$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/597/mh-_dgw6LDvylzfgtD7XVPSPuiQ.roa File: mh-_dgw6LDvylzfgtD7XVPSPuiQ.roa (raw, json) Hash identifier: hUSA0Mgy/R5GydeXYsdU1caSGLT58r44v6EoPsxPckE= Subject key identifier: 9A:1F:BF:76:0C:3A:2C:3B:F2:97:37:E0:B4:3E:D7:54:F4:8F:BA:24 Certificate issuer: /CN=71F76FA07735F685991FC882C885E21EFBB161BC Certificate serial: 66 Authority key identifier: 71:F7:6F:A0:77:35:F6:85:99:1F:C8:82:C8:85:E2:1E:FB:B1:61:BC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/mh-_dgw6LDvylzfgtD7XVPSPuiQ.roa Signing time: Thu 01 May 2025 01:34:02 +0000 ROA not before: Thu 01 May 2025 01:34:02 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 0 IP address blocks: 101.203.76.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 13:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71F76FA07735F685991FC882C885E21EFBB161BC Validity Not Before: May 1 01:34:02 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=9A1FBF760C3A2C3BF29737E0B43ED754F48FBA24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4b:9d:a1:2a:55:7d:14:c3:1e:a4:f7:d9:db: 74:b4:11:67:6a:c9:07:7b:0b:45:78:90:b5:35:63: 9e:4a:7c:af:f4:f6:25:39:48:c8:c9:da:da:fe:ea: 0f:0e:98:3f:2e:ab:a2:e3:af:06:96:73:53:5e:c2: 5b:a5:22:d2:b3:3f:0b:fc:9f:97:38:95:99:02:92: 50:de:23:1a:9d:61:38:f3:51:33:0e:c0:3f:77:82: 30:b0:7a:a6:b4:db:59:85:ba:17:18:b7:ae:83:8c: 48:bc:be:32:42:d3:a1:77:13:3a:53:4d:a1:a1:74: 2a:f7:8f:e9:ad:52:ff:14:ac:63:12:ba:cc:3f:a2: 00:2f:ab:6e:e0:c2:7f:7c:96:70:25:e6:69:55:4c: ae:ea:64:60:a1:80:01:c5:a7:67:14:3f:02:62:3e: 73:57:f4:b1:d0:29:b4:43:df:58:4d:3b:3d:bf:b7: 50:54:7e:dc:62:10:a7:7f:78:b2:8e:a5:54:b8:7a: 81:b7:82:6b:33:5d:ae:ef:ad:5d:11:b7:65:f0:f8: 07:75:ae:3e:51:e6:55:61:83:d4:cd:1d:af:f9:9d: 23:6b:90:5b:d3:6c:4f:aa:2a:8f:75:bb:bc:81:ac: d2:c1:a8:92:c3:36:97:c4:7b:87:2a:ee:15:1e:98: 6e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:1F:BF:76:0C:3A:2C:3B:F2:97:37:E0:B4:3E:D7:54:F4:8F:BA:24 X509v3 Authority Key Identifier: keyid:71:F7:6F:A0:77:35:F6:85:99:1F:C8:82:C8:85:E2:1E:FB:B1:61:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/cfdvoHc19oWZH8iCyIXiHvuxYbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cfdvoHc19oWZH8iCyIXiHvuxYbw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/597/mh-_dgw6LDvylzfgtD7XVPSPuiQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.203.76.0/24 Signature Algorithm: sha256WithRSAEncryption 50:f6:7d:89:f7:ec:09:8c:4f:a1:81:71:d9:39:df:8e:d8:c1: 49:9b:52:d9:84:e4:64:e3:25:ca:18:6b:6f:64:5f:0c:59:02: 8d:0b:79:bf:af:91:87:e7:c9:08:46:c1:3e:19:2d:02:b2:9f: c9:fb:b7:8c:86:82:13:9b:62:55:21:2e:54:5a:91:fc:ab:45: 2a:c6:49:e5:33:6a:71:99:bd:d9:fd:17:a6:bf:ec:19:d4:ca: 33:9b:d0:df:05:33:71:f9:be:c4:66:f2:83:22:61:ee:d0:07: 75:87:d7:f7:79:25:f6:69:3d:63:93:80:9b:c1:7d:4a:76:77: 2e:78:e4:e2:55:f9:04:7e:a5:5c:c3:c7:b8:35:f5:41:22:a4: ae:74:66:24:38:34:51:d5:09:2b:a6:78:78:93:9a:af:6c:3d: ef:bf:eb:cc:d1:4c:c8:c2:1e:38:37:ea:cf:62:89:d6:82:28: f0:ab:1b:a6:02:32:81:ef:8a:5b:0f:26:8f:51:29:f3:6f:3a: 9f:9c:47:8d:dd:64:d9:64:6d:e6:9b:ef:be:ce:13:a7:62:34: ba:04:5e:8b:6d:0b:7f:c9:c4:43:4c:63:88:29:d6:f6:e9:77: fd:e7:b5:f2:69:5d:3c:9e:c6:5d:74:f0:07:92:5d:45:ce:00: 80:94:1c:46 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MUY3 NkZBMDc3MzVGNjg1OTkxRkM4ODJDODg1RTIxRUZCQjE2MUJDMB4XDTI1MDUwMTAx MzQwMloXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoOUExRkJGNzYwQzNBMkMz QkYyOTczN0UwQjQzRUQ3NTRGNDhGQkEyNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM1LnaEqVX0Uwx6k99nbdLQRZ2rJB3sLRXiQtTVjnkp8r/T2JTlI yMna2v7qDw6YPy6rouOvBpZzU17CW6Ui0rM/C/yflziVmQKSUN4jGp1hOPNRMw7A P3eCMLB6prTbWYW6Fxi3roOMSLy+MkLToXcTOlNNoaF0KveP6a1S/xSsYxK6zD+i AC+rbuDCf3yWcCXmaVVMrupkYKGAAcWnZxQ/AmI+c1f0sdAptEPfWE07Pb+3UFR+ 3GIQp394so6lVLh6gbeCazNdru+tXRG3ZfD4B3WuPlHmVWGD1M0dr/mdI2uQW9Ns T6oqj3W7vIGs0sGoksM2l8R7hyruFR6YbiECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSaH792DDosO/KXN+C0PtdU9I+6JDAfBgNVHSMEGDAWgBRx92+gdzX2hZkfyILI heIe+7FhvDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTk3L2NmZHZvSGMxOW9XWkg4aUN5SVhpSHZ1eFlidy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2NmZHZvSGMxOW9XWkg4aUN5SVhpSHZ1 eFlidy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81OTcvbWgtX2RndzZMRHZ5bHpmZ3REN1hWUFNQdWlRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGXLTDANBgkqhkiG9w0BAQsFAAOCAQEAUPZ9iffsCYxPoYFx2TnfjtjBSZtS 2YTkZOMlyhhrb2RfDFkCjQt5v6+Rh+fJCEbBPhktArKfyfu3jIaCE5tiVSEuVFqR /KtFKsZJ5TNqcZm92f0Xpr/sGdTKM5vQ3wUzcfm+xGbygyJh7tAHdYfX93kl9mk9 Y5OAm8F9SnZ3Lnjk4lX5BH6lXMPHuDX1QSKkrnRmJDg0UdUJK6Z4eJOar2w977/r zNFMyMIeODfqz2KJ1oIo8KsbpgIyge+KWw8mj1Ep8286n5xHjd1k2WRt5pvvvs4T p2I0ugRei20Lf8nEQ0xjiCnW9ul3/ee18mldPJ7GXXTwB5JdRc4AgJQcRg== -----END CERTIFICATE-----Generated at Sun May 18 15:23:28 2025 by rpki-client