$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/70U0r1cRjSONpL_UHhiDiY958Po.roa File: 70U0r1cRjSONpL_UHhiDiY958Po.roa (raw, json) Hash identifier: XR3YC8d3lhP8lBrbsPXK1g+e6MM7UOOW7wzM6Nck/G8= Subject key identifier: EF:45:34:AF:57:11:8D:23:8D:A4:BF:D4:1E:18:83:89:8F:79:F0:FA Certificate issuer: /CN=D6E9A21E81CA12EB8455ADEC46610477EA5F4F4C Certificate serial: 29 Authority key identifier: D6:E9:A2:1E:81:CA:12:EB:84:55:AD:EC:46:61:04:77:EA:5F:4F:4C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1umiHoHKEuuEVa3sRmEEd-pfT0w.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/70U0r1cRjSONpL_UHhiDiY958Po.roa Signing time: Sat 01 Mar 2025 01:29:05 +0000 ROA not before: Sat 01 Mar 2025 01:29:05 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 7672 IP address blocks: 157.250.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/1umiHoHKEuuEVa3sRmEEd-pfT0w.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/1umiHoHKEuuEVa3sRmEEd-pfT0w.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1umiHoHKEuuEVa3sRmEEd-pfT0w.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6E9A21E81CA12EB8455ADEC46610477EA5F4F4C Validity Not Before: Mar 1 01:29:05 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=EF4534AF57118D238DA4BFD41E1883898F79F0FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:11:59:98:b3:9b:a6:8e:52:1f:4f:63:75:71: 49:3b:c9:3b:d0:c1:75:8d:46:27:71:68:75:24:db: 4b:00:42:63:1b:b7:b1:f6:90:df:dd:e3:54:73:2c: fa:e2:3d:45:0c:4d:00:c0:8b:64:14:54:89:3a:9a: b1:3e:10:98:4c:1e:d4:03:c5:9f:24:4b:08:07:9a: 8e:3c:7d:f2:fe:b7:ad:5c:5b:4e:48:88:fa:4c:e8: 06:d5:c5:b7:e0:80:70:b0:9d:6c:9e:51:6a:79:1f: df:24:95:4e:7e:97:ac:97:8a:dc:56:1b:cc:7f:b1: f2:ee:28:85:4b:b7:61:4f:b4:b4:08:ba:3b:f6:aa: 7b:d9:41:c5:6a:e3:f9:05:7a:b0:4b:04:d8:7a:36: 7d:71:47:12:d6:13:99:ba:d9:50:83:aa:09:a2:14: 1c:2d:96:ba:dd:28:0a:5f:d5:5a:0c:1c:9f:fb:3f: 7e:53:e4:7b:84:b2:bf:08:e5:ce:bf:7b:ff:16:04: 64:3e:57:12:5a:cc:9d:a3:27:8a:12:f7:a4:fe:21: fa:2f:cd:9b:80:43:c3:24:69:95:c6:4a:bd:fd:68: 7e:80:3d:49:91:d5:ee:79:18:d2:5e:5d:25:06:d3: f5:99:22:43:15:8c:37:26:1b:81:52:48:7f:06:84: b9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:45:34:AF:57:11:8D:23:8D:A4:BF:D4:1E:18:83:89:8F:79:F0:FA X509v3 Authority Key Identifier: keyid:D6:E9:A2:1E:81:CA:12:EB:84:55:AD:EC:46:61:04:77:EA:5F:4F:4C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/1umiHoHKEuuEVa3sRmEEd-pfT0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1umiHoHKEuuEVa3sRmEEd-pfT0w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/70U0r1cRjSONpL_UHhiDiY958Po.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.250.224.0/20 Signature Algorithm: sha256WithRSAEncryption c5:79:c5:cd:ed:bd:7e:53:8d:ba:1d:6e:a4:3b:b4:4a:42:4e: 22:85:6a:bc:02:f1:5a:8b:98:12:2a:0c:84:70:96:8b:82:ff: 47:fe:7c:e3:64:39:73:29:13:5f:ff:9e:52:f4:2d:5b:f5:eb: 80:70:46:c6:79:a5:d2:35:a3:35:0a:68:80:7d:c8:98:bf:d6: 3f:d8:70:d9:40:e7:c2:65:44:eb:61:a4:bf:c8:76:7e:28:61: 35:4a:79:d7:58:c5:fd:47:4b:fc:5a:3d:23:96:fe:29:06:7b: 2c:01:db:22:02:7f:00:96:9d:e1:e0:0a:04:6c:36:69:1d:60: 7a:f8:97:43:66:df:e4:47:6f:d4:48:7d:b0:d0:26:6f:b2:67: 9d:8b:54:28:bd:d6:a4:64:99:48:03:5b:b0:d1:7d:3f:42:2b: 6f:ae:90:17:05:f9:7d:dc:95:fe:89:38:0a:ec:c8:bd:c7:13: 7b:55:f9:41:7f:23:4c:5a:01:76:d0:af:85:88:c9:d6:f0:cd: 86:42:5a:c8:b1:1d:ef:f5:8c:f2:95:63:1a:ba:2e:ff:83:93: f7:70:93:0c:c3:1f:9e:3f:b7:bd:df:78:b1:6c:57:ce:1c:28: fc:af:c7:48:f4:47:3c:88:0c:90:57:86:51:02:ae:47:f7:05: d3:d1:65:86 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENkU5 QTIxRTgxQ0ExMkVCODQ1NUFERUM0NjYxMDQ3N0VBNUY0RjRDMB4XDTI1MDMwMTAx MjkwNVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoRUY0NTM0QUY1NzExOEQy MzhEQTRCRkQ0MUUxODgzODk4Rjc5RjBGQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKsRWZizm6aOUh9PY3VxSTvJO9DBdY1GJ3FodSTbSwBCYxu3sfaQ 393jVHMs+uI9RQxNAMCLZBRUiTqasT4QmEwe1APFnyRLCAeajjx98v63rVxbTkiI +kzoBtXFt+CAcLCdbJ5Rankf3ySVTn6XrJeK3FYbzH+x8u4ohUu3YU+0tAi6O/aq e9lBxWrj+QV6sEsE2Ho2fXFHEtYTmbrZUIOqCaIUHC2Wut0oCl/VWgwcn/s/flPk e4Syvwjlzr97/xYEZD5XElrMnaMnihL3pP4h+i/Nm4BDwyRplcZKvf1ofoA9SZHV 7nkY0l5dJQbT9ZkiQxWMNyYbgVJIfwaEuYUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTvRTSvVxGNI42kv9QeGIOJj3nw+jAfBgNVHSMEGDAWgBTW6aIegcoS64RVrexG YQR36l9PTDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyLzF1bWlIb0hLRXV1RVZhM3NSbUVFZC1wZlQwdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzF1bWlIb0hLRXV1RVZhM3NSbUVFZC1w ZlQwdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvNzBVMHIxY1JqU09OcExfVUhoaURpWTk1OFBvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJ364DANBgkqhkiG9w0BAQsFAAOCAQEAxXnFze29flONuh1upDu0SkJOIoVq vALxWouYEioMhHCWi4L/R/5842Q5cykTX/+eUvQtW/XrgHBGxnml0jWjNQpogH3I mL/WP9hw2UDnwmVE62Gkv8h2fihhNUp511jF/UdL/Fo9I5b+KQZ7LAHbIgJ/AJad 4eAKBGw2aR1geviXQ2bf5Edv1Eh9sNAmb7JnnYtUKL3WpGSZSANbsNF9P0Irb66Q FwX5fdyV/ok4CuzIvccTe1X5QX8jTFoBdtCvhYjJ1vDNhkJayLEd7/WM8pVjGrou /4OT93CTDMMfnj+3vd94sWxXzhwo/K/HSPRHPIgMkFeGUQKuR/cF09Flhg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:31:03 2025 by rpki-client