$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/602/g-O8kYvIduF8rwK4vL-z0OhkR0I.roa File: g-O8kYvIduF8rwK4vL-z0OhkR0I.roa (raw, json) Hash identifier: bcH3itDkCSqs5dgf1mGoo7soM/CfzP/vVfc/sor/8pE= Subject key identifier: 83:E3:BC:91:8B:C8:76:E1:7C:AF:02:B8:BC:BF:B3:D0:E8:64:47:42 Certificate issuer: /CN=4EFF1AB6EADA273BA066DB0F77B79D6A0D901542 Certificate serial: 7E Authority key identifier: 4E:FF:1A:B6:EA:DA:27:3B:A0:66:DB:0F:77:B7:9D:6A:0D:90:15:42 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/g-O8kYvIduF8rwK4vL-z0OhkR0I.roa Signing time: Thu 01 May 2025 01:32:29 +0000 ROA not before: Thu 01 May 2025 01:32:29 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 17675 IP address blocks: 203.169.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 15:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EFF1AB6EADA273BA066DB0F77B79D6A0D901542 Validity Not Before: May 1 01:32:29 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=83E3BC918BC876E17CAF02B8BCBFB3D0E8644742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7b:37:a0:01:b3:75:53:7a:aa:05:ae:69:96: 36:c0:00:78:2e:b4:87:66:a2:cb:6c:5b:85:c5:66: 94:68:1e:ad:7b:c4:b5:57:ce:3e:fc:ba:bd:dd:45: 59:a2:51:04:ab:ca:53:dc:47:db:69:e1:1e:d4:70: 30:28:af:ee:0a:cf:26:19:a6:62:c3:1e:bd:6e:5c: 17:53:6d:dd:0a:85:a1:dc:40:f8:6e:36:bd:5a:71: bf:37:e9:33:96:a4:44:3f:9c:c5:12:67:cb:17:b8: 4a:66:48:76:11:7c:a3:e6:09:33:f6:19:27:22:c2: 24:ed:14:d7:63:c2:80:3f:8f:66:2f:48:8f:bc:01: 2e:5c:96:a8:22:5f:9d:01:87:53:c2:8c:22:c7:ab: df:56:f9:6a:25:37:ec:f8:7f:1a:64:76:cc:f5:04: 4a:d6:11:0e:a8:0b:69:3b:5f:51:ac:5e:58:ed:3e: 6c:24:1f:a5:c4:84:95:cf:31:dd:6b:38:4c:34:5a: a6:88:9d:e4:a5:f8:92:0a:1e:52:d7:3a:eb:c2:cd: 85:5d:72:1b:8a:95:e5:73:22:ab:07:86:b7:36:c7: d9:79:35:78:16:1f:9a:9c:47:54:6e:20:39:84:c8: 3a:55:f5:ab:51:10:24:0d:2e:f8:30:62:f9:b3:16: d3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E3:BC:91:8B:C8:76:E1:7C:AF:02:B8:BC:BF:B3:D0:E8:64:47:42 X509v3 Authority Key Identifier: keyid:4E:FF:1A:B6:EA:DA:27:3B:A0:66:DB:0F:77:B7:9D:6A:0D:90:15:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/g-O8kYvIduF8rwK4vL-z0OhkR0I.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.169.8.0/21 Signature Algorithm: sha256WithRSAEncryption 39:03:78:b8:7c:46:22:b8:00:5b:7f:83:77:83:77:ae:01:4f: 6d:8a:01:93:83:0c:ba:c6:b3:fb:98:78:d1:b3:fe:7e:7e:78: 70:53:79:12:d5:d9:0e:73:03:4f:b3:2f:17:04:59:11:1d:ee: 6e:e3:44:93:cf:01:40:3d:ce:cc:83:96:72:56:2e:7b:77:d7: 39:33:3c:bb:bc:57:6d:d4:eb:d2:b8:a2:73:e3:0b:10:1c:f8: d7:e3:64:84:4e:7f:69:98:2b:8d:be:8d:60:8a:00:d6:2f:4c: 9b:c3:5a:5e:47:3c:cb:5f:a1:7b:a6:c9:59:88:86:b7:aa:2b: 89:ff:b3:50:d7:cf:6d:b6:1d:ac:98:07:c5:82:2f:e7:cf:84: 4b:1d:97:e6:e3:e5:d2:e7:60:5a:72:af:68:23:9c:a0:3a:95: 5d:37:87:9b:4a:1f:32:25:f1:af:06:61:34:7c:e6:22:d7:03: 91:11:41:9b:c0:f5:ef:4c:2a:84:47:fc:e1:90:90:c9:dd:44: 1b:56:30:d4:f4:21:20:39:5b:81:07:d2:53:83:4e:01:54:3d: 41:24:72:18:40:98:e6:18:f0:c2:50:0d:79:b9:00:ed:a2:13: a9:17:54:e5:a8:6d:d2:4d:db:c5:e6:2b:6a:dc:72:58:6d:13: bc:4b:21:b1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RUZG MUFCNkVBREEyNzNCQTA2NkRCMEY3N0I3OUQ2QTBEOTAxNTQyMB4XDTI1MDUwMTAx MzIyOVoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoODNFM0JDOTE4QkM4NzZF MTdDQUYwMkI4QkNCRkIzRDBFODY0NDc0MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMR7N6ABs3VTeqoFrmmWNsAAeC60h2aiy2xbhcVmlGgerXvEtVfO Pvy6vd1FWaJRBKvKU9xH22nhHtRwMCiv7grPJhmmYsMevW5cF1Nt3QqFodxA+G42 vVpxvzfpM5akRD+cxRJnyxe4SmZIdhF8o+YJM/YZJyLCJO0U12PCgD+PZi9Ij7wB LlyWqCJfnQGHU8KMIser31b5aiU37Ph/GmR2zPUEStYRDqgLaTtfUaxeWO0+bCQf pcSElc8x3Ws4TDRapoid5KX4kgoeUtc668LNhV1yG4qV5XMiqweGtzbH2Xk1eBYf mpxHVG4gOYTIOlX1q1EQJA0u+DBi+bMW0y0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSD47yRi8h24XyvAri8v7PQ6GRHQjAfBgNVHSMEGDAWgBRO/xq26tonO6Bm2w93 t51qDZAVQjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjAyL1R2OGF0dXJhSnp1Z1p0c1BkN2VkYWcyUUZVSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1R2OGF0dXJhSnp1Z1p0c1BkN2VkYWcy UUZVSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82MDIvZy1POGtZdklkdUY4cndLNHZMLXowT2hrUjBJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8upCDANBgkqhkiG9w0BAQsFAAOCAQEAOQN4uHxGIrgAW3+Dd4N3rgFPbYoB k4MMusaz+5h40bP+fn54cFN5EtXZDnMDT7MvFwRZER3ubuNEk88BQD3OzIOWclYu e3fXOTM8u7xXbdTr0riic+MLEBz41+NkhE5/aZgrjb6NYIoA1i9Mm8NaXkc8y1+h e6bJWYiGt6orif+zUNfPbbYdrJgHxYIv58+ESx2X5uPl0udgWnKvaCOcoDqVXTeH m0ofMiXxrwZhNHzmItcDkRFBm8D170wqhEf84ZCQyd1EG1Yw1PQhIDlbgQfSU4NO AVQ9QSRyGECY5hjwwlANebkA7aITqRdU5aht0k3bxeYratxyWG0TvEshsQ== -----END CERTIFICATE-----Generated at Sun May 18 17:23:40 2025 by rpki-client