$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/w4VEXmV5F7jEIosAhdeJnQ7VNJw.roa File: w4VEXmV5F7jEIosAhdeJnQ7VNJw.roa (raw, json) Hash identifier: aEsp7mEcqWRHK7o0ffAEBqV9PSXy1kOYW6Y1Y2VgyM8= Subject key identifier: C3:85:44:5E:65:79:17:B8:C4:22:8B:00:85:D7:89:9D:0E:D5:34:9C Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 0213 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/w4VEXmV5F7jEIosAhdeJnQ7VNJw.roa Signing time: Sat 01 Mar 2025 01:31:11 +0000 ROA not before: Sat 01 Mar 2025 01:31:11 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 4713 IP address blocks: 153.128.0.0/10 maxlen: 10 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 1 01:31:11 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=C385445E657917B8C4228B0085D7899D0ED5349C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:23:c4:11:16:a1:84:bc:b9:cc:54:e8:8d:14: bc:6a:a0:53:00:cf:e5:ec:44:08:0a:14:93:6b:f6: e1:54:2e:82:79:59:cb:ed:8b:c8:90:1f:e7:ae:2c: 06:1a:ac:42:1d:eb:a6:e6:fc:0f:ca:7e:a3:47:e8: 93:68:94:73:9a:3f:67:83:94:54:c6:f4:9e:c1:ee: 13:51:08:c1:5f:b9:02:e8:3a:4c:b2:f9:90:23:e0: 55:ba:95:ff:f0:75:8a:82:82:df:fe:e0:4c:ba:4e: 06:1d:70:5b:81:f1:aa:86:7a:a6:f0:f9:3c:7a:e5: 97:3f:42:2c:6f:92:f5:16:61:08:5e:db:f7:ca:3a: f9:2b:e6:e6:16:da:33:02:84:d9:7f:96:bf:9f:f8: f8:de:09:03:f3:5f:da:fb:e6:55:2a:9f:ef:3d:e8: 34:09:64:5a:14:b9:c9:2a:6f:c2:87:1f:14:64:98: ff:e6:18:d3:4a:fc:32:17:7f:61:28:e2:6f:56:19: 6b:93:d2:ed:d2:74:c3:93:49:72:ec:13:30:40:be: 3f:86:d8:1e:c5:3a:b2:06:f5:c0:44:b8:d3:2e:37: 2f:40:0b:ef:a2:7f:8e:47:ab:2c:10:4b:82:5f:a9: 75:88:f9:ec:f4:d1:92:cb:47:2c:5c:45:5e:7d:19: 22:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:85:44:5E:65:79:17:B8:C4:22:8B:00:85:D7:89:9D:0E:D5:34:9C X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/w4VEXmV5F7jEIosAhdeJnQ7VNJw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.128.0.0/10 Signature Algorithm: sha256WithRSAEncryption bf:eb:9d:70:fd:ef:83:24:79:63:4e:a4:1f:69:e7:95:14:e3: 34:11:bb:2f:7a:88:73:aa:e5:b8:4d:1d:3c:53:15:7f:5d:3c: cc:90:00:f9:8f:25:4a:a0:7a:12:8d:29:a8:ad:f9:6f:82:a9: 97:cd:b0:80:fa:9d:e9:a6:2d:fb:64:cd:28:58:7b:79:dd:f9: 1b:c4:32:44:80:60:3f:3e:b6:28:24:85:c1:0b:2a:07:10:30: f6:91:74:1d:98:28:de:1c:64:c8:f2:6a:35:e8:fc:41:80:92: 3b:66:3c:23:8a:59:56:fb:f1:e8:e5:a2:48:27:55:16:94:82: 72:0a:cd:1e:d0:1a:27:77:3a:ae:fb:92:98:f5:48:09:da:6b: b0:4d:05:2f:45:d4:bd:03:49:c4:9d:ce:5c:4b:7d:c0:01:3c: 52:67:65:c7:16:39:a1:3a:30:e4:fe:09:7a:31:97:43:59:07: 9f:2e:b7:e3:62:48:67:25:62:7c:46:87:3a:b4:4b:b7:54:bf: d0:1c:17:f6:20:db:9a:2b:10:5f:6f:6e:fb:c3:e9:3b:4b:a5: 66:01:c4:d1:a0:b2:47:d8:9b:a4:6a:09:25:1d:74:81:b5:39: 74:9b:17:2d:54:74:db:d8:f8:3d:83:98:9d:a5:bc:08:c6:7c: 1c:56:6f:b0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNTAzMDEw MTMxMTFaFw0yNjAyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEMzODU0NDVFNjU3OTE3 QjhDNDIyOEIwMDg1RDc4OTlEMEVENTM0OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHI8QRFqGEvLnMVOiNFLxqoFMAz+XsRAgKFJNr9uFULoJ5Wcvt i8iQH+euLAYarEId66bm/A/KfqNH6JNolHOaP2eDlFTG9J7B7hNRCMFfuQLoOkyy +ZAj4FW6lf/wdYqCgt/+4Ey6TgYdcFuB8aqGeqbw+Tx65Zc/QixvkvUWYQhe2/fK Ovkr5uYW2jMChNl/lr+f+PjeCQPzX9r75lUqn+896DQJZFoUuckqb8KHHxRkmP/m GNNK/DIXf2Eo4m9WGWuT0u3SdMOTSXLsEzBAvj+G2B7FOrIG9cBEuNMuNy9AC++i f45HqywQS4JfqXWI+ez00ZLLRyxcRV59GSKLAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUw4VEXmV5F7jEIosAhdeJnQ7VNJwwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL3c0VkVYbVY1RjdqRUlvc0FoZGVKblE3Vk5Kdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwaZgDANBgkqhkiG9w0BAQsFAAOCAQEAv+udcP3vgyR5Y06kH2nnlRTjNBG7 L3qIc6rluE0dPFMVf108zJAA+Y8lSqB6Eo0pqK35b4Kpl82wgPqd6aYt+2TNKFh7 ed35G8QyRIBgPz62KCSFwQsqBxAw9pF0HZgo3hxkyPJqNej8QYCSO2Y8I4pZVvvx 6OWiSCdVFpSCcgrNHtAaJ3c6rvuSmPVICdprsE0FL0XUvQNJxJ3OXEt9wAE8Umdl xxY5oTow5P4JejGXQ1kHny6342JIZyVifEaHOrRLt1S/0BwX9iDbmisQX29u+8Pp O0ulZgHE0aCyR9ibpGoJJR10gbU5dJsXLVR029j4PYOYnaW8CMZ8HFZvsA== -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:00 2025 by rpki-client