$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/884/lIr_gHPlaCa3ujrkdvWDF1Q0Irs.roa File: lIr_gHPlaCa3ujrkdvWDF1Q0Irs.roa (raw, json) Hash identifier: dMRoSV3bIZ/dF0pD1EA8XByPyRCGO/LQalzCkb8wZcM= Subject key identifier: 94:8A:FF:80:73:E5:68:26:B7:BA:3A:E4:76:F5:83:17:54:34:22:BB Certificate issuer: /CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Certificate serial: 36 Authority key identifier: 8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/lIr_gHPlaCa3ujrkdvWDF1Q0Irs.roa Signing time: Thu 01 May 2025 01:33:20 +0000 ROA not before: Thu 01 May 2025 01:33:20 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 23808 IP address blocks: 220.152.96.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Validity Not Before: May 1 01:33:20 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=948AFF8073E56826B7BA3AE476F58317543422BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:69:de:5e:82:f5:6d:22:ce:82:80:be:e0:6c: a8:c0:0e:e8:d6:5a:dd:29:26:74:57:ca:a5:b7:9f: 1b:d4:74:36:bc:d3:f2:3b:c1:a6:99:b9:f3:f1:4d: 9a:5a:c5:b9:7a:36:f2:3b:5b:70:53:ec:99:59:88: ed:b0:33:6d:ee:8b:bb:69:1c:17:84:74:ee:78:d4: 41:62:92:c8:6b:ca:1d:f3:eb:a9:4f:54:b1:8d:21: 99:06:18:32:e7:52:29:5f:13:56:15:01:51:75:93: 31:73:75:e0:b3:c1:55:73:6d:cd:c9:08:9e:11:a9: 43:3f:54:0b:3c:5f:60:90:62:07:ce:e6:5e:60:f8: 48:ee:39:2b:aa:7c:04:07:2a:b6:17:a8:ef:4b:38: e7:fb:7d:e7:06:cc:88:0d:ce:b5:8b:4c:df:81:68: b9:b6:18:64:b0:39:1c:29:99:62:e9:3d:b1:b0:a8: d5:75:8d:84:14:4b:8e:93:9a:5b:92:26:37:37:d0: 31:07:97:24:31:a5:66:62:10:86:b8:94:bd:4f:3a: 7d:67:ac:e3:4f:f9:57:54:35:cf:e1:52:c5:ac:ab: d7:66:dc:3c:71:23:f6:66:ef:a6:95:07:df:50:4a: 74:dc:51:bb:45:7a:35:c6:0b:ee:a1:1f:eb:56:b3: 83:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8A:FF:80:73:E5:68:26:B7:BA:3A:E4:76:F5:83:17:54:34:22:BB X509v3 Authority Key Identifier: keyid:8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/lIr_gHPlaCa3ujrkdvWDF1Q0Irs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.152.96.0/20 Signature Algorithm: sha256WithRSAEncryption 9b:c3:85:24:7b:1e:4e:27:c3:2c:0f:c0:80:47:54:8a:3a:40: b6:37:42:32:7d:e1:53:e5:00:dc:60:74:2d:67:dc:15:69:d2: 1c:d9:40:75:0c:a7:19:fc:ff:fe:ae:35:6d:2a:8d:b1:a6:f8: ca:a8:1b:e6:6a:fc:8e:0c:ee:17:3b:9f:57:c1:1d:04:f1:8e: cc:a8:5d:c8:db:44:1b:5c:15:c6:d7:7b:e6:99:4f:96:42:f5: a2:b2:52:2f:aa:43:32:73:6b:d6:a4:28:eb:6a:57:31:f2:60: 85:af:c6:b6:03:da:ea:5d:a2:a7:d3:33:4d:6b:0b:ea:84:6f: a1:d7:0b:34:86:20:f0:8f:b5:ce:fb:24:d7:57:57:6b:4e:b3: 31:28:be:e0:50:f0:67:ec:cc:4d:5c:ca:d2:8f:3f:12:8c:56: ba:87:ea:a2:21:36:5a:8d:c1:b7:16:39:56:80:f9:52:b7:12: 56:5b:1e:68:e1:c7:ac:89:92:ce:52:1f:46:a5:24:fe:f9:ca: d2:a1:9a:6f:a4:2f:37:72:10:32:66:c7:05:1e:f4:15:5e:d8: b7:c9:ef:a4:d9:50:f3:05:31:a5:cd:62:78:7f:bd:68:2f:1a: 6e:6e:20:a1:d3:2d:ba:ae:30:56:32:d0:89:74:6f:1f:ac:c3: 96:5a:3a:68 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QUY0 MjBGMTkyMDBFMTFCRTRBRThEOTE0RUJBMkFDQjQyOTE3QjZFMB4XDTI1MDUwMTAx MzMyMFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoOTQ4QUZGODA3M0U1Njgy NkI3QkEzQUU0NzZGNTgzMTc1NDM0MjJCQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOdp3l6C9W0izoKAvuBsqMAO6NZa3SkmdFfKpbefG9R0NrzT8jvB ppm58/FNmlrFuXo28jtbcFPsmVmI7bAzbe6Lu2kcF4R07njUQWKSyGvKHfPrqU9U sY0hmQYYMudSKV8TVhUBUXWTMXN14LPBVXNtzckInhGpQz9UCzxfYJBiB87mXmD4 SO45K6p8BAcqtheo70s45/t95wbMiA3OtYtM34FoubYYZLA5HCmZYuk9sbCo1XWN hBRLjpOaW5ImNzfQMQeXJDGlZmIQhriUvU86fWes40/5V1Q1z+FSxayr12bcPHEj 9mbvppUH31BKdNxRu0V6NcYL7qEf61azgyECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSUiv+Ac+VoJre6OuR29YMXVDQiuzAfBgNVHSMEGDAWgBSK9CDxkgDhG+SujZFO uirLQpF7bjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODg0L2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBLUmUyNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBL UmUyNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODQvbElyX2dIUGxhQ2EzdWpya2R2V0RGMVEwSXJzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNyYYDANBgkqhkiG9w0BAQsFAAOCAQEAm8OFJHseTifDLA/AgEdUijpAtjdC Mn3hU+UA3GB0LWfcFWnSHNlAdQynGfz//q41bSqNsab4yqgb5mr8jgzuFzufV8Ed BPGOzKhdyNtEG1wVxtd75plPlkL1orJSL6pDMnNr1qQo62pXMfJgha/GtgPa6l2i p9MzTWsL6oRvodcLNIYg8I+1zvsk11dXa06zMSi+4FDwZ+zMTVzK0o8/EoxWuofq oiE2Wo3BtxY5VoD5UrcSVlseaOHHrImSzlIfRqUk/vnK0qGab6QvN3IQMmbHBR70 FV7Yt8nvpNlQ8wUxpc1ieH+9aC8abm4godMtuq4wVjLQiXRvH6zDllo6aA== -----END CERTIFICATE-----Generated at Sun May 18 21:02:06 2025 by rpki-client