$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/ZmIz-EAq0j0wqFOqrVfwwJeW4dI.roa File: ZmIz-EAq0j0wqFOqrVfwwJeW4dI.roa (raw, json) Hash identifier: UmXOg38DSEifKLV0dondb7jWBsqRo8Squg9yri8zQ3g= Subject key identifier: 66:62:33:F8:40:2A:D2:3D:30:A8:53:AA:AD:57:F0:C0:97:96:E1:D2 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 41 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/ZmIz-EAq0j0wqFOqrVfwwJeW4dI.roa Signing time: Sat 01 Mar 2025 01:29:43 +0000 ROA not before: Sat 01 Mar 2025 01:29:43 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 17698 IP address blocks: 202.86.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 1 01:29:43 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=666233F8402AD23D30A853AAAD57F0C09796E1D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1c:e6:ac:aa:c0:e6:1b:ac:e8:78:15:ea:0f: 00:38:b8:c2:1b:a9:4d:b5:7d:a9:a2:35:49:ad:c4: 16:64:ec:14:e4:1b:b2:ad:f3:b7:1d:19:d0:3c:63: 0a:a7:ba:af:b8:3f:51:d6:ad:af:b4:44:63:83:25: 2e:71:17:16:3a:90:6c:23:6c:85:4d:e7:71:40:04: df:e7:5a:67:8f:d7:52:4f:81:db:08:1f:9a:5e:26: e7:04:38:75:5d:5d:84:55:52:ef:05:03:09:cd:fe: 5a:58:dd:17:25:18:af:cd:92:1c:51:12:03:81:a9: 3d:24:e2:e6:37:4e:52:c0:ad:bc:f1:af:e8:14:eb: 41:7a:bf:5d:9d:6f:65:e4:30:e5:0d:5a:fb:9b:c8: dd:8c:ab:d8:c2:83:97:d0:a2:82:58:01:3e:75:4e: 5e:4f:09:91:71:ff:34:7d:b9:e9:ee:cd:3e:be:19: 3c:66:25:83:db:00:bb:14:c3:37:74:67:86:7e:63: b5:27:5a:da:2c:be:94:e8:7e:ba:0c:18:e5:41:cb: c8:41:c8:e5:a0:c7:55:c0:c4:3f:1e:8b:8b:f8:2e: 5c:6d:c3:e9:b8:12:2f:5d:e2:d2:42:64:5d:f0:4d: bf:76:36:60:cc:f2:6b:f9:16:42:21:15:db:08:6f: d0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:62:33:F8:40:2A:D2:3D:30:A8:53:AA:AD:57:F0:C0:97:96:E1:D2 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/ZmIz-EAq0j0wqFOqrVfwwJeW4dI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.86.240.0/21 Signature Algorithm: sha256WithRSAEncryption d9:56:dd:c4:93:3a:5a:b4:9e:d0:d3:1e:e8:8a:ac:66:ab:77: df:b5:d5:6a:04:e7:0a:1f:e5:6d:2d:fe:31:65:aa:8b:0f:8b: 2e:7f:13:11:d8:a7:92:d6:9a:04:cb:f1:e4:50:8b:a2:6c:76: 31:39:c1:b0:79:2f:87:26:74:cf:38:0b:10:b6:f5:f4:c7:e4: 00:e6:2e:d0:bd:30:72:d3:00:39:e5:3c:c1:f2:e0:87:f7:3e: c2:f6:b8:27:83:a2:30:ca:dc:1d:90:a2:b9:5b:6a:2c:84:03: e0:c9:18:a4:08:3a:2a:72:41:dc:0a:6c:ba:ba:07:25:97:ce: 09:f5:2b:e3:c8:ac:dc:79:95:00:e9:f2:eb:b6:64:ba:22:2b: d3:ba:23:43:fd:28:55:33:3d:f4:09:d0:54:28:d3:6c:46:4f: 63:aa:e9:73:64:b8:ff:99:f9:e0:e5:a7:40:07:5e:89:11:bf: 0f:80:0e:94:7c:08:c2:ce:74:3f:ed:74:16:aa:a8:34:1a:fd: a7:08:33:ef:2d:ea:43:d2:f2:f8:9b:31:a2:04:dd:01:1d:69: 62:40:41:c2:23:67:ce:2d:8d:53:d8:14:4a:64:cf:3e:a8:35: e5:18:d1:99:36:f3:93:69:b8:56:40:dc:78:4d:3f:3f:1d:83: e1:f5:0e:b9 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI1MDMwMTAx Mjk0M1oXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoNjY2MjMzRjg0MDJBRDIz RDMwQTg1M0FBQUQ1N0YwQzA5Nzk2RTFEMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALUc5qyqwOYbrOh4FeoPADi4whupTbV9qaI1Sa3EFmTsFOQbsq3z tx0Z0DxjCqe6r7g/Udatr7REY4MlLnEXFjqQbCNshU3ncUAE3+daZ4/XUk+B2wgf ml4m5wQ4dV1dhFVS7wUDCc3+WljdFyUYr82SHFESA4GpPSTi5jdOUsCtvPGv6BTr QXq/XZ1vZeQw5Q1a+5vI3Yyr2MKDl9CiglgBPnVOXk8JkXH/NH256e7NPr4ZPGYl g9sAuxTDN3Rnhn5jtSda2iy+lOh+ugwY5UHLyEHI5aDHVcDEPx6Li/guXG3D6bgS L13i0kJkXfBNv3Y2YMzya/kWQiEV2whv0FECAwEAAaOCAigwggIkMB0GA1UdDgQW BBRmYjP4QCrSPTCoU6qtV/DAl5bh0jAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL1ptSXotRUFxMGowd3FGT3FyVmZ3d0plVzRkSS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAPKVvAwDQYJKoZIhvcNAQELBQADggEBANlW3cSTOlq0ntDTHuiKrGar d9+11WoE5wof5W0t/jFlqosPiy5/ExHYp5LWmgTL8eRQi6JsdjE5wbB5L4cmdM84 CxC29fTH5ADmLtC9MHLTADnlPMHy4If3PsL2uCeDojDK3B2QorlbaiyEA+DJGKQI OipyQdwKbLq6ByWXzgn1K+PIrNx5lQDp8uu2ZLoiK9O6I0P9KFUzPfQJ0FQo02xG T2Oq6XNkuP+Z+eDlp0AHXokRvw+ADpR8CMLOdD/tdBaqqDQa/acIM+8t6kPS8vib MaIE3QEdaWJAQcIjZ84tjVPYFEpkzz6oNeUY0Zk285NpuFZA3HhNPz8dg+H1Drk= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:53 2025 by rpki-client