$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/YWnNRUNIvHq3R45ljegLJFI7LBY.roa File: YWnNRUNIvHq3R45ljegLJFI7LBY.roa (raw, json) Hash identifier: 9Plq3o7ziAej5z7gUboqiJDrF/5qmtdxEL0dkmZkrzE= Subject key identifier: 61:69:CD:45:43:48:BC:7A:B7:47:8E:65:8D:E8:0B:24:52:3B:2C:16 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03FB Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/YWnNRUNIvHq3R45ljegLJFI7LBY.roa Signing time: Thu 01 May 2025 01:45:20 +0000 ROA not before: Thu 01 May 2025 01:45:20 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 220.150.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:45:20 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=6169CD454348BC7AB7478E658DE80B24523B2C16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:29:ad:22:5f:c3:1a:00:dd:7a:b1:b3:aa:fc: c5:d5:24:85:98:b0:0d:55:e7:82:7c:35:b9:e0:e4: 69:fc:dc:d0:00:78:8f:19:ea:4a:2e:b4:64:70:25: 00:54:d8:1d:c9:cc:af:e7:01:6c:05:d0:d4:0f:cc: 77:09:87:fd:3a:6c:17:d8:1f:e1:68:fb:cb:40:6e: 89:cf:f9:14:c5:6b:32:7f:ea:ae:58:0e:01:98:70: 65:90:63:a9:80:2d:1f:f9:53:ee:a4:be:37:a5:a6: 51:f3:f6:0f:ad:05:4a:96:9e:bf:de:09:db:e1:39: 94:55:fd:12:58:32:bf:22:ce:c6:f7:b6:b6:9e:dc: 83:a2:56:91:dc:0d:c0:19:06:fe:0d:4a:c8:65:63: b2:ec:0c:d7:d5:89:e9:48:cb:5b:92:f4:af:01:b0: d4:16:c2:41:e4:84:fe:f7:6c:a1:c0:2c:87:9e:28: 7c:09:20:cb:a8:98:43:7d:b4:2c:9e:ff:c7:e5:0b: 8f:b2:c9:40:10:d4:4e:e7:c6:4e:03:a9:69:ef:4f: 10:4c:71:2e:27:6c:b1:a1:de:e0:61:3a:b8:4b:c1: be:db:5b:bc:90:db:5f:2e:b5:c8:33:66:61:e5:cd: c6:98:d6:03:02:8c:fe:19:23:90:f4:96:cc:0e:d5: 91:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:69:CD:45:43:48:BC:7A:B7:47:8E:65:8D:E8:0B:24:52:3B:2C:16 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/YWnNRUNIvHq3R45ljegLJFI7LBY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.150.24.0/21 Signature Algorithm: sha256WithRSAEncryption 40:a9:2b:cb:26:c2:67:70:97:00:57:8e:ee:c7:85:42:f0:f2: 29:4a:28:30:45:e2:f4:7f:80:ef:65:31:58:f5:97:5c:83:40: 39:9b:a9:57:43:fb:3f:70:e3:82:dc:39:e1:48:3a:97:40:c7: 80:41:56:32:14:d1:fa:68:62:78:66:8f:78:77:99:c6:0e:b9: 63:ce:a5:e8:0b:37:b6:e8:c3:3a:b4:a7:a9:48:b3:bf:28:a1: 7f:6e:95:db:76:1f:13:9d:ed:ae:67:c5:f1:b2:da:a0:97:d7: bd:bb:44:f7:86:e4:8f:1a:51:be:66:86:9e:d0:c9:41:71:71: 5d:2a:76:59:53:52:b6:59:8a:ce:40:ae:23:aa:e1:4d:b3:e2: 28:cb:ec:3b:cf:80:67:a5:d7:7d:a2:94:f8:32:e9:1b:5c:86: 15:6c:f5:6f:ec:6f:9d:7f:09:d5:2e:a2:66:40:04:27:00:c5: 4a:61:0d:16:74:34:60:de:9f:a7:c0:3e:23:56:68:d7:50:d7: 3e:a8:14:f1:a6:23:7a:29:0a:56:63:da:28:d0:f5:c5:2c:bd: 5b:09:24:a0:ee:44:10:22:07:c0:ce:81:37:75:60:74:ab:f3: 5d:85:1b:58:81:3c:c7:a6:1d:d6:87:91:bc:d9:87:bb:30:03: d3:cb:4b:e5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA/swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ1MjBaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDYxNjlDRDQ1NDM0OEJD N0FCNzQ3OEU2NThERTgwQjI0NTIzQjJDMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGKa0iX8MaAN16sbOq/MXVJIWYsA1V54J8Nbng5Gn83NAAeI8Z 6koutGRwJQBU2B3JzK/nAWwF0NQPzHcJh/06bBfYH+Fo+8tAbonP+RTFazJ/6q5Y DgGYcGWQY6mALR/5U+6kvjelplHz9g+tBUqWnr/eCdvhOZRV/RJYMr8izsb3trae 3IOiVpHcDcAZBv4NSshlY7LsDNfVielIy1uS9K8BsNQWwkHkhP73bKHALIeeKHwJ IMuomEN9tCye/8flC4+yyUAQ1E7nxk4DqWnvTxBMcS4nbLGh3uBhOrhLwb7bW7yQ 218utcgzZmHlzcaY1gMCjP4ZI5D0lswO1ZEfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYWnNRUNIvHq3R45ljegLJFI7LBYwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1lXbk5SVU5JdkhxM1I0NWxqZWdMSkZJN0xCWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPclhgwDQYJKoZIhvcNAQELBQADggEBAECpK8smwmdwlwBXju7HhULw8ilK KDBF4vR/gO9lMVj1l1yDQDmbqVdD+z9w44LcOeFIOpdAx4BBVjIU0fpoYnhmj3h3 mcYOuWPOpegLN7bowzq0p6lIs78ooX9uldt2HxOd7a5nxfGy2qCX1727RPeG5I8a Ub5mhp7QyUFxcV0qdllTUrZZis5AriOq4U2z4ijL7DvPgGel132ilPgy6RtchhVs 9W/sb51/CdUuomZABCcAxUphDRZ0NGDen6fAPiNWaNdQ1z6oFPGmI3opClZj2ijQ 9cUsvVsJJKDuRBAiB8DOgTd1YHSr812FG1iBPMemHdaHkbzZh7swA9PLS+U= -----END CERTIFICATE-----Generated at Sun May 18 00:10:33 2025 by rpki-client