$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/8rmtaf8XK88-hy7HtFMw2pETmhI.roa File: 8rmtaf8XK88-hy7HtFMw2pETmhI.roa (raw, json) Hash identifier: aiXKijlXrAgSqi/qJvxFv8MpPJghKmPQ5D3lhHg4rFQ= Subject key identifier: F2:B9:AD:69:FF:17:2B:CF:3E:87:2E:C7:B4:53:30:DA:91:13:9A:12 Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554 Certificate serial: 4C Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/8rmtaf8XK88-hy7HtFMw2pETmhI.roa Signing time: Thu 01 May 2025 01:32:52 +0000 ROA not before: Thu 01 May 2025 01:32:52 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 131934 IP address blocks: 222.229.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D79B3890C2DA3795148976B954C2024056797554 Validity Not Before: May 1 01:32:52 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=F2B9AD69FF172BCF3E872EC7B45330DA91139A12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8d:e3:13:1e:f7:1c:6d:89:51:94:92:16:5c: 19:4e:31:ed:61:79:e0:b7:44:a2:5b:35:87:c9:a4: 70:7b:d9:d3:70:38:19:d9:17:56:a7:93:5f:bc:13: a4:af:59:24:45:e9:18:29:bb:ff:bb:53:89:57:85: 21:8f:c8:ec:ff:62:87:26:46:42:40:4a:35:1d:78: 80:55:8f:2f:f7:6b:2c:7c:ef:79:e0:70:58:dc:13: 5f:59:1e:a6:1c:be:7b:05:eb:47:c4:79:42:96:a1: 42:13:ec:4c:2a:3d:55:c9:a2:bc:e1:5d:36:6d:f7: 57:06:8e:19:15:a9:0f:fb:1c:46:7a:42:a3:40:e6: 27:7c:0e:c6:dc:0b:8c:59:0b:1e:f0:fd:7b:da:d7: b1:08:57:20:18:3a:dd:5d:ea:19:e0:c6:df:4e:23: 0f:2d:aa:d3:2a:fe:26:85:ae:78:5b:61:46:5e:4f: 47:95:a4:3d:fe:a2:7f:14:48:ef:ae:ba:11:59:32: c2:c3:89:6f:17:a9:6d:8e:c4:0f:55:5a:77:d3:c9: e9:8a:c5:2d:36:ee:39:8e:68:7e:82:3e:68:e6:02: 9e:44:c2:00:5a:61:85:3a:37:72:5a:c4:dc:ef:f2: 45:47:dc:7f:ab:06:62:25:a3:ff:05:fd:00:53:e8: 8c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B9:AD:69:FF:17:2B:CF:3E:87:2E:C7:B4:53:30:DA:91:13:9A:12 X509v3 Authority Key Identifier: keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/8rmtaf8XK88-hy7HtFMw2pETmhI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.229.0.0/20 Signature Algorithm: sha256WithRSAEncryption 0d:9d:ea:3f:95:e9:47:5e:25:f6:36:35:ac:3d:0e:87:67:6b: 92:a3:03:d1:51:5d:28:dd:28:90:f9:ab:6e:65:c4:29:2f:15: 85:e0:41:78:ea:9e:56:8c:b4:9e:ca:b9:b4:79:33:48:8e:4c: 1a:71:fc:15:79:fd:b6:25:1e:eb:12:3a:13:06:ab:ae:57:82: 5a:d3:e8:fb:1d:4b:54:60:cd:aa:89:18:76:ed:a9:8d:af:46: b4:91:62:17:9d:6a:48:94:90:1f:35:4b:a0:19:1f:10:55:d2: 0f:e1:87:ee:12:aa:a7:e2:07:c8:0b:d8:39:7a:da:a0:1e:82: e5:de:9f:5e:a1:23:b6:03:d0:b4:61:38:8f:17:49:b1:96:28: a3:09:21:67:ce:f7:8e:a4:85:11:ce:5a:39:91:cd:71:24:4a: 49:30:31:ae:5d:57:39:dd:90:d0:63:f2:0b:df:9a:dd:50:5d: 49:18:59:14:b6:7f:77:77:22:10:7b:67:8f:ab:71:e0:5c:b9: 5a:6b:c6:84:36:da:43:ef:ad:5f:04:84:01:07:e9:f9:65:01: 2d:9e:8b:6b:7a:6c:ff:a2:f9:4e:e2:52:d1:d1:4c:4a:60:64: 01:46:6c:a0:30:32:6c:30:c6:fa:ee:ba:2f:57:50:9e:f4:b3: 2c:bf:ad:5c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzlC Mzg5MEMyREEzNzk1MTQ4OTc2Qjk1NEMyMDI0MDU2Nzk3NTU0MB4XDTI1MDUwMTAx MzI1MloXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoRjJCOUFENjlGRjE3MkJD RjNFODcyRUM3QjQ1MzMwREE5MTEzOUExMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALyN4xMe9xxtiVGUkhZcGU4x7WF54LdEols1h8mkcHvZ03A4GdkX VqeTX7wTpK9ZJEXpGCm7/7tTiVeFIY/I7P9ihyZGQkBKNR14gFWPL/drLHzveeBw WNwTX1kephy+ewXrR8R5QpahQhPsTCo9VcmivOFdNm33VwaOGRWpD/scRnpCo0Dm J3wOxtwLjFkLHvD9e9rXsQhXIBg63V3qGeDG304jDy2q0yr+JoWueFthRl5PR5Wk Pf6ifxRI7666EVkywsOJbxepbY7ED1Vad9PJ6YrFLTbuOY5ofoI+aOYCnkTCAFph hTo3clrE3O/yRUfcf6sGYiWj/wX9AFPojE0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTyua1p/xcrzz6HLse0UzDakROaEjAfBgNVHSMEGDAWgBTXmziQwto3lRSJdrlU wgJAVnl1VDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODQwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZaNWRWUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZa NWRWUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NDAvOHJtdGFmOFhLODgtaHk3SHRGTXcycEVUbWhJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBN7lADANBgkqhkiG9w0BAQsFAAOCAQEADZ3qP5XpR14l9jY1rD0Oh2drkqMD 0VFdKN0okPmrbmXEKS8VheBBeOqeVoy0nsq5tHkzSI5MGnH8FXn9tiUe6xI6Ewar rleCWtPo+x1LVGDNqokYdu2pja9GtJFiF51qSJSQHzVLoBkfEFXSD+GH7hKqp+IH yAvYOXraoB6C5d6fXqEjtgPQtGE4jxdJsZYoowkhZ873jqSFEc5aOZHNcSRKSTAx rl1XOd2Q0GPyC9+a3VBdSRhZFLZ/d3ciEHtnj6tx4Fy5WmvGhDbaQ++tXwSEAQfp +WUBLZ6La3ps/6L5TuJS0dFMSmBkAUZsoDAybDDG+u66L1dQnvSzLL+tXA== -----END CERTIFICATE-----Generated at Sun May 18 10:02:21 2025 by rpki-client