$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/vrfghocVqU6co2A09ueODeB6oEo.roa File: vrfghocVqU6co2A09ueODeB6oEo.roa (raw, json) Hash identifier: EWn5+Cs+Tj95nYTCGDJIn3J8asEIbYZ6ngIHYC6KLtI= Subject key identifier: BE:B7:E0:86:87:15:A9:4E:9C:A3:60:34:F6:E7:8E:0D:E0:7A:A0:4A Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03FC Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/vrfghocVqU6co2A09ueODeB6oEo.roa Signing time: Thu 01 May 2025 01:45:21 +0000 ROA not before: Thu 01 May 2025 01:45:21 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 202.75.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1020 (0x3fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:45:21 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=BEB7E0868715A94E9CA36034F6E78E0DE07AA04A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:13:4f:5d:7b:1c:c7:63:f6:6e:a0:88:ac:ac: cf:fa:f4:7d:24:8d:83:2b:0f:3e:19:90:74:b9:31: 60:91:47:92:1d:bf:83:8d:41:88:7c:41:eb:fd:2f: fb:f7:fd:c7:c1:36:e0:f3:0b:7f:84:c8:aa:77:b8: 62:f1:07:76:ed:df:ec:83:da:1e:0d:a1:82:40:05: 1d:e0:ed:e0:8b:96:b3:44:1f:87:88:21:45:38:b7: 91:cc:60:bd:a8:fb:20:a3:3f:0e:1b:bd:11:47:d1: 86:de:3e:3d:50:47:bc:55:55:c0:29:14:97:37:bf: ba:5f:60:50:57:b6:16:a5:e0:02:88:7e:d8:2d:c9: 01:3c:75:45:50:a3:14:a7:a4:ed:88:78:5f:91:d2: 3c:56:25:b4:56:06:10:34:21:b2:dc:e5:57:fc:0b: 62:8a:7b:13:be:67:d3:6f:b3:c1:7f:54:fd:c5:98: 42:00:86:ef:3e:f8:4d:75:6c:cf:cd:2a:12:2c:a4: 63:f1:fa:d6:e6:6c:5f:b7:80:f1:c3:9c:f0:4e:0b: d6:c2:44:d6:bc:e5:a6:e5:8c:81:2e:b1:00:e2:cd: ee:98:f9:42:2c:c4:07:33:62:32:da:bb:70:d7:5e: 26:44:48:8e:bc:63:1d:bf:c1:58:45:8d:91:5a:de: a6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B7:E0:86:87:15:A9:4E:9C:A3:60:34:F6:E7:8E:0D:E0:7A:A0:4A X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/vrfghocVqU6co2A09ueODeB6oEo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.75.232.0/22 Signature Algorithm: sha256WithRSAEncryption 72:23:25:3a:de:52:79:10:5f:91:a2:64:38:03:e5:4b:c9:9c: 9f:58:78:67:89:97:90:a0:de:d6:5e:f7:6a:2a:bf:28:21:17: 82:d5:dd:d9:ae:e4:24:4c:aa:e7:5e:72:78:b0:b4:b7:0c:a2: cf:0f:c4:1e:1a:6e:80:3c:98:91:07:a8:5b:59:2a:37:25:51: 17:29:bd:47:3a:aa:a6:a9:a7:b5:62:d1:fb:70:29:75:c1:80: a0:ad:d2:42:f6:2f:3e:30:53:cf:48:7c:91:16:f7:77:53:88: ad:9b:72:28:52:91:03:aa:c2:67:89:76:54:04:3d:7f:7d:33: 65:27:a6:bb:78:20:06:a9:44:d8:6d:c4:45:31:0e:2f:6d:ab: c6:72:43:19:80:84:07:bc:9f:b8:9b:5e:e6:11:c8:47:dd:4b: ca:58:68:c6:93:9a:c9:41:f8:0b:cc:66:95:fc:8d:b1:57:08: b2:c6:1d:95:ea:19:4d:5d:a0:99:97:a0:ac:1d:7f:f3:23:0e: ea:0d:99:a8:d3:f6:a5:0a:51:89:cb:6e:f1:54:61:5d:4e:2f: 36:19:49:b1:59:d4:ad:15:9e:61:d9:f5:f4:2e:d2:18:5f:d2: 73:cc:53:57:ab:66:4b:90:73:1c:19:5e:cc:e9:dc:2c:1e:d5: 82:8d:8f:fa -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ1MjFaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEJFQjdFMDg2ODcxNUE5 NEU5Q0EzNjAzNEY2RTc4RTBERTA3QUEwNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkE09dexzHY/ZuoIisrM/69H0kjYMrDz4ZkHS5MWCRR5Idv4ON QYh8Qev9L/v3/cfBNuDzC3+EyKp3uGLxB3bt3+yD2h4NoYJABR3g7eCLlrNEH4eI IUU4t5HMYL2o+yCjPw4bvRFH0YbePj1QR7xVVcApFJc3v7pfYFBXthal4AKIftgt yQE8dUVQoxSnpO2IeF+R0jxWJbRWBhA0IbLc5Vf8C2KKexO+Z9Nvs8F/VP3FmEIA hu8++E11bM/NKhIspGPx+tbmbF+3gPHDnPBOC9bCRNa85abljIEusQDize6Y+UIs xAczYjLau3DXXiZESI68Yx2/wVhFjZFa3qbrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvrfghocVqU6co2A09ueODeB6oEowHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3ZyZmdob2NWcVU2Y28yQTA5dWVPRGVCNm9Fby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKS+gwDQYJKoZIhvcNAQELBQADggEBAHIjJTreUnkQX5GiZDgD5UvJnJ9Y eGeJl5Cg3tZe92oqvyghF4LV3dmu5CRMqudecniwtLcMos8PxB4aboA8mJEHqFtZ KjclURcpvUc6qqapp7Vi0ftwKXXBgKCt0kL2Lz4wU89IfJEW93dTiK2bcihSkQOq wmeJdlQEPX99M2Unprt4IAapRNhtxEUxDi9tq8ZyQxmAhAe8n7ibXuYRyEfdS8pY aMaTmslB+AvMZpX8jbFXCLLGHZXqGU1doJmXoKwdf/MjDuoNmajT9qUKUYnLbvFU YV1OLzYZSbFZ1K0VnmHZ9fQu0hhf0nPMU1erZkuQcxwZXszp3Cwe1YKNj/o= -----END CERTIFICATE-----Generated at Sun May 18 09:55:56 2025 by rpki-client