$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/604/l2bLiPbDWXvLUUyFLr_k_sKs4DQ.roa File: l2bLiPbDWXvLUUyFLr_k_sKs4DQ.roa (raw, json) Hash identifier: SACLdokcLQ2oREXf2CsLe99TimjAJuduUUQW/nGj7ew= Subject key identifier: 97:66:CB:88:F6:C3:59:7B:CB:51:4C:85:2E:BF:E4:FE:C2:AC:E0:34 Certificate issuer: /CN=84F94F26AD23CBA93655AE34D806A8CE0A4C5907 Certificate serial: 37 Authority key identifier: 84:F9:4F:26:AD:23:CB:A9:36:55:AE:34:D8:06:A8:CE:0A:4C:59:07 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hPlPJq0jy6k2Va402AaozgpMWQc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/l2bLiPbDWXvLUUyFLr_k_sKs4DQ.roa Signing time: Tue 01 Jul 2025 01:32:19 +0000 ROA not before: Tue 01 Jul 2025 01:32:19 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 17682 IP address blocks: 223.29.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/hPlPJq0jy6k2Va402AaozgpMWQc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/hPlPJq0jy6k2Va402AaozgpMWQc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hPlPJq0jy6k2Va402AaozgpMWQc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84F94F26AD23CBA93655AE34D806A8CE0A4C5907 Validity Not Before: Jul 1 01:32:19 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=9766CB88F6C3597BCB514C852EBFE4FEC2ACE034 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bc:fd:eb:66:56:21:44:d7:9f:9f:68:fe:1a: e8:9b:70:81:f3:24:5c:c3:34:54:54:bf:4d:b5:e5: 93:fe:09:52:51:49:0e:7e:51:97:81:ef:f2:05:e3: 70:63:d7:2c:11:e3:e8:18:b0:ca:32:c6:68:22:56: e8:c8:9a:a2:08:c6:65:39:68:da:0b:80:51:3b:6c: 23:99:60:c6:bf:cc:9c:8d:34:50:c7:a6:c8:5a:1f: bc:d9:9c:35:16:6d:2d:66:ae:2e:ee:0d:43:c8:32: 91:d1:98:2e:62:9c:ce:31:01:16:8b:aa:c5:48:9a: 75:77:09:c8:1e:62:7a:59:74:1d:89:e6:7b:1f:3f: d2:10:5a:f0:d1:55:26:ca:aa:80:5d:ac:ca:34:9e: 0c:ff:26:e4:80:41:31:5f:a7:73:c1:bd:0f:54:ea: 13:4b:27:70:9b:ed:da:7b:c7:ab:3a:39:c4:7c:82: 5e:17:c4:9a:1d:f6:c7:b5:e7:eb:c0:2a:5f:5f:0d: 43:1f:d2:6e:71:36:9f:7a:bd:7c:2a:f6:72:7b:f5: d1:cd:b4:e2:e2:b4:17:75:da:73:0a:9e:66:a9:1b: 29:e3:12:0f:4f:19:cd:6c:8b:29:e9:86:dc:58:41: 6f:2c:30:83:f8:d1:5f:ea:16:ca:bc:20:14:e4:a7: a8:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:66:CB:88:F6:C3:59:7B:CB:51:4C:85:2E:BF:E4:FE:C2:AC:E0:34 X509v3 Authority Key Identifier: keyid:84:F9:4F:26:AD:23:CB:A9:36:55:AE:34:D8:06:A8:CE:0A:4C:59:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/hPlPJq0jy6k2Va402AaozgpMWQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hPlPJq0jy6k2Va402AaozgpMWQc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/l2bLiPbDWXvLUUyFLr_k_sKs4DQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.29.176.0/20 Signature Algorithm: sha256WithRSAEncryption 97:3a:54:65:14:eb:91:f3:c4:76:13:b1:c5:44:ff:48:e3:28: db:b7:36:dc:e1:ef:26:fe:58:93:4d:e4:28:87:ad:07:4d:7c: 4e:63:a0:1f:6c:ec:2b:29:58:24:51:a5:c3:c9:91:85:c3:af: cc:a4:e4:10:47:f9:fe:a0:55:ed:c9:bf:b1:60:4e:73:3c:47: af:45:b3:bf:9c:dd:b0:e7:21:9e:c1:33:54:e7:cd:25:82:3f: 7e:f5:4a:bf:f9:85:86:b7:f8:ac:fc:05:24:0c:77:2f:a4:41: 80:76:de:3c:01:bb:ff:95:9c:2e:6e:f4:bc:f0:44:4e:63:7d: 8d:2e:81:a6:74:57:54:be:ce:ca:a9:ed:31:22:ea:0c:97:af: ee:40:c1:11:21:d0:0d:2b:8d:aa:f0:21:b1:f5:57:e5:1b:55: 18:73:bd:ae:e0:6b:06:b0:71:45:09:6f:60:d0:36:f9:8b:f0: 1a:89:96:ce:58:a0:10:19:11:d9:56:67:c2:c8:26:b1:0f:16: 75:36:4c:41:d0:74:07:7a:08:6d:40:8f:ca:b2:66:85:cb:5c: b0:04:5a:79:90:37:c6:aa:1f:35:00:2f:14:18:53:08:fc:be: 7e:8c:a0:37:e7:57:ff:ac:7f:23:b3:54:00:f9:9d:18:da:88: 23:b9:73:bd -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NEY5 NEYyNkFEMjNDQkE5MzY1NUFFMzREODA2QThDRTBBNEM1OTA3MB4XDTI1MDcwMTAx MzIxOVoXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoOTc2NkNCODhGNkMzNTk3 QkNCNTE0Qzg1MkVCRkU0RkVDMkFDRTAzNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALa8/etmViFE15+faP4a6JtwgfMkXMM0VFS/TbXlk/4JUlFJDn5R l4Hv8gXjcGPXLBHj6BiwyjLGaCJW6MiaogjGZTlo2guAUTtsI5lgxr/MnI00UMem yFofvNmcNRZtLWauLu4NQ8gykdGYLmKczjEBFouqxUiadXcJyB5iell0HYnmex8/ 0hBa8NFVJsqqgF2syjSeDP8m5IBBMV+nc8G9D1TqE0sncJvt2nvHqzo5xHyCXhfE mh32x7Xn68AqX18NQx/SbnE2n3q9fCr2cnv10c204uK0F3XacwqeZqkbKeMSD08Z zWyLKemG3FhBbywwg/jRX+oWyrwgFOSnqCUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSXZsuI9sNZe8tRTIUuv+T+wqzgNDAfBgNVHSMEGDAWgBSE+U8mrSPLqTZVrjTY BqjOCkxZBzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjA0L2hQbFBKcTBqeTZrMlZhNDAyQWFvemdwTVdRYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hQbFBKcTBqeTZrMlZhNDAyQWFvemdw TVdRYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82MDQvbDJiTGlQYkRXWHZMVVV5RkxyX2tfc0tzNERRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBN8dsDANBgkqhkiG9w0BAQsFAAOCAQEAlzpUZRTrkfPEdhOxxUT/SOMo27c2 3OHvJv5Yk03kKIetB018TmOgH2zsKylYJFGlw8mRhcOvzKTkEEf5/qBV7cm/sWBO czxHr0Wzv5zdsOchnsEzVOfNJYI/fvVKv/mFhrf4rPwFJAx3L6RBgHbePAG7/5Wc Lm70vPBETmN9jS6BpnRXVL7OyqntMSLqDJev7kDBESHQDSuNqvAhsfVX5RtVGHO9 ruBrBrBxRQlvYNA2+YvwGomWzligEBkR2VZnwsgmsQ8WdTZMQdB0B3oIbUCPyrJm hctcsARaeZA3xqofNQAvFBhTCPy+foygN+dX/6x/I7NUAPmdGNqII7lzvQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:24:39 2025 by rpki-client