$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/524/aAiPFOXOtgBnt9tATwCsOIScD2Y.roa File: aAiPFOXOtgBnt9tATwCsOIScD2Y.roa (raw, json) Hash identifier: 2otb2/fXwO3ZDqK7Ed2Qum2SCLHUMKjtXEfj64hwARQ= Subject key identifier: 68:08:8F:14:E5:CE:B6:00:67:B7:DB:40:4F:00:AC:38:84:9C:0F:66 Certificate issuer: /CN=EE13ACCF7E77B0292AE17B05340211C8F971760B Certificate serial: 45 Authority key identifier: EE:13:AC:CF:7E:77:B0:29:2A:E1:7B:05:34:02:11:C8:F9:71:76:0B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/aAiPFOXOtgBnt9tATwCsOIScD2Y.roa Signing time: Fri 27 Jun 2025 02:23:19 +0000 ROA not before: Fri 27 Jun 2025 02:23:19 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 24257 IP address blocks: 202.90.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE13ACCF7E77B0292AE17B05340211C8F971760B Validity Not Before: Jun 27 02:23:19 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=68088F14E5CEB60067B7DB404F00AC38849C0F66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ec:69:9d:bc:7b:e6:69:0b:15:92:55:a0:6c: 23:8c:6a:ee:e2:44:73:1d:18:13:f2:9d:c3:80:2d: f3:1d:94:18:b7:ac:39:8f:0a:88:44:e1:c8:cf:94: 3c:ba:d3:1e:d1:60:87:4e:a7:50:b3:87:f2:a3:ae: 54:44:9b:d2:5f:5a:24:a5:29:8d:10:6a:bc:16:e2: 72:eb:da:dc:87:1f:ad:9c:9a:6d:6d:ef:2f:7e:2b: 69:e6:ea:57:6f:b2:3c:a0:94:7c:f7:f9:2d:d0:ed: ca:29:97:b6:e1:d2:68:97:00:03:49:aa:83:98:5f: 66:9b:b9:aa:59:52:28:68:0f:4a:e4:2b:6f:90:fb: 5f:47:11:f7:57:a5:3d:76:bc:83:c2:cc:81:87:22: bd:3e:7e:dd:7b:27:78:5a:2c:15:e7:ef:a0:dd:76: 6f:31:8b:3f:17:94:57:2a:f4:8d:fd:dd:a2:21:c1: f3:01:83:08:79:5b:bc:4a:61:34:43:d5:04:15:1d: a5:26:fa:a3:dc:15:ca:c9:4e:94:63:24:89:ba:0a: 89:22:59:b8:ec:85:19:72:37:b2:20:50:8a:82:9f: 9d:f0:9b:aa:b3:5a:e7:a9:2f:4f:2a:2d:35:73:71: 8c:27:55:b1:00:18:72:18:90:3f:71:d1:7e:f6:cb: 7c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:08:8F:14:E5:CE:B6:00:67:B7:DB:40:4F:00:AC:38:84:9C:0F:66 X509v3 Authority Key Identifier: keyid:EE:13:AC:CF:7E:77:B0:29:2A:E1:7B:05:34:02:11:C8:F9:71:76:0B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/aAiPFOXOtgBnt9tATwCsOIScD2Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.90.12.0/24 Signature Algorithm: sha256WithRSAEncryption 59:1e:74:89:b3:71:e5:22:0f:6f:b5:ea:2a:c4:d9:9c:25:41: 2a:a9:ea:8b:cc:26:f5:73:7a:50:26:75:ca:33:f9:73:d5:55: 40:ce:41:25:b0:5f:dc:04:aa:80:65:62:39:5f:e9:93:3b:e2: a7:13:d2:5c:ad:9c:81:94:77:e9:cb:c2:01:3f:4b:21:82:10: 70:c8:41:11:e5:e8:f0:fc:8c:4b:dd:f9:84:b5:bd:8f:70:44: 0e:1d:75:a9:db:bd:aa:44:c8:0d:b9:65:1a:87:60:93:aa:8b: 92:b6:c1:ca:99:f1:00:2b:a6:05:ed:15:6f:30:48:ab:6f:93: bd:23:ce:eb:2b:0f:c2:fc:3b:dd:f6:ce:18:b7:c8:f0:b1:04: ef:fe:39:60:eb:11:86:ec:e8:65:84:73:83:2e:8b:82:dc:3e: d6:7e:2e:a5:48:bb:31:a7:29:f5:20:de:9b:45:c5:02:51:8f: f3:dd:8a:35:ad:0b:20:3e:f9:f3:59:34:7a:9a:22:47:f1:a6: a3:1d:6f:36:eb:84:e3:42:7d:29:64:0f:4b:50:65:58:ab:c4: 38:02:1d:14:9f:d1:22:ab:c4:e5:b8:67:c9:c6:86:ec:e5:29: 39:6e:95:f2:40:63:a5:6c:4f:6b:ea:fd:4f:84:14:47:31:37: aa:45:c0:1b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRTEz QUNDRjdFNzdCMDI5MkFFMTdCMDUzNDAyMTFDOEY5NzE3NjBCMB4XDTI1MDYyNzAy MjMxOVoXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoNjgwODhGMTRFNUNFQjYw MDY3QjdEQjQwNEYwMEFDMzg4NDlDMEY2NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK/saZ28e+ZpCxWSVaBsI4xq7uJEcx0YE/Kdw4At8x2UGLesOY8K iEThyM+UPLrTHtFgh06nULOH8qOuVESb0l9aJKUpjRBqvBbicuva3IcfrZyabW3v L34raebqV2+yPKCUfPf5LdDtyimXtuHSaJcAA0mqg5hfZpu5qllSKGgPSuQrb5D7 X0cR91elPXa8g8LMgYcivT5+3XsneFosFefvoN12bzGLPxeUVyr0jf3doiHB8wGD CHlbvEphNEPVBBUdpSb6o9wVyslOlGMkiboKiSJZuOyFGXI3siBQioKfnfCbqrNa 56kvTyotNXNxjCdVsQAYchiQP3HRfvbLfFUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRoCI8U5c62AGe320BPAKw4hJwPZjAfBgNVHSMEGDAWgBTuE6zPfnewKSrhewU0 AhHI+XF2CzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTI0LzdoT3N6MzUzc0NrcTRYc0ZOQUlSeVBseGRncy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzdoT3N6MzUzc0NrcTRYc0ZOQUlSeVBs eGRncy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MjQvYUFpUEZPWE90Z0JudDl0QVR3Q3NPSVNjRDJZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMpaDDANBgkqhkiG9w0BAQsFAAOCAQEAWR50ibNx5SIPb7XqKsTZnCVBKqnq i8wm9XN6UCZ1yjP5c9VVQM5BJbBf3ASqgGViOV/pkzvipxPSXK2cgZR36cvCAT9L IYIQcMhBEeXo8PyMS935hLW9j3BEDh11qdu9qkTIDbllGodgk6qLkrbBypnxACum Be0VbzBIq2+TvSPO6ysPwvw73fbOGLfI8LEE7/45YOsRhuzoZYRzgy6Lgtw+1n4u pUi7Macp9SDem0XFAlGP892KNa0LID7581k0epoiR/Gmox1vNuuE40J9KWQPS1Bl WKvEOAIdFJ/RIqvE5bhnycaG7OUpOW6V8kBjpWxPa+r9T4QURzE3qkXAGw== -----END CERTIFICATE-----Generated at Sat Jul 5 12:01:46 2025 by rpki-client