$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/l5NlnbaRqLNJP2UDZCdUFvUysOI.roa File: l5NlnbaRqLNJP2UDZCdUFvUysOI.roa (raw, json) Hash identifier: //HEqv3JmXUfTBdDvLreaUox+cD3MVhP/HXX94Gxiro= Subject key identifier: 97:93:65:9D:B6:91:A8:B3:49:3F:65:03:64:27:54:16:F5:32:B0:E2 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0398 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/l5NlnbaRqLNJP2UDZCdUFvUysOI.roa Signing time: Thu 01 May 2025 01:37:33 +0000 ROA not before: Thu 01 May 2025 01:37:33 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 36.52.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 18:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:37:33 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=9793659DB691A8B3493F650364275416F532B0E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:9e:7c:56:0d:d9:57:bf:a9:b9:af:cd:b8: 28:3b:b5:16:94:d5:6e:d9:f3:3c:01:62:b5:9a:79: e6:13:bd:9d:98:c2:a5:c0:72:30:c4:86:da:bd:0c: bd:41:9b:36:b3:a3:c1:22:49:b1:39:82:ff:27:f5: 29:16:bf:e6:48:72:b3:11:61:a3:9a:38:79:c2:fb: 77:e1:f2:c1:09:26:c9:ac:c5:10:e1:e0:ee:6e:26: 1d:63:79:9e:5d:1a:02:43:5b:cf:73:da:94:39:1a: ae:da:14:f4:20:38:b4:c7:97:45:7c:e5:ae:2f:29: bb:34:ef:2a:94:f7:20:5d:d2:85:15:7f:89:a7:c1: b5:fc:8a:a5:ba:3a:1c:05:fc:9b:fd:45:1c:45:fa: f6:4c:f0:2d:73:bb:45:18:6f:dd:b3:04:68:98:25: a1:98:b4:3c:24:d0:13:aa:2a:bd:cb:ea:97:4c:f0: d3:7c:09:90:c9:5f:ef:41:0c:38:55:81:2b:7d:06: 09:f6:a9:07:2f:26:c1:2f:05:36:54:33:86:e9:78: a6:96:bf:dd:ba:31:3d:df:a2:42:7f:34:47:9a:f4: 13:3c:b1:8f:ac:c9:b7:ed:bb:e5:06:b5:9f:a8:8b: 47:34:a8:d6:8f:0f:84:95:59:ff:10:fa:3b:78:79: c5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:93:65:9D:B6:91:A8:B3:49:3F:65:03:64:27:54:16:F5:32:B0:E2 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/l5NlnbaRqLNJP2UDZCdUFvUysOI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.32.0/19 Signature Algorithm: sha256WithRSAEncryption 4a:5f:9a:b4:82:68:de:be:47:8c:b6:36:0a:a2:87:36:62:40: 96:02:2b:e5:b3:55:52:bc:4d:dd:0c:01:05:69:36:4d:c5:77: 25:c0:de:75:de:38:9d:b9:b8:bc:2a:01:15:e9:91:55:3c:f3: ef:2c:5e:d4:51:21:1a:11:3b:de:f2:3b:de:47:9b:ca:3e:46: a9:a5:fe:c5:01:b1:53:b7:1a:9d:63:c6:da:90:b8:4e:29:6a: 33:45:55:e8:f8:59:ec:51:f1:69:0f:0e:e1:1d:3f:ac:e2:ed: 93:03:0c:f5:89:00:78:56:5f:a7:2b:45:2b:9f:c4:ce:24:13: 6c:12:01:98:0e:a9:e5:e8:15:13:3c:0e:6c:db:4a:1b:97:fb: 34:5e:e1:d7:a5:ff:9c:44:da:aa:5a:f6:31:19:eb:16:8e:c0: 30:99:3c:3e:2c:61:a0:8c:6e:0f:03:fb:81:be:f5:46:3b:24: 2f:e1:06:6f:0c:b0:d5:32:0c:cb:f9:54:35:b8:5d:c3:1a:d1: 74:a5:df:69:97:83:3a:51:5d:3a:1c:53:44:dc:9a:7e:cc:cb: 1a:52:08:f5:5a:ef:c0:85:11:76:a9:9f:17:4c:f2:73:fd:0a: ca:96:81:1d:9e:ab:ac:04:7d:50:70:08:46:a6:03:6e:9e:19: 82:26:d8:db -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTM3MzNaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk3OTM2NTlEQjY5MUE4 QjM0OTNGNjUwMzY0Mjc1NDE2RjUzMkIwRTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxwZ58Vg3ZV7+pua/NuCg7tRaU1W7Z8zwBYrWaeeYTvZ2YwqXA cjDEhtq9DL1Bmzazo8EiSbE5gv8n9SkWv+ZIcrMRYaOaOHnC+3fh8sEJJsmsxRDh 4O5uJh1jeZ5dGgJDW89z2pQ5Gq7aFPQgOLTHl0V85a4vKbs07yqU9yBd0oUVf4mn wbX8iqW6OhwF/Jv9RRxF+vZM8C1zu0UYb92zBGiYJaGYtDwk0BOqKr3L6pdM8NN8 CZDJX+9BDDhVgSt9Bgn2qQcvJsEvBTZUM4bpeKaWv926MT3fokJ/NEea9BM8sY+s ybftu+UGtZ+oi0c0qNaPD4SVWf8Q+jt4ecWVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUl5NlnbaRqLNJP2UDZCdUFvUysOIwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2w1TmxuYmFScUxOSlAyVURaQ2RVRnZVeXNPSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUkNCAwDQYJKoZIhvcNAQELBQADggEBAEpfmrSCaN6+R4y2NgqihzZiQJYC K+WzVVK8Td0MAQVpNk3FdyXA3nXeOJ25uLwqARXpkVU88+8sXtRRIRoRO97yO95H m8o+Rqml/sUBsVO3Gp1jxtqQuE4pajNFVej4WexR8WkPDuEdP6zi7ZMDDPWJAHhW X6crRSufxM4kE2wSAZgOqeXoFRM8DmzbShuX+zRe4del/5xE2qpa9jEZ6xaOwDCZ PD4sYaCMbg8D+4G+9UY7JC/hBm8MsNUyDMv5VDW4XcMa0XSl32mXgzpRXTocU0Tc mn7MyxpSCPVa78CFEXapnxdM8nP9CsqWgR2eq6wEfVBwCEamA26eGYIm2Ns= -----END CERTIFICATE-----Generated at Sat May 17 21:29:30 2025 by rpki-client