$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/939/KmahI8Qe57pPJOxr3zIbASqyso0.roa File: KmahI8Qe57pPJOxr3zIbASqyso0.roa (raw, json) Hash identifier: ohRv18+5bLI2f2PAfNmHqwUbx+MAxeCgeexDfjAX+6U= Subject key identifier: 2A:66:A1:23:C4:1E:E7:BA:4F:24:EC:6B:DF:32:1B:01:2A:B2:B2:8D Certificate issuer: /CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4 Certificate serial: E2 Authority key identifier: 7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/KmahI8Qe57pPJOxr3zIbASqyso0.roa Signing time: Thu 01 May 2025 01:29:17 +0000 ROA not before: Thu 01 May 2025 01:29:17 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 2518 IP address blocks: 202.247.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 16:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4 Validity Not Before: May 1 01:29:17 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=2A66A123C41EE7BA4F24EC6BDF321B012AB2B28D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b9:d8:6b:54:b0:bf:b7:9d:30:4d:bb:4d:28: b0:80:6f:07:00:5a:80:7d:9f:9d:af:ca:f9:b0:4f: 2a:2d:e4:75:e4:4d:53:b1:f8:8f:17:b9:f2:4a:d1: 13:a8:12:c9:78:c0:b2:4f:1e:f8:2c:66:41:c2:5b: 37:24:b7:ac:27:15:89:fc:ec:26:b7:b0:e3:29:98: bc:41:e0:e1:b4:3e:70:f0:e7:11:29:d1:2a:c7:33: 44:19:e0:17:a9:60:71:3e:4d:47:d7:5f:19:77:4b: 82:01:cf:03:83:48:ba:8d:ed:9e:e4:d9:25:eb:9d: 8f:a3:77:3a:ec:c0:f0:3a:98:88:4a:ec:78:59:40: 18:08:2a:c3:09:51:46:92:73:5e:63:21:29:ce:18: 01:19:9d:7d:a5:f4:fb:48:7b:a7:d9:63:7f:38:51: f2:c4:43:7c:c1:ae:db:92:3b:02:2c:5f:53:1c:b9: 2d:d1:cb:78:87:3f:b8:e5:14:42:c0:be:f5:29:bc: 48:75:a2:8e:3e:52:b2:0a:01:02:94:7e:08:60:30: 2a:4a:29:38:eb:3e:b0:d1:36:e8:27:79:d7:16:ce: b0:3c:6f:c9:e6:6f:bb:27:9c:19:ab:48:f0:fb:2e: 89:e8:6f:ec:72:8d:b8:36:0a:0c:a0:ab:bd:fc:62: 64:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:66:A1:23:C4:1E:E7:BA:4F:24:EC:6B:DF:32:1B:01:2A:B2:B2:8D X509v3 Authority Key Identifier: keyid:7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/KmahI8Qe57pPJOxr3zIbASqyso0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.247.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7e:ff:83:ee:66:ce:ac:e5:46:61:55:a9:4d:47:13:e3:dd:8f: e8:70:33:79:68:16:4a:5a:a3:3e:b6:13:c8:2e:c9:b5:fd:92: 93:d9:15:af:94:7f:86:86:0e:74:e9:11:24:5a:c6:6b:ca:cf: f0:85:a2:81:b0:23:ea:75:dd:21:66:09:bb:de:a7:30:08:53: 9d:85:03:b6:1e:ac:ae:2c:b5:a2:95:4a:7c:0d:0f:93:32:e3: 96:a4:5e:3b:3e:d9:46:2c:cd:70:ad:c7:a6:72:87:0b:e2:d7: f5:10:72:5f:2a:31:d4:47:ab:9c:04:f5:b8:ec:61:70:e5:18: 2e:ce:af:c9:d7:76:d1:25:40:ce:e4:6f:2e:18:2b:03:8c:10: e4:b8:04:32:cb:29:19:4f:81:1e:8d:18:6d:35:30:f2:9d:6b: f1:a8:f4:4a:6a:dd:b0:87:c6:9e:85:74:55:71:e2:ec:cf:54: 19:66:f9:28:93:f0:44:d3:cd:60:a6:89:77:ad:8a:79:db:0f: 78:1f:ac:5e:b0:a8:3f:a2:97:d5:cf:e5:87:18:6b:c5:ed:75: f1:c7:b6:5a:e9:26:3d:12:e3:36:0b:76:7c:86:99:fa:a3:b1: 7a:00:2a:32:90:16:5c:c3:71:63:de:e0:2c:74:e6:8d:0b:99: cf:4f:6b:7f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0M2 MDI5NUM4NUZGMzdFMkRDRjc1QUYwMTRENDRBRDNCRjhDMzNBNDAeFw0yNTA1MDEw MTI5MTdaFw0yNjA0MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDJBNjZBMTIzQzQxRUU3 QkE0RjI0RUM2QkRGMzIxQjAxMkFCMkIyOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwudhrVLC/t50wTbtNKLCAbwcAWoB9n52vyvmwTyot5HXkTVOx +I8XufJK0ROoEsl4wLJPHvgsZkHCWzckt6wnFYn87Ca3sOMpmLxB4OG0PnDw5xEp 0SrHM0QZ4BepYHE+TUfXXxl3S4IBzwODSLqN7Z7k2SXrnY+jdzrswPA6mIhK7HhZ QBgIKsMJUUaSc15jISnOGAEZnX2l9PtIe6fZY384UfLEQ3zBrtuSOwIsX1McuS3R y3iHP7jlFELAvvUpvEh1oo4+UrIKAQKUfghgMCpKKTjrPrDRNugnedcWzrA8b8nm b7snnBmrSPD7Lonob+xyjbg2Cgygq738YmSTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKmahI8Qe57pPJOxr3zIbASqyso0wHwYDVR0jBBgwFoAUfGApXIX/N+Lc91rw FNRK07+MM6QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzkzOS9mR0FwWElYX04tTGM5MXJ3Rk5SSzA3LU1NNlEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9mR0FwWElYX04tTGM5MXJ3Rk5SSzA3 LU1NNlEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvOTM5L0ttYWhJOFFlNTdwUEpPeHIzekliQVNxeXNvMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfK9wAwDQYJKoZIhvcNAQELBQADggEBAH7/g+5mzqzlRmFVqU1HE+Pdj+hw M3loFkpaoz62E8guybX9kpPZFa+Uf4aGDnTpESRaxmvKz/CFooGwI+p13SFmCbve pzAIU52FA7YerK4staKVSnwND5My45akXjs+2UYszXCtx6Zyhwvi1/UQcl8qMdRH q5wE9bjsYXDlGC7Or8nXdtElQM7kby4YKwOMEOS4BDLLKRlPgR6NGG01MPKda/Go 9Epq3bCHxp6FdFVx4uzPVBlm+SiT8ETTzWCmiXetinnbD3gfrF6wqD+il9XP5YcY a8XtdfHHtlrpJj0S4zYLdnyGmfqjsXoAKjKQFlzDcWPe4Cx05o0Lmc9Pa38= -----END CERTIFICATE-----Generated at Sat May 17 19:06:33 2025 by rpki-client