$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/lpJ0wp9uXT9i63qQaIWXMFKD50Y.roa File: lpJ0wp9uXT9i63qQaIWXMFKD50Y.roa (raw, json) Hash identifier: 9Xo8f0TIEs4U0IaDSo7SzkLNn+agJ0du9IB2Oz0uwTo= Subject key identifier: 96:92:74:C2:9F:6E:5D:3F:62:EB:7A:90:68:85:97:30:52:83:E7:46 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03BC Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/lpJ0wp9uXT9i63qQaIWXMFKD50Y.roa Signing time: Thu 01 May 2025 01:40:34 +0000 ROA not before: Thu 01 May 2025 01:40:34 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 59.156.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 956 (0x3bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:40:34 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=969274C29F6E5D3F62EB7A90688597305283E746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c2:4c:03:d8:c4:42:4e:5f:88:84:87:fc:d8: 06:8c:a6:a8:f5:8d:c6:dc:ec:5e:11:f0:ff:fc:b1: 99:18:7b:59:d6:d1:fc:11:d3:35:e6:05:31:b7:ae: fd:9c:c5:c4:d9:0c:ae:b1:df:8f:43:99:7d:df:b1: 14:90:22:35:97:a4:cf:95:2e:c4:7a:bf:2e:8a:fb: d4:8b:cd:2b:8f:e6:08:a5:62:60:f1:2f:c5:9e:5e: 80:c7:5d:65:b4:75:43:3e:ca:75:b1:4e:af:d9:13: 5d:14:a8:2c:dd:b5:0d:e8:66:9c:62:c2:31:01:5b: 8c:a0:b9:7c:cb:2d:e7:0d:e9:9b:78:9b:61:40:62: 30:fe:8d:db:e2:2d:8c:8c:e1:3e:95:14:83:ea:48: fe:38:c2:66:c9:ca:bb:37:07:05:a8:c5:af:e2:2a: 86:ac:19:81:7d:5b:dd:cb:59:a3:c0:19:b0:68:76: a6:57:b1:32:86:f9:15:57:84:09:7d:99:1c:ba:41: 93:92:f4:77:4a:2b:3f:13:bd:27:4c:69:58:2d:01: ed:30:88:ba:ae:c2:be:f9:66:26:1f:9b:09:94:a4: c5:49:7b:4d:6b:b0:4e:e4:0b:b0:d7:47:d4:4b:83: e2:ee:5c:ea:d8:a0:d7:6b:d5:3d:22:36:b7:da:69: 08:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:92:74:C2:9F:6E:5D:3F:62:EB:7A:90:68:85:97:30:52:83:E7:46 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/lpJ0wp9uXT9i63qQaIWXMFKD50Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.156.0.0/20 Signature Algorithm: sha256WithRSAEncryption 12:f4:b2:4c:d1:49:ee:61:07:bb:ca:81:82:19:c5:d9:2d:eb: 36:b1:c1:a4:7a:f8:59:32:ee:64:a2:88:24:71:af:e8:ef:a7: aa:8e:01:84:e8:40:81:c3:fc:93:78:a8:8a:61:2d:a5:be:ea: f9:05:bf:1d:41:15:be:e4:0b:11:c4:74:4d:70:c5:b3:40:b9: e5:ea:76:28:f7:d1:19:9f:48:9f:6c:ef:be:4c:ae:98:05:02: 54:77:64:fa:7c:02:e5:57:f1:ad:87:72:cf:1b:e7:57:04:48: 19:52:0e:b1:75:78:01:91:e6:5f:12:1b:95:92:78:ba:8e:04: d7:f2:e9:b9:fe:76:b6:13:6c:f2:e9:3e:3b:01:81:fd:a2:8f: 25:88:ba:a4:d9:90:06:c5:da:ef:21:2e:26:ea:78:c1:f4:e8: 30:a8:1f:06:91:ae:40:76:46:7f:dd:bb:89:56:6d:cb:1e:5d: 41:90:12:d5:fa:22:c0:b8:9f:f1:37:d5:cf:ed:3d:34:24:36: 2e:f1:a7:50:41:cf:87:d3:df:b7:ca:39:30:65:36:99:1a:b5: cb:a4:13:18:d9:4c:f0:e5:3e:56:83:52:fb:e6:e0:58:92:7f: 5d:b6:e2:cc:9a:97:04:80:03:a5:f3:25:c0:7b:c9:04:05:f8: e8:2b:7c:45 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA7wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQwMzRaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk2OTI3NEMyOUY2RTVE M0Y2MkVCN0E5MDY4ODU5NzMwNTI4M0U3NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtwkwD2MRCTl+IhIf82AaMpqj1jcbc7F4R8P/8sZkYe1nW0fwR 0zXmBTG3rv2cxcTZDK6x349DmX3fsRSQIjWXpM+VLsR6vy6K+9SLzSuP5gilYmDx L8WeXoDHXWW0dUM+ynWxTq/ZE10UqCzdtQ3oZpxiwjEBW4yguXzLLecN6Zt4m2FA YjD+jdviLYyM4T6VFIPqSP44wmbJyrs3BwWoxa/iKoasGYF9W93LWaPAGbBodqZX sTKG+RVXhAl9mRy6QZOS9HdKKz8TvSdMaVgtAe0wiLquwr75ZiYfmwmUpMVJe01r sE7kC7DXR9RLg+LuXOrYoNdr1T0iNrfaaQgZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlpJ0wp9uXT9i63qQaIWXMFKD50YwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2xwSjB3cDl1WFQ5aTYzcVFhSVdYTUZLRDUwWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ7nAAwDQYJKoZIhvcNAQELBQADggEBABL0skzRSe5hB7vKgYIZxdkt6zax waR6+Fky7mSiiCRxr+jvp6qOAYToQIHD/JN4qIphLaW+6vkFvx1BFb7kCxHEdE1w xbNAueXqdij30RmfSJ9s775MrpgFAlR3ZPp8AuVX8a2Hcs8b51cESBlSDrF1eAGR 5l8SG5WSeLqOBNfy6bn+drYTbPLpPjsBgf2ijyWIuqTZkAbF2u8hLibqeMH06DCo HwaRrkB2Rn/du4lWbcseXUGQEtX6IsC4n/E31c/tPTQkNi7xp1BBz4fT37fKOTBl NpkatcukExjZTPDlPlaDUvvm4FiSf1224syalwSAA6XzJcB7yQQF+OgrfEU= -----END CERTIFICATE-----Generated at Sat May 17 23:32:06 2025 by rpki-client