$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/cO0UyFKQl_JU7dCZIo1DXQg2wz0.roa File: cO0UyFKQl_JU7dCZIo1DXQg2wz0.roa (raw, json) Hash identifier: iX0nY86JVw+fle9Tbl/kRT5T8CaTJqYv4o0sda/gykc= Subject key identifier: 70:ED:14:C8:52:90:97:F2:54:ED:D0:99:22:8D:43:5D:08:36:C3:3D Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 01BA Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/cO0UyFKQl_JU7dCZIo1DXQg2wz0.roa Signing time: Tue 01 Jul 2025 01:34:37 +0000 ROA not before: Tue 01 Jul 2025 01:34:37 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2497 IP address blocks: 103.2.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Jul 1 01:34:37 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=70ED14C8529097F254EDD099228D435D0836C33D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ca:d3:fa:9e:2b:74:57:67:51:f8:b4:dc:b4: a7:3a:4c:74:44:1d:70:6c:28:de:88:e3:3c:84:60: 3d:8c:3f:d1:6e:81:fc:87:bd:26:0f:3e:2d:5e:21: 3d:e5:9d:a1:d8:dc:b2:ba:50:a8:b9:54:54:c8:c4: 17:60:11:92:ff:ab:e9:ae:59:7c:e5:59:9d:74:02: 8c:7e:08:7b:94:43:81:f8:a2:ba:25:7a:60:cc:8f: 82:b5:b8:e4:58:c8:79:0d:ca:bc:f1:0e:14:b2:0d: c8:20:a6:a1:d4:22:d6:da:c4:c4:79:0a:90:b2:39: 5a:21:33:78:28:03:5b:ff:24:6f:46:fa:37:a1:76: 2d:75:42:ca:1b:df:eb:4d:35:24:08:c0:a5:32:45: 4c:12:ec:b5:26:c2:43:e8:b9:8b:f2:5d:f2:3d:10: 30:50:5a:ed:14:bd:75:ca:7b:b4:7a:2a:f7:4c:77: a1:fb:03:7e:7a:52:16:05:a0:55:b8:38:de:75:1d: 3e:5e:b4:00:10:90:7e:29:3d:19:7d:27:9f:41:a2: 0d:d3:c6:39:a1:48:88:b3:05:fa:0a:5a:8c:03:30: d3:d4:00:04:44:3f:6f:00:8d:c0:19:0d:bc:24:78: ce:0e:d6:75:06:1f:b8:40:d0:22:89:dc:2f:7c:26: 5a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:ED:14:C8:52:90:97:F2:54:ED:D0:99:22:8D:43:5D:08:36:C3:3D X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/cO0UyFKQl_JU7dCZIo1DXQg2wz0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.57.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:21:bf:ff:9b:d7:3a:a2:9e:ce:d7:46:7a:41:3e:4b:86:a7: da:99:2b:91:4b:e0:27:81:69:e1:03:8b:6c:0a:19:a2:0c:a5: a8:87:1b:20:1f:4d:d8:d3:b2:a7:c7:94:5f:98:23:5a:f4:08: 4f:e5:e0:0d:dd:6d:40:3e:c0:0f:15:0e:09:71:30:e2:e4:f5: 62:a9:19:3e:4a:94:b8:1e:c2:6f:5f:9a:6b:eb:72:31:e5:f2: 12:dc:a4:a6:f3:c7:1a:3b:60:20:3e:b0:d4:1a:19:38:01:d9: c8:a5:a3:91:98:46:a2:c8:7a:bc:7d:ea:dc:c2:c9:f2:da:52: 02:fd:b5:bf:9b:e5:2a:cd:50:b6:ff:87:91:2e:f1:e5:c0:84: ba:fd:58:70:57:48:52:68:46:18:37:95:e0:72:c5:e2:d5:da: af:83:4c:ae:93:e9:e5:39:5e:9d:e7:f7:77:67:8a:8d:7f:bb: 0d:d2:a9:32:f2:ae:0c:45:47:07:01:22:a9:16:54:53:78:22: c9:07:f8:e2:b0:ed:f5:e9:d3:28:20:7f:6b:9c:c8:af:8c:b5: 74:89:60:ee:83:6c:b2:1f:d8:70:59:14:d2:2a:4a:6d:17:0c: 48:a4:e2:a8:ce:a6:c1:cb:b4:94:a0:44:ed:bb:c3:28:81:99: bd:c2:a9:c3 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNTA3MDEw MTM0MzdaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcwRUQxNEM4NTI5MDk3 RjI1NEVERDA5OTIyOEQ0MzVEMDgzNkMzM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClytP6nit0V2dR+LTctKc6THREHXBsKN6I4zyEYD2MP9FugfyH vSYPPi1eIT3lnaHY3LK6UKi5VFTIxBdgEZL/q+muWXzlWZ10Aox+CHuUQ4H4orol emDMj4K1uORYyHkNyrzxDhSyDcggpqHUItbaxMR5CpCyOVohM3goA1v/JG9G+jeh di11Qsob3+tNNSQIwKUyRUwS7LUmwkPouYvyXfI9EDBQWu0UvXXKe7R6KvdMd6H7 A356UhYFoFW4ON51HT5etAAQkH4pPRl9J59Bog3TxjmhSIizBfoKWowDMNPUAARE P28AjcAZDbwkeM4O1nUGH7hA0CKJ3C98JloZAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUcO0UyFKQl/JU7dCZIo1DXQg2wz0wHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvY08wVXlGS1FsX0pVN2RDWklvMURYUWcyd3owLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGcCOTANBgkqhkiG9w0BAQsFAAOCAQEADyG//5vXOqKeztdGekE+S4an2pkrkUvg J4Fp4QOLbAoZogylqIcbIB9N2NOyp8eUX5gjWvQIT+XgDd1tQD7ADxUOCXEw4uT1 YqkZPkqUuB7Cb1+aa+tyMeXyEtykpvPHGjtgID6w1BoZOAHZyKWjkZhGosh6vH3q 3MLJ8tpSAv21v5vlKs1Qtv+HkS7x5cCEuv1YcFdIUmhGGDeV4HLF4tXar4NMrpPp 5Tlenef3d2eKjX+7DdKpMvKuDEVHBwEiqRZUU3giyQf44rDt9enTKCB/a5zIr4y1 dIlg7oNssh/YcFkU0ipKbRcMSKTiqM6mwcu0lKBE7bvDKIGZvcKpww== -----END CERTIFICATE-----Generated at Thu Jul 3 08:06:15 2025 by rpki-client