$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20042/KYVeAzgD9T4Ziy5Tvppks_YKaq0.roa File: KYVeAzgD9T4Ziy5Tvppks_YKaq0.roa (raw, json) Hash identifier: 4XEhxO/TFxZym9g0jzbt/pZO06kn8PIYBkZSW1/okOQ= Subject key identifier: 29:85:5E:03:38:03:F5:3E:19:8B:2E:53:BE:9A:64:B3:F6:0A:6A:AD Certificate issuer: /CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Certificate serial: 76 Authority key identifier: 96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/KYVeAzgD9T4Ziy5Tvppks_YKaq0.roa Signing time: Fri 14 Feb 2025 07:00:22 +0000 ROA not before: Fri 14 Feb 2025 07:00:22 +0000 ROA not after: Fri 06 Feb 2026 03:05:32 +0000 asID: 15830 IP address blocks: 101.97.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Validity Not Before: Feb 14 07:00:22 2025 GMT Not After : Feb 6 03:05:32 2026 GMT Subject: CN=29855E033803F53E198B2E53BE9A64B3F60A6AAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f5:9f:5c:97:10:f1:74:66:65:11:23:6f:38: e0:d9:72:92:67:51:19:4f:4f:96:de:06:04:11:04: 4b:ac:68:8d:ce:5d:4c:6f:04:8b:b7:22:17:59:65: ba:25:61:3c:11:e9:d5:ea:6e:0c:81:11:5c:7e:61: 05:16:d7:0d:5a:20:d1:1d:b4:37:e3:b9:cf:98:18: 92:33:71:25:16:82:5b:20:f2:55:39:97:46:4b:4d: fa:14:48:08:41:c0:4b:e0:2f:ba:28:d2:4e:9d:d7: ab:8f:84:87:ac:fb:2b:05:a3:fe:19:8d:b5:a4:82: 3b:85:58:76:e3:c3:12:54:d2:e4:82:ad:c9:4c:69: fe:fa:32:f9:cf:7a:96:ac:4e:58:cc:bf:d8:e4:b5: e2:be:70:46:70:e4:70:88:ae:c2:a0:33:5a:bc:e7: eb:a0:1e:ac:34:14:84:6f:e4:7c:1e:b9:80:60:3f: 15:27:45:f7:d6:17:67:e3:a7:ec:93:18:82:c1:60: 6c:d6:95:49:8e:f9:77:6f:10:f3:5a:62:27:c6:6f: 98:2f:02:17:f0:d8:b3:eb:cf:86:04:12:24:ab:a4: a5:a8:8a:7e:89:a8:f8:e1:de:02:de:d4:8e:34:20: e6:df:51:49:35:8b:d4:13:47:a6:7d:72:65:5f:ea: ad:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:85:5E:03:38:03:F5:3E:19:8B:2E:53:BE:9A:64:B3:F6:0A:6A:AD X509v3 Authority Key Identifier: keyid:96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/KYVeAzgD9T4Ziy5Tvppks_YKaq0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.97.128.0/17 Signature Algorithm: sha256WithRSAEncryption 7a:d2:51:0b:59:9b:4b:1d:01:de:d0:3a:f7:d4:4a:53:dc:f3: a0:d4:74:22:11:c7:48:fc:87:39:b2:aa:ae:e3:f8:d2:98:ca: a7:16:19:45:da:1f:c7:d0:d1:c3:ec:08:93:17:ac:26:6c:21: f3:35:c1:1a:36:1d:5b:0b:70:66:67:df:3e:b0:7d:97:a1:66: 68:99:cc:65:7d:6f:20:4f:b5:a9:8f:7e:4d:2b:48:6d:04:67: d5:47:dc:21:17:ca:72:0d:47:ef:bc:d2:01:6d:d4:a7:1d:da: 4e:5f:6a:64:c0:5e:9b:47:03:61:96:86:88:78:34:1d:ac:c5: d6:f9:73:e1:08:e4:4c:51:3b:29:88:59:3a:51:78:80:81:c4: c0:91:66:cc:64:80:c3:f5:4e:cf:5f:48:e7:54:8c:34:ab:ea: 3c:d0:03:b5:d1:de:ea:a6:d4:49:fe:ec:67:fb:64:b5:a9:71: d5:d3:49:90:4f:0d:a0:98:90:e8:dd:37:80:3c:38:01:fe:54: 34:da:b0:7f:bf:7b:3e:a3:74:fd:61:4e:a9:d4:19:0a:10:0b: 6a:5b:18:51:f2:7e:3d:bd:a0:28:88:c5:f4:6c:37:60:c6:65: 5d:10:6d:eb:76:08:3c:66:61:1d:87:e4:89:72:d6:62:0e:d7: d9:1f:21:73 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBdjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NjFC QzE4NTEyNzIyQUFGOUE5MEQ4OThBREVBOUFGNzc5M0MyNTQzMB4XDTI1MDIxNDA3 MDAyMloXDTI2MDIwNjAzMDUzMlowMzExMC8GA1UEAxMoMjk4NTVFMDMzODAzRjUz RTE5OEIyRTUzQkU5QTY0QjNGNjBBNkFBRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALz1n1yXEPF0ZmURI2844NlykmdRGU9Plt4GBBEES6xojc5dTG8E i7ciF1lluiVhPBHp1epuDIERXH5hBRbXDVog0R20N+O5z5gYkjNxJRaCWyDyVTmX RktN+hRICEHAS+AvuijSTp3Xq4+Eh6z7KwWj/hmNtaSCO4VYduPDElTS5IKtyUxp /voy+c96lqxOWMy/2OS14r5wRnDkcIiuwqAzWrzn66AerDQUhG/kfB65gGA/FSdF 99YXZ+On7JMYgsFgbNaVSY75d28Q81piJ8ZvmC8CF/DYs+vPhgQSJKukpaiKfomo +OHeAt7UjjQg5t9RSTWL1BNHpn1yZV/qrV8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBQphV4DOAP1PhmLLlO+mmSz9gpqrTAfBgNVHSMEGDAWgBSWG8GFEnIqr5qQ2Jit 6pr3eTwlQzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNDIvbGh2QmhSSnlLcS1ha05pWXJlcWE5M2s4SlVNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbGh2QmhSSnlLcS1ha05pWXJlcWE5 M2s4SlVNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDQyL0tZVmVBemdEOVQ0Wml5NVR2cHBrc19ZS2FxMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAdlYYAwDQYJKoZIhvcNAQELBQADggEBAHrSUQtZm0sdAd7QOvfUSlPc 86DUdCIRx0j8hzmyqq7j+NKYyqcWGUXaH8fQ0cPsCJMXrCZsIfM1wRo2HVsLcGZn 3z6wfZehZmiZzGV9byBPtamPfk0rSG0EZ9VH3CEXynINR++80gFt1Kcd2k5famTA XptHA2GWhoh4NB2sxdb5c+EI5ExROymIWTpReICBxMCRZsxkgMP1Ts9fSOdUjDSr 6jzQA7XR3uqm1En+7Gf7ZLWpcdXTSZBPDaCYkOjdN4A8OAH+VDTasH+/ez6jdP1h TqnUGQoQC2pbGFHyfj29oCiIxfRsN2DGZV0Qbet2CDxmYR2H5Ily1mIO19kfIXM= -----END CERTIFICATE-----Generated at Sat Apr 5 20:08:30 2025 by rpki-client