$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/990/IbZ5cx3RPIQbvpwof4uVEOAFmDk.roa File: IbZ5cx3RPIQbvpwof4uVEOAFmDk.roa (raw, json) Hash identifier: CqgJ+nfwY0SDuFaHNENmI/NtS8zWqmRTEyO7D4sL9uc= Subject key identifier: 21:B6:79:73:1D:D1:3C:84:1B:BE:9C:28:7F:8B:95:10:E0:05:98:39 Certificate issuer: /CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Certificate serial: 53 Authority key identifier: 42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/IbZ5cx3RPIQbvpwof4uVEOAFmDk.roa Signing time: Thu 01 May 2025 01:34:24 +0000 ROA not before: Thu 01 May 2025 01:34:24 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 131965 IP address blocks: 223.27.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Validity Not Before: May 1 01:34:24 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=21B679731DD13C841BBE9C287F8B9510E0059839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c4:e7:72:65:38:4a:fa:1d:34:86:80:a4:6e: ac:fd:72:9e:a8:e8:b9:32:13:c2:68:b7:49:a3:6d: 1b:6f:85:e8:1c:04:76:46:fc:74:a6:c7:bc:b3:f0: d7:74:3b:8d:20:b9:d1:fb:d8:0a:1f:78:62:b6:d9: 28:92:30:07:62:5a:21:e3:fa:25:84:5f:8b:f6:e7: 29:10:1a:4f:3e:88:8c:b9:b0:74:e7:bd:cb:01:70: a1:e8:68:95:08:d2:82:e4:74:e4:1d:f2:d0:be:58: 84:77:c7:ae:ac:03:bc:ac:a8:53:c4:97:4d:90:3a: 28:95:90:e4:c3:2d:0b:83:e1:87:28:b9:e0:f9:28: aa:fc:7b:8a:dd:f8:51:2a:1a:53:bb:62:ac:34:cb: 56:c1:0b:81:72:01:01:88:24:92:b6:48:c7:35:73: c6:ad:32:cf:dd:25:39:73:4f:25:2a:5d:19:18:7c: 11:01:15:a2:15:8f:49:41:25:b9:b0:d2:97:cb:c7: f7:e1:a3:1f:5d:9d:71:14:a6:68:ba:11:2c:39:ab: ae:b9:95:e2:b4:b4:ab:80:1b:0f:1e:4f:e7:6e:47: 4d:13:0a:74:a3:e5:06:0c:0d:72:d7:9b:ae:a6:f1: 85:83:d4:43:c2:11:0e:de:8a:20:20:08:7e:86:ea: e1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B6:79:73:1D:D1:3C:84:1B:BE:9C:28:7F:8B:95:10:E0:05:98:39 X509v3 Authority Key Identifier: keyid:42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/IbZ5cx3RPIQbvpwof4uVEOAFmDk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.27.68.0/22 Signature Algorithm: sha256WithRSAEncryption 19:2d:96:1c:c6:a9:25:56:7c:7d:31:10:2e:a9:ed:44:3c:35: 33:6f:d6:aa:29:4e:9e:f8:86:d7:41:41:eb:16:98:ab:32:65: 30:20:81:60:ce:ef:19:f2:d0:51:f1:54:85:3c:dd:2f:5c:33: fe:96:66:15:1c:a3:fa:c0:eb:c0:7d:4d:69:66:a7:9a:9e:03: 46:f6:11:95:7d:8b:ef:f9:d3:62:b5:65:cc:47:b3:05:14:db: 1a:e8:e1:16:0e:5e:32:f2:5b:19:93:72:e7:f9:2b:be:4f:f1: 1b:a0:a3:cb:18:16:20:21:e8:32:86:c1:dd:10:28:78:f5:fd: d9:d8:1f:fd:90:b2:57:ee:42:52:7d:85:ff:36:01:e9:26:62: 51:2d:ca:1c:de:56:fd:0f:4b:63:95:24:56:37:45:07:1c:17: 61:a4:2d:01:8d:1e:68:bc:ad:25:24:62:e2:4b:22:7c:f7:a6: 3c:50:87:01:97:58:53:3a:90:ec:42:9d:c8:26:08:71:3f:fe: 52:69:1d:78:28:17:9e:61:c0:5d:df:ab:eb:07:21:2e:a2:c9: 82:7a:dc:e0:ec:45:ac:63:87:5f:96:6d:d0:c4:e4:e3:43:39: 39:00:5b:33:da:4f:04:e9:77:22:14:8d:a2:52:7c:cd:c1:22: 33:d9:ad:76 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBUzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MkUz MjQ1N0MxNkJBODc0MjE2QThGNURCQjBEMzM1QkQxNDhDQjMxMB4XDTI1MDUwMTAx MzQyNFoXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoMjFCNjc5NzMxREQxM0M4 NDFCQkU5QzI4N0Y4Qjk1MTBFMDA1OTgzOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMXE53JlOEr6HTSGgKRurP1ynqjouTITwmi3SaNtG2+F6BwEdkb8 dKbHvLPw13Q7jSC50fvYCh94YrbZKJIwB2JaIeP6JYRfi/bnKRAaTz6IjLmwdOe9 ywFwoeholQjSguR05B3y0L5YhHfHrqwDvKyoU8SXTZA6KJWQ5MMtC4Phhyi54Pko qvx7it34USoaU7tirDTLVsELgXIBAYgkkrZIxzVzxq0yz90lOXNPJSpdGRh8EQEV ohWPSUElubDSl8vH9+GjH12dcRSmaLoRLDmrrrmV4rS0q4AbDx5P525HTRMKdKPl BgwNctebrqbxhYPUQ8IRDt6KICAIfobq4RUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQhtnlzHdE8hBu+nCh/i5UQ4AWYOTAfBgNVHSMEGDAWgBRC4yRXwWuodCFqj127 DTNb0UjLMTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTkwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlGSXl6RS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlG SXl6RS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85OTAvSWJaNWN4M1JQSVFidnB3b2Y0dVZFT0FGbURrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAt8bRDANBgkqhkiG9w0BAQsFAAOCAQEAGS2WHMapJVZ8fTEQLqntRDw1M2/W qilOnviG10FB6xaYqzJlMCCBYM7vGfLQUfFUhTzdL1wz/pZmFRyj+sDrwH1NaWan mp4DRvYRlX2L7/nTYrVlzEezBRTbGujhFg5eMvJbGZNy5/krvk/xG6CjyxgWICHo MobB3RAoePX92dgf/ZCyV+5CUn2F/zYB6SZiUS3KHN5W/Q9LY5UkVjdFBxwXYaQt AY0eaLytJSRi4ksifPemPFCHAZdYUzqQ7EKdyCYIcT/+UmkdeCgXnmHAXd+r6wch LqLJgnrc4OxFrGOHX5Zt0MTk40M5OQBbM9pPBOl3IhSNolJ8zcEiM9mtdg== -----END CERTIFICATE-----Generated at Sun May 18 10:43:54 2025 by rpki-client