$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/Q4A4doI4XcGOSZXMIpS4Q_2OXmA.roa File: Q4A4doI4XcGOSZXMIpS4Q_2OXmA.roa (raw, json) Hash identifier: PDyaqAwK22aIUvHNl6vNHT94aVnHdDH1NKNLN3b2tyg= Subject key identifier: 43:80:38:76:82:38:5D:C1:8E:49:95:CC:22:94:B8:43:FD:8E:5E:60 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 4A Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/Q4A4doI4XcGOSZXMIpS4Q_2OXmA.roa Signing time: Sat 01 Mar 2025 01:29:46 +0000 ROA not before: Sat 01 Mar 2025 01:29:46 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 17698 IP address blocks: 220.208.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 1 01:29:46 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=4380387682385DC18E4995CC2294B843FD8E5E60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4a:55:18:c4:e9:6b:7f:cf:a7:b9:1c:e2:3f: f5:41:96:67:d6:0f:f9:02:71:31:bd:c9:4b:d4:d3: 2c:6c:ff:3d:6d:69:af:7c:98:fe:ea:02:58:93:0d: a0:e7:e5:f2:58:a0:8e:ad:7c:35:2c:0f:27:28:f0: e2:c8:b5:9f:6c:55:38:91:5e:1a:d4:75:13:62:14: c3:9d:ea:4d:37:89:32:12:9e:b9:d3:dd:76:c9:6a: 53:11:54:f8:31:ce:3e:07:f3:8a:cd:5d:76:23:a6: 28:16:07:4b:ce:6a:fc:d1:5f:d0:83:b0:4a:11:87: e8:04:08:5b:89:9d:86:5a:b5:79:84:a1:2d:8d:1b: f7:8b:48:ca:ef:6f:41:ff:00:bc:ab:d3:2b:9e:c4: 1a:79:56:38:d3:c0:95:20:f7:7b:9a:69:ca:a8:c2: 3a:ed:8a:4e:bf:17:d5:55:f3:e9:84:4f:ce:28:b4: b2:e4:66:de:1f:9d:12:bf:a7:8c:66:92:14:38:eb: 43:4b:68:02:08:3c:cf:13:14:26:c8:25:6b:3e:ca: 06:b5:40:48:e1:de:50:10:49:d1:67:dc:5c:7e:07: 75:49:d6:a2:e5:6e:dc:55:ed:2c:b0:cc:d8:23:a5: f8:d9:a8:f4:b4:88:f5:79:e5:f5:09:e5:e0:90:23: 7d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:80:38:76:82:38:5D:C1:8E:49:95:CC:22:94:B8:43:FD:8E:5E:60 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/Q4A4doI4XcGOSZXMIpS4Q_2OXmA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.208.224.0/19 Signature Algorithm: sha256WithRSAEncryption d4:b9:56:dd:1b:c3:3b:f5:33:94:91:22:ca:0c:b5:36:09:cf: f4:03:b3:66:3f:1c:66:b8:9d:8d:1d:d4:57:29:e0:8a:0d:4b: 20:10:b6:2d:fc:c8:91:2b:9f:06:eb:08:7d:dc:c8:52:6b:ec: 17:a5:ee:dc:7b:cf:f9:c8:cf:30:28:30:91:08:3d:88:ec:5b: f2:a2:b5:65:b9:75:40:4c:18:0a:64:cc:c1:db:24:0a:53:98: bb:13:db:b5:38:25:78:1f:54:06:c4:de:0e:91:b0:cb:55:9a: ea:aa:e4:68:f1:12:fc:85:89:d5:68:8a:e4:5f:8e:ae:78:6e: 91:e5:88:d8:e7:87:17:57:db:82:f4:30:2d:4e:5f:3c:fd:07: 3e:7a:f4:d0:e5:40:0c:5f:75:5b:9e:1e:92:a7:81:ef:59:c7: 00:76:f5:da:7e:af:12:ca:9b:db:11:4c:06:d3:db:bb:90:1a: 23:11:20:31:56:7e:ba:43:de:80:3a:0e:c5:fc:99:26:e5:8e: ea:98:24:fa:a6:7c:a6:ea:00:27:a7:f0:c8:85:45:48:5c:a6: 0d:d8:75:35:68:90:a5:83:a7:bd:b2:e9:6c:91:ed:39:53:c3: c6:a1:c0:8a:27:41:15:f2:72:53:53:6e:9e:b0:ca:27:76:b9: 49:bc:e3:44 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI1MDMwMTAx Mjk0NloXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoNDM4MDM4NzY4MjM4NURD MThFNDk5NUNDMjI5NEI4NDNGRDhFNUU2MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOBKVRjE6Wt/z6e5HOI/9UGWZ9YP+QJxMb3JS9TTLGz/PW1pr3yY /uoCWJMNoOfl8ligjq18NSwPJyjw4si1n2xVOJFeGtR1E2IUw53qTTeJMhKeudPd dslqUxFU+DHOPgfzis1ddiOmKBYHS85q/NFf0IOwShGH6AQIW4mdhlq1eYShLY0b 94tIyu9vQf8AvKvTK57EGnlWONPAlSD3e5ppyqjCOu2KTr8X1VXz6YRPzii0suRm 3h+dEr+njGaSFDjrQ0toAgg8zxMUJsglaz7KBrVASOHeUBBJ0WfcXH4HdUnWouVu 3FXtLLDM2COl+Nmo9LSI9Xnl9Qnl4JAjfcMCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRDgDh2gjhdwY5JlcwilLhD/Y5eYDAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL1E0QTRkb0k0WGNHT1NaWE1JcFM0UV8yT1htQS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAXc0OAwDQYJKoZIhvcNAQELBQADggEBANS5Vt0bwzv1M5SRIsoMtTYJ z/QDs2Y/HGa4nY0d1Fcp4IoNSyAQti38yJErnwbrCH3cyFJr7Bel7tx7z/nIzzAo MJEIPYjsW/KitWW5dUBMGApkzMHbJApTmLsT27U4JXgfVAbE3g6RsMtVmuqq5Gjx EvyFidVoiuRfjq54bpHliNjnhxdX24L0MC1OXzz9Bz569NDlQAxfdVueHpKnge9Z xwB29dp+rxLKm9sRTAbT27uQGiMRIDFWfrpD3oA6DsX8mSbljuqYJPqmfKbqACen 8MiFRUhcpg3YdTVokKWDp72y6WyR7TlTw8ahwIonQRXyclNTbp6wyid2uUm840Q= -----END CERTIFICATE-----Generated at Sat Apr 5 23:11:13 2025 by rpki-client