$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/IUXBkmgpmcX9I4hWtaMyUUBn0hw.roa File: IUXBkmgpmcX9I4hWtaMyUUBn0hw.roa (raw, json) Hash identifier: r2F8Ejy+FquH9O06WyJ5T7KHkxrq1b+JpK1ZVN7s4AY= Subject key identifier: 21:45:C1:92:68:29:99:C5:FD:23:88:56:B5:A3:32:51:40:67:D2:1C Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0211 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/IUXBkmgpmcX9I4hWtaMyUUBn0hw.roa Signing time: Sat 01 Mar 2025 01:31:10 +0000 ROA not before: Sat 01 Mar 2025 01:31:10 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 4713 IP address blocks: 125.172.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 1 01:31:10 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=2145C192682999C5FD238856B5A332514067D21C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:63:13:ca:f1:41:93:b0:39:91:15:22:54:4d: 09:b6:0c:97:10:6d:cd:32:ed:24:42:27:99:5e:07: d4:c8:f7:21:72:8c:dc:d1:57:10:a0:90:6d:31:88: f1:53:14:ee:40:04:33:4b:cf:d7:96:09:8f:71:ca: 22:95:b8:62:53:6a:e7:8f:83:fa:26:55:66:c8:76: 69:4c:91:6a:a6:f5:c0:db:64:41:c2:cc:9a:5f:c5: 0e:ea:98:7a:5e:13:a9:8c:26:1f:d7:a3:f2:ea:07: 87:ce:80:fc:fb:ce:99:1e:68:13:aa:65:de:bc:16: 74:0b:d0:4d:27:4c:e3:e6:4a:7d:57:a6:08:8a:1f: 82:a7:d0:a9:90:7c:f0:f1:c9:26:ef:ec:1e:70:72: 4c:5c:2f:7f:84:ea:ec:dd:88:86:81:cb:24:8e:8c: a7:b9:c0:05:de:55:96:8e:cf:64:e2:c5:c6:2f:8a: 91:bf:3f:fc:8d:fd:83:bd:e6:90:d9:53:82:31:57: 51:e4:78:d1:0b:8f:0a:82:3b:e3:bb:25:42:bf:e2: 5f:d5:a5:54:ce:45:ab:12:54:0c:93:4d:86:22:f1: e0:a2:b2:fe:ea:a3:3f:f8:13:a2:6e:52:eb:c2:65: 5b:c6:4b:4b:e4:e0:d3:8d:bc:d0:aa:54:ac:fd:85: ff:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:45:C1:92:68:29:99:C5:FD:23:88:56:B5:A3:32:51:40:67:D2:1C X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/IUXBkmgpmcX9I4hWtaMyUUBn0hw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption 10:d8:10:fe:e6:f9:1e:fa:23:5c:30:58:4f:55:61:4f:c5:52: 3d:c3:4b:49:64:67:97:56:dd:0d:7c:32:73:a6:62:a5:a8:bf: b4:5b:12:7f:66:0f:7e:e2:17:40:8c:54:0f:35:ed:68:dd:bf: bd:68:f3:2d:3b:1e:f4:6c:50:d2:5b:4b:08:62:8e:af:6d:0e: 28:27:be:ba:4a:44:ef:f7:bb:65:1f:0c:0c:79:ed:7d:f0:ab: d1:82:50:7c:93:00:51:7e:9d:07:a2:9c:71:88:33:fe:fa:d7: 22:18:84:c2:f1:cf:ba:f0:00:f0:8a:07:61:00:50:98:fb:9a: 1f:c3:e7:50:a6:d4:54:2a:db:43:a5:41:53:d2:af:48:d6:14: 64:20:bb:88:e5:23:55:f4:34:4f:72:f2:56:03:2a:d9:af:86: 16:78:3c:9e:32:d7:c3:d8:cd:67:03:07:d2:3e:e4:05:7d:59: b0:ea:6f:33:ff:60:4c:60:39:15:5f:df:a9:58:02:e6:0c:18: e6:75:09:87:b9:a4:0c:27:ba:c3:46:27:21:51:78:47:97:14: 80:4d:de:29:8b:04:db:19:a0:68:29:f8:43:98:9c:0e:72:75: f9:d9:1f:58:ac:d4:1c:a0:5b:d8:7b:0d:b3:22:49:9a:29:a2: 8d:bf:0d:e9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTAzMDEw MTMxMTBaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDIxNDVDMTkyNjgyOTk5 QzVGRDIzODg1NkI1QTMzMjUxNDA2N0QyMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjYxPK8UGTsDmRFSJUTQm2DJcQbc0y7SRCJ5leB9TI9yFyjNzR VxCgkG0xiPFTFO5ABDNLz9eWCY9xyiKVuGJTauePg/omVWbIdmlMkWqm9cDbZEHC zJpfxQ7qmHpeE6mMJh/Xo/LqB4fOgPz7zpkeaBOqZd68FnQL0E0nTOPmSn1XpgiK H4Kn0KmQfPDxySbv7B5wckxcL3+E6uzdiIaByySOjKe5wAXeVZaOz2TixcYvipG/ P/yN/YO95pDZU4IxV1HkeNELjwqCO+O7JUK/4l/VpVTORasSVAyTTYYi8eCisv7q oz/4E6JuUuvCZVvGS0vk4NONvNCqVKz9hf95AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUIUXBkmgpmcX9I4hWtaMyUUBn0hwwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL0lVWEJrbWdwbWNYOUk0aFd0YU15VVVCbjBody5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJ9rDANBgkqhkiG9w0BAQsFAAOCAQEAENgQ/ub5HvojXDBYT1VhT8VSPcNL SWRnl1bdDXwyc6Zipai/tFsSf2YPfuIXQIxUDzXtaN2/vWjzLTse9GxQ0ltLCGKO r20OKCe+ukpE7/e7ZR8MDHntffCr0YJQfJMAUX6dB6KccYgz/vrXIhiEwvHPuvAA 8IoHYQBQmPuaH8PnUKbUVCrbQ6VBU9KvSNYUZCC7iOUjVfQ0T3LyVgMq2a+GFng8 njLXw9jNZwMH0j7kBX1ZsOpvM/9gTGA5FV/fqVgC5gwY5nUJh7mkDCe6w0YnIVF4 R5cUgE3eKYsE2xmgaCn4Q5icDnJ1+dkfWKzUHKBb2HsNsyJJmimijb8N6Q== -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:54 2025 by rpki-client