$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/990/-2dA24YkSCbU_Wa-s1nFcwdqNr4.roa File: -2dA24YkSCbU_Wa-s1nFcwdqNr4.roa (raw, json) Hash identifier: T++uCYBvnUZZwiexQN+1BEz6IjyyJ0cB9CmKC0VkjfA= Subject key identifier: FB:67:40:DB:86:24:48:26:D4:FD:66:BE:B3:59:C5:73:07:6A:36:BE Certificate issuer: /CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Certificate serial: 54 Authority key identifier: 42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/-2dA24YkSCbU_Wa-s1nFcwdqNr4.roa Signing time: Thu 01 May 2025 01:34:25 +0000 ROA not before: Thu 01 May 2025 01:34:25 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 131965 IP address blocks: 210.131.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Validity Not Before: May 1 01:34:25 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=FB6740DB86244826D4FD66BEB359C573076A36BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:52:cd:b2:52:08:5c:63:6a:92:52:c0:52:49: 35:0b:56:69:c7:35:21:c8:eb:cb:88:c9:af:b2:70: c5:dd:c6:09:7a:6a:ad:93:a2:b3:94:cb:3e:4c:df: 0d:8a:1a:5b:cf:0f:73:e1:c4:88:b6:0b:24:30:14: 36:f9:13:c5:15:c3:33:47:28:61:ed:d1:39:2c:d7: 31:0d:78:55:b0:83:07:ca:fd:22:21:7a:bf:b2:ff: 0b:d3:78:28:ed:f5:f6:da:a4:06:be:e2:c3:dd:bc: 0a:41:ef:6a:0c:4b:c8:d0:c2:17:74:d4:5f:6f:1a: d7:2f:04:80:71:b8:a5:4f:61:a9:25:2a:01:2f:03: 3d:ed:73:93:f8:10:d5:d1:b1:c6:4b:0c:59:05:7a: ec:c6:8b:66:e1:70:a6:05:b9:e6:24:03:27:e3:ea: 97:f1:9c:40:65:68:ac:42:c2:bf:a4:8f:6d:3a:f2: d2:98:d6:78:b1:b0:f2:fa:9c:48:67:49:16:06:60: 37:ad:c2:70:41:c2:ca:68:bb:2f:65:40:57:65:fb: 77:c7:2d:2a:42:f7:b1:66:fe:ca:a7:97:74:48:83: 19:08:4f:02:71:52:74:e0:47:b5:9b:a9:69:38:2f: 6b:a0:a3:e2:48:6c:c4:9e:09:68:31:ca:56:f6:c8: 08:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:67:40:DB:86:24:48:26:D4:FD:66:BE:B3:59:C5:73:07:6A:36:BE X509v3 Authority Key Identifier: keyid:42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/-2dA24YkSCbU_Wa-s1nFcwdqNr4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.131.208.0/20 Signature Algorithm: sha256WithRSAEncryption b3:32:d8:5a:b6:a2:b0:4f:4e:93:60:cb:5a:4a:e0:71:e9:e9: 45:52:c7:c6:2b:78:63:c2:3f:c3:ca:f2:4e:40:99:d9:a3:84: 37:25:c9:e6:6e:ed:2a:2a:8b:c2:f8:2a:99:68:a6:37:69:67: e2:c0:c1:c8:7e:f6:76:a3:01:09:bc:7a:26:37:47:62:15:dc: 21:61:d2:16:69:9b:ee:95:59:2a:41:4d:bf:93:d5:f2:d6:26: 3b:6d:c2:e8:b0:4a:25:72:c6:73:12:a6:35:75:de:78:a5:b6: cc:5f:07:f9:07:56:fc:4b:25:4b:9f:a6:05:c5:31:52:fd:0d: d7:01:78:bb:f3:9a:8a:87:5c:3d:2b:f5:ca:c2:36:5b:df:b1: ed:61:2e:ec:18:88:3c:18:9e:89:07:3f:29:5c:06:46:ae:d7: c1:42:8f:ef:a6:32:77:04:82:4f:f3:b5:a2:a3:9f:5f:23:e1: cc:f5:3b:bf:82:67:07:bf:49:32:d5:d1:a9:4d:f1:56:29:ac: e9:a7:f1:f3:97:ea:3c:cf:d2:a5:8e:17:15:bb:7c:e7:4b:ee: dc:b1:0a:39:3c:e8:32:2f:7d:8c:94:02:a4:92:18:46:42:4c: e1:ce:53:ef:aa:47:18:cd:a6:c1:4d:a1:a3:50:19:44:a7:c4: f2:f4:6e:14 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MkUz MjQ1N0MxNkJBODc0MjE2QThGNURCQjBEMzM1QkQxNDhDQjMxMB4XDTI1MDUwMTAx MzQyNVoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoRkI2NzQwREI4NjI0NDgy NkQ0RkQ2NkJFQjM1OUM1NzMwNzZBMzZCRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK1SzbJSCFxjapJSwFJJNQtWacc1Icjry4jJr7Jwxd3GCXpqrZOi s5TLPkzfDYoaW88Pc+HEiLYLJDAUNvkTxRXDM0coYe3ROSzXMQ14VbCDB8r9IiF6 v7L/C9N4KO319tqkBr7iw928CkHvagxLyNDCF3TUX28a1y8EgHG4pU9hqSUqAS8D Pe1zk/gQ1dGxxksMWQV67MaLZuFwpgW55iQDJ+Pql/GcQGVorELCv6SPbTry0pjW eLGw8vqcSGdJFgZgN63CcEHCymi7L2VAV2X7d8ctKkL3sWb+yqeXdEiDGQhPAnFS dOBHtZupaTgva6Cj4khsxJ4JaDHKVvbICOcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBT7Z0DbhiRIJtT9Zr6zWcVzB2o2vjAfBgNVHSMEGDAWgBRC4yRXwWuodCFqj127 DTNb0UjLMTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTkwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlGSXl6RS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlG SXl6RS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85OTAvLTJkQTI0WWtTQ2JVX1dhLXMxbkZjd2RxTnI0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNKD0DANBgkqhkiG9w0BAQsFAAOCAQEAszLYWraisE9Ok2DLWkrgcenpRVLH xit4Y8I/w8ryTkCZ2aOENyXJ5m7tKiqLwvgqmWimN2ln4sDByH72dqMBCbx6JjdH YhXcIWHSFmmb7pVZKkFNv5PV8tYmO23C6LBKJXLGcxKmNXXeeKW2zF8H+QdW/Esl S5+mBcUxUv0N1wF4u/OaiodcPSv1ysI2W9+x7WEu7BiIPBieiQc/KVwGRq7XwUKP 76YydwSCT/O1oqOfXyPhzPU7v4JnB79JMtXRqU3xVims6afx85fqPM/SpY4XFbt8 50vu3LEKOTzoMi99jJQCpJIYRkJM4c5T76pHGM2mwU2ho1AZRKfE8vRuFA== -----END CERTIFICATE-----Generated at Sun May 18 10:52:51 2025 by rpki-client