$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/2hJLBVGKYAAh-oKAugxAfxEWunE.roa File: 2hJLBVGKYAAh-oKAugxAfxEWunE.roa (raw, json) Hash identifier: 4KZOq+U37OIQEk5/cKlBL9L2Gft+aybAqu3rKYMJaFo= Subject key identifier: DA:12:4B:05:51:8A:60:00:21:FA:82:80:BA:0C:40:7F:11:16:BA:71 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01BF Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/2hJLBVGKYAAh-oKAugxAfxEWunE.roa Signing time: Tue 01 Jul 2025 01:34:40 +0000 ROA not before: Tue 01 Jul 2025 01:34:40 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2497 IP address blocks: 118.151.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Jul 1 01:34:40 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=DA124B05518A600021FA8280BA0C407F1116BA71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d2:88:00:d2:3f:8d:c8:94:3a:fa:fc:43:a3: 54:65:3f:72:54:0b:2e:16:1b:2f:e5:67:71:ed:36: 38:9b:ca:c8:ca:ad:41:48:d6:14:01:7c:03:23:e8: 41:e8:93:45:21:92:79:0b:0e:4e:2c:24:49:ca:9a: f5:1c:b8:f3:3f:c7:24:f1:79:5b:14:06:0b:e8:30: 53:da:53:93:84:62:b8:36:a5:74:48:22:98:56:18: 2c:8e:44:53:18:49:49:04:70:29:7c:72:05:a1:45: 36:5a:ff:d3:27:8d:b5:7f:eb:3a:da:c0:0d:4d:dd: b1:f0:d2:73:80:18:45:60:6e:07:b5:fa:7c:25:1c: 44:74:24:04:1b:fb:38:1c:81:cc:8d:12:a0:27:8d: 5f:cd:10:ad:58:cd:b7:c2:8e:ca:22:6a:a2:fd:4c: f8:ad:6f:d6:40:be:0d:c8:72:4e:2c:71:e5:3a:16: 11:38:85:a2:cd:f7:bd:16:6a:8b:7d:25:53:31:1d: af:a4:4c:02:ea:0c:a3:a4:03:5f:83:57:4c:a9:0d: 37:49:6e:f2:ca:14:2a:27:d3:7b:27:2a:0e:66:28: ec:e0:70:23:ce:df:75:3f:73:94:1a:45:c9:3d:95: 59:fe:af:5b:e9:b8:19:75:ba:b0:d5:fd:cf:1b:c0: 69:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:12:4B:05:51:8A:60:00:21:FA:82:80:BA:0C:40:7F:11:16:BA:71 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/2hJLBVGKYAAh-oKAugxAfxEWunE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.151.128.0/18 Signature Algorithm: sha256WithRSAEncryption 77:a5:b6:e7:dc:bb:69:97:2f:3c:d3:07:53:bb:10:91:7e:5c: b3:dd:e3:ee:81:b8:f1:2f:a4:55:bf:44:72:7d:74:ec:e9:23: ea:f4:65:bc:16:1b:43:22:d0:1c:28:d1:3c:ed:ed:9b:4b:c9: 60:7d:5a:55:8e:7f:6a:4f:83:dd:72:0d:8b:3a:29:a8:bb:58: 07:8e:a8:18:ec:8c:e9:d5:a9:3c:21:29:cf:e8:52:b1:de:45: 14:62:22:36:9e:cf:ad:cf:86:b7:d0:84:7a:f0:0a:f7:50:64: 1c:5a:fd:39:4a:57:26:25:aa:46:36:da:5d:d1:3c:2d:9a:9d: b3:f8:7f:e8:42:c4:8d:3b:0d:ea:77:39:b4:52:1c:41:2f:65: 99:e4:cf:c5:b3:65:ed:26:67:04:58:22:24:87:b7:90:d4:3f: e0:d9:2d:06:85:79:6e:99:ca:d8:e2:27:25:1e:e7:4b:24:d9: 62:41:81:18:61:04:13:ef:86:14:b0:2f:3f:8f:ca:4d:51:47: 42:a9:1a:26:68:d8:c5:08:22:42:c9:0c:8e:09:d9:a6:8c:a1: a9:63:d6:af:26:9c:a7:b9:7b:dc:ac:38:89:c9:91:71:1a:1e: 90:5a:57:4f:bb:c3:b2:34:6e:26:a5:2c:d2:4a:51:00:b6:e6: 3a:8f:ff:33 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTA3MDEw MTM0NDBaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERBMTI0QjA1NTE4QTYw MDAyMUZBODI4MEJBMEM0MDdGMTExNkJBNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD0ogA0j+NyJQ6+vxDo1RlP3JUCy4WGy/lZ3HtNjibysjKrUFI 1hQBfAMj6EHok0UhknkLDk4sJEnKmvUcuPM/xyTxeVsUBgvoMFPaU5OEYrg2pXRI IphWGCyORFMYSUkEcCl8cgWhRTZa/9MnjbV/6zrawA1N3bHw0nOAGEVgbge1+nwl HER0JAQb+zgcgcyNEqAnjV/NEK1YzbfCjsoiaqL9TPitb9ZAvg3Ick4sceU6FhE4 haLN970Waot9JVMxHa+kTALqDKOkA1+DV0ypDTdJbvLKFCon03snKg5mKOzgcCPO 33U/c5QaRck9lVn+r1vpuBl1urDV/c8bwGkBAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQU2hJLBVGKYAAh+oKAugxAfxEWunEwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvMmhKTEJWR0tZQUFoLW9LQXVneEFmeEVXdW5FLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BnaXgDANBgkqhkiG9w0BAQsFAAOCAQEAd6W259y7aZcvPNMHU7sQkX5cs93j7oG4 8S+kVb9Ecn107Okj6vRlvBYbQyLQHCjRPO3tm0vJYH1aVY5/ak+D3XINizopqLtY B46oGOyM6dWpPCEpz+hSsd5FFGIiNp7Prc+Gt9CEevAK91BkHFr9OUpXJiWqRjba XdE8LZqds/h/6ELEjTsN6nc5tFIcQS9lmeTPxbNl7SZnBFgiJIe3kNQ/4NktBoV5 bpnK2OInJR7nSyTZYkGBGGEEE++GFLAvP4/KTVFHQqkaJmjYxQgiQskMjgnZpoyh qWPWryacp7l73Kw4icmRcRoekFpXT7vDsjRuJqUs0kpRALbmOo//Mw== -----END CERTIFICATE-----Generated at Thu Jul 3 12:29:48 2025 by rpki-client