$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/Onb-wfLmcUQ9YQZniIneDKQzZzY.roa File: Onb-wfLmcUQ9YQZniIneDKQzZzY.roa (raw, json) Hash identifier: jG53no3JChbeV4uo9Iyj73jiJxTDWdZdb1MZs8fyaic= Subject key identifier: 3A:76:FE:C1:F2:E6:71:44:3D:61:06:67:88:89:DE:0C:A4:33:67:36 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01DD Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/Onb-wfLmcUQ9YQZniIneDKQzZzY.roa Signing time: Tue 01 Jul 2025 01:42:33 +0000 ROA not before: Tue 01 Jul 2025 01:42:33 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2497 IP address blocks: 220.210.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Jul 1 01:42:33 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=3A76FEC1F2E671443D6106678889DE0CA4336736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9c:49:fa:c1:f1:a8:76:e7:82:40:67:2b:b3: c0:68:29:87:cf:c7:cd:d0:8f:be:dd:60:60:1a:9c: c5:c9:a9:a8:e2:6d:fe:0f:8b:2f:a5:d6:94:39:3d: e0:ac:09:4d:2e:d6:87:26:85:2f:6c:b7:ce:68:8f: 69:04:fe:8b:33:6f:dd:a7:39:55:10:b5:29:c0:58: 0a:bb:f4:5b:bc:c2:6d:e1:f0:5f:54:c9:7c:22:da: ad:50:46:fe:09:4c:6c:be:50:b7:39:14:a2:9a:38: 55:2e:23:8c:cb:02:c7:68:c9:8b:de:b6:e9:2d:42: bb:3b:a9:1e:8e:03:8f:12:01:24:e2:35:85:d7:c6: e2:37:01:b6:7c:bc:34:d6:2b:11:ca:9f:76:19:8d: f5:3e:9d:2e:6d:71:65:5f:3a:e9:cf:a1:22:d6:d8: 08:c0:63:27:3f:2c:98:d4:dc:08:89:0a:f2:d6:20: 4d:30:99:26:65:34:81:78:fc:a4:86:06:86:be:04: 98:2c:6f:0b:ce:76:75:6a:4d:c0:76:ae:7c:a2:38: d0:ce:10:87:72:5f:bf:af:14:10:4f:7c:b0:1b:1b: 72:8f:9e:be:6f:16:f9:26:f1:18:2d:8b:78:34:59: ff:5d:68:93:1e:9b:2d:f9:cd:f7:cc:30:5c:5b:f2: ff:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:76:FE:C1:F2:E6:71:44:3D:61:06:67:88:89:DE:0C:A4:33:67:36 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/Onb-wfLmcUQ9YQZniIneDKQzZzY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.128.0/18 Signature Algorithm: sha256WithRSAEncryption 62:9b:b6:e5:b0:e4:b9:2d:13:53:22:1c:c0:43:bb:43:c2:e7: 40:38:99:db:5e:b6:5a:1f:1e:d3:13:18:19:5b:35:3c:07:54: cb:5d:86:d7:d8:52:16:f7:5c:20:a2:95:fd:9e:0e:0a:cb:f8: 76:d9:99:d9:77:16:77:74:a0:cb:44:bb:e1:53:cf:4c:14:73: 33:dd:62:4c:70:4f:22:72:04:3a:bb:d0:b2:2d:b2:80:0b:3a: aa:4d:ad:b7:4a:4e:44:d8:7e:19:8f:f4:26:8f:88:a1:bd:1b: d4:5c:09:3c:30:56:6f:7e:4f:5d:a0:04:07:fd:8c:42:71:c6: 70:b0:2b:46:60:a6:a3:ec:95:69:0e:56:b5:30:0e:9a:bd:f8: 67:23:fb:cb:92:1e:dc:ab:46:6d:83:60:87:4b:fa:b9:ce:7c: 4f:07:b5:41:61:fd:c2:44:40:52:a9:e2:64:7a:72:92:03:7a: 99:25:ce:08:7d:ff:04:dd:91:e5:07:fa:0f:8a:9f:82:3b:b9: e2:20:cf:cc:a2:e2:b2:bd:e7:5b:b3:2b:a1:23:c2:52:c8:94: 41:e8:ec:39:62:aa:55:19:99:fc:81:85:32:f7:2a:d4:e2:66: 40:d4:05:7d:0a:46:38:25:08:df:4d:b2:6e:59:0d:41:d6:08: 0a:91:71:08 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTA3MDEw MTQyMzNaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNBNzZGRUMxRjJFNjcx NDQzRDYxMDY2Nzg4ODlERTBDQTQzMzY3MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOnEn6wfGodueCQGcrs8BoKYfPx83Qj77dYGAanMXJqajibf4P iy+l1pQ5PeCsCU0u1ocmhS9st85oj2kE/oszb92nOVUQtSnAWAq79Fu8wm3h8F9U yXwi2q1QRv4JTGy+ULc5FKKaOFUuI4zLAsdoyYvetuktQrs7qR6OA48SASTiNYXX xuI3AbZ8vDTWKxHKn3YZjfU+nS5tcWVfOunPoSLW2AjAYyc/LJjU3AiJCvLWIE0w mSZlNIF4/KSGBoa+BJgsbwvOdnVqTcB2rnyiONDOEIdyX7+vFBBPfLAbG3KPnr5v Fvkm8Rgti3g0Wf9daJMemy35zffMMFxb8v+vAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUOnb+wfLmcUQ9YQZniIneDKQzZzYwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvT25iLXdmTG1jVVE5WVFabmlJbmVES1F6WnpZLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BtzSgDANBgkqhkiG9w0BAQsFAAOCAQEAYpu25bDkuS0TUyIcwEO7Q8LnQDiZ2162 Wh8e0xMYGVs1PAdUy12G19hSFvdcIKKV/Z4OCsv4dtmZ2XcWd3Sgy0S74VPPTBRz M91iTHBPInIEOrvQsi2ygAs6qk2tt0pORNh+GY/0Jo+Iob0b1FwJPDBWb35PXaAE B/2MQnHGcLArRmCmo+yVaQ5WtTAOmr34ZyP7y5Ie3KtGbYNgh0v6uc58Twe1QWH9 wkRAUqniZHpykgN6mSXOCH3/BN2R5Qf6D4qfgju54iDPzKLisr3nW7MroSPCUsiU QejsOWKqVRmZ/IGFMvcq1OJmQNQFfQpGOCUI302yblkNQdYICpFxCA== -----END CERTIFICATE-----Generated at Fri Jul 4 01:39:09 2025 by rpki-client