$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/ccMndzJgtkTXfhMpOCs75U7IW90.roa File: ccMndzJgtkTXfhMpOCs75U7IW90.roa (raw, json) Hash identifier: yTJL/Uncs0Sbvbafe1cZL24s4eAxvGIlhtovgco/dzE= Subject key identifier: 71:C3:27:77:32:60:B6:44:D7:7E:13:29:38:2B:3B:E5:4E:C8:5B:DD Certificate issuer: /CN=296966DD720C30575F62D8FD4149458A90AACAA4 Certificate serial: 81 Authority key identifier: 29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/ccMndzJgtkTXfhMpOCs75U7IW90.roa Signing time: Tue 01 Jul 2025 01:34:33 +0000 ROA not before: Tue 01 Jul 2025 01:34:33 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 2497 IP address blocks: 157.65.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=296966DD720C30575F62D8FD4149458A90AACAA4 Validity Not Before: Jul 1 01:34:33 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=71C327773260B644D77E1329382B3BE54EC85BDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f5:9a:5b:b8:3c:ca:9a:f2:af:8e:3d:54:57: f1:9f:ff:ed:65:28:a3:93:41:43:72:e1:4c:3c:f1: 35:36:49:47:10:70:1a:77:1f:ed:eb:c2:2a:c0:4f: 4f:1f:ae:0d:95:17:d8:23:f2:d3:a6:99:09:3f:d4: 95:c5:6f:0d:0f:58:6f:86:73:68:8d:31:b3:63:3a: f7:6a:7e:d0:de:1e:5f:23:cb:7f:73:8f:ac:f8:f0: a6:9d:1b:12:49:c4:32:82:02:dc:f6:87:5e:be:74: f3:b5:81:21:c1:7f:46:b2:79:37:b5:0e:b8:43:99: fc:95:cb:50:79:a1:80:ce:b6:d6:58:ab:98:79:cb: 2c:90:05:04:4e:b4:61:64:93:c6:cd:0e:34:39:9f: b8:16:58:33:fe:63:25:b4:b1:ce:f4:ec:17:a8:c6: b1:96:49:39:e9:af:db:fd:2f:3c:5a:da:40:d0:34: 5b:61:c2:02:1d:62:96:bc:54:81:2a:28:5e:31:71: dc:d2:f8:e6:8d:44:52:46:2e:77:95:80:8e:d3:bf: ef:f1:86:11:ec:15:86:b9:98:53:4e:92:04:25:4c: a6:d5:ae:f0:cd:28:a7:1b:15:2f:5c:ff:23:4c:a1: 5f:59:f2:76:d4:92:97:36:48:40:bc:25:7d:97:5f: f7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C3:27:77:32:60:B6:44:D7:7E:13:29:38:2B:3B:E5:4E:C8:5B:DD X509v3 Authority Key Identifier: keyid:29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/ccMndzJgtkTXfhMpOCs75U7IW90.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.192.0/21 Signature Algorithm: sha256WithRSAEncryption a4:09:42:e9:dd:78:34:7b:c7:68:24:a3:5f:19:80:c9:7a:77: fc:cc:f1:dc:df:1f:7b:c0:ff:b6:8e:6f:6e:a5:06:b8:9b:8b: 82:7b:dd:e5:5c:5c:18:71:fb:48:7f:dd:a7:d3:fb:0a:f6:11: 15:0f:1a:22:3d:3a:a7:cc:e4:10:04:81:ad:99:0b:a9:40:e2: 9c:1c:46:f7:54:d6:1f:db:db:df:00:66:6f:7e:b0:37:e4:a5: d7:68:53:16:b9:c6:5d:cf:f5:36:ce:1f:aa:ac:7c:89:7d:f6: 87:3d:e4:b1:15:8d:41:4a:bb:b5:05:70:c3:37:8e:d2:f4:3f: 8a:e8:6c:df:96:f8:18:b7:d9:bf:4f:5d:cb:d8:7f:a8:0f:4f: 35:7c:7d:99:e1:0e:10:40:2c:76:60:cb:c0:8d:d6:9f:1b:de: 42:05:b0:03:52:b8:b0:1d:9a:f7:39:66:d3:bb:ca:31:c5:c7: 7b:33:92:4e:f0:18:af:1a:86:66:d3:d5:bd:5f:5f:d8:f7:41: 35:98:05:ca:8a:1d:ae:99:32:97:d3:9c:b0:70:f0:38:32:14: 88:67:bd:da:a1:13:16:43:d3:69:58:88:36:c9:40:7b:2a:b3: 37:ba:2d:d6:9c:da:2b:9a:77:08:69:27:4e:94:20:41:4d:b8: d8:3c:66:79 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk2 OTY2REQ3MjBDMzA1NzVGNjJEOEZENDE0OTQ1OEE5MEFBQ0FBNDAeFw0yNTA3MDEw MTM0MzNaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcxQzMyNzc3MzI2MEI2 NDRENzdFMTMyOTM4MkIzQkU1NEVDODVCREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDp9ZpbuDzKmvKvjj1UV/Gf/+1lKKOTQUNy4Uw88TU2SUcQcBp3 H+3rwirAT08frg2VF9gj8tOmmQk/1JXFbw0PWG+Gc2iNMbNjOvdqftDeHl8jy39z j6z48KadGxJJxDKCAtz2h16+dPO1gSHBf0ayeTe1DrhDmfyVy1B5oYDOttZYq5h5 yyyQBQROtGFkk8bNDjQ5n7gWWDP+YyW0sc707BeoxrGWSTnpr9v9Lzxa2kDQNFth wgIdYpa8VIEqKF4xcdzS+OaNRFJGLneVgI7Tv+/xhhHsFYa5mFNOkgQlTKbVrvDN KKcbFS9c/yNMoV9Z8nbUkpc2SEC8JX2XX/fnAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUccMndzJgtkTXfhMpOCs75U7IW90wHwYDVR0jBBgwFoAUKWlm3XIMMFdfYtj9 QUlFipCqyqQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1dsbTNYSU1NRmRmWXRqOVFVbEZpcENxeXFRLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1dsbTNYSU1NRmRmWXRqOVFVbEZpcENx eXFRLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvY2NNbmR6Smd0a1RYZmhNcE9Dczc1VTdJVzkwLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME A51BwDANBgkqhkiG9w0BAQsFAAOCAQEApAlC6d14NHvHaCSjXxmAyXp3/Mzx3N8f e8D/to5vbqUGuJuLgnvd5VxcGHH7SH/dp9P7CvYRFQ8aIj06p8zkEASBrZkLqUDi nBxG91TWH9vb3wBmb36wN+Sl12hTFrnGXc/1Ns4fqqx8iX32hz3ksRWNQUq7tQVw wzeO0vQ/iuhs35b4GLfZv09dy9h/qA9PNXx9meEOEEAsdmDLwI3WnxveQgWwA1K4 sB2a9zlm07vKMcXHezOSTvAYrxqGZtPVvV9f2PdBNZgFyoodrpkyl9OcsHDwODIU iGe92qETFkPTaViINslAeyqzN7ot1pzaK5p3CGknTpQgQU242DxmeQ== -----END CERTIFICATE-----Generated at Thu Jul 3 12:16:20 2025 by rpki-client