$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/UfNYVpweVbtIHFdLVZ-GbXgzfaw.roa File: UfNYVpweVbtIHFdLVZ-GbXgzfaw.roa (raw, json) Hash identifier: MoXVBR6CtllbavPhGUFG58jy3KrMg3VV7vWPt90TaxE= Subject key identifier: 51:F3:58:56:9C:1E:55:BB:48:1C:57:4B:55:9F:86:6D:78:33:7D:AC Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0369 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/UfNYVpweVbtIHFdLVZ-GbXgzfaw.roa Signing time: Thu 01 May 2025 01:33:24 +0000 ROA not before: Thu 01 May 2025 01:33:24 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 27.132.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:33:24 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=51F358569C1E55BB481C574B559F866D78337DAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d8:96:4f:ac:ef:1d:9a:b8:66:58:b2:bf:5b: 74:bb:b8:69:dd:73:21:00:c0:87:69:c5:ba:44:64: 38:2e:a5:51:3a:54:48:e5:68:46:a3:f8:be:76:dd: ed:e6:82:bf:75:b9:3b:18:8a:68:ad:b3:8c:cd:b9: 31:69:b4:f3:63:81:69:6c:5d:3c:54:b9:82:02:bc: a6:31:76:36:ee:b5:b7:36:fe:0a:f4:73:c6:88:59: 63:b6:f7:d2:da:9c:a1:55:17:a1:7a:91:7c:43:8f: 2c:e5:6e:dd:bb:12:1c:2e:dd:fd:43:46:1b:48:b8: 84:ae:16:61:ec:bf:2f:25:8b:46:99:c0:0d:71:ca: aa:e1:e3:4d:0c:35:c9:ee:cc:e3:ac:50:2c:02:60: 6b:77:8f:a8:b3:c9:4b:41:0a:86:1e:18:6b:39:f1: 17:8d:f4:d3:a8:ca:d5:39:c7:40:4f:e9:a3:c0:4e: f5:61:50:0a:ab:fb:b4:a5:fa:71:8a:dc:a8:d7:c1: 4c:d7:e4:e2:9f:20:56:c9:bb:a3:f9:60:ab:4a:62: 26:40:e3:af:ac:a4:c7:41:35:4c:09:6b:49:7d:0d: 0d:88:b1:2f:ea:59:24:47:a5:0c:d1:69:ad:46:d1: 7e:c8:5d:b6:ed:4a:7d:ad:0d:97:b3:3a:11:ba:19: 37:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F3:58:56:9C:1E:55:BB:48:1C:57:4B:55:9F:86:6D:78:33:7D:AC X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/UfNYVpweVbtIHFdLVZ-GbXgzfaw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.132.64.0/18 Signature Algorithm: sha256WithRSAEncryption 29:ed:2f:2d:6f:cf:1b:82:97:81:a5:0f:19:e5:b4:be:e2:cb: 77:85:91:32:0f:ee:95:77:86:e4:31:7e:01:b4:1d:7b:de:a4: a0:4e:de:3b:85:0c:19:32:b9:d9:65:e2:d7:7d:07:0d:4c:0c: 8a:42:79:d2:8e:5b:24:00:b3:b3:c9:85:dc:a2:4b:98:26:fc: b3:d3:8d:49:1f:2c:d3:d3:cc:b9:0e:3f:6c:3f:72:ce:1f:4e: d7:b4:b5:77:5f:be:db:6e:4c:d8:00:4b:45:44:83:8d:4e:10: a0:06:6d:77:d7:38:a5:ad:49:ff:b7:c2:95:7a:24:47:37:a9: 90:c3:a2:ad:d2:d6:82:cd:11:13:c0:63:61:5e:60:f1:41:2b: 3c:ef:0e:84:ba:ae:03:ee:ad:20:07:9f:a3:5c:76:ef:e5:f2: df:7b:2a:24:ab:b3:f3:41:6c:9f:0e:1e:55:0b:26:76:87:c1: 49:4b:28:2e:17:a3:36:f3:af:9f:73:a3:7b:56:3a:ef:23:0e: 05:27:4e:19:e7:d6:c6:12:5c:7d:3c:d5:9e:1b:dc:60:2e:6f: 4b:35:0c:9f:7f:eb:a2:c4:06:66:19:47:46:86:e1:73:82:f2: 6d:e4:ce:78:35:5e:8d:89:d7:60:e1:37:c0:20:0e:61:8f:06: b8:34:d8:70 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTMzMjRaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDUxRjM1ODU2OUMxRTU1 QkI0ODFDNTc0QjU1OUY4NjZENzgzMzdEQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCc2JZPrO8dmrhmWLK/W3S7uGndcyEAwIdpxbpEZDgupVE6VEjl aEaj+L523e3mgr91uTsYimits4zNuTFptPNjgWlsXTxUuYICvKYxdjbutbc2/gr0 c8aIWWO299LanKFVF6F6kXxDjyzlbt27Ehwu3f1DRhtIuISuFmHsvy8li0aZwA1x yqrh400MNcnuzOOsUCwCYGt3j6izyUtBCoYeGGs58ReN9NOoytU5x0BP6aPATvVh UAqr+7Sl+nGK3KjXwUzX5OKfIFbJu6P5YKtKYiZA46+spMdBNUwJa0l9DQ2IsS/q WSRHpQzRaa1G0X7IXbbtSn2tDZezOhG6GTdBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUfNYVpweVbtIHFdLVZ+GbXgzfawwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1VmTllWcHdlVmJ0SUhGZExWWi1HYlhnemZhdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYbhEAwDQYJKoZIhvcNAQELBQADggEBACntLy1vzxuCl4GlDxnltL7iy3eF kTIP7pV3huQxfgG0HXvepKBO3juFDBkyudll4td9Bw1MDIpCedKOWyQAs7PJhdyi S5gm/LPTjUkfLNPTzLkOP2w/cs4fTte0tXdfvttuTNgAS0VEg41OEKAGbXfXOKWt Sf+3wpV6JEc3qZDDoq3S1oLNERPAY2FeYPFBKzzvDoS6rgPurSAHn6Ncdu/l8t97 KiSrs/NBbJ8OHlULJnaHwUlLKC4Xozbzr59zo3tWOu8jDgUnThnn1sYSXH081Z4b 3GAub0s1DJ9/66LEBmYZR0aG4XOC8m3kzng1Xo2J12DhN8AgDmGPBrg02HA= -----END CERTIFICATE-----Generated at Sun May 18 06:23:18 2025 by rpki-client