$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/YB2oGpVo1JLMdZA7-G_Crm_VxD8.roa File: YB2oGpVo1JLMdZA7-G_Crm_VxD8.roa (raw, json) Hash identifier: 8Ngbsn2rZiLQQ61WNrModW1Pf7smmHjR5iVHjuiC/ME= Subject key identifier: 60:1D:A8:1A:95:68:D4:92:CC:75:90:3B:F8:6F:C2:AE:6F:D5:C4:3F Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0313 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/YB2oGpVo1JLMdZA7-G_Crm_VxD8.roa Signing time: Tue 01 Jul 2025 01:39:54 +0000 ROA not before: Tue 01 Jul 2025 01:39:54 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 18134 IP address blocks: 111.125.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Jul 1 01:39:54 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=601DA81A9568D492CC75903BF86FC2AE6FD5C43F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:df:f5:e9:b0:2c:e8:7b:a0:cd:69:53:9a:2f: cc:a7:29:c0:98:d2:80:30:27:f9:d8:12:c2:39:f2: 63:42:de:fb:dd:25:8a:61:1b:dc:f7:17:f6:78:3a: 8d:16:fc:42:c1:46:a5:43:db:e8:0c:58:55:4b:b7: 1e:c6:6c:10:68:58:73:b2:f8:3e:d6:27:6f:01:32: a9:9c:16:ef:80:8d:a5:3a:ce:eb:4d:e5:83:7b:8e: aa:73:4c:b4:2f:5a:79:8b:56:63:f8:38:4e:63:27: e4:ac:ae:63:c7:31:e2:32:47:bb:88:be:86:d4:1a: 0b:5e:dc:d1:b0:30:79:12:e5:26:6e:90:6d:73:bc: d0:62:1b:76:46:94:6a:67:6d:cf:cf:55:f4:0f:0f: a2:6a:af:06:65:66:4c:07:d8:ce:e5:18:46:40:c5: 93:e1:e3:e9:93:22:65:70:b2:4a:a2:75:25:19:17: 13:d7:d8:a1:fa:69:7e:5c:77:94:ce:f7:47:28:b9: 3e:3c:95:23:06:29:60:26:fb:2c:39:f6:e3:f3:23: 96:99:9f:bf:0e:45:6d:dd:d2:ba:4b:8f:0b:fb:3e: 7b:30:7c:ad:b9:5e:3e:5b:ba:96:87:8d:58:37:bc: b1:44:1d:db:b9:1b:88:de:e6:69:44:be:68:b9:d9: 8c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1D:A8:1A:95:68:D4:92:CC:75:90:3B:F8:6F:C2:AE:6F:D5:C4:3F X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/YB2oGpVo1JLMdZA7-G_Crm_VxD8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.125.144.0/21 Signature Algorithm: sha256WithRSAEncryption c1:9d:1a:7d:c4:21:9b:6a:c5:39:87:f9:6f:9b:00:49:e8:4e: 51:88:ba:1c:28:10:2d:7f:dc:28:69:dd:b7:c3:c5:23:0e:6d: 29:6c:e3:07:2a:2e:af:5a:0d:64:c7:3e:1b:6a:4f:1d:69:b0: 99:32:e6:96:4d:47:21:30:3c:f8:1b:b8:cb:9a:df:7b:f9:ec: dd:fa:90:4c:c8:d3:b2:1e:ba:d0:54:d0:5f:2e:49:e8:33:8f: d9:37:52:2b:00:71:f4:80:41:75:67:dc:a7:2f:20:71:c3:01: 97:ad:43:df:90:3d:f0:b6:71:29:a4:aa:19:a0:73:76:fa:48: f6:09:0f:74:4f:8f:04:03:ef:11:cc:aa:48:ba:86:bb:67:d2: 58:ff:b3:ac:29:5d:62:01:35:eb:a2:4e:d3:76:47:96:b2:b4: 2e:b1:b5:cb:7c:11:fd:ab:c8:fa:2f:aa:f6:9a:98:bf:e3:11: f5:5d:1d:ef:03:20:6d:d5:ff:48:01:5e:05:87:ea:b4:52:28: 9a:e1:7d:48:ee:b8:ac:67:f8:9d:b7:88:a7:e5:a4:50:33:33: 8c:c9:36:06:83:c6:5c:a3:29:16:b7:b8:b1:d8:3c:b1:d1:d6: f4:13:23:8e:4d:59:4a:cb:d5:1a:58:fa:33:23:d8:82:43:ab: cc:52:51:27 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNTA3MDEw MTM5NTRaFw0yNjA2MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDYwMURBODFBOTU2OEQ0 OTJDQzc1OTAzQkY4NkZDMkFFNkZENUM0M0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY3/XpsCzoe6DNaVOaL8ynKcCY0oAwJ/nYEsI58mNC3vvdJYph G9z3F/Z4Oo0W/ELBRqVD2+gMWFVLtx7GbBBoWHOy+D7WJ28BMqmcFu+AjaU6zutN 5YN7jqpzTLQvWnmLVmP4OE5jJ+SsrmPHMeIyR7uIvobUGgte3NGwMHkS5SZukG1z vNBiG3ZGlGpnbc/PVfQPD6JqrwZlZkwH2M7lGEZAxZPh4+mTImVwskqidSUZFxPX 2KH6aX5cd5TO90couT48lSMGKWAm+yw59uPzI5aZn78ORW3d0rpLjwv7PnswfK25 Xj5bupaHjVg3vLFEHdu5G4je5mlEvmi52YxnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUYB2oGpVo1JLMdZA7+G/Crm/VxD8wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL1lCMm9HcFZvMUpMTWRaQTctR19Dcm1fVnhEOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANvfZAwDQYJKoZIhvcNAQELBQADggEBAMGdGn3EIZtqxTmH+W+bAEnoTlGI uhwoEC1/3Chp3bfDxSMObSls4wcqLq9aDWTHPhtqTx1psJky5pZNRyEwPPgbuMua 33v57N36kEzI07IeutBU0F8uSegzj9k3UisAcfSAQXVn3KcvIHHDAZetQ9+QPfC2 cSmkqhmgc3b6SPYJD3RPjwQD7xHMqki6hrtn0lj/s6wpXWIBNeuiTtN2R5aytC6x tct8Ef2ryPovqvaamL/jEfVdHe8DIG3V/0gBXgWH6rRSKJrhfUjuuKxn+J23iKfl pFAzM4zJNgaDxlyjKRa3uLHYPLHR1vQTI45NWUrL1RpY+jMj2IJDq8xSUSc= -----END CERTIFICATE-----Generated at Sat Jul 5 00:12:38 2025 by rpki-client