$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/ZKmFRmKrRAd3XXdPrgBHhQPjhK4.roa File: ZKmFRmKrRAd3XXdPrgBHhQPjhK4.roa (raw, json) Hash identifier: qy49cCCoZVNCIBw0zCZb2vNAd64+xYTNQ07EcqcW3vU= Subject key identifier: 64:A9:85:46:62:AB:44:07:77:5D:77:4F:AE:00:47:85:03:E3:84:AE Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0414 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/ZKmFRmKrRAd3XXdPrgBHhQPjhK4.roa Signing time: Thu 01 May 2025 01:48:41 +0000 ROA not before: Thu 01 May 2025 01:48:41 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 175.103.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1044 (0x414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:48:41 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=64A9854662AB4407775D774FAE00478503E384AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:64:3c:8c:07:92:a3:22:04:5d:de:ab:b0:1e: 04:f4:2f:a6:bf:6b:7e:6a:05:44:b7:01:b0:b8:fb: b2:61:60:2f:36:5a:38:cd:6f:44:0f:03:6d:97:e9: 90:53:37:65:27:d7:57:e9:7f:3d:c5:8a:d3:4d:0f: 8a:bc:7a:a9:5e:33:e7:f3:a1:58:49:a8:48:95:ec: b1:04:6e:4d:31:74:84:28:fd:87:4d:29:93:31:4e: 96:fd:1c:b2:04:0f:8e:3c:63:0c:8b:68:0a:ac:bc: 5c:a5:b6:34:61:02:02:7d:81:a7:d0:18:bf:76:da: ab:20:26:f6:61:aa:3c:55:40:76:55:7e:f8:ae:4e: f9:49:57:23:8e:c4:36:5c:6a:35:6c:bb:ca:99:91: b0:86:c4:05:1e:11:ad:94:03:30:78:f7:17:96:f7: 66:a6:85:7d:db:9c:55:ae:71:22:9f:67:31:26:80: b2:ea:17:e6:7f:0c:51:88:ff:91:a0:49:2e:3b:0b: f8:d1:63:af:d9:c9:67:18:1b:15:b5:db:d7:48:b4: f6:d2:7f:13:44:f5:19:72:31:7d:83:b9:b3:73:91: 86:d4:16:f9:05:01:bb:ab:8b:68:20:64:59:25:7c: 3c:ba:cb:3b:48:8a:53:13:d4:ea:ff:cc:6b:f8:5a: 46:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A9:85:46:62:AB:44:07:77:5D:77:4F:AE:00:47:85:03:E3:84:AE X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/ZKmFRmKrRAd3XXdPrgBHhQPjhK4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.103.176.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:09:79:fa:b0:fa:1c:7b:f2:5c:2a:0f:cc:6d:b6:42:0b:9a: 02:a1:e7:c5:d3:5a:c8:eb:63:cf:64:89:82:dc:8b:5f:2b:64: d2:9b:e6:83:7b:6c:c0:3c:3c:9d:62:1c:e0:7b:45:7d:93:ff: da:4a:9a:8e:4a:53:4c:c9:bf:27:d7:4a:6d:55:83:4f:7b:e9: 7c:d5:b8:85:c3:ba:7a:2c:c7:23:f2:d0:fb:c7:b7:ef:d7:8e: 39:9e:c5:a0:d9:03:98:1a:1a:db:1a:33:06:02:5e:6f:78:51: 70:79:7d:a3:c7:1d:2e:b2:af:e6:24:3a:48:b5:3b:f6:42:7f: 71:ff:ca:91:3d:61:e9:5f:ba:0a:23:90:59:a2:aa:89:43:70: 64:4b:d2:b7:d5:ab:48:d7:84:39:c6:e5:51:2f:ff:48:e6:6a: 86:46:3b:35:1a:d1:40:0d:e8:b7:57:ec:18:db:93:79:8b:23: cc:04:7f:ee:a9:29:69:d3:36:fa:a9:a6:e3:e1:23:e8:1a:e7: c4:d8:e6:00:08:35:96:f9:bf:e6:9d:8d:a1:e7:1f:fa:59:8c: d0:57:40:7c:23:46:38:0f:d2:d1:09:97:db:72:37:da:e9:d6: 32:70:39:38:57:18:54:1c:42:64:f3:ac:7e:13:eb:cb:df:9b: 97:a6:66:12 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ4NDFaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDY0QTk4NTQ2NjJBQjQ0 MDc3NzVENzc0RkFFMDA0Nzg1MDNFMzg0QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2ZDyMB5KjIgRd3quwHgT0L6a/a35qBUS3AbC4+7JhYC82WjjN b0QPA22X6ZBTN2Un11fpfz3FitNND4q8eqleM+fzoVhJqEiV7LEEbk0xdIQo/YdN KZMxTpb9HLIED448YwyLaAqsvFyltjRhAgJ9gafQGL922qsgJvZhqjxVQHZVfviu TvlJVyOOxDZcajVsu8qZkbCGxAUeEa2UAzB49xeW92amhX3bnFWucSKfZzEmgLLq F+Z/DFGI/5GgSS47C/jRY6/ZyWcYGxW129dItPbSfxNE9RlyMX2DubNzkYbUFvkF Aburi2ggZFklfDy6yztIilMT1Or/zGv4WkYTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZKmFRmKrRAd3XXdPrgBHhQPjhK4wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1pLbUZSbUtyUkFkM1hYZFByZ0JIaFFQamhLNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGvZ7AwDQYJKoZIhvcNAQELBQADggEBACsJefqw+hx78lwqD8xttkILmgKh 58XTWsjrY89kiYLci18rZNKb5oN7bMA8PJ1iHOB7RX2T/9pKmo5KU0zJvyfXSm1V g0976XzVuIXDunosxyPy0PvHt+/XjjmexaDZA5gaGtsaMwYCXm94UXB5faPHHS6y r+YkOki1O/ZCf3H/ypE9YelfugojkFmiqolDcGRL0rfVq0jXhDnG5VEv/0jmaoZG OzUa0UAN6LdX7Bjbk3mLI8wEf+6pKWnTNvqppuPhI+ga58TY5gAINZb5v+adjaHn H/pZjNBXQHwjRjgP0tEJl9tyN9rp1jJwOThXGFQcQmTzrH4T68vfm5emZhI= -----END CERTIFICATE-----Generated at Sat May 17 23:27:09 2025 by rpki-client