$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/LrikN6AEp21qZnAVtV3pagRmSQ8.roa File: LrikN6AEp21qZnAVtV3pagRmSQ8.roa (raw, json) Hash identifier: xu9MsGNdRX/R4S/Xhv30L06nyte0D04pIPkeqpO4S6A= Subject key identifier: 2E:B8:A4:37:A0:04:A7:6D:6A:66:70:15:B5:5D:E9:6A:04:66:49:0F Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 3E Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/LrikN6AEp21qZnAVtV3pagRmSQ8.roa Signing time: Sat 01 Mar 2025 01:29:41 +0000 ROA not before: Sat 01 Mar 2025 01:29:41 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 17698 IP address blocks: 123.255.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 1 01:29:41 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=2EB8A437A004A76D6A667015B55DE96A0466490F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:64:cf:0a:24:b0:9b:d1:29:52:2c:03:42:dd: 99:ff:cf:1b:bb:c3:ca:82:62:45:9a:a7:e3:b1:81: 30:e8:b8:23:33:d9:9e:c2:f2:b3:d1:88:20:26:f8: a5:97:79:15:eb:13:ca:ed:6b:a6:ba:24:41:b7:d0: 51:c3:d5:03:e8:0d:de:33:0c:55:da:7f:59:cf:20: 89:ea:30:8a:30:38:8e:b5:98:f9:3c:12:0f:8b:c2: 3a:77:9d:51:f3:15:a8:60:94:a1:f9:cb:01:a5:4d: 18:f7:39:48:2c:c4:2c:87:9d:3d:9b:4c:a4:c1:1c: 6c:de:6e:b4:9a:04:23:56:74:94:4b:a2:39:8a:5f: 6c:6e:8d:01:df:6a:0a:66:6a:c4:c8:a2:d0:94:b1: c5:6f:c2:e0:c2:f3:70:35:1f:d3:e3:3f:7c:06:a0: 9a:53:14:8d:2b:61:25:47:15:0a:d1:fd:b4:ff:71: b2:a1:33:f0:e3:a4:2a:b0:91:5c:53:13:50:34:bc: 92:ed:46:97:f1:6d:8e:99:84:c2:42:2d:b6:10:4a: 2e:d3:75:a6:5c:4f:8f:a6:70:70:da:a9:d0:0e:1d: d0:48:44:e8:39:37:bc:76:b2:f1:1f:8d:c8:be:9e: 0c:6e:d8:b4:64:bb:79:e3:8f:9d:f2:65:1e:2e:a6: db:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B8:A4:37:A0:04:A7:6D:6A:66:70:15:B5:5D:E9:6A:04:66:49:0F X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/LrikN6AEp21qZnAVtV3pagRmSQ8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.255.192.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:e5:57:40:23:d2:3b:38:16:98:cb:13:e9:ab:e7:a1:af:13: 78:c6:09:97:86:7d:a8:20:d5:bb:68:5f:50:39:03:90:27:cc: 6a:11:c8:e2:93:52:41:cc:f7:1b:46:7f:f2:86:86:2c:46:13: 2f:e5:8d:79:26:8d:4d:38:a9:06:34:84:a8:62:6c:97:1b:22: bf:76:02:f8:f8:fb:74:ec:b8:1a:49:e3:30:5a:a0:c2:2b:83: 64:48:43:17:a0:6e:6a:72:56:0d:eb:72:7f:23:4f:e7:7f:97: ef:c9:f4:1d:c1:99:27:0f:b7:83:b3:6e:a0:76:02:00:aa:5d: 07:6f:1f:a9:06:09:1e:bf:2f:a5:99:e4:18:87:13:2d:ac:41: b7:d9:40:55:be:d9:39:f4:a7:d8:44:b3:e0:a4:29:55:20:60: f5:10:d6:0b:90:52:af:5f:f6:9a:9f:3e:73:ab:b1:e5:ef:8b: 5d:85:d2:df:8a:53:5c:b3:4f:52:db:16:3e:19:20:54:79:e1: 74:bb:a4:25:fa:e6:b8:06:9c:72:e3:89:92:5d:64:d1:c5:79: 00:fd:a6:7a:b3:a5:de:f4:7f:b7:52:49:03:6e:3d:22:82:18: 8e:59:04:83:0e:fb:a2:de:ac:08:e7:06:6f:31:1e:4a:85:06: bc:7b:88:99 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI1MDMwMTAx Mjk0MVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMkVCOEE0MzdBMDA0QTc2 RDZBNjY3MDE1QjU1REU5NkEwNDY2NDkwRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL9kzwoksJvRKVIsA0Ldmf/PG7vDyoJiRZqn47GBMOi4IzPZnsLy s9GIICb4pZd5FesTyu1rprokQbfQUcPVA+gN3jMMVdp/Wc8gieowijA4jrWY+TwS D4vCOnedUfMVqGCUofnLAaVNGPc5SCzELIedPZtMpMEcbN5utJoEI1Z0lEuiOYpf bG6NAd9qCmZqxMii0JSxxW/C4MLzcDUf0+M/fAagmlMUjSthJUcVCtH9tP9xsqEz 8OOkKrCRXFMTUDS8ku1Gl/FtjpmEwkItthBKLtN1plxPj6ZwcNqp0A4d0EhE6Dk3 vHay8R+NyL6eDG7YtGS7eeOPnfJlHi6m230CAwEAAaOCAigwggIkMB0GA1UdDgQW BBQuuKQ3oASnbWpmcBW1XelqBGZJDzAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL0xyaWtONkFFcDIxcVpuQVZ0VjNwYWdSbVNROC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAN7/8AwDQYJKoZIhvcNAQELBQADggEBAIrlV0Aj0js4FpjLE+mr56Gv E3jGCZeGfagg1btoX1A5A5AnzGoRyOKTUkHM9xtGf/KGhixGEy/ljXkmjU04qQY0 hKhibJcbIr92Avj4+3TsuBpJ4zBaoMIrg2RIQxegbmpyVg3rcn8jT+d/l+/J9B3B mScPt4OzbqB2AgCqXQdvH6kGCR6/L6WZ5BiHEy2sQbfZQFW+2Tn0p9hEs+CkKVUg YPUQ1guQUq9f9pqfPnOrseXvi12F0t+KU1yzT1LbFj4ZIFR54XS7pCX65rgGnHLj iZJdZNHFeQD9pnqzpd70f7dSSQNuPSKCGI5ZBIMO+6LerAjnBm8xHkqFBrx7iJk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:28 2025 by rpki-client