$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/r9YTQEQinlY65NlhveJNJ2BoKLs.roa File: r9YTQEQinlY65NlhveJNJ2BoKLs.roa (raw, json) Hash identifier: calSmXbaSHGfnySsNeaIadXZU3Y7lm1g8BSTFcejmjQ= Subject key identifier: AF:D6:13:40:44:22:9E:56:3A:E4:D9:61:BD:E2:4D:27:60:68:28:BB Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03C1 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/r9YTQEQinlY65NlhveJNJ2BoKLs.roa Signing time: Thu 01 May 2025 01:40:36 +0000 ROA not before: Thu 01 May 2025 01:40:36 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 59.156.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:40:36 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=AFD6134044229E563AE4D961BDE24D27606828BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:48:dd:33:d3:b2:56:9d:36:18:73:c7:89:56: c1:b3:d8:3e:80:c2:f6:3e:3f:2a:ef:69:8e:1f:61: 02:08:00:ed:b0:bd:57:0e:95:6f:be:de:4b:20:82: e4:07:bc:73:94:37:24:b5:88:18:04:bc:ac:46:40: ab:58:db:73:48:1e:b5:cd:91:d2:71:d4:3f:4c:34: 4a:2c:65:c0:af:c2:38:9f:c6:fd:2f:d1:a7:0b:a6: 65:f4:6a:6b:f4:0e:cf:e1:c3:6b:85:e2:d9:6e:60: 91:8d:50:7e:d6:1d:71:4a:02:ca:4c:24:38:c5:7e: 7e:47:51:1c:2f:29:c8:d0:b1:be:60:76:75:cf:84: bf:84:fa:ff:86:41:43:1e:7b:3c:6b:7b:b4:45:e3: cb:ae:d7:39:42:ab:61:6b:35:d4:d7:a4:2f:60:dc: db:b7:04:94:75:d1:5c:17:59:9e:f5:ed:05:eb:fc: bd:35:ce:30:c4:54:56:ad:1f:05:bf:c2:84:96:fb: 7f:8a:d8:db:94:73:05:0a:bd:5e:0f:c7:cd:a3:1c: f0:cb:89:86:c4:03:f8:99:e0:52:e7:57:12:6d:45: 29:c4:b6:21:9b:55:c2:bb:bc:51:39:18:65:c1:e6: 0c:3a:e9:fc:02:00:03:cb:be:75:8a:60:c7:3d:3b: e2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D6:13:40:44:22:9E:56:3A:E4:D9:61:BD:E2:4D:27:60:68:28:BB X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/r9YTQEQinlY65NlhveJNJ2BoKLs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.156.32.0/19 Signature Algorithm: sha256WithRSAEncryption 83:d8:9a:5f:d0:0a:54:b3:5c:3a:f3:a3:fb:6e:d9:52:18:77: 9b:45:96:b2:6b:e4:ed:65:09:71:a3:6d:85:7b:03:59:6f:3e: 8f:f7:ad:09:df:1c:12:3b:03:e4:4d:10:c7:a2:e7:a9:bf:d6: 94:4b:32:bd:d7:27:b1:32:f1:26:1f:18:12:c4:5d:29:ac:4b: cc:df:12:f3:98:b5:1b:5a:33:e7:5f:b4:85:df:ac:8a:b8:5f: bd:a3:c1:84:32:df:06:2e:31:46:97:30:50:1d:5d:29:e7:b7: 91:c5:16:1b:22:13:3a:f0:5e:df:4f:0a:b8:c7:6d:89:9d:7e: 0f:88:29:98:e0:70:0b:65:f0:fb:5c:3f:4d:3d:98:6e:3b:12: fc:6b:cc:fd:f0:03:31:b8:7a:d2:67:f6:9c:e1:ee:fe:66:0d: 8d:04:70:bc:eb:05:8e:eb:7d:6e:fe:1b:09:29:94:25:8a:e8: d8:03:35:ed:64:fb:49:4e:93:d0:07:f8:47:33:b9:91:76:a2: 49:f3:b1:b2:9d:12:eb:03:77:90:e7:4b:ea:8c:64:6f:ba:22: bf:a8:f5:51:0d:8e:7b:46:e0:ba:dd:97:16:d4:b6:d8:a6:41: 70:a1:b1:23:c7:ea:ae:1c:30:dc:df:70:f5:13:2b:de:f0:7e: 28:e5:bf:47 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQwMzZaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFGRDYxMzQwNDQyMjlF NTYzQUU0RDk2MUJERTI0RDI3NjA2ODI4QkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaSN0z07JWnTYYc8eJVsGz2D6AwvY+PyrvaY4fYQIIAO2wvVcO lW++3ksgguQHvHOUNyS1iBgEvKxGQKtY23NIHrXNkdJx1D9MNEosZcCvwjifxv0v 0acLpmX0amv0Ds/hw2uF4tluYJGNUH7WHXFKAspMJDjFfn5HURwvKcjQsb5gdnXP hL+E+v+GQUMeezxre7RF48uu1zlCq2FrNdTXpC9g3Nu3BJR10VwXWZ717QXr/L01 zjDEVFatHwW/woSW+3+K2NuUcwUKvV4Px82jHPDLiYbEA/iZ4FLnVxJtRSnEtiGb VcK7vFE5GGXB5gw66fwCAAPLvnWKYMc9O+KtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUr9YTQEQinlY65NlhveJNJ2BoKLswHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3I5WVRRRVFpbmxZNjVObGh2ZUpOSjJCb0tMcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU7nCAwDQYJKoZIhvcNAQELBQADggEBAIPYml/QClSzXDrzo/tu2VIYd5tF lrJr5O1lCXGjbYV7A1lvPo/3rQnfHBI7A+RNEMei56m/1pRLMr3XJ7Ey8SYfGBLE XSmsS8zfEvOYtRtaM+dftIXfrIq4X72jwYQy3wYuMUaXMFAdXSnnt5HFFhsiEzrw Xt9PCrjHbYmdfg+IKZjgcAtl8PtcP009mG47EvxrzP3wAzG4etJn9pzh7v5mDY0E cLzrBY7rfW7+GwkplCWK6NgDNe1k+0lOk9AH+EczuZF2oknzsbKdEusDd5DnS+qM ZG+6Ir+o9VENjntG4LrdlxbUttimQXChsSPH6q4cMNzfcPUTK97wfijlv0c= -----END CERTIFICATE-----Generated at Sun May 18 06:36:22 2025 by rpki-client