$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/mAYNBg-POUbiaVayNTcQhKBve7o.roa File: mAYNBg-POUbiaVayNTcQhKBve7o.roa (raw, json) Hash identifier: 6mtl34aFPCrn99sYt0D4EPYZ+nyMxtQbE/3kyhFP/rI= Subject key identifier: 98:06:0D:06:0F:8F:39:46:E2:69:56:B2:35:37:10:84:A0:6F:7B:BA Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Certificate serial: 59 Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/mAYNBg-POUbiaVayNTcQhKBve7o.roa Signing time: Sat 01 Mar 2025 01:28:33 +0000 ROA not before: Sat 01 Mar 2025 01:28:33 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 23637 IP address blocks: 202.9.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 12:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Validity Not Before: Mar 1 01:28:33 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=98060D060F8F3946E26956B235371084A06F7BBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5e:1f:3b:1f:2a:7d:68:42:cb:ad:c4:3e:85: 0c:46:d7:07:52:21:9f:d8:7b:16:93:cf:2c:06:0c: ad:44:27:6a:9d:c9:9e:89:9f:c6:aa:6e:68:34:d0: d6:19:66:ba:2f:77:89:b9:27:ed:53:9a:6e:38:62: da:7b:d3:9d:99:1c:59:39:53:3d:d3:22:ab:71:cb: d0:78:b8:b3:c5:5c:3c:b4:f4:37:94:a6:d0:a5:33: 28:44:d6:96:83:05:71:12:bc:67:6d:49:a7:69:40: 52:f7:47:f9:b7:eb:8a:18:fa:31:91:1c:80:65:52: fd:f6:cb:18:12:a1:8b:fe:77:82:90:96:5f:51:6c: 58:67:71:25:72:01:a5:a4:dd:c0:a2:6e:c9:cd:01: d2:3b:68:aa:53:07:21:11:83:2c:ca:e2:d0:16:98: 90:c2:f4:a0:02:62:ee:c5:fd:65:e7:9d:f2:95:97: c3:18:ae:bb:5a:f1:81:28:16:6f:96:9b:e0:a2:6a: e0:e6:ac:21:d8:6b:03:e4:be:f7:cd:35:77:9e:d0: 7f:2e:a5:d7:a1:09:75:13:9d:1c:bb:cf:e8:b2:9a: c7:8c:0a:d6:43:96:93:93:16:8e:f4:5d:4d:39:79: b6:49:ef:1c:b4:cb:38:96:a3:b8:7e:3f:3b:6d:be: 04:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:06:0D:06:0F:8F:39:46:E2:69:56:B2:35:37:10:84:A0:6F:7B:BA X509v3 Authority Key Identifier: keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/mAYNBg-POUbiaVayNTcQhKBve7o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.9.210.0/24 Signature Algorithm: sha256WithRSAEncryption 35:9e:b2:cf:70:79:e5:f0:d8:43:86:40:a4:6a:5d:53:26:80: 55:8d:99:0e:8a:2f:dd:77:52:b0:13:a7:d5:9e:25:8d:ac:43: 04:b1:28:33:a8:a3:1d:a1:33:96:fb:fb:a5:8d:a7:07:f2:d8: 01:53:15:1e:b9:34:08:0f:f1:45:81:45:2b:1d:92:95:3f:55: 72:2a:c8:f4:04:53:46:0b:3f:0c:6e:42:18:ff:29:37:df:c6: 80:02:cd:08:05:37:f5:11:47:0c:07:07:d2:7d:f0:11:7d:83: e2:0a:13:8d:07:09:e0:7e:cc:af:bb:00:3e:2d:86:41:d7:68: 94:f2:19:48:c5:99:13:5f:bc:ca:13:39:c4:16:58:df:96:d5: e7:35:07:c6:fb:21:65:7f:e1:93:01:93:cb:b9:22:07:e5:c2: 62:c4:39:0b:df:c5:19:6a:44:e4:c3:14:be:9e:06:16:8b:87: 24:83:e0:69:3c:b4:58:fc:93:69:26:14:d7:0c:e6:c9:03:4b: 42:ad:83:65:76:ce:1b:1d:04:1b:11:09:c6:02:d9:0b:c8:8a: 6f:8a:39:dd:b7:2d:03:2e:99:fd:49:b4:39:b9:ef:ec:1d:99: 8f:43:35:ac:72:72:ae:24:c9:7a:c1:59:41:1d:dd:06:54:3e: 0e:c1:89:2c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOEYx NTE0NTA4QUZDMzhFNTE3NDNCNkNCNThCQTY1NjFFREQzQkI5MB4XDTI1MDMwMTAx MjgzM1oXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoOTgwNjBEMDYwRjhGMzk0 NkUyNjk1NkIyMzUzNzEwODRBMDZGN0JCQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOVeHzsfKn1oQsutxD6FDEbXB1Ihn9h7FpPPLAYMrUQnap3Jnomf xqpuaDTQ1hlmui93ibkn7VOabjhi2nvTnZkcWTlTPdMiq3HL0Hi4s8VcPLT0N5Sm 0KUzKETWloMFcRK8Z21Jp2lAUvdH+bfrihj6MZEcgGVS/fbLGBKhi/53gpCWX1Fs WGdxJXIBpaTdwKJuyc0B0jtoqlMHIRGDLMri0BaYkML0oAJi7sX9Zeed8pWXwxiu u1rxgSgWb5ab4KJq4OasIdhrA+S+9801d57Qfy6l16EJdROdHLvP6LKax4wK1kOW k5MWjvRdTTl5tknvHLTLOJajuH4/O22+BK0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSYBg0GD485RuJpVrI1NxCEoG97ujAfBgNVHSMEGDAWgBTY8VFFCK/DjlF0O2y1 i6ZWHt07uTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjk5LzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3ZE83ay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3 ZE83ay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOTkvbUFZTkJnLVBPVWJpYVZheU5UY1FoS0J2ZTdvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMoJ0jANBgkqhkiG9w0BAQsFAAOCAQEANZ6yz3B55fDYQ4ZApGpdUyaAVY2Z Doov3XdSsBOn1Z4ljaxDBLEoM6ijHaEzlvv7pY2nB/LYAVMVHrk0CA/xRYFFKx2S lT9VcirI9ARTRgs/DG5CGP8pN9/GgALNCAU39RFHDAcH0n3wEX2D4goTjQcJ4H7M r7sAPi2GQddolPIZSMWZE1+8yhM5xBZY35bV5zUHxvshZX/hkwGTy7kiB+XCYsQ5 C9/FGWpE5MMUvp4GFouHJIPgaTy0WPyTaSYU1wzmyQNLQq2DZXbOGx0EGxEJxgLZ C8iKb4o53bctAy6Z/Um0Obnv7B2Zj0M1rHJyriTJesFZQR3dBlQ+DsGJLA== -----END CERTIFICATE-----Generated at Mon Apr 7 15:16:35 2025 by rpki-client