$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/dFiGzudXN-GrThlXpOMhVqZ923w.roa File: dFiGzudXN-GrThlXpOMhVqZ923w.roa (raw, json) Hash identifier: 5aO8/BNsdMSPo/Kr+G90DQ1HpPX2hUieFUclbN+ViTQ= Subject key identifier: 74:58:86:CE:E7:57:37:E1:AB:4E:19:57:A4:E3:21:56:A6:7D:DB:7C Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03A6 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/dFiGzudXN-GrThlXpOMhVqZ923w.roa Signing time: Thu 01 May 2025 01:37:39 +0000 ROA not before: Thu 01 May 2025 01:37:39 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 61.12.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:39 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=745886CEE75737E1AB4E1957A4E32156A67DDB7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c7:8f:b8:f9:a5:00:fa:28:95:6c:3e:50:9b: bb:d9:84:d6:c6:6d:88:ec:f1:ef:ed:41:b3:8c:69: ea:34:10:f2:4f:3b:10:8a:84:92:34:b1:4c:30:c1: 05:a4:91:09:7a:7b:7e:39:9c:aa:a9:0a:86:6a:82: e8:26:35:1b:74:96:66:ad:ab:0d:9f:f9:bb:4b:2c: 25:76:29:af:2a:54:d1:fe:24:5e:d5:f3:9d:32:fe: 78:3f:3f:26:06:25:84:3b:ef:a1:2e:73:3b:31:7d: e5:ca:27:08:f0:5d:69:70:cb:4b:9c:f8:46:a6:b5: e4:13:1c:a0:05:dd:df:b2:be:6d:a7:71:5d:a5:5a: a2:f5:49:42:c1:ff:9a:13:b5:10:bd:45:eb:2f:d6: df:44:05:7d:fd:5f:f5:02:9d:66:64:4e:29:39:e4: 92:16:f5:0e:30:87:03:78:68:85:fa:60:ff:03:fd: 79:ee:a8:7e:61:76:71:1b:86:ff:c8:ff:5e:9c:57: 2e:33:4a:ce:09:34:0b:f5:33:92:85:88:84:c9:e4: df:9f:5f:fb:8c:ea:50:c9:c8:d2:e8:ce:ec:fa:7e: 0e:b9:0e:71:28:21:d1:86:85:be:42:fd:33:4c:aa: 74:d6:f7:c4:3f:00:2d:4a:25:34:29:87:06:a5:cf: d4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:58:86:CE:E7:57:37:E1:AB:4E:19:57:A4:E3:21:56:A6:7D:DB:7C X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/dFiGzudXN-GrThlXpOMhVqZ923w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.12.128.0/17 Signature Algorithm: sha256WithRSAEncryption 5b:e4:d7:72:41:61:b8:c1:73:ea:8e:29:45:07:45:22:f4:9d: cc:b6:c3:47:a7:85:45:56:db:a0:6a:80:3e:e5:c3:e7:35:a9: cd:25:76:da:82:21:29:a2:7e:fc:b8:1b:35:5e:1c:a5:40:03: 37:6c:ab:ee:56:46:bb:e7:86:45:5e:ca:eb:6b:92:80:cd:95: 16:a9:f8:b9:fd:d3:02:dc:ab:1f:07:ec:9f:86:27:43:0c:30: 63:e0:0d:d4:fc:ba:ca:d5:56:9d:86:63:39:8a:e1:d6:26:39: a8:78:8b:8a:4e:64:d5:b2:96:fd:8f:4e:83:be:24:26:c7:35: 6c:53:a5:91:8c:71:13:05:c6:bf:be:15:72:c8:01:56:b9:f7: 0d:13:16:d6:c7:a1:e3:c1:d3:7f:e7:83:d5:72:3f:d5:8f:86: 6f:fa:b6:29:2c:02:49:7d:46:24:f9:bf:82:b8:2c:21:b8:9d: 50:a1:8c:87:47:7c:70:02:70:41:e0:f2:3a:b8:e8:c6:53:61: 91:dd:ec:a1:5a:50:7b:87:95:c0:ee:51:bf:e7:11:51:a6:17: 20:ba:5f:39:60:da:83:94:66:bd:0f:9c:60:d8:86:29:b9:5b: 5a:70:cd:95:32:26:ad:57:56:32:96:68:1d:89:37:2c:cb:d1: cb:c1:42:3d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3MzlaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDc0NTg4NkNFRTc1NzM3 RTFBQjRFMTk1N0E0RTMyMTU2QTY3RERCN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpx4+4+aUA+iiVbD5Qm7vZhNbGbYjs8e/tQbOMaeo0EPJPOxCK hJI0sUwwwQWkkQl6e345nKqpCoZqgugmNRt0lmatqw2f+btLLCV2Ka8qVNH+JF7V 850y/ng/PyYGJYQ776EuczsxfeXKJwjwXWlwy0uc+EamteQTHKAF3d+yvm2ncV2l WqL1SULB/5oTtRC9Resv1t9EBX39X/UCnWZkTik55JIW9Q4whwN4aIX6YP8D/Xnu qH5hdnEbhv/I/16cVy4zSs4JNAv1M5KFiITJ5N+fX/uM6lDJyNLozuz6fg65DnEo IdGGhb5C/TNMqnTW98Q/AC1KJTQphwalz9RhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdFiGzudXN+GrThlXpOMhVqZ923wwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2RGaUd6dWRYTi1HclRobFhwT01oVnFaOTIzdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc9DIAwDQYJKoZIhvcNAQELBQADggEBAFvk13JBYbjBc+qOKUUHRSL0ncy2 w0enhUVW26BqgD7lw+c1qc0ldtqCISmifvy4GzVeHKVAAzdsq+5WRrvnhkVeyutr koDNlRap+Ln90wLcqx8H7J+GJ0MMMGPgDdT8usrVVp2GYzmK4dYmOah4i4pOZNWy lv2PToO+JCbHNWxTpZGMcRMFxr++FXLIAVa59w0TFtbHoePB03/ng9VyP9WPhm/6 tiksAkl9RiT5v4K4LCG4nVChjIdHfHACcEHg8jq46MZTYZHd7KFaUHuHlcDuUb/n EVGmFyC6Xzlg2oOUZr0PnGDYhim5W1pwzZUyJq1XVjKWaB2JNyzL0cvBQj0= -----END CERTIFICATE-----Generated at Sun May 18 23:22:22 2025 by rpki-client