$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/lAWKWM3bjwsWMVBV7YQFKDfRMSk.roa File: lAWKWM3bjwsWMVBV7YQFKDfRMSk.roa (raw, json) Hash identifier: Y6mxBIBBbzlczL9HutP7Qc9133cMvTOTLydc7ssx+Eg= Subject key identifier: 94:05:8A:58:CD:DB:8F:0B:16:31:50:55:ED:84:05:28:37:D1:31:29 Certificate issuer: /CN=D0F562FF36F711A3EDF99FC81DB54ED36634D8B1 Certificate serial: 58 Authority key identifier: D0:F5:62:FF:36:F7:11:A3:ED:F9:9F:C8:1D:B5:4E:D3:66:34:D8:B1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0PVi_zb3EaPt-Z_IHbVO02Y02LE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/lAWKWM3bjwsWMVBV7YQFKDfRMSk.roa Signing time: Tue 10 Jun 2025 10:47:10 +0000 ROA not before: Tue 10 Jun 2025 10:47:10 +0000 ROA not after: Sat 23 May 2026 09:51:00 +0000 asID: 55900 IP address blocks: 137.220.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/0PVi_zb3EaPt-Z_IHbVO02Y02LE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/0PVi_zb3EaPt-Z_IHbVO02Y02LE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0PVi_zb3EaPt-Z_IHbVO02Y02LE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F562FF36F711A3EDF99FC81DB54ED36634D8B1 Validity Not Before: Jun 10 10:47:10 2025 GMT Not After : May 23 09:51:00 2026 GMT Subject: CN=94058A58CDDB8F0B16315055ED84052837D13129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bb:2c:4f:fa:e3:3d:80:ab:00:88:1f:80:4f: 35:9c:94:e9:f2:0d:cc:4e:37:0c:49:da:5e:21:0b: 3e:1a:20:fb:09:18:1d:49:a8:5b:20:71:44:97:e7: 1e:18:95:12:17:82:31:ad:3a:85:16:29:46:19:02: 88:0b:8c:d6:41:b7:7b:b9:b2:fa:88:7d:ce:3a:88: 19:1a:14:eb:0c:b0:9d:7c:d8:89:32:da:d3:89:ff: 62:1e:1b:b7:72:4d:15:d6:eb:04:e8:58:40:5d:da: 7b:f5:52:80:b1:70:3e:ac:81:40:5e:33:1b:7e:db: f3:7d:e8:63:19:3a:2a:25:7d:1c:4e:6f:68:f3:0d: fd:ea:f5:d8:da:fa:53:95:cc:fc:91:c3:89:72:a7: 39:31:e5:be:3d:f0:8e:09:15:a5:49:f7:ad:d5:62: 09:c6:c8:62:32:8a:06:b9:b0:79:bc:58:48:6c:d0: 18:5a:19:96:4d:e0:bf:7e:9e:25:a7:b3:14:ec:ea: 93:a8:1a:ea:b1:a0:9d:d6:0e:bd:69:92:d4:3a:56: ce:f0:c0:2c:4a:34:3b:5d:94:2f:1b:e6:ff:3a:d9: d8:34:fb:91:fd:9c:29:58:3d:4e:c4:da:8c:75:b8: 3e:f9:ab:11:81:9f:fe:46:c7:18:7d:d0:94:8c:9f: 0a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:05:8A:58:CD:DB:8F:0B:16:31:50:55:ED:84:05:28:37:D1:31:29 X509v3 Authority Key Identifier: keyid:D0:F5:62:FF:36:F7:11:A3:ED:F9:9F:C8:1D:B5:4E:D3:66:34:D8:B1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/0PVi_zb3EaPt-Z_IHbVO02Y02LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0PVi_zb3EaPt-Z_IHbVO02Y02LE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/lAWKWM3bjwsWMVBV7YQFKDfRMSk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 137.220.16.0/20 Signature Algorithm: sha256WithRSAEncryption 1f:87:ae:68:68:bb:ad:a6:7f:eb:56:d7:24:86:ba:92:99:1e: d9:da:4c:d9:ec:3b:e9:56:3a:7d:5a:d0:0c:7b:ad:9b:d3:b5: e3:b4:85:e5:4e:0b:ad:3a:93:50:34:0b:78:41:79:b0:dd:e6: d9:9a:65:73:3b:5b:35:4b:4b:06:5d:a0:5e:5c:a4:1f:f8:bf: a4:2a:0b:ce:81:3c:c5:d9:dd:b5:6c:aa:9e:0d:bc:66:03:60: 55:3d:c8:df:7d:6d:48:ef:1c:bd:61:47:8e:12:87:a0:57:0b: c3:c8:43:af:a5:33:55:8b:78:d9:35:b6:b4:bd:a9:5a:42:6c: b1:a1:33:21:97:3f:be:cf:71:2b:4d:b4:e7:c7:6e:1d:8e:ef: 4f:3d:7d:bc:e1:f3:f1:c2:63:24:02:21:2e:6f:84:7d:74:87: 67:77:0d:a9:79:87:fb:52:f6:29:00:f4:af:3e:99:ee:b5:05: 57:76:8c:fe:2e:e7:bc:6a:7e:ba:f1:92:3b:12:3e:ec:da:1f: 87:35:ea:e3:ca:31:65:7a:e0:85:bb:e0:b7:9b:2a:0b:8e:5e: 97:92:08:e1:5a:a6:b2:cb:fc:22:bf:a7:9e:5f:ac:1d:9d:54: c2:a9:ed:f7:40:0b:8d:0e:40:95:97:05:81:3d:e0:3b:b1:0b: 47:e4:c1:a2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBWDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMEY1 NjJGRjM2RjcxMUEzRURGOTlGQzgxREI1NEVEMzY2MzREOEIxMB4XDTI1MDYxMDEw NDcxMFoXDTI2MDUyMzA5NTEwMFowMzExMC8GA1UEAxMoOTQwNThBNThDRERCOEYw QjE2MzE1MDU1RUQ4NDA1MjgzN0QxMzEyOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALm7LE/64z2AqwCIH4BPNZyU6fINzE43DEnaXiELPhog+wkYHUmo WyBxRJfnHhiVEheCMa06hRYpRhkCiAuM1kG3e7my+oh9zjqIGRoU6wywnXzYiTLa 04n/Yh4bt3JNFdbrBOhYQF3ae/VSgLFwPqyBQF4zG37b833oYxk6KiV9HE5vaPMN /er12Nr6U5XM/JHDiXKnOTHlvj3wjgkVpUn3rdViCcbIYjKKBrmwebxYSGzQGFoZ lk3gv36eJaezFOzqk6ga6rGgndYOvWmS1DpWzvDALEo0O12ULxvm/zrZ2DT7kf2c KVg9TsTajHW4PvmrEYGf/kbHGH3QlIyfChECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSUBYpYzduPCxYxUFXthAUoN9ExKTAfBgNVHSMEGDAWgBTQ9WL/NvcRo+35n8gd tU7TZjTYsTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTM5LzBQVmlfemIzRWFQdC1aX0lIYlZPMDJZMDJMRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBQVmlfemIzRWFQdC1aX0lIYlZPMDJZ MDJMRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzkvbEFXS1dNM2Jqd3NXTVZCVjdZUUZLRGZSTVNrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBIncEDANBgkqhkiG9w0BAQsFAAOCAQEAH4euaGi7raZ/61bXJIa6kpke2dpM 2ew76VY6fVrQDHutm9O147SF5U4LrTqTUDQLeEF5sN3m2ZplcztbNUtLBl2gXlyk H/i/pCoLzoE8xdndtWyqng28ZgNgVT3I331tSO8cvWFHjhKHoFcLw8hDr6UzVYt4 2TW2tL2pWkJssaEzIZc/vs9xK02058duHY7vTz19vOHz8cJjJAIhLm+EfXSHZ3cN qXmH+1L2KQD0rz6Z7rUFV3aM/i7nvGp+uvGSOxI+7NofhzXq48oxZXrghbvgt5sq C45el5II4Vqmssv8Ir+nnl+sHZ1Uwqnt90ALjQ5AlZcFgT3gO7ELR+TBog== -----END CERTIFICATE-----Generated at Sat Jul 5 08:17:08 2025 by rpki-client