$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/xCtusxvRGAWQSIsT5Mo82B8GkKg.roa File: xCtusxvRGAWQSIsT5Mo82B8GkKg.roa (raw, json) Hash identifier: yK+DX6qyWk3vO55/WMqfTbKr1OwBjlHTkArFsL8q+Co= Subject key identifier: C4:2B:6E:B3:1B:D1:18:05:90:48:8B:13:E4:CA:3C:D8:1F:06:90:A8 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0424 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/xCtusxvRGAWQSIsT5Mo82B8GkKg.roa Signing time: Thu 01 May 2025 01:48:48 +0000 ROA not before: Thu 01 May 2025 01:48:48 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 218.225.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:48:48 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=C42B6EB31BD1180590488B13E4CA3CD81F0690A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4f:fd:bc:6b:3f:5b:4d:9a:3f:fb:78:39:5d: db:5e:56:86:ae:07:32:81:aa:a1:da:1b:1b:68:b0: de:e9:66:98:6d:2b:ea:5e:eb:e3:21:cf:f5:0d:e1: 5c:24:31:19:ca:14:9a:e8:70:60:4d:be:56:98:b2: 23:04:a8:68:14:17:1e:20:cb:2e:23:bc:72:df:5b: 0e:63:6e:ae:b3:2f:ac:1e:d8:e9:49:b0:34:e1:19: a3:0e:88:cd:81:cc:12:ef:7e:6a:28:7a:f5:b6:6b: 71:fc:cd:6e:2a:94:63:88:2d:c8:ba:9f:66:37:87: 1c:39:7d:fa:e2:d6:56:d9:52:57:1f:8d:21:47:12: 16:f0:62:81:e1:ad:48:52:2e:e6:f6:8d:a2:f5:9b: 21:4f:16:a4:89:a6:a8:0a:5c:74:08:46:a8:2d:8a: 58:0d:d3:a1:ab:22:83:d0:c3:ee:f1:16:79:da:5e: a4:ef:1f:3c:10:51:ae:7d:aa:76:9f:fe:75:dc:05: 48:3c:4d:34:38:32:8d:8e:62:c0:14:11:f3:91:c7: 88:9b:1f:61:1b:51:85:1a:d3:1a:01:b6:20:69:35: 89:3e:a8:69:6a:38:e9:63:eb:ad:15:ce:bd:59:8d: b7:e5:04:34:d0:12:7c:30:23:86:ac:70:16:50:ed: 86:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:2B:6E:B3:1B:D1:18:05:90:48:8B:13:E4:CA:3C:D8:1F:06:90:A8 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/xCtusxvRGAWQSIsT5Mo82B8GkKg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.225.248.0/21 Signature Algorithm: sha256WithRSAEncryption 90:62:5f:60:81:e0:b8:fa:30:77:e5:b2:76:7e:f6:4c:d0:34: b1:84:26:5b:11:89:86:0f:d0:ae:98:a0:b8:99:e7:72:ba:5c: d2:90:11:27:46:c7:19:15:f6:5f:a4:5b:96:38:ef:90:c6:77: fd:7f:99:1b:a8:26:a1:63:7b:32:ab:ab:34:91:8e:e3:d7:21: d1:3d:02:06:09:b3:71:ed:aa:6c:01:60:2a:b4:61:9e:00:6e: 6f:68:9b:88:47:9d:d9:f1:a4:cb:fc:cb:da:55:ca:a0:8c:00: e3:61:21:03:ae:00:91:94:cc:db:ee:53:e9:d5:e0:de:aa:75: 53:a2:a6:d1:df:b6:15:95:23:e3:24:db:61:82:d0:67:75:0a: 43:cf:49:98:50:9a:e1:28:3d:c5:1e:48:10:e7:45:4e:26:93: c8:14:10:a4:cb:aa:bc:1e:ea:87:6b:50:b2:60:a0:d2:5a:2c: 4b:41:28:98:d1:c2:8a:2b:1b:1d:df:47:c6:d8:79:a7:86:61: f6:79:20:f3:24:40:f1:89:80:66:06:04:e7:2e:a0:4c:28:4c: cc:b3:ad:24:a6:f7:06:71:56:6d:71:21:71:16:91:09:5d:67: 9a:68:58:44:32:9e:99:c2:75:18:fa:da:ee:83:b7:61:51:76: 93:92:46:6d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ4NDhaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM0MkI2RUIzMUJEMTE4 MDU5MDQ4OEIxM0U0Q0EzQ0Q4MUYwNjkwQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiT/28az9bTZo/+3g5XdteVoauBzKBqqHaGxtosN7pZphtK+pe 6+Mhz/UN4VwkMRnKFJrocGBNvlaYsiMEqGgUFx4gyy4jvHLfWw5jbq6zL6we2OlJ sDThGaMOiM2BzBLvfmooevW2a3H8zW4qlGOILci6n2Y3hxw5ffri1lbZUlcfjSFH EhbwYoHhrUhSLub2jaL1myFPFqSJpqgKXHQIRqgtilgN06GrIoPQw+7xFnnaXqTv HzwQUa59qnaf/nXcBUg8TTQ4Mo2OYsAUEfORx4ibH2EbUYUa0xoBtiBpNYk+qGlq OOlj660Vzr1ZjbflBDTQEnwwI4ascBZQ7YbfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxCtusxvRGAWQSIsT5Mo82B8GkKgwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3hDdHVzeHZSR0FXUVNJc1Q1TW84MkI4R2tLZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPa4fgwDQYJKoZIhvcNAQELBQADggEBAJBiX2CB4Lj6MHflsnZ+9kzQNLGE JlsRiYYP0K6YoLiZ53K6XNKQESdGxxkV9l+kW5Y475DGd/1/mRuoJqFjezKrqzSR juPXIdE9AgYJs3HtqmwBYCq0YZ4Abm9om4hHndnxpMv8y9pVyqCMAONhIQOuAJGU zNvuU+nV4N6qdVOiptHfthWVI+Mk22GC0Gd1CkPPSZhQmuEoPcUeSBDnRU4mk8gU EKTLqrwe6odrULJgoNJaLEtBKJjRwoorGx3fR8bYeaeGYfZ5IPMkQPGJgGYGBOcu oEwoTMyzrSSm9wZxVm1xIXEWkQldZ5poWEQynpnCdRj62u6Dt2FRdpOSRm0= -----END CERTIFICATE-----Generated at Sun May 18 04:53:08 2025 by rpki-client