$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/wrnNEmQ0tlcee4WD3_SU00rM54Q.roa File: wrnNEmQ0tlcee4WD3_SU00rM54Q.roa (raw, json) Hash identifier: YCrsv34wlAOjOUREJhDqJpQBLnBCHjkQmJ8zoCeKbJo= Subject key identifier: C2:B9:CD:12:64:34:B6:57:1E:7B:85:83:DF:F4:94:D3:4A:CC:E7:84 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0405 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/wrnNEmQ0tlcee4WD3_SU00rM54Q.roa Signing time: Thu 01 May 2025 01:45:25 +0000 ROA not before: Thu 01 May 2025 01:45:25 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 153.120.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:45:25 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=C2B9CD126434B6571E7B8583DFF494D34ACCE784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:70:73:a8:b2:c5:b3:6e:80:c5:f8:c9:e8:1f: 76:4a:e4:3e:c6:de:96:9b:05:7e:08:46:bf:3f:d6: ae:70:0b:09:76:80:10:1d:c3:d5:77:2c:bf:99:c3: 8c:93:2b:04:fd:63:ee:76:ee:24:68:1c:94:fd:63: c4:94:1e:25:c0:71:d0:a2:3d:e1:e6:bc:3d:aa:6f: 44:ec:b5:f7:76:b8:93:9d:4a:73:b1:7f:3b:90:80: 2b:45:85:ac:e2:ee:80:71:9b:50:b3:92:b0:fb:5e: 25:82:1d:f1:11:0f:8a:e4:46:27:43:4a:3f:50:8d: 63:94:0e:7e:ec:58:6f:b3:88:a2:aa:17:1a:94:0d: 85:93:98:b3:19:5f:99:fc:08:c9:f2:d7:5e:e0:d8: 38:a9:dc:76:19:0c:c4:0e:ff:67:82:74:81:a7:96: b1:ce:a3:01:09:37:2c:17:e2:17:6b:ff:4b:db:ff: d0:fe:02:57:7b:46:03:af:c2:cd:57:ad:6e:dd:a0: 5c:d4:c0:2a:a4:e8:71:65:c7:5c:84:cd:fc:9e:2d: 51:e9:5d:99:04:30:4a:e8:d8:ac:7c:85:66:5d:98: f0:11:f0:a8:5f:5d:47:bb:a9:b9:02:02:e8:9d:f2: da:aa:b7:f8:cc:7a:43:fa:74:e2:67:a1:ad:f4:ec: b8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B9:CD:12:64:34:B6:57:1E:7B:85:83:DF:F4:94:D3:4A:CC:E7:84 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/wrnNEmQ0tlcee4WD3_SU00rM54Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.120.220.0/23 Signature Algorithm: sha256WithRSAEncryption 57:a9:10:82:f7:57:06:ba:2b:2f:9d:84:31:fa:09:2a:4e:23: 24:bd:52:c1:dd:85:9c:cf:e4:d5:0e:83:56:60:82:5f:94:d6: e0:15:20:67:c6:0e:66:44:97:9c:e3:2f:ae:39:91:e2:65:da: 0a:0a:7c:94:6d:0f:58:1e:7f:ad:ed:32:45:20:da:af:12:e2: 94:9e:d3:71:64:48:38:3f:2b:b7:e7:66:45:8a:02:a9:f0:2d: e3:ff:8f:16:77:d8:c4:6c:fd:8e:dd:1d:f1:81:7b:6a:d2:44: b2:5d:ee:e4:36:f1:61:11:90:36:42:54:0f:5b:49:e6:f3:3d: ff:48:54:55:cf:16:56:91:02:2e:a3:13:bd:f7:a7:42:43:c7: f8:58:20:ec:5e:46:4d:7d:db:69:8b:88:f8:01:af:4b:16:52: 5f:d9:13:4e:d1:a0:01:59:2d:e5:6e:bc:7d:30:09:52:7c:18: 5c:17:c9:77:94:de:a9:4e:c9:64:ec:bc:3b:14:5e:ee:c7:96: b2:56:3d:3b:87:83:cc:15:ec:f0:9b:50:0f:18:5a:24:6e:49: df:e2:b3:96:3c:20:c0:b0:ca:23:2c:49:75:00:fd:0c:f8:61: b0:b7:c9:8e:3c:93:5c:97:f1:f2:3d:eb:8d:c1:2f:06:89:fd: 22:df:39:cb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ1MjVaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEMyQjlDRDEyNjQzNEI2 NTcxRTdCODU4M0RGRjQ5NEQzNEFDQ0U3ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYcHOossWzboDF+MnoH3ZK5D7G3pabBX4IRr8/1q5wCwl2gBAd w9V3LL+Zw4yTKwT9Y+527iRoHJT9Y8SUHiXAcdCiPeHmvD2qb0Tstfd2uJOdSnOx fzuQgCtFhazi7oBxm1CzkrD7XiWCHfERD4rkRidDSj9QjWOUDn7sWG+ziKKqFxqU DYWTmLMZX5n8CMny117g2Dip3HYZDMQO/2eCdIGnlrHOowEJNywX4hdr/0vb/9D+ Ald7RgOvws1XrW7doFzUwCqk6HFlx1yEzfyeLVHpXZkEMEro2Kx8hWZdmPAR8Khf XUe7qbkCAuid8tqqt/jMekP6dOJnoa307Li3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwrnNEmQ0tlcee4WD3/SU00rM54QwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3dybk5FbVEwdGxjZWU0V0QzX1NVMDByTTU0US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGZeNwwDQYJKoZIhvcNAQELBQADggEBAFepEIL3Vwa6Ky+dhDH6CSpOIyS9 UsHdhZzP5NUOg1Zggl+U1uAVIGfGDmZEl5zjL645keJl2goKfJRtD1gef63tMkUg 2q8S4pSe03FkSDg/K7fnZkWKAqnwLeP/jxZ32MRs/Y7dHfGBe2rSRLJd7uQ28WER kDZCVA9bSebzPf9IVFXPFlaRAi6jE733p0JDx/hYIOxeRk1922mLiPgBr0sWUl/Z E07RoAFZLeVuvH0wCVJ8GFwXyXeU3qlOyWTsvDsUXu7HlrJWPTuHg8wV7PCbUA8Y WiRuSd/is5Y8IMCwyiMsSXUA/Qz4YbC3yY48k1yX8fI9643BLwaJ/SLfOcs= -----END CERTIFICATE-----Generated at Sun May 18 02:00:36 2025 by rpki-client