$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20099/LE_VU1zIJ7Sf-G8oHcpQFLBo_xk.roa File: LE_VU1zIJ7Sf-G8oHcpQFLBo_xk.roa (raw, json) Hash identifier: UrflveAc7l0Q8Hrej9i00kyi/P3+utZZm2gYylp3rZ4= Subject key identifier: 2C:4F:D5:53:5C:C8:27:B4:9F:F8:6F:28:1D:CA:50:14:B0:68:FF:19 Certificate issuer: /CN=2327CD1B4F1F8B8956861597E494314A68561591 Certificate serial: 35 Authority key identifier: 23:27:CD:1B:4F:1F:8B:89:56:86:15:97:E4:94:31:4A:68:56:15:91 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IyfNG08fi4lWhhWX5JQxSmhWFZE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20099/LE_VU1zIJ7Sf-G8oHcpQFLBo_xk.roa Signing time: Sat 01 Mar 2025 01:28:43 +0000 ROA not before: Sat 01 Mar 2025 01:28:43 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 131966 IP address blocks: 103.141.94.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20099/IyfNG08fi4lWhhWX5JQxSmhWFZE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20099/IyfNG08fi4lWhhWX5JQxSmhWFZE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IyfNG08fi4lWhhWX5JQxSmhWFZE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2327CD1B4F1F8B8956861597E494314A68561591 Validity Not Before: Mar 1 01:28:43 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=2C4FD5535CC827B49FF86F281DCA5014B068FF19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a3:47:2a:52:38:31:10:8b:cc:32:43:fc:56: 46:b2:6c:e9:bd:f3:3e:d4:cf:37:22:36:b8:b3:10: 95:90:14:91:aa:28:68:95:f8:54:08:e8:2e:ca:ad: d2:72:de:22:3a:51:f2:f8:20:a1:87:d8:b4:bc:f4: 75:87:67:27:6a:c3:27:44:23:ea:7e:61:9c:5a:90: 54:e8:bf:76:c9:ac:5e:39:89:42:12:e2:1f:fe:00: d8:4c:f7:46:0a:67:e6:43:c6:55:a8:24:2a:15:14: 3a:72:d8:0f:be:e5:9f:8e:55:59:6a:ba:e1:73:a1: 74:95:92:31:72:cb:9a:30:d1:94:26:7e:28:bf:50: 5d:0a:32:d9:4e:b2:e2:77:6d:10:a1:e6:bd:bc:d6: 06:f8:07:de:41:c6:58:ab:ae:3a:f9:61:10:13:10: b0:15:a1:25:e7:5f:0e:33:e1:c0:db:b8:63:86:b6: 43:1d:6f:8c:e3:f9:a4:c5:be:45:89:34:28:8c:e8: 5f:72:9c:b8:96:47:0f:a8:da:26:b1:48:4f:b9:a4: 70:3d:87:df:cd:e7:fa:13:3d:a4:65:b8:1c:dc:37: 6b:a8:8f:a9:b7:ed:f7:1d:17:5a:66:aa:18:41:ef: 6c:89:b7:ba:9a:8e:00:03:b8:fc:d1:75:25:36:b6: d7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4F:D5:53:5C:C8:27:B4:9F:F8:6F:28:1D:CA:50:14:B0:68:FF:19 X509v3 Authority Key Identifier: keyid:23:27:CD:1B:4F:1F:8B:89:56:86:15:97:E4:94:31:4A:68:56:15:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20099/IyfNG08fi4lWhhWX5JQxSmhWFZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IyfNG08fi4lWhhWX5JQxSmhWFZE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20099/LE_VU1zIJ7Sf-G8oHcpQFLBo_xk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.94.0/23 Signature Algorithm: sha256WithRSAEncryption a4:f9:85:7e:00:61:d3:14:38:3a:13:04:93:ae:3b:68:8e:01: ec:24:d4:72:d2:53:58:30:41:c8:3a:76:7e:2f:9d:20:bb:1f: 27:cc:6c:ac:06:17:84:ea:1c:e5:c8:70:a9:5f:7a:11:01:11: e5:77:79:81:40:70:89:0b:fa:ea:72:5b:5c:8b:20:9b:38:b9: ca:5c:29:f8:fa:ae:ee:ed:e0:2e:2c:ec:ea:bc:75:48:24:c7: ed:67:1c:8a:9c:94:fc:44:dd:d7:47:8b:12:f5:22:50:de:90: 39:cb:c8:90:7b:83:f3:31:c2:d5:d4:28:06:b0:c3:97:ce:0f: e8:11:1b:a5:99:02:6a:f1:3e:65:01:96:c6:9e:01:16:33:32: 26:c8:79:de:c6:ba:13:f6:16:12:f5:d6:49:be:69:0b:e0:cd: 8e:e7:6c:95:14:bf:fb:ce:74:8d:18:a2:e2:2b:50:e7:44:cb: 66:d4:e8:be:43:0c:1e:6c:96:f8:99:7d:43:01:44:95:32:a8: 12:c4:7b:4e:c9:da:72:2b:51:1a:1a:9b:c2:83:9d:95:cc:a7: 76:10:0a:c5:2a:16:2d:0a:86:20:7f:87:56:ac:4e:41:19:33: ef:96:c9:1e:92:2b:a9:7f:27:d9:0b:63:97:60:83:50:88:c9: 6a:f0:a8:8d -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBNTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMzI3 Q0QxQjRGMUY4Qjg5NTY4NjE1OTdFNDk0MzE0QTY4NTYxNTkxMB4XDTI1MDMwMTAx Mjg0M1oXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMkM0RkQ1NTM1Q0M4MjdC NDlGRjg2RjI4MURDQTUwMTRCMDY4RkYxOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK+jRypSODEQi8wyQ/xWRrJs6b3zPtTPNyI2uLMQlZAUkaooaJX4 VAjoLsqt0nLeIjpR8vggoYfYtLz0dYdnJ2rDJ0Qj6n5hnFqQVOi/dsmsXjmJQhLi H/4A2Ez3Rgpn5kPGVagkKhUUOnLYD77ln45VWWq64XOhdJWSMXLLmjDRlCZ+KL9Q XQoy2U6y4ndtEKHmvbzWBvgH3kHGWKuuOvlhEBMQsBWhJedfDjPhwNu4Y4a2Qx1v jOP5pMW+RYk0KIzoX3KcuJZHD6jaJrFIT7mkcD2H383n+hM9pGW4HNw3a6iPqbft 9x0XWmaqGEHvbIm3upqOAAO4/NF1JTa21wsCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQsT9VTXMgntJ/4bygdylAUsGj/GTAfBgNVHSMEGDAWgBQjJ80bTx+LiVaGFZfk lDFKaFYVkTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwOTkvSXlmTkcwOGZpNGxXaGhXWDVKUXhTbWhXRlpFLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvSXlmTkcwOGZpNGxXaGhXWDVKUXhT bWhXRlpFLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDk5L0xFX1ZVMXpJSjdTZi1HOG9IY3BRRkxCb194ay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnjV4wDQYJKoZIhvcNAQELBQADggEBAKT5hX4AYdMUODoTBJOuO2iO Aewk1HLSU1gwQcg6dn4vnSC7HyfMbKwGF4TqHOXIcKlfehEBEeV3eYFAcIkL+upy W1yLIJs4ucpcKfj6ru7t4C4s7Oq8dUgkx+1nHIqclPxE3ddHixL1IlDekDnLyJB7 g/MxwtXUKAaww5fOD+gRG6WZAmrxPmUBlsaeARYzMibIed7GuhP2FhL11km+aQvg zY7nbJUUv/vOdI0YouIrUOdEy2bU6L5DDB5slviZfUMBRJUyqBLEe07J2nIrURoa m8KDnZXMp3YQCsUqFi0KhiB/h1asTkEZM++WyR6SK6l/J9kLY5dgg1CIyWrwqI0= -----END CERTIFICATE-----Generated at Wed Apr 16 05:15:42 2025 by rpki-client