$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/EbWZeaaKOHPkxvvuJMH03USeXCY.roa File: EbWZeaaKOHPkxvvuJMH03USeXCY.roa (raw, json) Hash identifier: 7EreBHwyjzjGR6N1B7eZUNSE0EUuKPckXrpJ1fa7JBw= Subject key identifier: 11:B5:99:79:A6:8A:38:73:E4:C6:FB:EE:24:C1:F4:DD:44:9E:5C:26 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01FA Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/EbWZeaaKOHPkxvvuJMH03USeXCY.roa Signing time: Sat 01 Mar 2025 01:31:00 +0000 ROA not before: Sat 01 Mar 2025 01:31:00 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 4713 IP address blocks: 211.130.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 1 01:31:00 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=11B59979A68A3873E4C6FBEE24C1F4DD449E5C26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d9:7e:3d:90:28:0d:4e:29:d2:7c:20:7e:33: 80:41:7a:bf:4c:8e:aa:13:65:04:2c:95:f1:5b:da: 7d:2a:9d:6e:4b:1d:ac:a3:06:61:1a:e3:99:e9:94: b9:16:60:35:7b:5c:1b:d3:d9:10:9b:36:6b:35:71: 40:81:d4:f2:17:b0:9b:5d:05:e0:5f:da:39:97:37: 28:88:55:9e:80:34:50:4a:f3:de:03:96:36:af:9c: ca:f8:fb:eb:fe:47:83:a5:df:ff:0b:65:08:9c:e5: 36:55:f3:3b:5e:08:08:55:71:90:18:8d:db:53:9e: 7f:0f:79:55:f5:a5:67:9f:a4:12:05:49:4d:ff:9d: 01:2a:cd:d8:cc:cc:52:77:51:41:7a:92:b3:38:2e: 94:60:94:c7:52:7a:c5:9e:a3:af:f1:c4:3c:ca:87: 4f:a2:9a:ab:72:96:b1:23:17:da:ed:64:56:48:f7: 45:d9:98:b8:2c:3c:1e:e9:82:8d:72:91:45:7a:24: 27:9b:6a:23:b1:91:1f:c0:9a:c6:7d:40:86:d0:b9: 38:c0:96:33:c8:cc:cf:01:65:f7:57:cb:d9:7c:f6: eb:20:39:85:8f:1b:fc:fa:57:07:6d:15:92:e5:eb: fb:8a:eb:3b:62:f7:d6:46:fb:f1:3c:fb:88:8d:06: 91:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B5:99:79:A6:8A:38:73:E4:C6:FB:EE:24:C1:F4:DD:44:9E:5C:26 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/EbWZeaaKOHPkxvvuJMH03USeXCY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.130.128.0/17 Signature Algorithm: sha256WithRSAEncryption 3a:54:ea:42:50:2e:93:61:63:d9:e5:36:d8:c2:4f:df:af:8a: 45:c3:d5:4a:6a:1b:d4:04:ad:fb:88:ea:a0:2f:00:78:5a:cb: e6:16:68:86:45:62:86:1b:04:7c:cd:ee:a7:18:73:a6:13:9d: 5b:6d:1e:42:0f:a0:78:6d:7e:e8:c3:9b:9a:08:f0:2e:10:14: b4:e7:7d:64:7f:16:ee:fa:73:42:82:f4:da:c9:7d:a9:d0:27: 1e:77:3a:ce:15:77:d2:1c:39:39:45:8a:c9:65:82:b4:3f:8a: d1:d4:c7:29:80:41:f1:7d:75:c1:6a:6c:f2:c9:ff:be:1f:25: f6:58:9b:c3:f0:d2:f6:d9:9f:54:62:20:69:a8:e5:dc:e5:a4: b6:37:43:b6:16:d8:17:29:1a:c4:fe:da:55:1d:c0:68:7a:a4: 09:d9:70:56:08:fa:57:6a:ff:88:dc:4c:3a:16:15:95:6d:98: af:73:33:62:01:b3:5b:f7:6e:62:99:da:6f:c0:82:6d:28:fb: e8:bd:db:0f:8b:65:87:a0:43:68:2d:5e:10:33:09:75:0b:d7: 20:ec:fc:34:80:ca:dc:78:55:c4:5e:1d:3c:2d:8a:79:71:7f: 89:23:99:60:3b:ea:89:05:f1:3c:c1:cf:2f:45:94:f1:02:d3: 49:0d:06:66 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAfowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTAzMDEw MTMxMDBaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDExQjU5OTc5QTY4QTM4 NzNFNEM2RkJFRTI0QzFGNERENDQ5RTVDMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa2X49kCgNTinSfCB+M4BBer9MjqoTZQQslfFb2n0qnW5LHayj BmEa45nplLkWYDV7XBvT2RCbNms1cUCB1PIXsJtdBeBf2jmXNyiIVZ6ANFBK894D ljavnMr4++v+R4Ol3/8LZQic5TZV8zteCAhVcZAYjdtTnn8PeVX1pWefpBIFSU3/ nQEqzdjMzFJ3UUF6krM4LpRglMdSesWeo6/xxDzKh0+imqtylrEjF9rtZFZI90XZ mLgsPB7pgo1ykUV6JCebaiOxkR/AmsZ9QIbQuTjAljPIzM8BZfdXy9l89usgOYWP G/z6VwdtFZLl6/uK6zti99ZG+/E8+4iNBpHRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUEbWZeaaKOHPkxvvuJMH03USeXCYwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL0ViV1plYWFLT0hQa3h2dnVKTUgwM1VTZVhDWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfTgoAwDQYJKoZIhvcNAQELBQADggEBADpU6kJQLpNhY9nlNtjCT9+vikXD 1UpqG9QErfuI6qAvAHhay+YWaIZFYoYbBHzN7qcYc6YTnVttHkIPoHhtfujDm5oI 8C4QFLTnfWR/Fu76c0KC9NrJfanQJx53Os4Vd9IcOTlFisllgrQ/itHUxymAQfF9 dcFqbPLJ/74fJfZYm8Pw0vbZn1RiIGmo5dzlpLY3Q7YW2BcpGsT+2lUdwGh6pAnZ cFYI+ldq/4jcTDoWFZVtmK9zM2IBs1v3bmKZ2m/Agm0o++i92w+LZYegQ2gtXhAz CXUL1yDs/DSAytx4VcReHTwtinlxf4kjmWA76okF8TzBzy9FlPEC00kNBmY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:04 2025 by rpki-client