$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/884/dI8IHhkrG2FFulnDOSKA3bi32uA.roa File: dI8IHhkrG2FFulnDOSKA3bi32uA.roa (raw, json) Hash identifier: 2ImJv+kE0jAtItFpVa3Y3Yny/oI2GX+N3Qfrp27criY= Subject key identifier: 74:8F:08:1E:19:2B:1B:61:45:BA:59:C3:39:22:80:DD:B8:B7:DA:E0 Certificate issuer: /CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Certificate serial: 34 Authority key identifier: 8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/dI8IHhkrG2FFulnDOSKA3bi32uA.roa Signing time: Thu 01 May 2025 01:33:18 +0000 ROA not before: Thu 01 May 2025 01:33:18 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 23808 IP address blocks: 202.140.192.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 May 2025 02:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Validity Not Before: May 1 01:33:18 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=748F081E192B1B6145BA59C3392280DDB8B7DAE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:63:e2:99:ed:3e:93:92:e5:51:af:c7:d3:02: 46:24:2e:e0:be:fa:5a:6e:00:25:fd:47:a7:a7:d3: 07:2e:5a:9b:2c:51:52:7a:c6:c3:c2:89:8e:85:97: b3:47:11:b2:67:3c:50:2a:21:80:8d:3b:89:39:cd: 92:5b:60:bb:3f:dd:db:93:1c:e1:51:45:1a:2d:16: 08:e0:16:f6:f8:8d:8f:ef:bb:fe:bb:82:13:74:b0: 26:1b:f8:d9:67:19:73:04:db:44:00:f9:9f:7e:10: 77:9a:76:8d:09:b7:e5:b0:d1:38:cc:b9:c8:61:5c: 64:22:33:03:23:ba:72:24:9d:29:1d:ea:79:2f:67: 62:22:27:fd:90:6b:b0:0d:d2:c0:41:d1:ec:f6:40: 9b:8f:9f:0c:07:12:0d:35:4e:22:27:6c:c2:2b:d0: 1b:66:be:11:85:1a:51:4a:c9:ff:62:62:35:a2:d1: 74:c2:bb:1c:1e:50:da:88:dd:3c:1c:57:fc:9f:7e: 3f:c2:4d:70:9e:62:da:51:7c:05:f2:58:53:a1:87: 92:fe:65:3c:54:55:2e:28:19:cd:bc:0c:a3:f4:09: a3:32:3b:66:51:60:d2:ef:9f:2a:8b:f9:76:eb:86: 90:86:22:c7:9c:c9:f9:a4:0f:14:da:dc:41:7a:f6: e7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8F:08:1E:19:2B:1B:61:45:BA:59:C3:39:22:80:DD:B8:B7:DA:E0 X509v3 Authority Key Identifier: keyid:8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/dI8IHhkrG2FFulnDOSKA3bi32uA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.140.192.0/19 Signature Algorithm: sha256WithRSAEncryption 5c:4f:83:21:c7:7a:b9:f8:42:44:5f:84:20:50:e1:bd:22:f3: 9f:55:9f:8e:94:8c:dd:6f:23:e2:cb:8e:43:96:77:76:09:81: 7e:c9:f1:5b:4c:4a:22:48:54:7b:d3:3d:ea:cd:a3:a3:3c:b8: d7:57:6c:04:68:98:e0:44:d9:3f:cc:a4:21:d6:75:98:a9:54: 8e:c4:c8:b1:7f:79:6c:8e:03:83:ff:c5:f9:69:62:5a:31:65: 33:24:a6:b8:9a:fe:40:3e:97:f8:a6:87:46:25:e6:9c:c9:36: 31:21:75:eb:43:00:20:14:95:e9:82:ca:f5:af:a2:a9:82:9d: 83:5e:78:ff:c8:b9:f4:04:ec:67:d8:c8:8f:7a:44:e9:92:21: b2:84:ca:3c:b5:0a:52:0c:a8:c6:9b:67:bf:c6:f8:5d:ef:ec: a8:56:bb:e4:03:92:63:b3:7c:25:73:2f:e2:55:ff:5d:fd:4f: a8:5d:a3:74:88:30:fc:bb:45:80:ea:fe:68:85:6c:f2:0d:ae: 0e:30:37:fe:c4:3c:da:84:31:30:05:fb:67:97:36:f9:f0:32: a8:6d:68:87:91:ce:86:a1:45:5f:8c:3d:a7:ae:a0:f8:08:9f: 6c:2a:7f:0f:fd:7d:ec:04:88:bd:a5:d3:9b:2a:7e:6e:74:bf: 77:85:83:f8 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QUY0 MjBGMTkyMDBFMTFCRTRBRThEOTE0RUJBMkFDQjQyOTE3QjZFMB4XDTI1MDUwMTAx MzMxOFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNzQ4RjA4MUUxOTJCMUI2 MTQ1QkE1OUMzMzkyMjgwRERCOEI3REFFMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMNj4pntPpOS5VGvx9MCRiQu4L76Wm4AJf1Hp6fTBy5amyxRUnrG w8KJjoWXs0cRsmc8UCohgI07iTnNkltguz/d25Mc4VFFGi0WCOAW9viNj++7/ruC E3SwJhv42WcZcwTbRAD5n34Qd5p2jQm35bDROMy5yGFcZCIzAyO6ciSdKR3qeS9n YiIn/ZBrsA3SwEHR7PZAm4+fDAcSDTVOIidswivQG2a+EYUaUUrJ/2JiNaLRdMK7 HB5Q2ojdPBxX/J9+P8JNcJ5i2lF8BfJYU6GHkv5lPFRVLigZzbwMo/QJozI7ZlFg 0u+fKov5duuGkIYix5zJ+aQPFNrcQXr250ECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBR0jwgeGSsbYUW6WcM5IoDduLfa4DAfBgNVHSMEGDAWgBSK9CDxkgDhG+SujZFO uirLQpF7bjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODg0L2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBLUmUyNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBL UmUyNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODQvZEk4SUhoa3JHMkZGdWxuRE9TS0EzYmkzMnVBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBcqMwDANBgkqhkiG9w0BAQsFAAOCAQEAXE+DIcd6ufhCRF+EIFDhvSLzn1Wf jpSM3W8j4suOQ5Z3dgmBfsnxW0xKIkhUe9M96s2jozy411dsBGiY4ETZP8ykIdZ1 mKlUjsTIsX95bI4Dg//F+WliWjFlMySmuJr+QD6X+KaHRiXmnMk2MSF160MAIBSV 6YLK9a+iqYKdg154/8i59ATsZ9jIj3pE6ZIhsoTKPLUKUgyoxptnv8b4Xe/sqFa7 5AOSY7N8JXMv4lX/Xf1PqF2jdIgw/LtFgOr+aIVs8g2uDjA3/sQ82oQxMAX7Z5c2 +fAyqG1oh5HOhqFFX4w9p66g+AifbCp/D/197ASIvaXTmyp+bnS/d4WD+A== -----END CERTIFICATE-----Generated at Mon May 19 04:23:04 2025 by rpki-client