$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20254/TtfkZ1o3oFpgfvD-9e9kGrkb1ZE.roa File: TtfkZ1o3oFpgfvD-9e9kGrkb1ZE.roa (raw, json) Hash identifier: 7u6EImkYD0NWhtvCO7WPt9yJhW9RxujXkTC7tvg9ETQ= Subject key identifier: 4E:D7:E4:67:5A:37:A0:5A:60:7E:F0:FE:F5:EF:64:1A:B9:1B:D5:91 Certificate issuer: /CN=F8C0305691D02A85DA9D5AA117A76259BD66F596 Certificate serial: 13 Authority key identifier: F8:C0:30:56:91:D0:2A:85:DA:9D:5A:A1:17:A7:62:59:BD:66:F5:96 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-MAwVpHQKoXanVqhF6diWb1m9ZY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20254/TtfkZ1o3oFpgfvD-9e9kGrkb1ZE.roa Signing time: Mon 21 Apr 2025 06:01:37 +0000 ROA not before: Mon 21 Apr 2025 06:01:37 +0000 ROA not after: Wed 15 Apr 2026 01:30:03 +0000 asID: 63801 IP address blocks: 157.20.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20254/-MAwVpHQKoXanVqhF6diWb1m9ZY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20254/-MAwVpHQKoXanVqhF6diWb1m9ZY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-MAwVpHQKoXanVqhF6diWb1m9ZY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8C0305691D02A85DA9D5AA117A76259BD66F596 Validity Not Before: Apr 21 06:01:37 2025 GMT Not After : Apr 15 01:30:03 2026 GMT Subject: CN=4ED7E4675A37A05A607EF0FEF5EF641AB91BD591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:0a:2d:02:99:0f:3a:ed:ac:93:b4:10:1b:96: 5c:3a:f3:dc:a7:34:03:c5:15:3c:e5:1a:2e:a1:51: 3d:58:65:22:2d:4a:1a:4b:79:04:9f:c4:2b:36:72: 1b:36:7e:0d:e2:4c:cc:2c:87:44:ae:02:29:2f:bc: d2:56:e5:08:ae:9e:fc:ee:9e:cb:d7:ca:2b:fa:0f: 1b:a7:3d:00:3f:19:c6:ae:02:d3:93:4e:36:ae:85: f2:e3:da:ac:93:dc:e0:36:b1:99:0e:34:16:1b:95: eb:55:6a:7a:ee:b7:15:8b:df:28:05:88:e0:1a:d6: a4:08:d9:b4:a4:e5:ae:f1:03:c0:1c:6c:b2:44:8c: f7:5e:fb:06:16:71:6d:8e:2c:8c:ad:4a:ea:fc:06: 47:3d:95:1c:c1:e9:3e:66:ca:b2:1d:a8:cd:c1:fc: 67:fe:1b:76:54:a0:49:86:bc:1e:91:cc:42:3c:4f: 74:ca:aa:36:68:0d:2a:d2:bf:86:bc:8d:aa:07:36: 5e:f8:bc:58:5c:f6:38:f2:c6:e3:02:af:3f:30:f3: 55:f9:b9:dc:88:79:85:84:82:c7:eb:7c:a2:ad:94: 11:f6:0d:59:39:4c:64:c3:b2:6c:8b:a3:70:4c:a3: b6:11:76:eb:4a:ca:30:50:03:85:a4:aa:97:03:be: 11:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D7:E4:67:5A:37:A0:5A:60:7E:F0:FE:F5:EF:64:1A:B9:1B:D5:91 X509v3 Authority Key Identifier: keyid:F8:C0:30:56:91:D0:2A:85:DA:9D:5A:A1:17:A7:62:59:BD:66:F5:96 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20254/-MAwVpHQKoXanVqhF6diWb1m9ZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-MAwVpHQKoXanVqhF6diWb1m9ZY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20254/TtfkZ1o3oFpgfvD-9e9kGrkb1ZE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.16.0/23 Signature Algorithm: sha256WithRSAEncryption 26:09:f0:7e:ba:a4:0b:38:0f:00:21:d6:f5:ad:da:3e:73:25: c8:e0:0a:34:cf:e4:fd:54:df:cd:b8:87:a3:a3:87:9a:51:38: 3e:12:b5:44:2d:60:4c:08:6f:bd:dc:67:01:91:9d:86:f6:2d: ea:c9:45:36:67:b5:40:d5:0d:75:33:42:4b:7d:fa:9c:97:9f: e8:8b:ce:a4:12:8c:7a:a0:11:12:36:c7:90:ce:37:8c:e0:b1: e4:41:42:ef:68:64:f7:2d:89:91:3d:9b:8a:c2:53:89:13:d3: 35:00:c2:bf:b1:1c:c8:5b:25:d2:81:b3:a4:b3:54:40:75:75: c8:39:56:b2:dc:2a:9c:aa:55:79:d8:25:8e:81:5c:ac:93:92: c1:68:a2:35:9c:26:69:8f:46:70:5e:3e:da:e3:03:57:15:93: f1:d4:dc:a5:b2:d7:35:ad:06:10:e8:9c:66:90:af:24:16:f9: 85:3f:b1:fa:9b:59:14:e3:d7:ef:5a:44:f2:11:0c:00:70:a5: cb:91:ce:59:f2:07:00:93:aa:71:61:b4:93:49:a5:8f:b9:83: fe:43:a5:be:fe:bc:6e:49:86:8f:54:06:7e:29:55:1b:f2:67: 6b:13:3e:b4:39:bb:42:3d:54:e1:7e:a9:93:b1:99:0d:97:94: 40:6c:1b:1f -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOEMw MzA1NjkxRDAyQTg1REE5RDVBQTExN0E3NjI1OUJENjZGNTk2MB4XDTI1MDQyMTA2 MDEzN1oXDTI2MDQxNTAxMzAwM1owMzExMC8GA1UEAxMoNEVEN0U0Njc1QTM3QTA1 QTYwN0VGMEZFRjVFRjY0MUFCOTFCRDU5MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO4KLQKZDzrtrJO0EBuWXDrz3Kc0A8UVPOUaLqFRPVhlIi1KGkt5 BJ/EKzZyGzZ+DeJMzCyHRK4CKS+80lblCK6e/O6ey9fKK/oPG6c9AD8Zxq4C05NO Nq6F8uParJPc4DaxmQ40FhuV61Vqeu63FYvfKAWI4BrWpAjZtKTlrvEDwBxsskSM 9177BhZxbY4sjK1K6vwGRz2VHMHpPmbKsh2ozcH8Z/4bdlSgSYa8HpHMQjxPdMqq NmgNKtK/hryNqgc2Xvi8WFz2OPLG4wKvPzDzVfm53Ih5hYSCx+t8oq2UEfYNWTlM ZMOybIujcEyjthF260rKMFADhaSqlwO+ERUCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRO1+RnWjegWmB+8P7172QauRvVkTAfBgNVHSMEGDAWgBT4wDBWkdAqhdqdWqEX p2JZvWb1ljAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAyNTQvLU1Bd1ZwSFFLb1hhblZxaEY2ZGlXYjFtOVpZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLU1Bd1ZwSFFLb1hhblZxaEY2ZGlX YjFtOVpZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMjU0L1R0ZmtaMW8zb0ZwZ2Z2RC05ZTlrR3JrYjFaRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGdFBAwDQYJKoZIhvcNAQELBQADggEBACYJ8H66pAs4DwAh1vWt2j5z JcjgCjTP5P1U3824h6Ojh5pROD4StUQtYEwIb73cZwGRnYb2LerJRTZntUDVDXUz Qkt9+pyXn+iLzqQSjHqgERI2x5DON4zgseRBQu9oZPctiZE9m4rCU4kT0zUAwr+x HMhbJdKBs6SzVEB1dcg5VrLcKpyqVXnYJY6BXKyTksFoojWcJmmPRnBePtrjA1cV k/HU3KWy1zWtBhDonGaQryQW+YU/sfqbWRTj1+9aRPIRDABwpcuRzlnyBwCTqnFh tJNJpY+5g/5Dpb7+vG5Jho9UBn4pVRvyZ2sTPrQ5u0I9VOF+qZOxmQ2XlEBsGx8= -----END CERTIFICATE-----Generated at Tue Apr 22 14:36:27 2025 by rpki-client