$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/S6t4XkNbPVKaXEgjrFkbLO6z0Os.roa File: S6t4XkNbPVKaXEgjrFkbLO6z0Os.roa (raw, json) Hash identifier: NanIyfS2RaPhK+WpH3LNypbmNMcCjCoFMmbFXVkiCGM= Subject key identifier: 4B:AB:78:5E:43:5B:3D:52:9A:5C:48:23:AC:59:1B:2C:EE:B3:D0:EB Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 038D Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/S6t4XkNbPVKaXEgjrFkbLO6z0Os.roa Signing time: Thu 01 May 2025 01:37:29 +0000 ROA not before: Thu 01 May 2025 01:37:29 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 110.2.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 18:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 909 (0x38d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:29 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=4BAB785E435B3D529A5C4823AC591B2CEEB3D0EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3d:ab:61:b2:15:35:88:d4:d9:76:7d:3d:24: 3e:32:5d:d1:2c:38:3e:63:52:3b:c0:99:03:45:2a: a3:d9:88:64:15:e8:64:be:02:24:3a:fb:80:89:8e: 65:3f:4f:d0:31:95:64:4e:87:c2:b8:12:58:ed:8e: 6c:5e:ba:fa:a8:55:dd:3e:82:fa:4b:ad:99:28:2a: ef:13:cc:ca:f6:36:ba:df:e1:e2:93:89:d2:3a:8c: f7:a6:69:c1:27:34:31:c4:e5:cf:6a:09:8b:ba:ba: 2a:cc:db:0f:0b:4c:f0:f4:aa:69:40:25:38:4c:65: c5:5b:2a:85:a3:a2:75:18:45:e2:d2:61:ac:f4:17: 19:ba:ef:bf:16:17:a2:0b:ed:d9:11:58:3a:ec:65: 4d:bd:c2:c3:35:19:33:46:43:62:1b:10:8c:b6:b9: 6e:2b:4f:7b:0a:06:36:f8:87:ec:c3:71:24:0f:1a: 4f:85:ce:88:e3:8b:d0:59:0e:3e:09:30:c2:bf:62: a8:b8:9e:76:4b:e4:e2:5c:c4:ca:0c:74:ce:86:55: 4a:4b:45:25:b4:13:8a:4b:15:76:62:38:df:0b:92: b4:f5:0d:c2:fc:a7:49:97:6e:bd:68:d3:bb:43:52: d8:ea:4f:ca:d5:4b:78:d3:6f:a7:d7:4c:07:ce:f5: fb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AB:78:5E:43:5B:3D:52:9A:5C:48:23:AC:59:1B:2C:EE:B3:D0:EB X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/S6t4XkNbPVKaXEgjrFkbLO6z0Os.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.2.224.0/19 Signature Algorithm: sha256WithRSAEncryption 31:57:bd:1c:4b:69:a9:0a:8a:11:31:53:30:44:e9:55:fa:83: 40:33:45:27:65:a0:d6:d5:f0:5c:f0:5d:fd:49:ed:54:2a:76: 64:db:cf:45:73:f7:d0:28:28:ea:d3:9e:6d:21:07:e5:1e:f6: cb:2f:92:1a:f4:16:6c:db:9d:b8:dd:9a:88:ac:dc:a9:39:88: be:99:70:9d:ab:fd:a7:59:1a:68:84:fd:85:7e:fb:b5:ec:20: a8:76:43:9f:66:8f:14:7a:b3:54:dd:a2:cc:68:91:a4:cd:1a: db:c9:24:ea:61:dd:8b:95:f4:6b:c8:5d:84:23:0e:00:54:31: 6d:65:10:43:6e:45:21:fd:10:be:5b:ee:66:25:3c:a0:f9:34: 58:17:a6:d5:2a:8f:05:69:a5:9c:25:16:0e:a4:eb:93:82:09: d6:dc:a7:bb:2a:4a:82:c5:7e:be:6c:ce:31:0c:49:b5:48:d3: e8:b3:af:2a:15:b9:a1:9a:cc:36:b2:a3:fc:89:ff:a4:d8:30: 65:d4:11:06:29:48:01:c7:d1:c8:04:5c:b2:c0:3b:08:0e:8f: 88:88:04:18:cb:13:b2:95:a6:a0:23:3b:67:f4:62:c3:ee:77: 51:1c:56:99:93:7a:84:e1:81:b3:48:7f:9c:b5:53:3a:e2:ea: 04:04:93:90 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA40wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3MjlaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDRCQUI3ODVFNDM1QjNE NTI5QTVDNDgyM0FDNTkxQjJDRUVCM0QwRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFPathshU1iNTZdn09JD4yXdEsOD5jUjvAmQNFKqPZiGQV6GS+ AiQ6+4CJjmU/T9AxlWROh8K4EljtjmxeuvqoVd0+gvpLrZkoKu8TzMr2Nrrf4eKT idI6jPemacEnNDHE5c9qCYu6uirM2w8LTPD0qmlAJThMZcVbKoWjonUYReLSYaz0 Fxm6778WF6IL7dkRWDrsZU29wsM1GTNGQ2IbEIy2uW4rT3sKBjb4h+zDcSQPGk+F zojji9BZDj4JMMK/Yqi4nnZL5OJcxMoMdM6GVUpLRSW0E4pLFXZiON8LkrT1DcL8 p0mXbr1o07tDUtjqT8rVS3jTb6fXTAfO9fsHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUS6t4XkNbPVKaXEgjrFkbLO6z0OswHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1M2dDRYa05iUFZLYVhFZ2pyRmtiTE82ejBPcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVuAuAwDQYJKoZIhvcNAQELBQADggEBADFXvRxLaakKihExUzBE6VX6g0Az RSdloNbV8FzwXf1J7VQqdmTbz0Vz99AoKOrTnm0hB+Ue9ssvkhr0Fmzbnbjdmois 3Kk5iL6ZcJ2r/adZGmiE/YV++7XsIKh2Q59mjxR6s1TdosxokaTNGtvJJOph3YuV 9GvIXYQjDgBUMW1lEENuRSH9EL5b7mYlPKD5NFgXptUqjwVppZwlFg6k65OCCdbc p7sqSoLFfr5szjEMSbVI0+izryoVuaGazDayo/yJ/6TYMGXUEQYpSAHH0cgEXLLA OwgOj4iIBBjLE7KVpqAjO2f0YsPud1EcVpmTeoThgbNIf5y1Uzri6gQEk5A= -----END CERTIFICATE-----Generated at Sat May 17 20:00:47 2025 by rpki-client