$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/BjmFOzPR5DgjNZZc5TVIdMxXpTM.roa File: BjmFOzPR5DgjNZZc5TVIdMxXpTM.roa (raw, json) Hash identifier: nnc/qlp7eDCeOU2g6hDtDk9zveq/RiEyMkDd6a9wzU0= Subject key identifier: 06:39:85:3B:33:D1:E4:38:23:35:96:5C:E5:35:48:74:CC:57:A5:33 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01DC Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/BjmFOzPR5DgjNZZc5TVIdMxXpTM.roa Signing time: Tue 01 Jul 2025 01:42:33 +0000 ROA not before: Tue 01 Jul 2025 01:42:33 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2497 IP address blocks: 210.173.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Jul 1 01:42:33 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=0639853B33D1E4382335965CE5354874CC57A533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:00:b6:fa:7b:6e:da:8a:b2:f4:25:2d:f1:9d: 47:69:8e:07:96:43:ab:34:7f:96:bb:86:6a:d5:83: 51:67:89:dd:9b:bd:43:38:b3:fa:ce:38:cc:79:95: 4e:08:23:37:6d:09:f5:16:c8:8f:ba:5d:7a:9f:f5: 24:13:84:7f:62:ca:7b:de:a1:d7:64:5d:27:73:09: f0:35:d4:70:b5:db:34:67:58:4c:d4:d7:f6:2d:f8: 54:38:7e:7a:5d:91:f4:0f:e2:22:f9:98:6c:ca:10: dd:b7:cb:61:7c:43:2f:66:cc:d3:79:cb:df:a7:05: 0f:02:28:ef:bb:2b:07:e4:e8:41:47:ac:88:6a:bf: 50:f3:25:c1:2f:38:d9:a3:03:23:34:ef:23:0a:1f: a4:f0:c0:99:e2:89:7a:d6:b0:38:ba:86:86:4b:21: 72:6a:87:4d:e8:f8:5e:0a:57:5f:d1:53:8d:12:12: bb:a3:09:8d:56:47:7e:9e:b0:2b:14:8c:49:4e:e1: 80:63:8d:f8:49:2e:46:09:9c:10:0e:52:cc:43:18: 14:47:c5:86:ac:7e:fe:bf:88:c2:8f:9f:9a:b3:11: 79:41:1d:95:da:06:49:08:d6:d6:f0:50:21:0c:96: 82:e5:ee:3c:c9:bb:96:6e:3f:09:9d:db:6e:45:0a: 6f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:39:85:3B:33:D1:E4:38:23:35:96:5C:E5:35:48:74:CC:57:A5:33 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/BjmFOzPR5DgjNZZc5TVIdMxXpTM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.173.0.0/19 Signature Algorithm: sha256WithRSAEncryption 05:11:d6:36:21:8b:63:08:8f:19:9f:f7:a4:20:6c:bd:d0:0b: d8:2d:18:6f:9e:ca:20:10:d9:2e:69:64:de:da:df:c2:19:0c: 0b:45:b9:05:e1:0d:43:0c:ae:30:c8:40:93:58:1a:85:75:4e: 0c:36:49:af:76:b3:9c:b4:80:0d:b9:6e:18:dd:3a:9f:e9:e8: 00:e3:ce:9f:69:c6:e7:71:a4:f6:e7:d9:81:14:64:89:2a:79: 82:7e:85:fe:6c:76:9b:fe:5f:ce:57:c4:6a:99:40:95:58:f6: 79:0b:65:29:fb:d3:c8:68:ef:57:6e:4b:03:11:f4:12:14:28: ff:78:08:57:95:ab:51:59:13:fc:1f:31:b4:1d:e0:73:48:71: fb:dd:c2:95:bb:3b:ef:37:a5:b2:bc:c4:52:cc:ba:99:48:af: 24:cb:bc:0b:b5:bc:46:9c:8a:6a:cd:31:0b:70:10:48:86:61: fa:3f:34:f1:de:88:3f:00:34:d1:a8:9d:57:34:89:83:98:f9: 81:a2:4e:49:a5:01:c0:b5:0e:f7:9a:de:73:87:0a:f0:08:9e: 8c:f7:ce:52:61:91:a3:a7:09:13:7d:cc:27:61:57:34:ad:26: f8:c2:59:93:f7:48:ef:d5:61:f6:03:91:6a:f7:60:bc:21:06: 57:29:10:a8 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTA3MDEw MTQyMzNaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA2Mzk4NTNCMzNEMUU0 MzgyMzM1OTY1Q0U1MzU0ODc0Q0M1N0E1MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrALb6e27airL0JS3xnUdpjgeWQ6s0f5a7hmrVg1Fnid2bvUM4 s/rOOMx5lU4IIzdtCfUWyI+6XXqf9SQThH9iynveoddkXSdzCfA11HC12zRnWEzU 1/Yt+FQ4fnpdkfQP4iL5mGzKEN23y2F8Qy9mzNN5y9+nBQ8CKO+7Kwfk6EFHrIhq v1DzJcEvONmjAyM07yMKH6TwwJniiXrWsDi6hoZLIXJqh03o+F4KV1/RU40SEruj CY1WR36esCsUjElO4YBjjfhJLkYJnBAOUsxDGBRHxYasfv6/iMKPn5qzEXlBHZXa BkkI1tbwUCEMloLl7jzJu5ZuPwmd225FCm/rAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUBjmFOzPR5DgjNZZc5TVIdMxXpTMwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvQmptRk96UFI1RGdqTlpaYzVUVklkTXhYcFRNLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BdKtADANBgkqhkiG9w0BAQsFAAOCAQEABRHWNiGLYwiPGZ/3pCBsvdAL2C0Yb57K IBDZLmlk3trfwhkMC0W5BeENQwyuMMhAk1gahXVODDZJr3aznLSADbluGN06n+no AOPOn2nG53Gk9ufZgRRkiSp5gn6F/mx2m/5fzlfEaplAlVj2eQtlKfvTyGjvV25L AxH0EhQo/3gIV5WrUVkT/B8xtB3gc0hx+93Clbs77zelsrzEUsy6mUivJMu8C7W8 RpyKas0xC3AQSIZh+j808d6IPwA00aidVzSJg5j5gaJOSaUBwLUO95rec4cK8Aie jPfOUmGRo6cJE33MJ2FXNK0m+MJZk/dI79Vh9gORavdgvCEGVykQqA== -----END CERTIFICATE-----Generated at Thu Jul 3 12:33:37 2025 by rpki-client