$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/8l4LTFz88j4cZiDZQriuuBYP2PI.roa File: 8l4LTFz88j4cZiDZQriuuBYP2PI.roa (raw, json) Hash identifier: ePc8jbxsoospK3dY2vekIQKunWxF5lEkoLKlnXbU8o0= Subject key identifier: F2:5E:0B:4C:5C:FC:F2:3E:1C:66:20:D9:42:B8:AE:B8:16:0F:D8:F2 Certificate issuer: /CN=D0F562FF36F711A3EDF99FC81DB54ED36634D8B1 Certificate serial: 57 Authority key identifier: D0:F5:62:FF:36:F7:11:A3:ED:F9:9F:C8:1D:B5:4E:D3:66:34:D8:B1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0PVi_zb3EaPt-Z_IHbVO02Y02LE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/8l4LTFz88j4cZiDZQriuuBYP2PI.roa Signing time: Tue 10 Jun 2025 10:47:10 +0000 ROA not before: Tue 10 Jun 2025 10:47:10 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 55900 IP address blocks: 198.144.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/0PVi_zb3EaPt-Z_IHbVO02Y02LE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/0PVi_zb3EaPt-Z_IHbVO02Y02LE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0PVi_zb3EaPt-Z_IHbVO02Y02LE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F562FF36F711A3EDF99FC81DB54ED36634D8B1 Validity Not Before: Jun 10 10:47:10 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=F25E0B4C5CFCF23E1C6620D942B8AEB8160FD8F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:68:1f:d5:c9:f2:82:35:6c:46:ac:8e:b1:3b: 7b:73:b8:66:84:d6:1a:46:ac:4c:2b:11:34:b1:77: 2e:88:42:62:a6:15:3e:7d:0e:9a:f5:28:84:e7:45: 1f:8c:56:9f:22:88:8b:0f:47:6b:d3:a7:71:af:e5: 17:bd:7f:b1:45:9a:da:ca:d7:b2:01:4c:d6:c8:30: fa:e9:65:29:e7:14:89:41:fd:e3:4a:7b:c9:94:61: 81:bb:4a:a2:99:6c:f2:87:19:0e:7a:3b:53:d7:1d: 56:d9:f5:4e:b8:bb:b5:d1:a3:aa:79:db:f8:2f:c0: 81:60:db:6e:dd:1f:b3:91:01:6e:85:fe:31:e7:99: 7f:2b:ff:11:ac:95:33:0f:98:10:6f:a4:c6:89:a5: 1d:42:58:d4:fd:62:8f:fd:01:8d:47:9d:1e:6f:e8: 0c:1f:b2:57:cc:d4:61:dc:d7:c3:85:ec:02:43:c9: 41:29:30:47:c8:63:42:c5:bb:d7:82:5e:ea:11:e0: f4:83:9f:e2:ea:14:9c:a5:03:af:4d:d2:56:90:be: 21:33:af:5d:84:5b:a2:ab:98:bd:50:79:5c:3b:0e: 1f:06:17:09:13:87:d8:4f:71:dc:f6:76:ec:f9:fc: a8:4e:38:11:63:43:0e:a1:5b:0d:e1:68:d1:ab:a9: d2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:5E:0B:4C:5C:FC:F2:3E:1C:66:20:D9:42:B8:AE:B8:16:0F:D8:F2 X509v3 Authority Key Identifier: keyid:D0:F5:62:FF:36:F7:11:A3:ED:F9:9F:C8:1D:B5:4E:D3:66:34:D8:B1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/0PVi_zb3EaPt-Z_IHbVO02Y02LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0PVi_zb3EaPt-Z_IHbVO02Y02LE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/8l4LTFz88j4cZiDZQriuuBYP2PI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 198.144.128.0/20 Signature Algorithm: sha256WithRSAEncryption 9a:90:1f:9b:ac:32:a4:44:09:30:fa:3f:fa:2d:39:75:89:9b: d3:f4:6c:c8:8f:5f:06:9e:f7:0d:ed:e5:89:a3:8c:7c:f0:5d: 46:6c:6a:fa:7c:eb:ac:8a:91:64:c5:8e:c3:ee:ee:d8:9e:bb: 99:19:c0:60:a9:a2:0a:60:5e:34:ec:98:5d:78:9c:bb:48:64: d4:fa:ac:bc:ca:f1:37:86:7b:d8:a7:91:f3:00:b0:a1:81:30: 3d:af:31:37:b5:0a:fc:fa:a0:5f:39:39:e6:d5:7f:a1:bc:89: fe:60:33:ad:76:40:78:18:c0:f8:cf:f6:57:91:a2:73:c5:0b: 3b:de:3f:14:6c:54:be:78:99:4e:22:5e:6d:1b:e0:bb:e8:47: 37:96:9a:3a:e7:e2:af:4d:56:be:61:b1:87:c7:69:aa:e6:ce: cf:b5:a8:20:ff:27:91:9a:a2:f0:b3:ac:37:99:71:52:78:b0: 32:3e:c5:95:4b:f1:50:93:ed:2d:13:1a:bc:91:67:8a:54:8a: 8e:e9:09:51:4a:a0:ac:e9:4a:81:62:f5:22:48:ac:58:6a:f1: 43:08:83:b6:70:53:de:64:ea:26:f4:83:d6:64:ad:c9:cd:9b: 2d:5c:10:60:0a:24:3a:a8:aa:36:3a:52:27:ba:3d:59:29:01: 6e:d7:24:41 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMEY1 NjJGRjM2RjcxMUEzRURGOTlGQzgxREI1NEVEMzY2MzREOEIxMB4XDTI1MDYxMDEw NDcxMFoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoRjI1RTBCNEM1Q0ZDRjIz RTFDNjYyMEQ5NDJCOEFFQjgxNjBGRDhGMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL1oH9XJ8oI1bEasjrE7e3O4ZoTWGkasTCsRNLF3LohCYqYVPn0O mvUohOdFH4xWnyKIiw9Ha9Onca/lF71/sUWa2srXsgFM1sgw+ullKecUiUH940p7 yZRhgbtKopls8ocZDno7U9cdVtn1Tri7tdGjqnnb+C/AgWDbbt0fs5EBboX+MeeZ fyv/EayVMw+YEG+kxomlHUJY1P1ij/0BjUedHm/oDB+yV8zUYdzXw4XsAkPJQSkw R8hjQsW714Je6hHg9IOf4uoUnKUDr03SVpC+ITOvXYRboquYvVB5XDsOHwYXCROH 2E9x3PZ27Pn8qE44EWNDDqFbDeFo0aup0rECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTyXgtMXPzyPhxmINlCuK64Fg/Y8jAfBgNVHSMEGDAWgBTQ9WL/NvcRo+35n8gd tU7TZjTYsTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTM5LzBQVmlfemIzRWFQdC1aX0lIYlZPMDJZMDJMRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBQVmlfemIzRWFQdC1aX0lIYlZPMDJZ MDJMRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzkvOGw0TFRGejg4ajRjWmlEWlFyaXV1QllQMlBJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMaQgDANBgkqhkiG9w0BAQsFAAOCAQEAmpAfm6wypEQJMPo/+i05dYmb0/Rs yI9fBp73De3liaOMfPBdRmxq+nzrrIqRZMWOw+7u2J67mRnAYKmiCmBeNOyYXXic u0hk1PqsvMrxN4Z72KeR8wCwoYEwPa8xN7UK/PqgXzk55tV/obyJ/mAzrXZAeBjA +M/2V5Gic8ULO94/FGxUvniZTiJebRvgu+hHN5aaOufir01WvmGxh8dpqubOz7Wo IP8nkZqi8LOsN5lxUniwMj7FlUvxUJPtLRMavJFnilSKjukJUUqgrOlKgWL1Ikis WGrxQwiDtnBT3mTqJvSD1mStyc2bLVwQYAokOqiqNjpSJ7o9WSkBbtckQQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:30:52 2025 by rpki-client