$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/z1hVTtwmd0h6y1wZmZP08hD82r4.roa File: z1hVTtwmd0h6y1wZmZP08hD82r4.roa (raw, json) Hash identifier: 4MnjEeKvQAETtC4P95C/iP7+PIX6kp6oKxrHojsphu4= Subject key identifier: CF:58:55:4E:DC:26:77:48:7A:CB:5C:19:99:93:F4:F2:10:FC:DA:BE Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 03F7 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/z1hVTtwmd0h6y1wZmZP08hD82r4.roa Signing time: Thu 01 May 2025 01:45:19 +0000 ROA not before: Thu 01 May 2025 01:45:19 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 10013 IP address blocks: 111.234.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 21:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 1 01:45:19 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=CF58554EDC2677487ACB5C199993F4F210FCDABE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:be:1f:c2:3b:c7:53:9c:e2:2c:a2:43:d9:eb: 96:e8:6b:d5:2b:51:68:c6:fa:43:86:bd:ee:89:c8: cb:9a:a1:30:2a:e6:b7:37:fb:c6:4d:78:7f:5a:10: 52:2c:09:bc:32:50:ca:19:2d:f8:15:ea:6b:9e:be: 1b:54:2f:a0:d6:2c:44:a3:20:0d:f9:1d:44:3d:df: 5e:20:f0:be:77:42:3f:5b:2a:98:26:11:5a:0b:12: 9d:2b:f0:6d:a5:dd:f4:a8:5d:da:d3:fc:79:c5:71: 29:48:eb:60:7d:ce:61:0a:90:d8:0e:60:5e:d4:4b: 66:1a:9d:93:a7:7f:7d:55:89:9a:24:67:4e:79:cb: f4:73:c7:7d:cf:a7:a9:2b:25:03:19:74:ba:d6:d7: cd:2d:18:29:4c:9c:68:12:76:bc:68:01:61:c2:b1: c0:4e:6d:a2:f9:18:d1:ea:af:25:6f:ca:4d:3c:a7: da:c1:44:37:de:7b:58:05:08:d7:e4:b4:e0:78:c9: bd:66:7c:9e:f8:8f:86:ae:34:06:27:ee:be:4d:78: 26:49:59:f7:3b:db:a1:13:65:a7:04:13:b2:99:b1: 3c:79:6b:59:b7:1f:f7:fe:94:f3:2d:98:dd:48:5f: b1:4b:54:66:62:18:89:68:3c:f5:a0:c3:87:95:77: ff:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:58:55:4E:DC:26:77:48:7A:CB:5C:19:99:93:F4:F2:10:FC:DA:BE X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/z1hVTtwmd0h6y1wZmZP08hD82r4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.234.224.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:ee:ed:e8:fe:c5:80:3d:72:b0:d5:97:11:f9:51:9d:5f:99: 07:65:91:86:c6:57:34:31:56:c9:69:60:d4:63:00:15:6a:17: 79:7e:9f:b1:c2:e5:f5:7f:e6:43:1c:c6:ba:77:69:b7:7d:9f: a0:47:58:7d:d1:e6:15:8e:57:c5:8d:24:b5:52:a7:5d:61:10: 2c:5a:2c:f4:65:a4:95:10:53:c0:b8:c5:e1:b3:c9:8e:5f:e5: a4:1e:03:16:6c:94:63:ad:9c:95:b1:2a:e7:c0:f5:ae:d8:2a: 50:dc:db:3e:9a:a4:d7:3c:6d:f0:9a:d9:44:37:83:87:17:92: cc:66:5d:86:65:66:f0:1b:89:68:c8:03:34:02:f6:12:eb:20: 36:e7:94:82:78:95:a3:39:83:7f:0c:44:56:31:dd:a9:06:58: 3b:93:36:de:88:84:42:32:52:26:a5:48:1a:5a:b4:00:57:46: 18:6a:e1:b7:21:b0:b5:79:8a:a5:f0:2f:28:c3:31:d5:a4:8c: ff:70:25:2c:86:fe:27:93:7d:ef:96:cc:1b:a9:50:5d:1c:90: 8f:ad:52:7e:79:7b:00:a7:ba:21:b3:05:f9:9f:f1:8d:91:ae: c3:92:c4:08:0d:93:1e:21:d4:1a:98:67:1c:2f:f0:f3:58:2f: a0:ad:83:09 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTA1MDEw MTQ1MTlaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKENGNTg1NTRFREMyNjc3 NDg3QUNCNUMxOTk5OTNGNEYyMTBGQ0RBQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUvh/CO8dTnOIsokPZ65boa9UrUWjG+kOGve6JyMuaoTAq5rc3 +8ZNeH9aEFIsCbwyUMoZLfgV6muevhtUL6DWLESjIA35HUQ9314g8L53Qj9bKpgm EVoLEp0r8G2l3fSoXdrT/HnFcSlI62B9zmEKkNgOYF7US2YanZOnf31ViZokZ055 y/Rzx33Pp6krJQMZdLrW180tGClMnGgSdrxoAWHCscBObaL5GNHqryVvyk08p9rB RDfee1gFCNfktOB4yb1mfJ74j4auNAYn7r5NeCZJWfc726ETZacEE7KZsTx5a1m3 H/f+lPMtmN1IX7FLVGZiGIloPPWgw4eVd/9/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUz1hVTtwmd0h6y1wZmZP08hD82r4wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3oxaFZUdHdtZDBoNnkxd1ptWlAwOGhEODJyNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARv6uAwDQYJKoZIhvcNAQELBQADggEBAFvu7ej+xYA9crDVlxH5UZ1fmQdl kYbGVzQxVslpYNRjABVqF3l+n7HC5fV/5kMcxrp3abd9n6BHWH3R5hWOV8WNJLVS p11hECxaLPRlpJUQU8C4xeGzyY5f5aQeAxZslGOtnJWxKufA9a7YKlDc2z6apNc8 bfCa2UQ3g4cXksxmXYZlZvAbiWjIAzQC9hLrIDbnlIJ4laM5g38MRFYx3akGWDuT Nt6IhEIyUialSBpatABXRhhq4bchsLV5iqXwLyjDMdWkjP9wJSyG/ieTfe+WzBup UF0ckI+tUn55ewCnuiGzBfmf8Y2RrsOSxAgNkx4h1BqYZxwv8PNYL6Ctgwk= -----END CERTIFICATE-----Generated at Sat May 17 23:40:33 2025 by rpki-client