$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/33/qkutPpnEcKBM92MkdsKCn8d9Qns.roa File: qkutPpnEcKBM92MkdsKCn8d9Qns.roa (raw, json) Hash identifier: Hb6ZtPvMy1PQaa6eYkShP2BgH9e8SRRTRRl8SOn7e20= Subject key identifier: AA:4B:AD:3E:99:C4:70:A0:4C:F7:63:24:76:C2:82:9F:C7:7D:42:7B Certificate issuer: /CN=CE05E71ADDEC0F8E361BB55AB103F53D3856C60A Certificate serial: 1B Authority key identifier: CE:05:E7:1A:DD:EC:0F:8E:36:1B:B5:5A:B1:03:F5:3D:38:56:C6:0A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zgXnGt3sD442G7VasQP1PThWxgo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/qkutPpnEcKBM92MkdsKCn8d9Qns.roa Signing time: Tue 01 Apr 2025 01:31:18 +0000 ROA not before: Tue 01 Apr 2025 01:31:18 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 17955 IP address blocks: 202.247.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/zgXnGt3sD442G7VasQP1PThWxgo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/zgXnGt3sD442G7VasQP1PThWxgo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zgXnGt3sD442G7VasQP1PThWxgo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE05E71ADDEC0F8E361BB55AB103F53D3856C60A Validity Not Before: Apr 1 01:31:18 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=AA4BAD3E99C470A04CF7632476C2829FC77D427B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:64:6e:b5:4c:fa:78:7b:d7:f6:4b:d1:b5:e9: 72:8c:7f:7d:cc:70:3b:d2:f8:12:0b:90:11:1d:33: c4:f4:6b:cb:07:15:39:78:ce:9d:8b:17:9e:d4:9b: a1:72:c7:53:67:06:c7:84:7c:3f:55:92:ab:0e:b8: c3:3d:41:4e:0f:9c:fc:3d:c2:81:27:71:f5:78:94: df:95:29:15:48:5e:5c:bd:07:94:06:3b:a4:91:e0: 4d:a9:15:3a:7e:26:2d:04:0e:1c:f9:09:84:f7:91: 5c:f2:06:23:69:54:ed:af:4f:cd:34:7e:1b:14:4a: 88:65:d7:d0:53:40:50:b0:57:c8:43:bf:60:cd:38: 70:f9:b3:eb:fb:92:51:e9:f3:6c:24:30:3f:06:97: e6:9d:31:9d:aa:1f:0c:61:df:75:3f:66:45:ff:10: 29:2c:bb:86:4c:da:5c:78:e5:8d:18:bd:ea:28:d7: f9:da:d7:cb:81:49:65:69:8b:0f:bf:ac:18:73:cf: 77:7f:1d:c2:d1:eb:aa:7c:df:52:81:f5:b4:e4:5b: 68:7f:24:52:b6:ca:19:9e:25:60:cb:fa:eb:eb:76: dc:e8:16:ec:e2:7e:59:28:1a:82:e8:bd:a9:ce:67: cf:d3:bb:17:8a:b6:69:f3:01:ef:b0:e2:2d:c7:fe: 59:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:4B:AD:3E:99:C4:70:A0:4C:F7:63:24:76:C2:82:9F:C7:7D:42:7B X509v3 Authority Key Identifier: keyid:CE:05:E7:1A:DD:EC:0F:8E:36:1B:B5:5A:B1:03:F5:3D:38:56:C6:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/zgXnGt3sD442G7VasQP1PThWxgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zgXnGt3sD442G7VasQP1PThWxgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/33/qkutPpnEcKBM92MkdsKCn8d9Qns.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.247.192.0/18 Signature Algorithm: sha256WithRSAEncryption b7:fc:ff:03:6d:66:dd:f9:6d:24:70:77:9f:7a:9b:82:af:04: 89:2a:18:3e:d5:e4:60:5d:c9:4f:ce:39:2a:45:96:50:20:4e: 4e:99:65:e0:96:b2:86:20:52:41:c5:f0:a2:44:92:4e:a9:2f: 58:10:a0:2e:ce:49:0e:e9:5f:06:02:02:e5:0f:67:5e:f6:e8: 81:db:c9:60:bd:84:07:bd:93:be:68:23:56:94:7b:2c:d0:e7: 56:6a:95:27:f2:35:64:cd:7f:27:89:28:de:b2:ac:23:62:9b: 9e:06:9b:13:ce:31:3b:3a:1e:ca:78:0f:94:bc:f5:80:d2:8e: 87:c6:e5:0b:0c:2f:16:7a:70:97:5f:a9:44:66:7c:7c:5a:bc: b8:70:39:75:4a:55:41:34:9b:33:eb:7e:f0:4e:9e:54:00:e5: 76:1c:1c:7d:68:81:55:b4:87:a2:f3:da:17:83:fb:51:bb:a9: 2d:bc:02:67:ee:bf:03:be:6f:25:90:07:70:83:3e:65:d0:e2: f9:2c:d3:5a:42:33:4f:43:c5:bd:28:3b:b3:4c:60:d0:c1:f1: d2:33:b2:ce:9a:eb:63:15:cc:d3:0a:77:4f:68:ec:ad:6d:cd: 63:65:a7:f9:77:2b:34:54:18:19:31:3b:d5:bc:36:fb:b3:1f: 9e:c8:7d:fb -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDRTA1 RTcxQURERUMwRjhFMzYxQkI1NUFCMTAzRjUzRDM4NTZDNjBBMB4XDTI1MDQwMTAx MzExOFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoQUE0QkFEM0U5OUM0NzBB MDRDRjc2MzI0NzZDMjgyOUZDNzdENDI3QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMpkbrVM+nh71/ZL0bXpcox/fcxwO9L4EguQER0zxPRrywcVOXjO nYsXntSboXLHU2cGx4R8P1WSqw64wz1BTg+c/D3CgSdx9XiU35UpFUheXL0HlAY7 pJHgTakVOn4mLQQOHPkJhPeRXPIGI2lU7a9PzTR+GxRKiGXX0FNAULBXyEO/YM04 cPmz6/uSUenzbCQwPwaX5p0xnaofDGHfdT9mRf8QKSy7hkzaXHjljRi96ijX+drX y4FJZWmLD7+sGHPPd38dwtHrqnzfUoH1tORbaH8kUrbKGZ4lYMv66+t23OgW7OJ+ WSgagui9qc5nz9O7F4q2afMB77DiLcf+WW8CAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSqS60+mcRwoEz3YyR2woKfx31CezAfBgNVHSMEGDAWgBTOBeca3ewPjjYbtVqx A/U9OFbGCjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzMvemdYbkd0M3NENDQyRzdWYXNRUDFQVGhXeGdvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvemdYbkd0M3NENDQyRzdWYXNRUDFQVGhX eGdvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzMzL3FrdXRQcG5FY0tCTTkyTWtkc0tDbjhkOVFucy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAbK98AwDQYJKoZIhvcNAQELBQADggEBALf8/wNtZt35bSRwd596m4KvBIkqGD7V 5GBdyU/OOSpFllAgTk6ZZeCWsoYgUkHF8KJEkk6pL1gQoC7OSQ7pXwYCAuUPZ172 6IHbyWC9hAe9k75oI1aUeyzQ51ZqlSfyNWTNfyeJKN6yrCNim54GmxPOMTs6Hsp4 D5S89YDSjofG5QsMLxZ6cJdfqURmfHxavLhwOXVKVUE0mzPrfvBOnlQA5XYcHH1o gVW0h6Lz2heD+1G7qS28AmfuvwO+byWQB3CDPmXQ4vks01pCM09Dxb0oO7NMYNDB 8dIzss6a62MVzNMKd09o7K1tzWNlp/l3KzRUGBkxO9W8NvuzH57Iffs= -----END CERTIFICATE-----Generated at Sat Apr 5 23:06:40 2025 by rpki-client