$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/597/1hXzgaS9yQcdUtT64ANbFKssvLk.roa File: 1hXzgaS9yQcdUtT64ANbFKssvLk.roa (raw, json) Hash identifier: 0EiMIJlKYUYbJDebzdr9HR8sD+I8Knml7zX8qWfoIZM= Subject key identifier: D6:15:F3:81:A4:BD:C9:07:1D:52:D4:FA:E0:03:5B:14:AB:2C:BC:B9 Certificate issuer: /CN=71F76FA07735F685991FC882C885E21EFBB161BC Certificate serial: 64 Authority key identifier: 71:F7:6F:A0:77:35:F6:85:99:1F:C8:82:C8:85:E2:1E:FB:B1:61:BC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/1hXzgaS9yQcdUtT64ANbFKssvLk.roa Signing time: Thu 01 May 2025 01:34:00 +0000 ROA not before: Thu 01 May 2025 01:34:00 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 0 IP address blocks: 101.203.74.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71F76FA07735F685991FC882C885E21EFBB161BC Validity Not Before: May 1 01:34:00 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=D615F381A4BDC9071D52D4FAE0035B14AB2CBCB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0f:c7:43:eb:8b:0e:09:86:bc:96:89:e7:73: ff:a1:9e:e9:05:fe:bc:74:b8:c7:8c:1a:d4:24:2c: c1:fa:82:4b:5d:13:10:a0:cc:db:ff:7a:ab:9f:13: 30:21:fc:69:1c:bc:c4:9d:e7:a1:ff:bb:65:2d:e2: fa:f5:42:ed:01:c4:30:a8:60:f2:69:c2:63:89:72: 2b:4f:dc:42:39:3c:3e:a4:07:a5:77:00:08:34:40: b2:39:a4:34:a8:72:3e:d7:0a:55:36:45:f8:07:2f: 1e:cb:8c:31:5b:5a:4c:35:f0:12:18:8b:1f:9d:81: 07:cc:77:52:a0:ec:a3:17:79:e6:14:ad:1a:20:c5: 38:af:86:a9:24:c3:9a:8b:35:17:b6:1c:05:cc:f1: eb:f7:21:7f:69:d1:c4:c8:db:8f:ca:bd:f4:da:6a: e6:ff:f3:b4:29:ec:34:5d:31:cf:59:a8:b1:d4:a7: a0:7b:01:a8:57:4a:66:4c:5c:3d:da:aa:57:53:67: 4f:4c:14:12:a9:19:88:35:86:62:fb:00:7d:79:25: 2f:35:3a:37:5c:ab:e6:0b:6e:94:00:c7:e7:09:a1: dd:3b:b9:d1:c6:7a:12:fc:d1:c1:41:1c:9b:92:f5: aa:75:03:29:71:7d:46:d4:f2:31:97:3d:61:b3:8d: 87:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:15:F3:81:A4:BD:C9:07:1D:52:D4:FA:E0:03:5B:14:AB:2C:BC:B9 X509v3 Authority Key Identifier: keyid:71:F7:6F:A0:77:35:F6:85:99:1F:C8:82:C8:85:E2:1E:FB:B1:61:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/1hXzgaS9yQcdUtT64ANbFKssvLk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.203.74.0/24 Signature Algorithm: sha256WithRSAEncryption 47:07:5a:5b:07:61:4d:86:ab:d8:50:a2:aa:9d:5e:c8:32:3f: 32:a1:54:14:d7:4e:e3:f3:72:d6:f5:01:10:28:54:f1:5a:1d: c0:38:71:ac:9f:ce:18:6c:27:da:fc:94:74:43:6b:b9:06:58: 46:39:d3:e7:59:5f:33:43:41:6f:41:4b:c4:27:ea:5b:6b:ed: 40:c6:e3:09:81:bc:5c:f0:76:2b:64:67:29:c5:c5:ab:85:15: b8:37:c5:37:af:28:36:6f:49:11:b9:c1:c8:50:d9:5d:33:71: 25:0f:0a:42:09:2d:fb:85:7a:cb:4c:e6:9b:85:f3:2b:a4:b3: 3c:ed:bb:a4:d7:3f:18:59:01:5f:ad:48:c3:b1:40:fa:a2:85: 67:0d:b1:12:1b:2d:91:14:e5:3c:f0:40:eb:fd:d1:a6:38:4d: e4:00:87:02:c2:3f:3c:bd:1b:74:4c:15:51:37:dd:d2:ab:11: 84:79:5c:47:59:85:f3:cf:17:1e:02:be:40:a7:73:38:d2:5b: c0:b0:53:c0:7e:18:f6:0a:56:f7:dc:24:bb:a0:ce:6b:7e:47: dc:1e:16:37:ca:9f:91:07:a2:6c:91:47:bb:24:14:7a:40:a5: 7b:a3:dd:56:d3:5d:04:66:a4:5b:96:41:4a:d7:13:09:63:66: 1c:1d:1a:1c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MUY3 NkZBMDc3MzVGNjg1OTkxRkM4ODJDODg1RTIxRUZCQjE2MUJDMB4XDTI1MDUwMTAx MzQwMFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoRDYxNUYzODFBNEJEQzkw NzFENTJENEZBRTAwMzVCMTRBQjJDQkNCOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKYPx0Priw4JhryWiedz/6Ge6QX+vHS4x4wa1CQswfqCS10TEKDM 2/96q58TMCH8aRy8xJ3nof+7ZS3i+vVC7QHEMKhg8mnCY4lyK0/cQjk8PqQHpXcA CDRAsjmkNKhyPtcKVTZF+AcvHsuMMVtaTDXwEhiLH52BB8x3UqDsoxd55hStGiDF OK+GqSTDmos1F7YcBczx6/chf2nRxMjbj8q99Npq5v/ztCnsNF0xz1mosdSnoHsB qFdKZkxcPdqqV1NnT0wUEqkZiDWGYvsAfXklLzU6N1yr5gtulADH5wmh3Tu50cZ6 EvzRwUEcm5L1qnUDKXF9RtTyMZc9YbONh9kCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTWFfOBpL3JBx1S1PrgA1sUqyy8uTAfBgNVHSMEGDAWgBRx92+gdzX2hZkfyILI heIe+7FhvDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTk3L2NmZHZvSGMxOW9XWkg4aUN5SVhpSHZ1eFlidy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2NmZHZvSGMxOW9XWkg4aUN5SVhpSHZ1 eFlidy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81OTcvMWhYemdhUzl5UWNkVXRUNjRBTmJGS3NzdkxrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGXLSjANBgkqhkiG9w0BAQsFAAOCAQEARwdaWwdhTYar2FCiqp1eyDI/MqFU FNdO4/Ny1vUBEChU8VodwDhxrJ/OGGwn2vyUdENruQZYRjnT51lfM0NBb0FLxCfq W2vtQMbjCYG8XPB2K2RnKcXFq4UVuDfFN68oNm9JEbnByFDZXTNxJQ8KQgkt+4V6 y0zmm4XzK6SzPO27pNc/GFkBX61Iw7FA+qKFZw2xEhstkRTlPPBA6/3RpjhN5ACH AsI/PL0bdEwVUTfd0qsRhHlcR1mF888XHgK+QKdzONJbwLBTwH4Y9gpW99wku6DO a35H3B4WN8qfkQeibJFHuyQUekCle6PdVtNdBGakW5ZBStcTCWNmHB0aHA== -----END CERTIFICATE-----Generated at Fri May 16 18:11:35 2025 by rpki-client