$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/cxj0kT0SeUq5NJBMRcA5Uk5jdF4.roa File: cxj0kT0SeUq5NJBMRcA5Uk5jdF4.roa (raw, json) Hash identifier: l2R9jSq+juGBXOC+8xwhIYm4YMxDXQMNeOFOFmCgA3E= Subject key identifier: 73:18:F4:91:3D:12:79:4A:B9:34:90:4C:45:C0:39:52:4E:63:74:5E Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0412 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/cxj0kT0SeUq5NJBMRcA5Uk5jdF4.roa Signing time: Thu 01 May 2025 01:48:41 +0000 ROA not before: Thu 01 May 2025 01:48:41 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 153.120.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:48:41 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=7318F4913D12794AB934904C45C039524E63745E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a4:97:2a:a2:c9:1f:2c:08:bb:63:f8:62:96: a1:bb:da:55:80:10:68:10:d6:fd:68:ba:5f:eb:5a: d9:aa:81:04:55:73:52:3e:ac:01:f1:2c:27:31:b4: e4:40:78:51:fc:93:9b:1e:64:d0:1a:bb:d7:3b:99: ba:66:50:63:78:a7:f4:99:bf:12:07:11:aa:ce:b4: 11:67:78:4b:dd:ee:39:13:83:e0:b4:88:35:3b:5a: 4e:93:be:e3:53:51:68:35:9d:0d:2a:21:1e:28:e5: 20:2b:8d:b8:40:5a:d9:eb:e3:5f:2b:ab:99:ed:f0: 44:ff:73:d6:68:90:bb:fb:7f:0a:66:a5:90:dc:d7: 05:bd:cc:cc:b5:81:a9:b0:f7:87:87:c3:11:9c:e1: b5:3b:7a:66:81:5a:cc:54:b2:f6:91:3c:36:e3:c0: 6f:a7:4e:08:dd:f9:3e:cc:cf:ef:10:54:de:14:5d: 08:66:e0:4b:5d:97:fc:6f:b7:a3:45:22:14:f3:bb: 9d:01:97:09:f6:9d:b0:6a:c0:eb:f5:e3:27:65:9c: a8:b6:b1:31:86:fa:b3:cd:16:79:07:97:e1:19:d2: 3b:fd:cb:33:8e:e1:4c:c5:85:c1:cf:6f:4d:fa:6d: bc:f8:62:4b:89:13:0c:89:3f:6a:6d:23:9d:9e:ee: b0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:18:F4:91:3D:12:79:4A:B9:34:90:4C:45:C0:39:52:4E:63:74:5E X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/cxj0kT0SeUq5NJBMRcA5Uk5jdF4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.120.216.0/23 Signature Algorithm: sha256WithRSAEncryption 73:57:5f:80:cd:64:49:09:a5:f0:17:08:2d:2d:62:18:19:03: a2:d3:db:46:32:9f:32:11:b1:f8:9c:92:23:c4:02:29:f3:40: e5:90:5c:98:68:06:8c:78:7b:8e:05:9f:31:c5:fe:0d:31:87: 13:df:26:dd:0b:1d:01:fc:1d:92:b4:d9:81:d6:91:79:33:30: a8:b5:a2:29:05:f4:65:6c:f5:68:24:78:f6:16:41:74:c4:bb: 77:8f:c1:ab:3c:ca:31:07:76:ab:99:f0:8a:9b:a9:98:4d:62: 85:d9:a6:a6:7f:82:91:d6:bf:0c:17:fe:b1:21:fd:da:ef:1e: 56:b1:67:41:a5:9e:f5:96:e1:69:8d:13:ef:d4:4e:5f:f1:05: 66:ae:18:f4:b7:ff:fc:b3:9c:2d:1a:0d:e4:ff:3f:76:c4:9c: d5:eb:45:a0:6e:83:c5:d5:22:22:7c:a0:46:0b:65:0a:40:a8: 29:ef:e0:81:37:a8:46:d6:e4:0c:42:b5:36:7c:f1:33:36:61: 89:7d:4f:4c:58:3b:62:fc:3a:85:5f:06:3d:86:f0:6b:88:86: 6c:06:cd:1b:ef:a7:20:b4:8c:ff:c7:18:5b:23:25:cf:82:92: 41:be:c6:f3:2b:e6:f8:22:e0:99:aa:6f:5f:ed:94:50:cd:66: 1b:12:96:62 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ4NDFaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDczMThGNDkxM0QxMjc5 NEFCOTM0OTA0QzQ1QzAzOTUyNEU2Mzc0NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4pJcqoskfLAi7Y/hilqG72lWAEGgQ1v1oul/rWtmqgQRVc1I+ rAHxLCcxtORAeFH8k5seZNAau9c7mbpmUGN4p/SZvxIHEarOtBFneEvd7jkTg+C0 iDU7Wk6TvuNTUWg1nQ0qIR4o5SArjbhAWtnr418rq5nt8ET/c9ZokLv7fwpmpZDc 1wW9zMy1gamw94eHwxGc4bU7emaBWsxUsvaRPDbjwG+nTgjd+T7Mz+8QVN4UXQhm 4Etdl/xvt6NFIhTzu50Blwn2nbBqwOv14ydlnKi2sTGG+rPNFnkHl+EZ0jv9yzOO 4UzFhcHPb036bbz4YkuJEwyJP2ptI52e7rB5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcxj0kT0SeUq5NJBMRcA5Uk5jdF4wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2N4ajBrVDBTZVVxNU5KQk1SY0E1VWs1amRGNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGZeNgwDQYJKoZIhvcNAQELBQADggEBAHNXX4DNZEkJpfAXCC0tYhgZA6LT 20YynzIRsfickiPEAinzQOWQXJhoBox4e44FnzHF/g0xhxPfJt0LHQH8HZK02YHW kXkzMKi1oikF9GVs9WgkePYWQXTEu3ePwas8yjEHdquZ8IqbqZhNYoXZpqZ/gpHW vwwX/rEh/drvHlaxZ0GlnvWW4WmNE+/UTl/xBWauGPS3//yznC0aDeT/P3bEnNXr RaBug8XVIiJ8oEYLZQpAqCnv4IE3qEbW5AxCtTZ88TM2YYl9T0xYO2L8OoVfBj2G 8GuIhmwGzRvvpyC0jP/HGFsjJc+CkkG+xvMr5vgi4Jmqb1/tlFDNZhsSlmI= -----END CERTIFICATE-----Generated at Mon May 19 00:00:46 2025 by rpki-client