$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/977/3t5aqtO8lxRbcZaeXWrs8iKpnpg.roa File: 3t5aqtO8lxRbcZaeXWrs8iKpnpg.roa (raw, json) Hash identifier: bGNWIInKXYsUUz3MZQago+TSsRI9RZBuLpN2ddBPC0s= Subject key identifier: DE:DE:5A:AA:D3:BC:97:14:5B:71:96:9E:5D:6A:EC:F2:22:A9:9E:98 Certificate issuer: /CN=BD69002D0E8B7ED2C3D1D5D07AE6922C7497F02D Certificate serial: 2D Authority key identifier: BD:69:00:2D:0E:8B:7E:D2:C3:D1:D5:D0:7A:E6:92:2C:74:97:F0:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/vWkALQ6LftLD0dXQeuaSLHSX8C0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/3t5aqtO8lxRbcZaeXWrs8iKpnpg.roa Signing time: Tue 01 Jul 2025 01:32:24 +0000 ROA not before: Tue 01 Jul 2025 01:32:24 +0000 ROA not after: Mon 15 Jun 2026 01:30:02 +0000 asID: 23784 IP address blocks: 219.117.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/vWkALQ6LftLD0dXQeuaSLHSX8C0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/vWkALQ6LftLD0dXQeuaSLHSX8C0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/vWkALQ6LftLD0dXQeuaSLHSX8C0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD69002D0E8B7ED2C3D1D5D07AE6922C7497F02D Validity Not Before: Jul 1 01:32:24 2025 GMT Not After : Jun 15 01:30:02 2026 GMT Subject: CN=DEDE5AAAD3BC97145B71969E5D6AECF222A99E98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ea:22:fd:9e:5e:c6:02:ff:01:1c:b8:dc:22: 0e:14:a8:a2:d7:e0:3b:7f:b4:61:09:b8:bb:fb:ed: de:b6:93:35:8b:93:3a:96:b5:bb:bc:95:a7:0b:7e: c7:21:e8:d9:f8:71:81:70:19:37:39:10:00:fe:22: 9c:ca:f1:8a:f0:2d:b0:d7:fe:e3:cd:bf:5a:98:9e: f4:22:95:42:cb:c6:f4:78:92:04:6a:a3:51:e8:8c: cb:28:5e:af:fc:36:c2:20:9e:dd:53:db:c1:74:cf: 9d:95:76:b9:fd:a1:71:c5:3f:e3:79:4c:b6:10:7a: e9:c8:8b:3f:22:d9:47:03:f4:e0:ac:57:d2:7f:db: cc:08:6c:72:99:f8:f0:3c:23:44:c2:4b:57:dd:2d: 73:a2:a2:b8:ed:77:5f:8f:07:4c:d2:76:58:88:19: 33:d6:50:a9:e5:5e:39:1c:8a:ef:ee:c3:98:c4:c6: 8b:e9:2a:2a:cc:df:b6:c6:df:2b:1c:46:2c:aa:ec: 24:2d:74:bd:21:e3:10:d0:82:66:b2:fd:0a:7d:74: cb:3c:51:81:8a:2c:d8:ae:bb:74:c9:05:d4:21:3d: 1d:5e:b7:8b:4f:8a:35:f8:26:45:9c:25:76:26:2c: 37:41:30:b7:ba:30:d6:fd:22:da:4c:06:ef:77:84: 31:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:DE:5A:AA:D3:BC:97:14:5B:71:96:9E:5D:6A:EC:F2:22:A9:9E:98 X509v3 Authority Key Identifier: keyid:BD:69:00:2D:0E:8B:7E:D2:C3:D1:D5:D0:7A:E6:92:2C:74:97:F0:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/vWkALQ6LftLD0dXQeuaSLHSX8C0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/vWkALQ6LftLD0dXQeuaSLHSX8C0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/977/3t5aqtO8lxRbcZaeXWrs8iKpnpg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.117.144.0/20 Signature Algorithm: sha256WithRSAEncryption a2:9f:6d:f8:cf:f3:ba:9c:ef:e6:3d:3c:aa:13:66:af:37:be: 13:39:72:0c:fd:45:00:2e:e2:3b:f1:88:4a:8b:5b:14:d1:65: 46:05:f4:dc:46:c0:90:5f:b6:dd:6a:c8:f4:13:6a:ab:2a:96: 88:16:36:46:ab:79:a9:16:4f:2d:fa:e9:a4:c0:70:e9:59:95: d4:dd:46:e1:52:0c:31:98:c4:5c:71:3f:f3:61:30:aa:66:dd: a4:4e:89:7b:f1:1a:ee:c7:a8:1f:4a:7c:ec:e1:39:17:fd:cc: e1:d4:06:0b:48:66:a9:a2:fc:17:ca:4f:0a:f9:59:29:d4:88: e4:1d:1b:af:c9:a0:0a:10:96:d0:3a:53:df:c8:60:b0:b9:d6: 5d:d0:ac:18:c1:58:5f:ba:f2:60:c9:eb:34:24:e3:f5:a0:bb: 0b:c3:82:a5:4f:1e:60:67:1c:24:05:9e:08:de:57:d2:49:24: 20:83:9b:d6:cd:9c:e8:9a:ea:20:2a:a9:d6:61:70:62:d3:b5: 10:19:d6:c4:23:a2:d3:7c:d9:7c:d9:7f:24:3b:c0:2d:0e:6e: 0d:4a:21:52:9f:34:86:45:4d:9e:d0:c0:9b:d2:79:96:1f:0b: 8c:c3:ca:26:a1:09:83:c7:ab:f6:ab:99:69:17:c8:20:b2:3a: 95:6f:08:d5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCRDY5 MDAyRDBFOEI3RUQyQzNEMUQ1RDA3QUU2OTIyQzc0OTdGMDJEMB4XDTI1MDcwMTAx MzIyNFoXDTI2MDYxNTAxMzAwMlowMzExMC8GA1UEAxMoREVERTVBQUFEM0JDOTcx NDVCNzE5NjlFNUQ2QUVDRjIyMkE5OUU5ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKXqIv2eXsYC/wEcuNwiDhSootfgO3+0YQm4u/vt3raTNYuTOpa1 u7yVpwt+xyHo2fhxgXAZNzkQAP4inMrxivAtsNf+482/Wpie9CKVQsvG9HiSBGqj UeiMyyher/w2wiCe3VPbwXTPnZV2uf2hccU/43lMthB66ciLPyLZRwP04KxX0n/b zAhscpn48DwjRMJLV90tc6KiuO13X48HTNJ2WIgZM9ZQqeVeORyK7+7DmMTGi+kq KszftsbfKxxGLKrsJC10vSHjENCCZrL9Cn10yzxRgYos2K67dMkF1CE9HV63i0+K NfgmRZwldiYsN0Ewt7ow1v0i2kwG73eEMUUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTe3lqq07yXFFtxlp5dauzyIqmemDAfBgNVHSMEGDAWgBS9aQAtDot+0sPR1dB6 5pIsdJfwLTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTc3L3ZXa0FMUTZMZnRMRDBkWFFldWFTTEhTWDhDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3ZXa0FMUTZMZnRMRDBkWFFldWFTTEhT WDhDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NzcvM3Q1YXF0TzhseFJiY1phZVhXcnM4aUtwbnBnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNt1kDANBgkqhkiG9w0BAQsFAAOCAQEAop9t+M/zupzv5j08qhNmrze+Ezly DP1FAC7iO/GISotbFNFlRgX03EbAkF+23WrI9BNqqyqWiBY2Rqt5qRZPLfrppMBw 6VmV1N1G4VIMMZjEXHE/82EwqmbdpE6Je/Ea7seoH0p87OE5F/3M4dQGC0hmqaL8 F8pPCvlZKdSI5B0br8mgChCW0DpT38hgsLnWXdCsGMFYX7ryYMnrNCTj9aC7C8OC pU8eYGccJAWeCN5X0kkkIIOb1s2c6JrqICqp1mFwYtO1EBnWxCOi03zZfNl/JDvA LQ5uDUohUp80hkVNntDAm9J5lh8LjMPKJqEJg8er9quZaRfIILI6lW8I1Q== -----END CERTIFICATE-----Generated at Fri Jul 4 19:13:46 2025 by rpki-client