk7z8PXnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUR4UVfSvwHiZL6BhX++EQ3cpD/gMwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1I0VVZmU3Z3SGlaTDZCaFgtLUVRM2NwRF9nTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKvHDQwDQYJKoZIhvcNAQELBQADggEBADeZzRMCpPpvcp7jxs3rIZgbiVYy 4Xg1mdUGeVYV8ToH6Yg7WoyoxcG5nsoTfCbhCDZ7tt2DKMLgtW6gH3qpDFRs7Y+b uY0EzRBPnquLJ05DCTXpeEAG6TvGySbozxW2z6We095hnP3LlqG61728LbkcQIkD 25BlpUMi5l68epTLYar1r/JskNscWByde/UCUZl5Mg+lPfrmKlEQrgW5YCMzJdMu wpd1S0nYz8FV5NA+3UZu621yc6UFIHRAk2Sasjn2vAsQCzlSSIw+8XX/GtcydfTF Iygbw5Jnnxl0T4g5T5fZ5At6pqBtneosAmglML1tvcdq91j5qUjejhBoyHk= -----END CERTIFICATE-----Generated at Sun May 18 02:07:15 2025 by rpki-client