$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/818/MBJ2k7vaS4emdBhuKKBvyBUWx50.roa File: MBJ2k7vaS4emdBhuKKBvyBUWx50.roa (raw, json) Hash identifier: 53FuTSKp9z4+l94TtFnmKIlUP7Eh2kE6pJq87lQfigU= Subject key identifier: 30:12:76:93:BB:DA:4B:87:A6:74:18:6E:28:A0:6F:C8:15:16:C7:9D Certificate issuer: /CN=1B2E7E62DA8F12F3BB33E0B5E3CE002FDA28CF25 Certificate serial: 20 Authority key identifier: 1B:2E:7E:62:DA:8F:12:F3:BB:33:E0:B5:E3:CE:00:2F:DA:28:CF:25 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Gy5-YtqPEvO7M-C1484AL9oozyU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/MBJ2k7vaS4emdBhuKKBvyBUWx50.roa Signing time: Thu 19 Jun 2025 07:26:50 +0000 ROA not before: Thu 19 Jun 2025 07:26:50 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 131931 IP address blocks: 133.117.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/Gy5-YtqPEvO7M-C1484AL9oozyU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/Gy5-YtqPEvO7M-C1484AL9oozyU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Gy5-YtqPEvO7M-C1484AL9oozyU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B2E7E62DA8F12F3BB33E0B5E3CE002FDA28CF25 Validity Not Before: Jun 19 07:26:50 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=30127693BBDA4B87A674186E28A06FC81516C79D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6d:87:66:6e:bc:35:ad:1a:b9:51:b0:de:24: 2b:e2:b2:58:8f:67:28:3f:d8:31:01:eb:fd:0e:fb: 0a:a1:b7:3e:24:2a:be:76:5b:5b:7e:4f:43:dc:23: f7:6b:99:24:b9:1d:f2:d1:fb:1b:49:02:d2:81:43: 94:31:c6:51:dd:9c:cd:7e:bb:15:60:74:ce:74:1d: 0e:9c:38:9e:07:fc:06:53:e0:4a:4b:ee:06:64:eb: 23:73:b0:3e:97:ce:6b:3e:d6:03:eb:94:a7:84:67: 75:39:df:ab:8b:b9:75:be:8c:f0:a2:dc:cf:90:2e: d8:49:75:2f:a8:80:6d:a2:32:5a:86:39:0a:b9:fb: 6e:27:d9:c1:af:7f:89:d2:02:3e:44:c3:3d:13:34: 9c:9b:f5:38:f2:bf:b5:f1:f2:b3:54:a3:cb:f3:2d: 41:0e:c8:ee:60:9e:2f:2b:6e:67:54:f6:7b:4e:97: 1b:6f:9b:a7:5d:34:05:87:0e:cb:61:71:7f:3f:44: 7f:0a:49:dc:04:21:62:05:ff:9f:40:28:d5:b9:69: 14:9a:80:ea:4f:a1:f6:ca:07:03:c3:09:d7:47:0e: fc:18:c0:41:1c:aa:bf:71:f7:6d:1f:9c:0e:fa:d0: 85:b3:14:7f:38:7f:b6:63:ca:8e:ed:6c:d3:0b:ee: 60:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:12:76:93:BB:DA:4B:87:A6:74:18:6E:28:A0:6F:C8:15:16:C7:9D X509v3 Authority Key Identifier: keyid:1B:2E:7E:62:DA:8F:12:F3:BB:33:E0:B5:E3:CE:00:2F:DA:28:CF:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/Gy5-YtqPEvO7M-C1484AL9oozyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Gy5-YtqPEvO7M-C1484AL9oozyU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/MBJ2k7vaS4emdBhuKKBvyBUWx50.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.117.144.0/22 Signature Algorithm: sha256WithRSAEncryption 94:5f:37:e8:56:1d:c3:09:e5:15:2a:13:d6:46:c4:56:a9:7d: 1e:45:e4:b5:b3:f0:e7:da:62:0b:21:6f:99:8e:2e:db:16:69: ae:ef:47:48:07:2a:12:e2:ff:21:dc:d3:49:5a:39:d3:54:6c: 5f:c6:bc:38:23:04:76:c5:b9:26:18:21:1e:31:e3:9e:86:28: 34:a0:e2:0c:40:28:bf:2f:3b:62:40:b5:91:d7:c0:a0:a7:a4: 2f:af:fe:18:70:f6:34:ab:f1:c9:fd:be:c8:42:e1:d2:bc:c0: 14:2e:c1:80:06:65:55:d7:e5:07:eb:64:09:2f:e5:b2:dc:5c: af:e4:ae:52:1c:dd:01:01:69:d3:85:38:bc:da:ad:f9:13:d6: c0:d4:57:12:3d:6c:93:3e:81:7b:8b:7d:f1:82:8c:05:47:8e: de:91:db:e7:22:d0:18:1d:dd:f3:88:40:fd:ea:eb:9f:20:a4: 25:61:3d:f3:03:76:a2:93:46:82:bc:f5:d0:5a:34:83:5a:ce: 99:05:db:d4:e5:4d:b0:af:58:9b:ba:e0:d8:a3:26:5d:32:61: 44:32:2e:39:25:f3:ac:4c:bd:ec:59:cd:26:34:45:dc:f8:a9: 32:60:91:3c:e8:03:b7:a5:f5:97:7d:47:c7:d0:7e:db:ab:a7: 25:3f:e8:fb -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQjJF N0U2MkRBOEYxMkYzQkIzM0UwQjVFM0NFMDAyRkRBMjhDRjI1MB4XDTI1MDYxOTA3 MjY1MFoXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoMzAxMjc2OTNCQkRBNEI4 N0E2NzQxODZFMjhBMDZGQzgxNTE2Qzc5RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANBth2ZuvDWtGrlRsN4kK+KyWI9nKD/YMQHr/Q77CqG3PiQqvnZb W35PQ9wj92uZJLkd8tH7G0kC0oFDlDHGUd2czX67FWB0znQdDpw4ngf8BlPgSkvu BmTrI3OwPpfOaz7WA+uUp4RndTnfq4u5db6M8KLcz5Au2El1L6iAbaIyWoY5Crn7 bifZwa9/idICPkTDPRM0nJv1OPK/tfHys1Sjy/MtQQ7I7mCeLytuZ1T2e06XG2+b p100BYcOy2Fxfz9EfwpJ3AQhYgX/n0Ao1blpFJqA6k+h9soHA8MJ10cO/BjAQRyq v3H3bR+cDvrQhbMUfzh/tmPKju1s0wvuYIcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQwEnaTu9pLh6Z0GG4ooG/IFRbHnTAfBgNVHSMEGDAWgBQbLn5i2o8S87sz4LXj zgAv2ijPJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODE4L0d5NS1ZdHFQRXZPN00tQzE0ODRBTDlvb3p5VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0d5NS1ZdHFQRXZPN00tQzE0ODRBTDlv b3p5VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MTgvTUJKMms3dmFTNGVtZEJodUtLQnZ5QlVXeDUwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAoV1kDANBgkqhkiG9w0BAQsFAAOCAQEAlF836FYdwwnlFSoT1kbEVql9HkXk tbPw59piCyFvmY4u2xZpru9HSAcqEuL/IdzTSVo501RsX8a8OCMEdsW5JhghHjHj noYoNKDiDEAovy87YkC1kdfAoKekL6/+GHD2NKvxyf2+yELh0rzAFC7BgAZlVdfl B+tkCS/lstxcr+SuUhzdAQFp04U4vNqt+RPWwNRXEj1skz6Be4t98YKMBUeO3pHb 5yLQGB3d84hA/errnyCkJWE98wN2opNGgrz10Fo0g1rOmQXb1OVNsK9Ym7rg2KMm XTJhRDIuOSXzrEy97FnNJjRF3PipMmCRPOgDt6X1l31Hx9B+26unJT/o+w== -----END CERTIFICATE-----Generated at Sat Jul 5 12:33:08 2025 by rpki-client