$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/884/lqKPJhZHZ7GLvgmYcCZKgF6tcok.roa File: lqKPJhZHZ7GLvgmYcCZKgF6tcok.roa (raw, json) Hash identifier: FtNbTUO7bB0VQZfXWf99ml+kaONPQYyahm7tU0DRqc4= Subject key identifier: 96:A2:8F:26:16:47:67:B1:8B:BE:09:98:70:26:4A:80:5E:AD:72:89 Certificate issuer: /CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Certificate serial: 35 Authority key identifier: 8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/lqKPJhZHZ7GLvgmYcCZKgF6tcok.roa Signing time: Thu 01 May 2025 01:33:19 +0000 ROA not before: Thu 01 May 2025 01:33:19 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 23808 IP address blocks: 219.100.132.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 18:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Validity Not Before: May 1 01:33:19 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=96A28F26164767B18BBE099870264A805EAD7289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:74:9d:b9:12:43:46:ca:28:f0:d4:85:50:d2: 51:0d:28:08:5b:20:83:a9:50:3e:93:32:3f:5f:0a: f7:ea:7c:e3:9a:6d:07:65:4e:52:b3:0d:41:97:8b: 47:d2:07:d8:3e:84:55:17:c8:ee:7f:2e:0c:04:19: be:49:98:23:a7:b6:19:6b:68:50:3d:4b:c0:9a:4a: e8:d4:fe:5a:16:77:0c:79:3e:42:b2:6e:e8:44:9b: 21:47:a9:ac:00:59:83:d7:fa:45:0e:1d:3f:43:23: 35:ec:ea:dc:71:1f:4c:97:87:29:1c:b8:76:7f:2e: 61:4a:8d:b8:2c:21:db:69:3a:04:9c:1f:ce:eb:6c: 11:82:16:09:ff:2c:d2:20:b8:53:14:73:0f:65:c1: 96:c9:53:98:7c:2d:95:10:66:6a:71:1e:09:57:63: c4:31:55:7d:d8:c1:b3:75:cb:ff:ce:d6:96:64:a2: 35:84:1b:af:f8:68:39:7e:13:a8:3d:4a:e5:72:c7: f9:fb:45:3b:19:fd:7d:9b:02:b4:4f:e1:d6:72:4a: 30:35:82:99:57:1e:04:5a:6e:66:45:2f:d7:a9:5c: 42:aa:f4:02:1b:16:4d:b4:29:d5:c3:8b:87:f7:2c: bf:96:64:e3:46:df:72:6a:6f:ea:57:2c:0f:de:1c: 8b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A2:8F:26:16:47:67:B1:8B:BE:09:98:70:26:4A:80:5E:AD:72:89 X509v3 Authority Key Identifier: keyid:8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/lqKPJhZHZ7GLvgmYcCZKgF6tcok.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.132.0/22 Signature Algorithm: sha256WithRSAEncryption 12:35:a2:9c:12:3e:56:bb:d5:e7:68:53:5f:6e:4b:05:eb:01: e6:10:fa:ff:84:60:00:72:22:a2:65:81:1c:b3:a6:39:dd:cb: 5b:d2:2f:f5:43:10:e7:21:44:5e:8e:d0:35:0f:c5:4f:04:ad: 16:0f:4e:37:06:fa:e6:da:2e:db:f6:90:16:17:92:44:88:65: e8:e7:76:08:2b:b4:44:35:09:2f:a6:1c:30:b7:2e:f6:4c:4a: 34:20:94:aa:e9:20:66:32:19:e3:11:89:94:a3:07:ec:6f:c7: 90:0b:e0:1e:7f:d6:9b:fa:30:34:fc:62:41:33:8f:86:1e:d9: 98:46:f8:e7:67:d1:61:46:0b:4d:52:40:65:78:9c:3a:bb:04: df:ce:1c:c2:e1:7b:37:67:18:3a:f5:83:a5:06:ad:9b:de:9f: f4:58:4f:f4:19:c0:10:41:9d:77:89:bf:26:99:74:fc:2e:f4: 91:bd:c1:d9:1e:11:d3:c1:95:61:3a:53:a7:3d:a5:44:c5:32: 74:39:42:10:47:18:4d:af:9e:a4:98:b5:2c:37:6c:a5:a6:24: f4:30:67:6a:93:0f:cc:93:5f:53:8b:a9:68:21:68:95:3f:01: 7f:62:98:c2:99:ae:af:30:1a:de:9d:4e:bd:8d:51:1e:58:3f: bc:39:f2:2f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QUY0 MjBGMTkyMDBFMTFCRTRBRThEOTE0RUJBMkFDQjQyOTE3QjZFMB4XDTI1MDUwMTAx MzMxOVoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoOTZBMjhGMjYxNjQ3NjdC MThCQkUwOTk4NzAyNjRBODA1RUFENzI4OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKl0nbkSQ0bKKPDUhVDSUQ0oCFsgg6lQPpMyP18K9+p845ptB2VO UrMNQZeLR9IH2D6EVRfI7n8uDAQZvkmYI6e2GWtoUD1LwJpK6NT+WhZ3DHk+QrJu 6ESbIUeprABZg9f6RQ4dP0MjNezq3HEfTJeHKRy4dn8uYUqNuCwh22k6BJwfzuts EYIWCf8s0iC4UxRzD2XBlslTmHwtlRBmanEeCVdjxDFVfdjBs3XL/87WlmSiNYQb r/hoOX4TqD1K5XLH+ftFOxn9fZsCtE/h1nJKMDWCmVceBFpuZkUv16lcQqr0AhsW TbQp1cOLh/csv5Zk40bfcmpv6lcsD94cixECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSWoo8mFkdnsYu+CZhwJkqAXq1yiTAfBgNVHSMEGDAWgBSK9CDxkgDhG+SujZFO uirLQpF7bjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODg0L2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBLUmUyNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBL UmUyNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODQvbHFLUEpoWkhaN0dMdmdtWWNDWktnRjZ0Y29rLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAttkhDANBgkqhkiG9w0BAQsFAAOCAQEAEjWinBI+VrvV52hTX25LBesB5hD6 /4RgAHIiomWBHLOmOd3LW9Iv9UMQ5yFEXo7QNQ/FTwStFg9ONwb65tou2/aQFheS RIhl6Od2CCu0RDUJL6YcMLcu9kxKNCCUqukgZjIZ4xGJlKMH7G/HkAvgHn/Wm/ow NPxiQTOPhh7ZmEb452fRYUYLTVJAZXicOrsE384cwuF7N2cYOvWDpQatm96f9FhP 9BnAEEGdd4m/Jpl0/C70kb3B2R4R08GVYTpTpz2lRMUydDlCEEcYTa+epJi1LDds paYk9DBnapMPzJNfU4upaCFolT8Bf2KYwpmurzAa3p1OvY1RHlg/vDnyLw== -----END CERTIFICATE-----Generated at Sun May 18 21:36:44 2025 by rpki-client