$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/i9L1aqwV0CUECEO92AeGVrFrtc4.roa File: i9L1aqwV0CUECEO92AeGVrFrtc4.roa (raw, json) Hash identifier: oZQlUOb200d8ccEniKxVsFvyDA6lNl0gf8e0/o4Bmac= Subject key identifier: 8B:D2:F5:6A:AC:15:D0:25:04:08:43:BD:D8:07:86:56:B1:6B:B5:CE Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0205 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/i9L1aqwV0CUECEO92AeGVrFrtc4.roa Signing time: Sat 01 Mar 2025 01:31:05 +0000 ROA not before: Sat 01 Mar 2025 01:31:05 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 4713 IP address blocks: 114.144.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 1 01:31:05 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=8BD2F56AAC15D025040843BDD8078656B16BB5CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3c:94:55:3a:f1:6b:b2:4e:ba:4d:0d:0c:fb: 57:24:18:bc:83:5d:ab:a7:54:9e:85:13:a2:b6:db: ff:10:e6:fd:83:a5:40:59:86:74:65:68:67:cf:50: 49:12:ba:6b:d4:9d:aa:43:de:59:76:f1:a1:09:21: 88:68:5f:50:89:36:ed:7a:db:68:94:44:00:63:6c: 21:90:89:4c:08:51:f4:fa:80:c5:2b:c8:6d:75:c4: 17:55:f7:61:4e:52:ed:aa:19:7e:90:46:1f:b1:3e: ec:d0:f2:c8:26:ab:fb:31:03:97:47:b4:90:4e:0f: 49:a9:da:6a:ac:4d:91:1a:71:e5:00:f8:14:4e:f4: 45:b7:52:44:e4:f6:3c:e1:15:fb:cc:d7:e5:9c:e7: 68:a5:ba:3f:d1:de:c7:9a:93:6a:a5:a5:ba:25:d2: ea:2a:77:b1:80:ac:1a:ed:f6:54:43:df:8c:e1:e1: 52:e6:e3:b4:14:57:5d:da:bc:ba:a7:5c:ba:71:24: 02:6e:a2:db:47:06:01:ab:ac:4c:30:6e:ed:5b:7e: 1a:b5:29:53:52:77:3a:86:78:e5:1e:5c:72:df:04: 01:e2:9e:49:22:fc:f6:a7:66:d8:9a:fb:e7:db:de: 71:9c:b1:22:e5:30:f9:64:48:8c:f5:ea:08:b3:41: 02:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D2:F5:6A:AC:15:D0:25:04:08:43:BD:D8:07:86:56:B1:6B:B5:CE X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/i9L1aqwV0CUECEO92AeGVrFrtc4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.144.0.0/12 Signature Algorithm: sha256WithRSAEncryption 22:80:6b:ad:4d:c9:0e:75:b5:e2:f7:36:2c:5d:54:dc:c3:f7: 1e:ec:10:92:d1:4d:df:fb:ad:38:94:c4:44:b9:04:1f:e2:78: ad:e6:04:92:e5:6f:0d:2f:1e:5a:27:38:cc:f9:55:18:12:96: 54:6b:9b:71:a8:fd:10:c1:8f:65:2a:5b:44:32:05:df:e7:63: a7:38:fc:33:0f:b3:f9:24:bd:27:ea:9b:80:7f:c4:c5:b3:6f: 81:ec:e8:26:00:d8:e7:6f:ee:da:e2:de:98:f3:a9:ec:4c:d3: 4d:c0:13:fd:6a:45:e5:a2:c6:b1:a6:6a:74:53:6e:96:c4:86: 3c:b3:72:5a:2e:a9:b9:6c:ea:43:32:c0:46:2a:ad:84:8b:4d: a9:a0:41:b9:03:72:52:98:17:26:c1:1e:2c:4c:1c:f2:0e:26: 9c:bc:af:ea:17:6e:19:fa:c8:7d:20:4d:73:11:5e:1e:23:60: 97:05:bf:70:be:61:89:a9:ff:89:a2:9f:83:da:b1:c0:8c:a0: 40:91:a2:4e:3e:0d:a2:07:74:af:a0:22:a7:84:ea:80:f8:dc: 99:14:ff:93:c2:85:03:1b:27:fe:ac:a9:cd:a8:2d:15:ac:6c: 19:07:1d:da:8b:a9:98:95:cc:fb:71:2f:9f:f6:bb:62:0b:de: 41:4a:02:6b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTAzMDEw MTMxMDVaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDhCRDJGNTZBQUMxNUQw MjUwNDA4NDNCREQ4MDc4NjU2QjE2QkI1Q0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqPJRVOvFrsk66TQ0M+1ckGLyDXaunVJ6FE6K22/8Q5v2DpUBZ hnRlaGfPUEkSumvUnapD3ll28aEJIYhoX1CJNu1622iURABjbCGQiUwIUfT6gMUr yG11xBdV92FOUu2qGX6QRh+xPuzQ8sgmq/sxA5dHtJBOD0mp2mqsTZEaceUA+BRO 9EW3UkTk9jzhFfvM1+Wc52iluj/R3seak2qlpbol0uoqd7GArBrt9lRD34zh4VLm 47QUV13avLqnXLpxJAJuottHBgGrrEwwbu1bfhq1KVNSdzqGeOUeXHLfBAHinkki /PanZtia++fb3nGcsSLlMPlkSIz16gizQQINAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUi9L1aqwV0CUECEO92AeGVrFrtc4wHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL2k5TDFhcXdWMENVRUNFTzkyQWVHVnJGcnRjNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwRykDANBgkqhkiG9w0BAQsFAAOCAQEAIoBrrU3JDnW14vc2LF1U3MP3HuwQ ktFN3/utOJTERLkEH+J4reYEkuVvDS8eWic4zPlVGBKWVGubcaj9EMGPZSpbRDIF 3+djpzj8Mw+z+SS9J+qbgH/ExbNvgezoJgDY52/u2uLemPOp7EzTTcAT/WpF5aLG saZqdFNulsSGPLNyWi6puWzqQzLARiqthItNqaBBuQNyUpgXJsEeLEwc8g4mnLyv 6hduGfrIfSBNcxFeHiNglwW/cL5hian/iaKfg9qxwIygQJGiTj4Nogd0r6Aip4Tq gPjcmRT/k8KFAxsn/qypzagtFaxsGQcd2oupmJXM+3Evn/a7YgveQUoCaw== -----END CERTIFICATE-----Generated at Sat Apr 5 23:09:28 2025 by rpki-client