$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5UR2ARjG_FXGk5l4CZL2vPjgz2M.roa File: 5UR2ARjG_FXGk5l4CZL2vPjgz2M.roa (raw, json) Hash identifier: Tzt+fdlwMaHnC7kP04V16d2su6IDVV38vl14IAgdt9A= Subject key identifier: E5:44:76:01:18:C6:FC:55:C6:93:99:78:09:92:F6:BC:F8:E0:CF:63 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0D76 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5UR2ARjG_FXGk5l4CZL2vPjgz2M.roa Signing time: Tue 01 Apr 2025 02:19:26 +0000 ROA not before: Tue 01 Apr 2025 02:19:26 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3446 (0xd76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 1 02:19:26 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=E544760118C6FC55C69399780992F6BCF8E0CF63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:29:3d:4d:bd:f1:7a:d1:ed:06:f3:62:97:b2: df:a3:7b:bf:a0:e9:0e:69:a3:2a:99:4b:4d:9b:06: 36:d0:a4:32:c3:96:2b:40:52:c2:cb:6f:c0:f9:07: 8c:6e:45:a2:ca:8b:ba:84:d0:b3:57:db:b3:29:24: 93:ca:c4:48:13:90:d3:96:c1:61:a0:c3:d7:af:1d: 85:8d:24:69:6d:31:3b:16:de:2e:c6:d9:bf:d0:2e: 31:e0:04:ca:25:9b:63:51:42:01:ac:90:8a:70:b9: ce:ee:ee:6f:eb:ca:32:c0:d8:fc:30:fb:90:2f:3a: c1:ee:70:40:7a:fd:70:5f:9c:47:68:95:91:59:56: 2c:bb:76:51:ca:39:53:e6:35:c7:3f:ea:19:9c:af: 5e:74:7c:da:dd:4d:57:20:d6:22:06:22:a8:01:5a: f2:d0:5c:92:cb:88:7e:40:3c:7f:c1:d4:f0:03:ba: 95:11:f7:56:2e:8c:97:cd:2c:61:f9:92:90:4a:16: 89:aa:53:a5:bc:90:c5:01:bc:49:cb:dd:19:5b:a0: e7:2e:fa:db:a3:c5:8b:af:28:79:ca:69:2d:75:50: 22:d8:bc:17:46:ef:69:24:8c:7b:0a:19:d8:1c:cb: 74:f2:24:b3:0e:c6:f3:f2:6f:81:b1:d9:73:b7:37: ae:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:44:76:01:18:C6:FC:55:C6:93:99:78:09:92:F6:BC:F8:E0:CF:63 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5UR2ARjG_FXGk5l4CZL2vPjgz2M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.32.0/20 Signature Algorithm: sha256WithRSAEncryption 8c:cb:c1:20:0c:b2:07:82:3d:73:c4:08:6f:30:07:fd:3a:44: 71:00:01:b7:7e:06:b2:da:c2:f6:9d:92:e0:fa:3d:a3:da:74: 06:85:a4:bb:ff:ca:24:1b:d2:0b:4d:36:a1:2c:87:2e:d5:5e: 93:f7:eb:e2:dd:cd:dd:6a:10:c9:e6:cd:64:4b:1a:29:34:16: 4f:fd:eb:da:b6:04:97:3d:b2:9b:cd:e8:69:04:57:b4:9b:a5: ba:c5:85:88:ed:fd:0d:fa:1a:43:c5:73:b8:b3:91:77:1d:67: 63:40:94:e9:91:8b:9f:4f:de:b4:6d:bd:2e:7f:fd:a0:62:47: d9:a3:8e:6d:2f:d6:48:9b:11:1a:cf:5e:5c:bd:83:aa:e2:36: 9d:99:3d:d6:9a:85:3a:87:22:d0:e1:b0:37:23:9f:e9:d1:ab: 84:a8:3c:b0:3f:04:61:8f:ab:aa:00:f4:56:6d:14:44:ae:4d: 47:49:9d:6e:76:59:b1:13:28:94:ee:c6:82:01:8c:b1:f9:ad: 00:d9:15:c8:a0:19:af:e4:e1:90:d3:3f:25:a0:75:a7:83:8e: 2f:fd:cd:6f:03:71:50:23:4e:f1:d5:15:b1:ff:f8:bc:e4:cc: a8:64:ae:92:67:02:72:f3:6c:bd:49:2a:13:3d:e2:27:b7:6c: 28:0d:c2:fa -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNTA0MDEw MjE5MjZaFw0yNjAzMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU1NDQ3NjAxMThDNkZD NTVDNjkzOTk3ODA5OTJGNkJDRjhFMENGNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNKT1NvfF60e0G82KXst+je7+g6Q5poyqZS02bBjbQpDLDlitA UsLLb8D5B4xuRaLKi7qE0LNX27MpJJPKxEgTkNOWwWGgw9evHYWNJGltMTsW3i7G 2b/QLjHgBMolm2NRQgGskIpwuc7u7m/ryjLA2Pww+5AvOsHucEB6/XBfnEdolZFZ Viy7dlHKOVPmNcc/6hmcr150fNrdTVcg1iIGIqgBWvLQXJLLiH5APH/B1PADupUR 91YujJfNLGH5kpBKFomqU6W8kMUBvEnL3RlboOcu+tujxYuvKHnKaS11UCLYvBdG 72kkjHsKGdgcy3TyJLMOxvPyb4Gx2XO3N64lAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5UR2ARjG/FXGk5l4CZL2vPjgz2MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzVVUjJBUmpHX0ZYR2s1bDRDWkwydlBqZ3oyTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATcnyAwDQYJKoZIhvcNAQELBQADggEBAIzLwSAMsgeCPXPECG8wB/06RHEA Abd+BrLawvadkuD6PaPadAaFpLv/yiQb0gtNNqEshy7VXpP36+Ldzd1qEMnmzWRL Gik0Fk/969q2BJc9spvN6GkEV7SbpbrFhYjt/Q36GkPFc7izkXcdZ2NAlOmRi59P 3rRtvS5//aBiR9mjjm0v1kibERrPXly9g6riNp2ZPdaahTqHItDhsDcjn+nRq4So PLA/BGGPq6oA9FZtFESuTUdJnW52WbETKJTuxoIBjLH5rQDZFcigGa/k4ZDTPyWg daeDji/9zW8DcVAjTvHVFbH/+LzkzKhkrpJnAnLzbL1JKhM94ie3bCgNwvo= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:35 2025 by rpki-client